0.13.0
DFX
feat: Add dfx sns download
This allows users to download SNS canister WASMs.
fix: fixed error text
dfx nns installhad the wrong instructions for setting up the local replica type
fix: creating an identity with --force no longer switches to the newly created identity
feat(frontend-canister)!: reworked to use permissions-based access control
The permissions are as follows:
- ManagePermissions: Can grant and revoke permissions to any principal. Controllers implicitly have this permission.
- Prepare: Can call create_batch and create_chunk
- Commit: Can call commit_batch and methods that manipulate assets directly, as well as any method permitted by Prepare.
For upgraded frontend canisters, all authorized principals will be granted the Commit permission.
For newly deployed frontend canisters, the initializer (first deployer of the canister) will be granted the Commit permission.
Added three new methods:
- list_permitted: lists principals with a given permission.
- Callable by anyone.
- grant_permission: grants a single permission to a principal
- Callable by Controllers and principals with the ManagePermissions permission.
- revoke_permission: removes a single permission from a principal
- Any principal can revoke its own permissions.
- Only Controllers and principals with the ManagePermissions permission can revoke the permissions of other principals.
Altered the behavior of the existing authorization-related methods to operate only on the "Commit" permission. In this way, they are backwards-compatible.
- authorize(principal): same as grant_permission(principal, Commit)
- deauthorize(principal): same as revoke_permission(permission, Commit)
- list_authorized(): same as list_permitted(Commit)
fix(frontend-canister)!: removed ability of some types of authorized principals to manage the ACL
It used to be the case that any authorized principal could authorize and deauthorize any other principal.
This is no longer the case. See rules above for grant_permission and revoke_permission.
feat(frontend-canister)!: default secure configuration for assets in frontend project template
- Secure HTTP headers, preventing several typical security vulnerabilities (e.g. XSS, clickjacking, and many more). For more details, see comments in
headerssection in default.ic-assets.json5. - Configures
allow_raw_accessoption in starter.ic-assets.json5config files, with the value set to its default value (which isfalse). We are showing that configuration in the default starter projects for the sake of easier discoverability, even though its value is set to the default.
feat(frontend-canister)!: add allow_raw_access config option
By default, the frontend canister will now restrict the access of traffic to the <canister-id>.raw.ic0.app domain, and will automatically redirect all requests to the certified domain (<canister-id>.ic0.app), unless configured explicitly. Below is an example configuration to allow access to the robots.txt file from the "raw" domain:
[
{
"match": "robots.txt",
"allow_raw_access": true
}
]Important: Note that any assets already uploaded to an asset canister will be protected by this redirection, because at present the asset synchronization process does not update the allow_raw_access property, or any other properties, after creating an asset. This also applies to assets that are deployed without any configuration, and later configured to allow raw access.
At the present time, there are two ways to reconfigure an existing asset:
- re-create the asset
- delete the asset in your project's directory
- execute
dfx deploy - re-create the asset in your project's directory
- modify
.ic-assets.jsonacordingly - execute
dfx deploy
- via manual candid call
dfx canister call PROJECT_NAME_frontend set_asset_properties '( record { key="/robots.txt"; allow_raw_access=opt(opt(true)) })'
feat(frontend-canister): pretty print asset properties when deploying assets to the canister
feat(frontend-canister): add take_ownership() method
Callable only by a controller. Clears list of authorized principals and adds the caller (controller) as the only authorized principal.
feat(ic-ref):
effective_canister_idused forprovisional_create_canister_with_cyclesis passed as an command-line argument (defaults torwlgt-iiaaa-aaaaa-aaaaa-caiif not provided or upon parse failure)
feat(frontend-canister): add get_asset_properties and set_asset_properties to frontend canister
As part of creating the support for future work, it's now possible to get and set AssetProperties for assets in frontend canister.
feat: write canister metadata sections for dfx pull
feat: add --argument-file argument to the dfx canister sign command
Similar to how this argument works in dfx canister call, this argument allows providing arguments for the request from a file.
feat: Add support for a default network key
A remote canister ID can now be specified for the __default network. If specified, dfx will assume that the canister is remote at the specified canister ID for all networks that don't have a dedicated entry.
feat: use OS-native keyring for pem file storage
If keyring integration is available, PEM files (except for the default identity) are now by default stored in the OS-provided keyring.
If it is not available, it will fall back on the already existing password-encrypted PEM files.
Plaintext PEM files are still available (e.g. for use in non-interactive situations like CI), but not recommended for use since they put the keys at risk.
To force the use of one specific storage mode, use the --storage-mode flag with either --storage-mode password-protected or --storage-mode plaintext.
This works for both dfx identity new and dfx identity import.
The flag --disable-encryption is deprecated in favour of --storage-mode plaintext. It has the same behavior.
feat: dfx pull
- write canister metadata for dfx pull.
dfx pullcan fetchdfx:depsmetadata and resolve dependencies recursively.
feat(frontend-canister): better control and overview for asset canister authorized principals
The asset canister now has two new functions:
- Query function
list_authorizeddisplays a list of all principals that are currently authorized to change assets and the list of authorized principals. - Update function
deauthorizethat removes a principal from the list of authorized principals. It can be called by authorized principals and cotrollers of the canister.
In addition, the update function authorize has new behavior:
Now, controllers of the asset canister are always allowed to authorize new principals (including themselves).
fix: add retry logic to dfx canister delete
dfx canister delete tries to withdraw as many cycles as possible from a canister before deleting it.
To do so, dfx has to manually send all cycles in the canister, minus some margin.
The margin was previously hard-coded, meaning that withdrawals can fail if the margin is not generous enough.
Now, upon failure with some margin, dfx will retry withdrawing cycles with a continuously larger margin until withdrawing succeeds or the margin becomes larger than the cycles balance.
fix: dfx deploy --mode reinstall for a single Motoko canister fails to compile
The Motoko compiler expects all imported canisters' .did files to be in one folder when it compiles a canister.
dfx failed to organize the .did files correctly when running dfx deploy <single Motoko canister> in combintaion with the --mode reinstall flag.
fix: give more cycles margin when deleting canisters
There have been a few reports of people not being able to delete canisters.
The error happens if the temporary wallet tries to transfer out too many cycles.
The number of cycles left in the canister is bumped a little bit so that people can again reliably delete their canisters.
Dependencies
Updated candid to 0.8.4
- Bug fix in TS bindings
- Pretty print numbers
Frontend canister
- Module hash: d12e4493878911c21364c550ca90b81be900ebde43e7956ae1873c51504a8757
- #2942
ic-ref
Updated ic-ref to master commit 3cc51be5
Motoko
Updated Motoko to 0.7.6
Replica
Updated replica to elected commit b5a1a8c0e005216f2d945f538fc27163bafc3bf7.
This incorporates the following executed proposals: