Skip to content

@lorthirk lorthirk released this Oct 18, 2019 · 42 commits to develop since this release

Kapua 1.1.0 has been released, with hundreds of fixes and enhancements in almost every area. For the full list of fixes, check the project

New and Noteworthy in Kapua 1.1.0:

Enhancements

[backend] Add 'description' to KapuaNamedEntity definition (#2438)
[backend] Create Factories for all KapuaMessages (#2501)
[backend] Create new, more specific error codes to cover various CALL_ERROR instances (#2155)
[backend] Create PredicateFactory for queries (#2498)
[backend] FieldSortCriteria factory in KapuaQuery (#2652)
[backend] Implement clone method into KapuaEntityFactory (#2503)
[backend] Improved implementation of KapuaException and KapuaRuntimeException (#2637)
[backend] Move database initialization code out of the KapuaSecurityBrokerFilter (#2038)
[backend] Move DomainAttributes to API module (#2502)
[backend] Remove scopeId null check on queries and counts (#2669)
[build] Introduction of kapua-device-management-all-* module (#1915)
[build] SSL capability on Docker containers (#2003)
[certificates] Make Certificate Service configurable (#1952)
[datastore] Elasticsearch Client Basic Authentication Support (#2682)
[device-packages] Full support of DEPLOY-V2 request parameters. (#2689)
[devices] device management - track progress during long running package deployments (#1322)
[devices] Removed device unique constraint on modem IMEI, IMSI, ICCID (#2619)
[devices] Support to Cloud defined Display Name (#2622)
[documentation] Add reference to console Maven profile where missing in docs (#2561)
[documentation] No Permission Documentation (#2586)
[jobs] Add an example value for JobStepDefinition.properties (#2606)
[jobs] Concurrent jobs execution (#2323)
[jobs] Device job deploy v2 improvements (#2524)
[jobs] Feature device operation provided (#2416)
[jobs] Feature job delete forced (#2626)
[jobs] Feature job enqueuing (#2404)
[jobs] Feature job execution log (#2343)
[jobs] Implement trigger to fire a job when the device connects (#2599)
[jobs] Improved Quartz configuration (#2688)
[jobs] jobs - track progress during long running operations (#2612)
[jobs] User should be able to define job targets using tags (#995)
[messaging] Add message received timestamp header property (#2721)
[rest-api] LoginInfo REST API (#2661)
[rest-api] Manage sortFields unmarshalling in REST Datastore queries (#2121)
[tests] Added Cucumber Testing Specific Information (#2649)
[tests] Added QA steps and for running dockers and tests on external docker host (#2668)
[tests] Added test scenarios for data store service (#2683)
[tests] Automated REST API tests (#1935)
[tests] Dockerizing functional tests (#2235)
[tests] Drop Cucumber test on account for checking Settings (#2499)
[tests] QA refactoring (#2249)
[tests] REST API tests in combination with service steps (#2079)
[tests] Test dockerization (#2234)

Bugfixes

[accounts] Error When Trying To Edit Account's Settings (#2001)
[accounts] Kapua-sys Account Can Have Expiration Date (#2149)
[backend] Fix initialization in KapuaIllegalArgumentException (#2372)
[backend] service api - KapuaException unable to log exception message (#1338)
[backend] Various permission fixes in backend services (#2664)
[credentials] Kapua Reports Locking User After n+1 Attempt (#1997)
[deploy] commons.db.connection.useSsl setting not honored (#2681, #2691)
[device-connections] Fixed missing QueryParam in DeviceConnections.simpleQuery() (#2429)
[device-lifecycle] Avoid sending the disconnect message in case of stealing link and refactor the internal connect/disconnect message (#2219)
[device-lifecycle] Fix lifecycle messages processing dev (#2729)
[device-packages] Package Installation Problem (#2115)
[devices] an issue with birth certificate when GPS is on (#2702)
[endpoints] Stop Endpoint Info fallback if there are Endpoints specified in scope (#2173)
[jobs] Timeout In Job Steps Is Ignored (#2273)
[jobs] Fix job engine throw exceptions (#2614)
[jobs] Fixed Trigger creation from child accounts (#2724)
[jobs] Job target error message (#2342)
[monitoring] Always use default Dropwizard registry (#2371)
[rest-api] If a query returns zero elements, then total count is always null (#510)
[rest-api] devices/configurations REST endpoints have wrong descriptions in SwaggerUI (#2229)
[rest-api] Fix limitExceeded on MessageQuery (#2660)
[rest-api] Fix Swagger home redirection with Jetty (#2041)
[rest-api] Inconsistent sorting of result set of messages when sort is not given (#2665)
[rest-api] REST API 'authentication/refresh' sometimes returns 401 unathorized (#2579)
[rest-api] REST GenericRequest without Payload or Body throws NullPointerException (#2238)
[rest-api] Set totalCount and limitExceeded in DataMessageJson.query result (#2656)
[rest-api] SwaggerUI suggests the wrong model type for byte[] (#2239)
[rest-api] Telemetry message published through Streams Api has a wrong clientId stored (#2515)
[rest-api] Wrong POST /credentials parameter in SwaggerUI (#2181)
[rest-api] Wrong Swagger Response Objects for Requests and Packages (#2707)
[roles] "Admin" Role In Kapua-sys Account Should Not Be Deletable (#2558)
[roles] Deleting Admin Role Permission Should Not Be Allowed (#2581)
[service-events] Fix JMSServiceEventBus lifecycle (#2036)
[service-events] Service event loader overrides the service event address with the module configured address (#2263)
[service-events] Service events - uncorrect ServiceEvent stack handling on nested calls (#2060)
[service-events] Service Events: missing entity scope id. (#2547)
[tests] Remove sender pool from map after closing (#2101)
[tests] Wrong Internal Server Error HTTP Status Code (#2157)

Library Upgrades

Upgraded protobuf-java version from 2.6.1 to 3.8.0 - CVE-2015-5237 - CWE-119 (#2659)
Upgraded jackson-databind version from 2.9.9 to 2.9.9.1 - CVE-2019-12814 - CWE-200; CVE-2019-12384 - CWE-502 (#2658)
Upgraded H2 version from 1.4.192 to 1.4.199 - CVE-2018-10054 - CWE-94 (#2616)
Upgraded commons-beanutils version from 1.9.2 to 1.9.3 - CVE-2014-0114 - CWE-20 (#2635)
Upgraded commons-collections version from 3.2.1 to 3.2.2 - CVE-2015-7501 - CWE-502 (#2634)
Upgraded Guava version from 19.0 to 27.1-jre - CVE-2018-10237 - CWE-119 - errata corrige (#2633)
Upgraded Qpid Jms Client version from 0.24.0 to 0.40.0 - CVE-2018-17187 - CWE-300 (#2618)
Upgraded Jackson Databind version from 2.8.6 to 2.9.9 - CVE-2018-14718 - CWE-502 (#2617)
Upgraded Slf4j-api version from 25.0 to 26.0 - CVE-2018-8088 (#2627)
Upgraded Logback version from 1.1.8 to 1.2.3 - CVE-2017-5929 - CWE-502 (#2620)
Upgraded Guava version from 19.0 to 27.1-jre - CVE-2018-10237 - CWE-119 (#2615)
Upgraded Paho version from 1.1.0 to 1.2.1 (#2621)
Upgrade SwaggerUI to 3.23.0 (#2712)

Security

Stealing link doesn't work properly (#2204)
Hide sensible data from the Device Management Configuration tab (#2198)
Fix vulnerabilities in ServiceDAO (#2011)
Add credential key minimal requirements for credental type PASSWORD (#2241)

Assets 2
You can’t perform that action at this time.