Skip to content

centraldogma-0.63.1

Choose a tag to compare

View all tags
@github-actions github-actions released this 09 Nov 07:40
· 347 commits to main since this release
centraldogma-0.63.1
468212a
This commit was signed with the committer’s verified signature.
armerian Kim Meri
GPG key ID: E9C34E8CAF7DE6E9
Verified
Learn about vigilant mode.

⭐️ New features

  • You can now define confidential properties using variables in the configuration file, seamlessly converted through ConfigValueConverter.
    This bolsters the security of Central Dogma configuration, mitigating the potential risk of exposing sensitive information. #890
    • For example:
      • The configuration file (dogma.json): 
        {
  ...
  tls: {
    "password": "encryption:./path/to/encrypted/file"
    ...
  },
  ...
}
      • The converter loaded via SPI: 
        public class MyConfigValueConverter extends ConfigValueConverter {
  public List<String> supportedPrefixes() {
    return List.of("encryption");
  }

  public String convert(String prefix, String value) {
    if ("./path/to/encrypted/file".equals(value)) {
      // load the file and decrypt the content.
    }
    ...
  }
}
    • Here is the list of confidential properties that the converter supports:
      • replication.secret
      • tls.keyCertChain
      • tls.key
      • authentication.properties.keyStore.password (when SAML is used)
      • authentication.properties.keyStore.keyPasswords (when SAML is used)

⛓️ Dependencies

  • Armeria 1.26.1 → 1.26.2

Thank you

This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:

Contributors

trustin, ikhoon, and 2 other contributors
Assets 3
Loading