4.0.0

Release Notes

For: uc-cdis/arborist

Notes since tag: 3.4.0

Notes to tag/commit: 4.0.0

Generated: 2022-10-18

New Features

• The POST /auth/mapping endpoint now supports a clientID parameter to
  get the auth mapping for a client. It accepts either a username parameter
  or a clientID parameter (not both). (#153)
• Support "client credentials" tokens that are not linked to a user in the
  /auth/request and /auth/proxy endpoints (#152)

Breaking Changes

• The GET /auth/mapping endpoint does not accept username as a query
  parameter anymore. It only supports parsing the username from the provided
  JWT. To specify a username, use the POST /auth/mapping endpoint. (#153)

Improvements

• Add a log when the user or client is unauthorized for /auth/proxy to
  match /auth/request (#146)

Deployment Changes

• Replace Travis with a GitHub workflow for CI (#150)

Support merge param for PUT /resource endpoint

Release Notes

For: uc-cdis/arborist
Notes since tag: 3.3.0
Notes to tag/commit: d15531c
Generated: 2022-02-15

New Features

• Support merge param for PUT /resource endpoint so that existing
  subresources are not overwritten (#143)

Improvements

• Improved error handling for Revoke Policy (#142)

updates to support info from GA4GH passports

Release Notes

For: uc-cdis/arborist
Notes since tag: 3.2.0
Notes to tag/commit: 6b67a98
Generated: 2021-12-01

New Features

• Add PATCH /user/{username} endpoint (#140)

Improvements

• /auth/request now can take user_id in body instead of just token to
  check user's access (#139)

3.2.0

Release Notes

For: uc-cdis/arborist

Notes since tag: 3.1.0

Notes to tag/commit: 3.2.0

Generated: 2021-11-04

New Features

• Support expand parameter in GET /policy endpoint to get detailed roles
  instead of only role IDs (#138)
• adding golangci-lint (#137)

Improvements

• Update POST /user, GET /policy and GET /role endpoints in API docs
  (#138)
• Update Go 1.17 (#136)

Bug Fixes

• Account for expired policies and expired group users in Auth API endpoints
  (#134)

3.1.0

Release Notes

For: uc-cdis/arborist

Notes since tag: 3.0.0

Notes to tag/commit: 214b99a

Generated: 2021-06-18

Dependency Updates

• Change go-authutils dependency from branch to tag (#132)

New Features

• Added new endpoint /bulk/policy to create new policies in bulk (#131)
• Added new endpoint /user/{username}/bulk/policy to update policies for a
  user in bulk (#131)

3.0.0

Note this is since 2021.05 not 2.5.1

Release Notes

For: uc-cdis/arborist

Notes since tag: 2021.05

Notes to tag/commit: 1f93126

Generated: 2021-05-26

Breaking Changes

• In step with Fence changes to issued JWTs, in which scopes are moved into a
  dedicated scope claim (Fence 4.22.2/2020.08) and out of the aud claim
  (Fence 5.0.0/2021.07), this commit changes Arborist JWT validation logic so
  that it does the same validation it was doing on the aud field, but does it
  on the scope field instead. This Arborist version must therefore be paired
  with a Fence later than 4.22.2/2020.08. Conversely, Fence 5.0.0/2021.07 will
  require Arborist later than this commit. (#130)

Improvements

• Run dep ensure to update lockfile and dependencies. (#130)

Dependency Updates

• Depend on fix/aud-scopes branch of go-authutils, instead of the
  feat/initial branch. (Not sure why arborist was depending on feat/initial
  instead of master in the first place. fix/aud-scopes is branched off of
  feat/initial. We should test Mariner with go-authutils fix/aud-scopes and
  then merge fix/aud-scopes to master, and then point both Mariner and
  Arborist at go-authutils master.) (#130)

Deployment Changes

• Needs Fence later than 4.22.2 or 2020.08 (which introduces the new JWT
  scopes claim). (#130)

2.5.1

Release Notes

For: uc-cdis/arborist

Notes since tag: 2.5.0

Notes to tag/commit: 2.5.1

Generated: 2020-10-30

Bug Fixes

• Fix edge case causing wrong resource paths to be returned (#126)

Improvements

• Added Anon auth check unit test (#125)
• Added precommit (#125)

2.5.0

Release Notes

For: uc-cdis/arborist

Notes since tag: 2.4.0

Notes to tag/commit: 2.5.0

Generated: 2020-10-21

New Features

• Implemented new PUT /role/{roleID} API endpoint for overwriting existing
  roles (#123)

Bug Fixes

• Bug fix to support "service" policies (#124)

include anon and logged-in policies/resources in responses

Release Notes

For: uc-cdis/arborist
Notes since tag: 2.3.2
Notes to tag/commit: 2.4.0
Generated: 2020-02-06

Improvements

• Swagger doc: add "delete user from group" endpoint and fix "list groups"
  endpoint (#121)
• Debugged Arborist unit tests and improved test coverage. (#120)
• Updated Arborist Swagger API documentation. (#120)
• add note to README on requiring db superuser (#118)

New Features

• Arborist endpoints now return the policies of the anonymous and
  logged-in groups based on the spec in docs/username.md. (#120)
• the (misleadingly named) 'anonymous' and 'logged-in' user groups' policies
  should apply to all logged-in users; /auth/mapping already includes this;
  make /auth/resources do the same (#117)

2.3.2

Release Notes

For: uc-cdis/arborist

Notes since tag: 2.3.1

Notes to tag/commit: 4de8a5b

Generated: 2019-10-09

New Features

• In GET /auth/mapping, fall back to jwt if no username in query args (#110)