2024-04-19: Improved security for user-uploaded documents
This release improves the security of the optional user upload mechanism by adding a storageUrl field to disambiguate between user-uploaded files and admin-uploaded files with the same name. Now when running manageacl.py, you must specify the full storageUrl whose ACLs require updating.
If you have an existing search index from before this release, please follow steps in README to add the new storageUrl field and backfill it to existing chunks in the index:
https://github.com/Azure-Samples/azure-search-openai-demo/blob/main/docs/deploy_features.md#enabling-user-document-upload
What's Changed
- Adds storageURL field to track file location by @pamelafox in #1535
- Disable key-based storage account access in Bicep by @pamelafox in #1518
- Bump idna from 3.6 to 3.7 in /app/backend by @dependabot in #1525
- Bump vite from 4.5.2 to 4.5.3 in /app/frontend by @dependabot in #1488
- Fix gpt-4 vision link by @adamdougal in #1546
New Contributors
- @adamdougal made their first contribution in #1546
Full Changelog: 2024-04-10...2024-04-19
Contributors
pamelafox, adamdougal, and dependabot