Registry 1.0.0 Release

This is a major release which includes changes that have been developed since the last release almost two years ago.

What's Changed

• ISSUE-757: Move internal changes to the public repo by @gcsaba2 in #759
• Issue 757 sign and publish by @gcsaba2 in #760
• CDPD-45283: Remove slf4j-log4j dependencies by @gcsaba2 in #761
• CDPD-45280: Kerberos keytab is not initialized properly by @gcsaba2 in #762
• ISSUE-763: Upgrade Dropwizard to v2.1.2 by @gcsaba2 in #764

Full Changelog: 0.9.1-rc1...1.0.0-rc2

Registry 1.0.0 RC1 Release

This is a major release which includes changes that have been developed since the last release almost two years ago.

What's Changed

• MINOR: Upgrade jackson-databind to v2.9.8 to fix the below CVEs. by @kamalcph in #542
• MINOR : Doc for running schema registry behind a load balancer by @raju-saravanan in #546
• ISSUE 555 : Expose an option to disable canonical check while adding a new schema version by @raju-saravanan in #556
• MINOR : Update nexus repo url by @raju-saravanan in #562
• ISSUE 560 : Cursor leaks while using Schema Registry against Oracle by @raju-saravanan in #561
• ISSUE:569: Support Kerberos credentials based Basic Authentication by @guruchai in #567
• ISSUE 574 : Fix the issue while re-creating a deleted schema by @raju-saravanan in #577
• ISSUE 575 : Add migration to enable editing of schema post upgrade to 0.7 by @raju-saravanan in #580
• ISSUE 582 : Using OpenJDK intstead of OracleJDK for Travis builds by @raju-saravanan in #583
• ISSUE 568 : Synchronize Kerberos ticket renewal for non-renewable ticket by @raju-saravanan in #581
• MINOR : NPE when logging is enabled to debug mode by @guruchai in #585
• Issue 578: Find schema version by fingerprint of schema text. by @joaopedroantonio in #579
• ISSUE-548: Make compatible with Avro 1.9.0 by @ivangreene in #547
• ISSUE-586: KerberosBasicAuthenticationHandler should validate Authorization before processing by @guruchai in #587
• ISSUE 590 : Update release-sign-artifacts maven profile to generate javadocs and sources by @raju-saravanan in #591
• ISSUE-592: Security changes to enable Trusted Proxy in SPNEGO authentication by @guruchai in #589
• ISSUE-596: Fixed the Bootstrap script error on passing "drop-create" option. by @kamalcph in #597
• ISSUE-598: Fix SR to run on Java 11 by @kamalcph in #599
• [CSP-528] Replace license headers in SR source files by @csengevirag in #595
• ISSUE 588 - Support for Oracle TLS configs in Storage layer by @raju-saravanan in #593
• ISSUE-603: Minor: Registry is failing to parse the doAs user by @guruchai in #604
• ISSUE 605: Bump up the Avro version to 1.9.1 by @raju-saravanan in #606
• ISSUE 607 : Schema Registry UI hangs occasionally on first use by @joylyn in #602
• ISSUE 608 : Support one way SSL in schema registry client. by @raju-saravanan in #609
• ISSUE-610: Provide JAAS config dynamically via config #610 by @guruchai in #611
• Bump up version to 0.8.1-SNAPSHOT by @raju-saravanan in #618
• ISSUE-624 : Give executable permissions to all registry scripts by @suminb in #616
• ISSUE-627: Remediate Security Vulnerabilities. by @kamalcph in #628
• Download Kafka from a different server by @suminb in #625
• ISSUE-637 : KafkaAvroSerializer fails when schema.compatibility is specified in client configuration by @heritamas in #635
• ISSUE-633 : Fix error when creating a schema with field that is nullable but with default value by @raju-saravanan in #636
• ISSUE-631 : Schema Registry numeric properties cannot be set via a property file by @heritamas in #629
• CSP-768: Change the SR Client auth properties name by @guruchai in #652
• ISSUE-653 : Fix NPE while deleting schema metadata with no schema versions by @raju-saravanan in #654
• CSP-812: Accept yaml config file as script argument in bootstrap scripts by @akatona84 in #643
• ISSUE-656: Delete schema metadata when invalid schema is added by @joylyn in #657
• ISSUE-661: SchemaRegistry file upload endpoint does not return a json by @guruchai in #662
• MINOR: possibility to include mysql-connector jar in final tar.gz by @akatona84 in #668
• ISSUE-640 : Fix URL failover mechanism in Schema Registry Client by @raju-saravanan in #664
• ISSUE-670: UI gives exception and blocks when adding incorrect schema by @joylyn in #671
• ISSUE-594: Schema registry ranger plugin by @vomoshkovskyi in #650
• MINOR: sh compatible conditions by @akatona84 in #682
• ISSUE-685: Updates related to removing of none-sb and none-sv resources by @vomoshkovskyi in #684
• ISSUE-687 : Upgrade to Curator 4.2.0 and Upgrade to Guava 28.1 by @in-park in #686
• CSP-825 Schema Registry Kerberized HDFS and Cloud Storage Support by @benyoka in #675
• MINOR: Compile issue fix by @akatona84 in #689
• MINOR : Refactor service principal configuration by @raju-saravanan in #688
• ISSUE-680 : getLatestSchemaVersion should return the latest enabled schema by @raju-saravanan in #681
• ISSUE-692: Upgrade Jetty to 9.4.26.v20200117 by @viktorsomogyi in #693
• ISSUE-690: Allow users to disble server side caching by @raju-saravanan in #691
• ISSUE-696: maven central repo uses https, setting assembly plugin version by @akatona84 in #695
• upgraded node and npm version for maven build by @joylyn in #698
• MINOR: removing older duplicated eclipse.jetty.version property by @akatona84 in #701
• ISSUE-705: Revert the Jetty version overrides by @viktorsomogyi in #706
• ISSUE-707: Upgrade to Dropwizard 1.3.22 by @viktorsomogyi in #708
• ISSUE-757: Move internal changes to the public repo by @gcsaba2 in #759

New Contributors

• @kamalcph made their first contribution in #542
• @joaopedroantonio made their first contribution in #579
• @ivangreene made their first contribution in #547
• @csengevirag made their first contribution in #595
• @suminb made their first contribution in #616
• @heritamas made their first contribution in #635
• @akatona84 made their first contribution in #643
• @vomoshkovskyi made their first contribution in #650
• @viktorsomogyi made their first contribution in #693

Full Changelog: v0.6.0...1.0.0-rc1

Schema Registry 0.9.1 Release

This release includes the following fixes/features:

• CDPD-12840, CDPD-13048 and CDPD-14374 Move ranger-shaded and jersey-shaded to the external project schema-registry-shaded, this is required to avoid classpath issues with Hadoop
• CDPD-16219 Improve the Swagger documentation of the REST endpoint
• CDPD-12509 Add support to Confluent's proprietary content type
• CDPD-15097 Schemas with null description do not show up in the UI
• CDPD-13580 Javascript fixes related to XSS
• Various library version upgrades to patch security issues (Jetty, Jackson, PostgreSQL JDBC, libphonenumber etc.)
• and many more ...

Schema Registry 0.9.0 Release

This release includes the following fixes/features:

• CDPD-10826 : Remove the ability to download "mysql" connector jar during sql migration
• ISSUE-594: Schema registry ranger plugin
• ISSUE-690: Allow users to disble server side caching
• ISSUE-680 : getLatestSchemaVersion should return the latest enabled schema
• ISSUE-633 : Fix error when creating a schema with field that is nullable but with default value
• ISSUE-640 : Fix URL failover mechanism in Schema Registry Client
• ISSUE-661: Knox proxy swallows API call result
• ISSUE-670: UI gives exception and blocks when incorrectly defining an alias
• ISSUE-627: Remediate Security Vulnerabilites.
• ISSUE-610: Provide JAAS config dynamically via config
• CSP-830 displaying error notification if json parsing is failed
• CDPD-12282: Server side validation for the uploaded JAR file
• Logging improvements
• Upgraded dependency libraries (Dropwizard, Spring, Nimbus, Hadoop, Curator, Guava, Netty...)
• and many more ...

Registry 0.8.1 Release

This release includes the following fixes/features :

• ISSUE-610: Provide JAAS config dynamically via config.
• ISSUE-608: Support one way SSL in schema registry client.
• ISSUE-607: Schema Registry UI hangs occasionally on first use.
• ISSUE-605: Bump up the Avro version to 1.9.1.
• ISSUE-603: Registry is failing to parse the doAs user.
• ISSUE-588: Support for Oracle TLS configs in Storage layer.
• Hortonworks licenses changed to Cloudera licenses.
• ISSUE-598: Fix SR to run on Java 11.
• ISSUE-596: Fixed the Bootstrap script error on passing "drop-create" option.
• ISSUE-592: Security changes to enable Trusted Proxy in SPNEGO authentication.
• ISSUE-590 : Update release-sign-artifacts maven profile to generate javadocs and sources.

Caveats :

• In this release license headers were updated for all the files, in case schema registry is being upgraded to 0.8.1 "bootstrap-storage.sh migrate" would fail, please run "bootstrap-storage.sh repair" before the migrate command.

Registry 0.8.0 Release

This release includes the following fixes/features :

• ISSUE 586: KerberosBasicAuthenticationHandler should validate Authorization before processing
• ISSUE 548: Make compatible with Avro 1.9.0
• ISSUE 578: Find schema version by fingerprint of schema text
• MINOR : Handle NPE when logging is enabled to debug mode
• ISSUE 568 : Synchronize Kerberos ticket renewal for non-renewable ticket
• ISSUE 582 : Using OpenJDK intstead of OracleJDK for Travis builds
• ISSUE 575: Add migration to enable editing of schema post upgrade to 0.6.0
• ISSUE 574 : Fix the issue while re-creating a deleted schema
• ISSUE 569: Support Kerberos credentials based Basic Authentication
• ISSUE 560 : Close unclosed ResultSet in storage
• MINOR : Update nexus url
• ISSUE 555 : Expose an option to disable canonical check while adding a new schema version
• MINOR : Updated README.md
• MINOR : Doc for running schema registry behind a load balancer

Registry 0.8.0 RC2 Release

This release includes the following fixes/features :

• ISSUE-548: Make compatible with Avro 1.9.0
• ISSUE 578: Find schema version by fingerprint of schema text
• MINOR : Handle NPE when logging is enabled to debug mode
• ISSUE 568 : Synchronize Kerberos ticket renewal for non-renewable ticket
• ISSUE 582 : Using OpenJDK intstead of OracleJDK for Travis builds
• ISSUE-575: Add migration to enable editing of schema post upgrade to 0.7
• ISSUE 574 : Fix the issue while re-creating a deleted schema
• ISSUE:569: Support Kerberos credentials based Basic Authentication
• ISSUE 560 : Close unclosed ResultSet in storage
• MINOR : Update nexus url
• ISSUE 555 : Expose an option to disable canonical check while adding a new schema version
• MINOR : Updated README.md
• MINOR : Doc for running schema registry behind a load balancer

Registry 0.8.0 RC1 Release

This release includes the following:

• ISSUE 568 : Synchronize Kerberos ticket renewal for non-renewable ticket
• ISSUE 582 : Using OpenJDK intstead of OracleJDK for Travis builds
• ISSUE-575: Add migration to enable editing of schema post upgrade to 0.7
• ISSUE 574 : Fix the issue while re-creating a deleted schema
• ISSUE:569: Support Kerberos credentials based Basic Authentication
• ISSUE 560 : Close unclosed ResultSet in storage
• MINOR : Update nexus url
• ISSUE 555 : Expose an option to disable canonical check while adding a new schema version
• MINOR : Updated README.md
• MINOR : Doc for running schema registry behind a load balancer

Registry 0.7.0 release

ISSUE-543 Fix broken json format in Schema.Field when it's used as nested - introduced in Jackson 2.9
added test which doesn't make sense for Streamline to have.

ISSUE-538 Move transaction package from common to storage-core
This helps us to isolate storage-core with registry-common, which brings huge number of transitive dependencies especially from hadoop-client.

ISSUE-540 Exclude Avro dependency from registry-common module
This would save lots of modules which has registry-common as a transitive dependency.

MINOR: Upgrade jackson-databind to v2.9.8 to fix the below CVEs
CVE-2018-14719
CVE-2018-14720
CVE-2018-14721
CVE-2018-1000873
CVE-2018-7489
CVE-2018-19362
CVE-2017-15095
CVE-2018-19361
CVE-2017-7525
CVE-2018-19360
CVE-2017-17485
CVE-2018-5968

MINOR: Upgrade Kafka to v2.1.0

MINOR: Remove deprecated API usages. …

• added logback.xml file to adjust logger levels.
• fixed the typographical errors and broken links in documents.

Updated schema-registry.rst

Registry 0.6.0 RC1 release

ISSUE-509: Provide a delete API for schema metadata (#510)
ISSUE-496: Kafka Streams and Schema Registry Integration Support
ISSUE-500: Changes related to enabling JWT based SSO along with SPNEGO/Kerberos
EAR-9794: SchemaRegistry UI is not getting rendered properly
ISSUE-513: Fix storage manager to correctly handle the types in queries
ISSUE-517 Fix concurrent schema version adds.
ISSUE-502: Field props stripped in deserialization
Update documentation: schema-registry.rst
ISSUE-506: Resolve reported CVEs

Security vulnerabilities addressed in this release are
CVE-2014-0114
CVE-2015-6420
CVE-2015-7501
CVE-2017-15708
CVE-2012-5783
CVE-2014-3577
CVE-2012-6153
CVE-2015-5262
CVE-2018-1288
CVE-2009-2625
CVE-2012-0881
CVE-2009-1523
CVE-2011-4461
CVE-2017-9735
CVE-2017-7656
CVE-2017-7657
CVE-2017-7658
CVE-2018-12536
CVE-2014-0193
CVE-2015-2156
CVE-2016-4970