4.1.0-onprem

Information

This version comes as a milestone indicating that this version is stable and consistent for a on-premise deployment.
It contains all changes from 3.2.1 version (where the journey began).
This version is not compatible with Azure deployment (next version will be fully portable, stay tuned for v5!)

What's Changed

Features

• Dse/hide errors prod 14098 by @sellisd in #834
• restrict the possibility for the role_viewer to see the details of security by @Leopold-Cramer in #821
• [PROD-9005] Make sure the parameter's varType are the one from the solution by @sjoubert in #820
• Only pass the PVC storage class if we have one by @sjoubert in #815
• Rework all Spring security applied on endpoints:
  • List explicitly endpoints in Spring Security configuration
  • Remove useless endpoints configuration
  • Remove useless roles:
    • Connector.Developer
    • Organization.Admin
    • Organization.Collaborator
    • Organization.Modeler
    • Organization.User
    • Organization.Viewer
    • Connector.Reader
    • Connector.Writer
    • Dataset.Reader
    • Dataset.Writer
    • Organization.Reader
    • Organization.Writer
    • Solution.Reader
    • Solution.Writer
    • Workspace.Reader
    • Workspace.Writer
• Add useGraphModule Boolean by @jreynard-code in #808
• Lal/argo with mounted secret by @lalepee in #803
• Update openapi generator to 7.8.0 by @sjoubert in #801
• change TLS activation in helm chart: TLS for IDP/EventBus/DB should be specified (default: false) 5e8a94c
• Lal/tls by @lalepee in #797
• Allow to ignore node selectors on argo workflows by @sjoubert in #793
• Mount output and temp directory in argo containers by @vcarluer in #784
• Rework the getRunLogs endpoint return value by @sjoubert in #756
• Remove the Javascript, Java and C# clients by @sjoubert in #757
• Remove createsecret endpoint by @jreynard-code in #769
• Put back the OAuth config in the OpenAPI spec by @sjoubert in #770
• REDIS TLS feature with custom SSL bundle to custom root certificate by @vcarluer in #782
• Remove argo/run artifacts configuration by @sjoubert in #742
• Use local paths/PVC instead of an S3 storage service for workspace files by @sjoubert in #743
• Improve usage of container registry config by @sjoubert in #744
• [PROD-13480] Remove the 'findConnectorByName' endpoint by @sjoubert in #747
• Add back the possibility to locally run the api without k8s access by @sjoubert in #749
• Make possible to deactivate network_policies by @jreynard-code in #750
• Change workspace delete endpoint by @jreynard-code in #754
• Remove organization services configuration by @sjoubert in #708
• Remove state, lastRun, parentLastRun, rootLastRun on Runner + add lastRunId instead by @jreynard-code in #715
• Remove twingraph, scenario and scenariorun apis by @sjoubert in #717
• Remove run template cloud handlers by @sjoubert in #722
• Store workspace files in our internal S3 storage by @sjoubert in #723
• Return twingraph query results as json list by @neomatamune in #728
• [PROD-13427][PROD-13433] Use workspace id to read the secret by @sjoubert in #738
• Jrey/remove azure dep from common by @jreynard-code in #734
• Remove argo storage class creation by @sjoubert in #741

Fixes

• fix: check filenames as we do for destination paths by @sellisd in #827
• fix findAll dataset only return datasets of organization by @lalepee in #833
• fix: Do not trust and send traffic through CORS proxy by @sellisd in #830
• fix run ownerId. set to current logged user by @lalepee in #823
• fix get logs error when Loki query range is exceeded by @sjoubert Cosmo-Tech/cosmotech-api-common@f608c36
• Jrey/fix inherited dataset list runner by @jreynard-code in #813
• Update runner parentId on parent deletion by @sjoubert in #806
• [PROD-13928] Make Runner.datasetList optional again by @sjoubert in #807
• [PROD-13929] Handle ignored Runner.rootId by @sjoubert in #809
• Fix antMatchers pattern in cosmotech-api-common version used
• fix list runner when rbac is off by @lalepee in #781
• Fix AMQP EventListeners enabled even if eventBus is disabled
• [PROD-13730] Add pre-condition checks for add/update runner ACL by @sjoubert in #789
• [PROD-13443] Make sure to have an admin when creating a resource by @sjoubert in #786
• Fix update solution wrong runtemplate (on main) by @jreynard-code in #761
• [PROD-13633] Make startRun return a proper object by @sjoubert in #774
• Improve runner delete behavior by @sjoubert in #776
• [PROD-13732] Properly handle/report missing repository/version by @sjoubert in #778
• [PROD-13734] Fix update solution with no runTemplates cause runTemplates reset to empty list by @jreynard-code in #779
• [SDCOSMO-1956] Fix Runner child doesn't inherit parent's parameters by @jreynard-code in #745
• Fix argo volume access mode by @sjoubert in #752
• removed unwanted character ) by @adrianstanciu in #706
• Fix SDCOSMO-1820 by @jreynard-code in #713
• Add missing required s3 helm values by @sjoubert in #725
• Fix typo in workspace integration tests package name by @sjoubert in #727
• Add missing openapi validation for runner and run modules by @sjoubert in #732
• Remove need of SQL identifier quoting by @neomatamune in #718
• Correctly list all S3 objects using the paging API by @sjoubert in #733
• Remove organization services configuration by @sjoubert in #708
• Fix SDCOSMO-1820 by @jreynard-code in #713

Misc

• Upgrade argo-client-java from v3.4.3 to v3.5.11 by @jreynard-code in #814
• Use gradle task to validate openapi by @sjoubert in #766
• Update detekt version to 1.23.6 and remove workaround by @sjoubert in #773
• [PROD-13427][PROD-13433] Update k8s client to 21.0.0 by @sjoubert in #736
• Fix CVE-2024-37902 269c85f
• Fix CVE-2023-5685 6a01168
• Fix CVE-2024-6162 7ff465e

Documentation

• Merge helm_documentation into main by @github-actions in :
  • #810
  • #802
  • #799
  • #798
  • #787
  • #751
  • #740
  • #726
  • #724
• Explicitly document that page index start at 0 by @sjoubert in
• Improve spring-doc/swagger-ui configuration by @sjoubert in #765
• Local k8s config readme by @sjoubert in #746
• Add missing doc files by @sjoubert in #710

Github Actions

• GitHub Actions: Bump aquasecurity/trivy-action from 0.20.0 to 0.28.0 by @dependabot in #817
• GitHub Actions: Bump gradle/actions from 3 to 4 by @dependabot in #785
• Update Gradle GitHub Actions by @sjoubert in #767
• GitHub Actions: Bump actions/setup-java from 3 to 4 by @dependabot in #650
• GitHub Actions: Bump actions/upload-artifact from 3 to 4 by @dependabot in #648
• GitHub Actions: Bump azure/setup-helm from 3.4 to 3.5 by @dependabot in #412
• GitHub Actions: Bump Azure/login from 1 to 2 by @dependabot in #646
• GitHub Actions: Bump Azure/aks-set-context from 3.2 to 4 by @dependabot in #682
• GitHub Actions: Bump github/codeql-action from 2 to 3 by @dependabot in #649
• GitHub Actions: Bump docker/login-action from 2.1.0 to 3.3.0 by @dependabot in #768
• GitHub Actions: Bump stackrox/kube-linter-action from 1.0.4 to 1.0.5 by @dependabot in #651
• Upgrade Gradle to 8.8 by @sjoubert in #739

Full Changelog: 3.2.1...4.1.0-onprem