<div dir="ltr">Nice !</div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, May 24, 2016 at 10:56 AM, Thomas Segismont <span dir="ltr"><<a href="mailto:tsegismo@redhat.com" target="_blank">tsegismo@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Congratulations guys!<br></div><div class="gmail_extra"><div><div class="h5"><br><div class="gmail_quote">2016-05-24 10:55 GMT+02:00 Lukas Krejci <span dir="ltr"><<a href="mailto:lkrejci@redhat.com" target="_blank">lkrejci@redhat.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi all,<br>
<br>
I'm happy to announce the release of Hawkular Inventory 0.16.0.Final.<br>
<br>
The most important change in this release is the alignment of authorization<br>
and tenant selection with the rest of the Hawkular components.<br>
<br>
>From now on, Inventory no longer depends on Keycloak for authentication and<br>
instead is using JAAS. Any authenticated user is allowed to do anything by<br>
default.<br>
<br>
The tenant is no longer deduced from the authenticated user but is selected<br>
using the Hawkular-Tenant header (which is therefore required in every request<br>
to inventory).<br>
<br>
This moves inventory more into a role of a "backend service" which delegates<br>
more granular authentication and authorization to the application layer above<br>
inventory.<br>
<br>
That said, the authorization logic has been factored out and made pluggable<br>
and a mechanism to check per-entity CRUD privileges is still in place. We just<br>
swapped the default implementation for a "permissive" one and changed the way<br>
we figure out the tenant.<br>
<br>
Apart from this big change, the following enhancements and fixes have been<br>
included in the release:<br>
<br>
* all internal properties, stored as "__foo" in the backend, are now available<br>
for filtering as "foo".<br>
* SwitchElementType filter has been "promoted" to the API so that it is usable<br>
by the API clients.<br>
* Hawkular Commons dependency has been updated to 0.7.2.Final<br>
<br>
In 0.17.0.Final we will introduce a new REST API and will deprecate the<br>
current one (most probably by moving it to /hawkular/inventory/deprecated).<br>
This work is well underway but unfortunately didn't make it for 0.16.0.Final.<br>
<br>
Huge thanks go out to Peter Palaga who did all the security related changes in<br>
this release and Jirka Kremser who provided the generic mapping of internal<br>
properties.<br>
<span><font color="#888888"><br>
--<br>
Lukas Krejci<br>
_______________________________________________<br>
hawkular-dev mailing list<br>
<a href="mailto:hawkular-dev@lists.jboss.org" target="_blank">hawkular-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/hawkular-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/hawkular-dev</a><br>
</font></span></blockquote></div><br><br clear="all"><br></div></div><span class="HOEnZb"><font color="#888888">-- <br><div><div dir="ltr"><div>Thomas Segismont<br></div>JBoss ON Engineering Team<br></div></div>
</font></span></div>
<br>_______________________________________________<br>
hawkular-dev mailing list<br>
<a href="mailto:hawkular-dev@lists.jboss.org">hawkular-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/hawkular-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/hawkular-dev</a><br>
<br></blockquote></div><br></div>