Skip to content

1.4.6

Private Chef 1.4.6
@schisamo schisamo tagged this 05 Mar 21:23 
Changelog:

https://github.com/opscode/opscode-omnibus/compare/1.4.4...1.4.6

bookshelf 0.2.1 (DISABLED by default)

  * Return 403 if request URL is improperly (or not at all) signed
  * Add basic sanitizing of 500 error responses

oc-chef-pedant 1.0.3

  * coverage for [CHEF-3716] AKA Bookshelf 404. It ensures we do not delete
    checksums referenced by another cookbook version.
  * Change to multitenant_config.rb to better reflect reality
  * Additional principal endpoint coverage
  * Add README w/ basic instructions
  * [OC-6496] update to chef-pedant 1.0.5:
    * Remove `chef` dependency
    * Compensate for bulk role deletion's use of search
    * Regression Test for CHEF-3813
    * Fix deep hash matching bug
    * Re-implemented Hash matcher
    * Add --skip-authorization for new tests
    * Harmonize cookbook responses between Ruby / Erlang
    * Recipes endpoint: ignore order of recipes
    * Run rspec with --tty so we get colors in ruby sub-shells

oc_erchef 0.19.6

  * Removes MySQL support
  * Fixes [CHEF-3716] ensures we don't delete checksums in use by another
    cookbook version.
  * Add configuration for S3 request parallelization.
  * Search caching support (DISABLED by default)

chef-sql-schema pc-rel-1.13.0

  * Adds index to `cookbook_version_checksums` to improve performance on
    large OPC installs.

opscode-account rel-1.30.7

  * [OC-5402] update net-ldap to 0.3.1
  * [OC-6508] Update to Rack 1.2.8

    Fixes the following vulnerabilities:

    [CVE-2013-0263] timing attack against Rack::Session::Cookie

opscode-chef rel-2.8.7

  * [OC-6484] Cookbook Delete needs to deserialize Chef::Checksum objects w/
    json_class when purging.
  * [OC-6266] ensure `Chef::Config[:cache_options]` is set. This stops
    `opscode-chef` from attempting to create a checksum cache directory
    outside of `/var/opt/opscode`.

opscode-solr

  * [OC-1700] Control Jetty log retention
  * [OC-6268] don't allow remote access to any file Solr can read

opscode-webui pc-rel-3.6.6

  * [OC-6433] Update to Rails 3.1.11, Rack 1.3.10

    Fixes the following vulnerabilities:

    [CVE-2013-0276] Circumvention of attr_protected
    [CVE-2013-0277] Serialized Attributes YAML Vulnerability with
                    Rails 2.3 and 3.0
    [CVE-2013-0263] timing attack against Rack::Session::Cookie

  * Fix regression that was introduced in opscode/opscode-account@2424595:
    `groupname` key in body_hash is a string not a symbol

Other improvements:

  * Rename postgres service to postgresql
  * [CHEF-3666] render pg config idempotently
  * Add PATH to the postgresql users .profile
  * Restrict permissions for /etc/opscode/chef-server-running.json
  * [OC-6236] cron_cmd tighten up
  * Allow for an Nginx addon.d which contains upstreams and endpoints for
    addon components.
  * Proper redirect in log cleanup script
  * Add proper escaping to backslashes in `private-chef-ctl` bash script
  * Ensure `uuidtools` is installed and available to embedded cookbooks
  * Bump embedded Chef to 11.4.0 - fixes recent dependency hell caused by the
    net-ssh and JSON gems.
  * [OC-6556] only bootstrap db on active backend
  * stop runit_service supervise/ok race condition
Assets 2
Loading