2.15.0.0

Version 2.15.0 Release Notes

Compatible with OpenSearch and OpenSearch Dashboards version 2.15.0

Enhancements

• Remove tenant tab when disabled via yaml (#1960)
• Always show security screen and shows error page when trying to access forbidden data-source (#1964)
• Provide ability to view password (#1980)
• Make login screen input feels consistent (#1993)

Bug Fixes

• Fix bugs where pages were stuck in error state (#1944)
• Fix issue when using OpenID Authentication with serverBasePath (#1899)
• Fixes issue with expiryTime of OIDC cookie that causes refreshToken workflow to be skipped (#1990)

Maintenance

• Updating security reachout email (#1948)
• Bump ejs and express versions to address CVEs (#1988)

1.3.17.0

Version 1.3.17.0

Compatible with Opensearch-Dashboards 1.3.17

Maintenance

• Update security reachout email (#1948)

2.14.0.0

Version 2.14.0.0

Compatible with OpenSearch-Dashboards 2.14.0

Enhancements

• Adds Multiple Datasources Support for Security Dashboards Plugin (#1888)
• Adds flow-framework transport action permissions to the static dropdown list (#1908)
• Update copy for tenancy tab (#1881)
• Clear session storage on auto-logout & remove unused saml function (#1872)
• Create a password strength UI for security dashboards plugin (#1762)

Bug Fixes

• Fixes saml login flow to work with anonymous auth (#1839)
• Fixes issue with multi-tenancy and default route to use corresponding default route for the selected tenant (#1820)
• Fix oidc cypress test and remove doc link (#1923)
• Add fix for data source disabled plugin should work (#1916)

Maintenance

• Add husky pre commit and lint files (#1859)
• Remove implicit dependency to admin as password (#1855)
• Bump jose from 4.11.2 to 5.2.4 (#1902)

1.3.16.0

Version 1.3.16.0

Compatible with OpenSearch-Dashboards 1.3.16

Bug Fixes

• Split up a value into multiple cookie payloads (#1831)

2.13.0.0

2024-03-19 Version 2.13.0.0

Compatible with OpenSearch-Dashboards 2.13.0

Enhancements

• Clear the contents of opensearch_dashboards prior to putting settings (#1781)
• Add loose flag to OSD bootstrap (#1789)
• Hide tenant when disabled in the account nav button popover (#1792)
• Use start-opensearch and setup-opensearch-dashboards actions (#1808)
• Fix cookie expiry issues from IDP/JWT auth methods, disables keepalive for JWT/IDP (#1806)
• Copy tenant with Short URL (#1812)
• Add toast handling for purge cache action (#1827)

2.12.0.0

2024-02-20 Version 2.12.0.0

Compatible with OpenSearch-Dashboards 2.12.0

Enhancements

• Run SAML Multi Auth integration tests in Cypress (#1729) (#1749)
• Add step to install dependencies prior to building (#1743) (#1747)
• Add indices:data/read/search/template/render to cluster permissions dropdown (#1725) (#1732)
• Run Security dashboards plugin from binary (#1734)
• Run cypress-tests and cypress-tests-tenancy-disabled on Chrome (#1728) (#1733)
• Cookie compression and splitting for JWT (#1651) (#1723)
• Adds system index permission as allowed action under static drop down list (#1720)
• Handle other permission group types (#1715) (#1718)
• Implement nextUrl for OpenID Authentication (#1563) (#1701)
• Cypress13 testing frame work for OIDC and SAML (#1691)
• Added client certificate options to support mutual TLS for OpenID endpoint (#1650) (#1683)
• Adds openid parameters (#1637) (#1677)
• Show controls as read only based on tenant permissions (#1472) (#1670)
• Add search pipeline action permissions (#1661) (#1663)
• Add permissions for async query and patch datasource API (#1626) (#1630)

Bug Fixes

• Fixes Short URL redirection for SAML login (#1744) (#1767)
• Disable tenancy pop-ups when disabled or default tenant set (#1759) (#1763)
• Fix cannot find module when import ResourceType in server from public folder (#1705) (#1716)
• Fix copy link issue in Safari (#1633) (#1672)
• Fix bug where custom permission groups are missing (#1636) (#1639)

Maintenance

• Removing Prerequisite Checks Workflow (#1757)
• Addressing spelling mistakes in server code. (#1753) (#1754)
• Moves eslint to devDependency and save yarn.lock file (#1746) (#1748)
• Update cypress E2E workflow to reflect changes to default admin password (#1714) (#1719)
• Pass in env variable and -t flag to set "admin" as the initial admin password (#1708)
• Increment version to 2.12.0.0 (#1686)
• Upgrade glob-parent to 5.1.2 and debug to 4.3.4 (#1685)
• Check in yarn.lock for 2.x branch (#1671)
• Different Values Pointing to Basic Auth, Need to Unify (#1619) (#1649)
• Stabilize SAML integration test cases for security dashboard CIs (#1641) (#1654)
• Update babel imports (#1652) (#1653)

Refactoring

• Refactor cypress OIDC tests to use Run Cypress Tests action (#1755) (#1756)

1.3.14.0

2023-12-08 Version 1.3.14.0

Compatible with OpenSearch-Dashboards 1.3.14

Maintenance

• Update yarn.lock file (#1669)
• Bump debug to 4.3.4 and browserify-sign to 4.2.2 to address CVEs (#1674)

2.11.0.0

2023-10-18 Version 2.11.0.0

Compatible with OpenSearch-Dashboards 2.11.0

Bug Fixes

• Fix OIDC refresh token flow when using the cookie splitter (#1580)

2.10.0.0

2023-08-31 Version 2.10.0.0

Compatible with OpenSearch-Dashboards 2.10.0

Enhancements

• Security Getting Started page follows Dashboard themes (#1538)
• Security Roles and Audit Log Settings follow Dashboard themes (#1558)
• Support OpenSearch logo theming for light / dark modes (#1568)

Bug Fixes

• When following a link that prompts sign in through SAML or Multi-Auth the destination page is not lost (#1557)

Maintenance

• Force resolution of selenium-webdriver to 4.10.0 (#1541)
• Change the regex command in install dashboard GHA (#1533)

1.3.12.0

2023-08-10 Version 1.3.12.0

Compatible with Opensearch-Dashboards 1.3.12

Bug Fixes

• Switch to new tenant after loading a copied long URL (#1450)
• Add the tenant into the short URL once the short URL is resolved (#1462) #1516