Commit c7377dc9 authored by CI Runner's avatar CI Runner
Browse files

Add changelog for v24 and Kibana v17. Also update EOL and removed unused files.

parent 6ef315c4
---
title: Kibana
slug: changelogs-kibana
category: changelogs
subcategory: changelogs-kibana
order: 200
layout: changelogs
description: Changelog for the Search Guard Kibana Plugin
---
<!---
Copryight 2010 floragunn GmbH
-->
# Search Guard Kibana Plugin Changelogs
### [Search Guard Kibana Plugin 6.x-13](changelog_kibana_v13.md)
Release Date: 26.05.2018
### [Search Guard Kibana Plugin 6.x-12](changelog_kibana_v12.md)
Release Date: 13.04.2018
### [Search Guard Kibana Plugin 6.x-11](changelog_kibana_v11.md)
Release Date: 03.04.2018
### [Search Guard Kibana Plugin 6.x-10](changelog_kibana_v10.md)
Release Date: 07.02.2018
### Search Guard Kibana Plugin 6.x-9
Release Date: not released, merged with v10
### [Search Guard Kibana Plugin 6.x-8](changelog_kibana_v8.md)
Release Date: 22.12.2017
......@@ -13,6 +13,10 @@ Copryight 2010 floragunn GmbH
# Search Guard Kibana Plugin Changelogs
### [Search Guard Kibana Plugin 6.x-17](changelog_kibana_v17.md)
Release Date: 20.12.2018
### [Search Guard Kibana Plugin 6.x-16](changelog_kibana_v16.md)
Release Date: 20.11.2018
......
---
title: Kibana 6.x-17
slug: changelog-kibana-6.x-17
category: changelogs-kibana
order: 660
layout: changelogs
description: Changelog for the Search Guard Kibana Plugin 6.x-17
---
<!---
Copryight 2010 floragunn GmbH
-->
# Search Guard Kibana Plugin 6.x-17
**Release Date: 20.12.2018**
[Upgrade Guide to 6.5.x](../_docs/upgrading-6_5_0.md)
## Security Fixes
n/a
## Fixes
* SAML: IdP initiated SSO throws an error in Kibana (requires Search Guard v24 or newer)
* The acsEndpoint to the authtoken call used by SAML was added
* [PR #159](https://github.com/floragunncom/search-guard-kibana-plugin/pull/159){:target="_blank"}
* Monitoring Tab Cyclically Failing
* [Issue #561](https://github.com/floragunncom/search-guard/issues/561){:target="_blank"}
* [PR #148](https://github.com/floragunncom/search-guard-kibana-plugin/pull/148){:target="_blank"}
* Show open, share and reporting controls for RO-tenants
* [PR #149](https://github.com/floragunncom/search-guard-kibana-plugin/pull/149){:target="_blank"}
* Fixed tenant preselection after failed tenant validation #150
* [PR #150](https://github.com/floragunncom/search-guard-kibana-plugin/pull/150){:target="_blank"}
* Basic Auth: Ignore auth header if we already have a session cookie
* [PR #153](https://github.com/floragunncom/search-guard-kibana-plugin/pull/153){:target="_blank"}
* Dev Tools show now a proper warning when the user does not have enough privileges
* Fix OpenID over HTTPS with self signed certificates
* [PR #156](https://github.com/floragunncom/search-guard-kibana-plugin/pull/156){:target="_blank"}
## Features
* Spaces support
* Search Guard is now compatible with Kibana Spaces
* But is not yet compatible with Search Guard multitenancy feature
* [PR #160](https://github.com/floragunncom/search-guard-kibana-plugin/pull/160){:target="_blank"}
* New proxycache auth type
* It's now possible to use proxy authentication, but only transmit the headers once by storing them in a cookie.
* [PR #157](https://github.com/floragunncom/search-guard-kibana-plugin/pull/157){:target="_blank"}
* Allow HTML in login dialogue
* Now HTML can be used to customize the login dialogue (title and subtitle)
* [PR #158](https://github.com/floragunncom/search-guard-kibana-plugin/pull/158){:target="_blank"}
---
title: Search Guard
slug: changelogs-searchguard
category: changelogs
subcategory: changelogs-searchguard
order: 100
layout: changelogs
description: Changelog for the Search Guard and Search Guard SSL
---
<!---
Copryight 2010 floragunn GmbH
-->
# Search Guard Changelogs
### [Search Guard 6.x-22.3](changelog_searchguard_6_x_22_3.md)
Release Date: 21.06.2018
### [Search Guard 6.1.x-22.2 / Search Guard 6.2.x-22.1](changelog_searchguard_6_x_22_1_2.md)
Release Date: 27.04.2018
### [Search Guard 6.x-22.0](changelog_searchguard_6_x_22_0.md)
Release Date: 27.03.2018
### [Search Guard 6.x-21.0](changelog_searchguard_6_x_21_0.md)
Release Date: 07.02.2018
### [Search Guard 6.x-20.1](changelog_searchguard_6_x_20_1.md)
Release Date: 30.12.2017
### [Search Guard 6.x-20.0](changelog_6_x_20_0.md)
Release Date: 22.12.2017
---
title: Search Guard 6.x-24.0
slug: changelog-searchguard-6-x-24_0
category: changelogs-searchguard
order: 560
layout: changelogs
description: Changelog for Search Guard 6.x-24.0
---
<!---
Copryight 2017 floragunn GmbH
-->
# Search Guard 6.x-24.0
**Release Date: 20.12.2018**
* [Upgrade Guide from 5.x to 6.x](../_docs/upgrading_5_6.md)
* [Upgrade Guide to 6.5.x](../_docs/upgrading-6_5_0.md)
## Security Fixes
### Field anonymization
* Field anonymization: Added support for string arrays
* Until now string content within arrays where not masked/anonymized
* [4af8dde](https://github.com/floragunncom/search-guard-enterprise-modules/commit/4af8dde7ad3a4ae3f2da38c0d2586d54b5e2973f){:target="_blank"}
### DLS/FLS
* DLS/FLS: Fix field capabilities API and get mapping when FLS is activated
* Until now the field caps and the mapping API has leaked field names (not values) for fields which are not allowed for the user because FLS was activated
* [PR #17](https://github.com/floragunncom/search-guard-enterprise-modules/pull/17 ){:target="_blank"}
## Fixes
### Search Guard
* Impersonation: Only one authentication domain used for impersonated user lookup
* Only the domain which authenticated the user in the first place was considered for impersonation
* [PR #597](https://github.com/floragunncom/search-guard/pull/597){:target="_blank"}
* Core: username_atttibute is now also supported for Transport authentication
* [Issue #547](https://github.com/floragunncom/search-guard/issues/547){:target="_blank"}
* [PR #594](https://github.com/floragunncom/search-guard/pull/594){:target="_blank"}
* Core: Log more infos if authenication has finally failed
* Include the remote address in the log message
* [PR #595](https://github.com/floragunncom/search-guard/pull/595){:target="_blank"}
### sgadmin
* sgadmin: sgadmin does now print out stracktrace in case of an error
* Stacktrace is now printed out to stdout instead of stderr
* [PR #598](https://github.com/floragunncom/search-guard/pull/598){:target="_blank"}
### LDAP
* LDAP: Fix LDAP hostname verification
* Hostname verfication can now be properly turned off
* [PR #21](https://github.com/floragunncom/search-guard-enterprise-modules/pull/21){:target="_blank"}
* LDAP: Skipping users for authz not working as expected
* LDAP authenticated users were not skipped properly
* [PR #16](https://github.com/floragunncom/search-guard-enterprise-modules/pull/16){:target="_blank"}
### SAML
* SAML: IdP initiated SSO throws an error in Kibana (requires Kibana Plugin v17 or newer)
* The acsEndpoint to the authtoken call used by SAML was added
* [PR #23](https://github.com/floragunncom/search-guard-enterprise-modules/pull/23){:target="_blank"}
### REST API
* REST API should support the username attribute
* The username attribute supports usernames containing dots
* [PR #20](https://github.com/floragunncom/search-guard-enterprise-modules/pull/20){:target="_blank"}
## Features
### Audit logging
* Audit logging: index does now have an additional @timestamp field
* [Issue #609](https://github.com/floragunncom/search-guard/issues/609){:target="_blank"}
* [PR #22](https://github.com/floragunncom/search-guard-enterprise-modules/pull/22){:target="_blank"}
* Audit logging: Implemented retry for all auditlog sinks
* Non-persistent retry capabilities for sinks which can occasionally fail
* [PR #19](https://github.com/floragunncom/search-guard-enterprise-modules/pull/19){:target="_blank"}
### Field anonymization
* Field anonymization: Custom field anonymization
* More fine grained control which parts of a field value should be anonymized
* Alternative hashing algorithms can now be configured
* [4af8dde](https://github.com/floragunncom/search-guard-enterprise-modules/commit/4af8dde7ad3a4ae3f2da38c0d2586d54b5e2973f){:target="_blank"}
### DLS/FLS
* DLS/FLS: Add support for `${user.roles}` property for DLS
* `${user.roles}` will expand to a comma delimited list of the backend roles of the current user
* [74f292c](https://github.com/floragunncom/search-guard-enterprise-modules/commit/74f292c9c15fb8af91841d5815c80968cb0e19f9){:target="_blank"}
### REST API
* REST API: Password rules for REST API
* It's now possible to configure a regex to define miniumum requirements for passwords
* [PR #14](https://github.com/floragunncom/search-guard-enterprise-modules/pull/14){:target="_blank"}
* REST API: Validate masked fields when regex or custom hashing algo used
* [0bf3c18](https://github.com/floragunncom/search-guard-enterprise-modules/commit/0bf3c1849b2afca8f9a7950b20174b2d79f6487d){:target="_blank"}
### LDAP
* LDAP: Connection pooling load balancing
* New LDAP implementation which supports connection pooling and better load balancing when more than one LDAP server is configured (BETA)
* [PR #18](https://github.com/floragunncom/search-guard-enterprise-modules/pull/18){:target="_blank"}
* LDAP: Make it possible to query more than one user- and rolebase
* [PR #18](https://github.com/floragunncom/search-guard-enterprise-modules/pull/18){:target="_blank"}
\ No newline at end of file
......@@ -13,6 +13,10 @@ Copryight 2010 floragunn GmbH
# Search Guard Changelogs
### [Search Guard 6.x-24.0](changelog_searchguard_6_x_24_0.md)
Release Date: 20.12.2018
### [Search Guard 6.x-23.2](changelog_searchguard_6_x_23_2.md)
Release Date: 20.11.2018
......
---
title: TLS Tool
slug: changelogs-tlstool
category: changelogs
subcategory: changelogs-tlstool
order: 300
layout: changelogs
description: Changelog for the Search Guard TLS Tool
---
<!---
Copryight 2010 floragunn GmbH
-->
# TLS Tool Changelogs
### [TLS Tool 1.5](changelog_tlstool_1_5.md)
Release Date: 09.06.2018
### [TLS Tool 1.4](changelog_tlstool_1_4.md)
Release Date: 18.05.2018
### [TLS Tool 1.3](changelog_tlstool_1_3.md)
Release Date: 01.05.2018
### [TLS Tool 1.2](changelog_tlstool_1_2.md)
Release Date: 24.04.2018
### [TLS Tool 1.1](changelog_tlstool_1_1.md)
Release Date: 25.02.2018
### TLS Tool 1.1 (initial release)
Release Date: 13.02.2018
......@@ -31,7 +31,7 @@ Search Guard releases that **have reached end of life** are called **inactive re
The Search Guard versioning scheme is:
* e1.e2.e3-sgv (for 5.x and 6.x)
* e1.e2.e3-sgv (for 5.x and later)
* e1.e2.e3.sgv (for 2.x)
where
......@@ -46,11 +46,11 @@ where
For active releases, we will provide Search Guard updates and maintenance for
* All releases of the current minor version of the current major version
* 6.4.2, 6.4.1 and 6.4.0 at the time of writing
* 6.5.4, 6.5.3, 6.5.2 and 6.5.1 at the time of writing
* Current release of the previous minor version of the current major version
* 6.3.2 at the time of writing
* 6.4.3 at the time of writing
* Last release of the previous major version (not all feature will be backported)
* 5.6.12 at the time of writing
* 5.6.14 at the time of writing
## Inactive releases
......@@ -64,6 +64,7 @@ Critical security fixes will be backported to all active releases, including all
| Search Guard Version | End of life date |
|---|---|
6.5.x-y | 2020-05-14 |
6.4.x-y | 2020-02-23 |
6.3.x-y | 2019-12-13 |
6.2.x-y | 2019-08-06 |
......@@ -80,28 +81,27 @@ Critical security fixes will be backported to all active releases, including all
2.3.x.y | 2017-09-30 |
2.2.x.y | 2017-08-02 |
## Maintenance and support overview as of 26.08.2018
## Maintenance and support overview as of 20.12.2018
### Search Guard 6
| Search Guard Version | Active release | Search Guard Updates | Critical Security Updates |
|---|---|---|---|
6.5.x-y | yes | yes | yes |
6.4.x-y | yes | yes | yes |
6.3.x-y | yes | yes | yes |
6.2.4-y | no | yes | yes |
6.2.x-y | no | yes | yes |
6.2.x-y | no | no | yes |
6.1.x-y | no | no | yes |
### Search Guard 5
| Search Guard Version | Active release | Search Guard Updates | Critical Security Updates |
|---|---|---|---|
5.6.12 | yes | yes | yes |
5.6.x-y | no | no | yes |
5.5.3-y | no | no | no |
5.5.0-y-5.5.2-y | no | no | no |
5.6.14-y | yes | yes (partly) | yes |
5.6.x-y | no | no | no |
5.5.x-y | no | no | no |
5.4.x-y | no | no | no |
5.3.x-y | no | no | no|
5.3.x-y | no | no | no |
5.2.x-y | no | no | no |
5.1.x-y | no | no | no |
5.0.x-y | no | no | no |
......@@ -110,8 +110,7 @@ Critical security fixes will be backported to all active releases, including all
| Search Guard Version | Active release | Search Guard Updates | Critical Security Updates |
|---|---|---|---|
2.4.6.y | no | no | no |
2.4.0.y-2.4.5.y | no | no | no |
2.4.x.y | no | no | no |
2.3.x.y | no | no | no |
2.2.x.y | no | no | no |
......
......@@ -13,5 +13,5 @@ Copryight 2017 floragunn GmbH
All Search Guard releases, past and present, are available on Maven Central. You can either download the releases from there (offline install) or use the Elasticsearch plugin install command to install Search Guard directly (online install).
If you are upgrading from Elasticsearch <= 6.5.0 to Elasticsearch >= 6.5.0, please read the [upgrade instructions to Elasticsearch 6.5.x](upgrading_6_5_0.md).
If you are upgrading from Elasticsearch < 6.5.0 to Elasticsearch >= 6.5.0, please read the [upgrade instructions to Elasticsearch 6.5.x](upgrading_6_5_0.md).
{: .note .js-note .note-warning}
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment