Skip to content

v0.11.0-alpha.0

Pre-release
Pre-release
Compare
Choose a tag to compare
@ory-bot ory-bot released this 23 Feb 17:10
· 226 commits to master since this release

This release includes a ton of bugfixes, especially around the Ory Permission Language and language parser.

Also, we started a greater effort to drastically improve latency, currently by introducing an experimental strict mode that reduces the number of SQL queries performed during checks. This is experimental to allow adjusting its behavior in a breaking manner, but it is ready for production usage. Do expect a non-stable behavior over the next releases. Any breaking behavior will be properly documented.
Further, we also optimized some of the non-strict queries.

Bug Fixes

  • Allow comments in more places in OPL (#1117) (5f89fcf), closes #1116

  • Do not insert UUID mappings on readonly APIs (#1190) (a86db70):

    Endpoints that do not mutate the database (such as list
    or check) now use a read-only version of the UUID mapper
    that does not write the mapping to the database (as all
    relevant mapping information is already mapped).

  • Docs broken links (#1254) (e646380):

    • fix: docs broken links

    • fix: edit proto files to fix links

  • More robust parser (d38e006)

  • More robust query counting (#1218) (4503a74)

  • Only type-check if there are no parser errors (b4bef07):

    Type checks are not particularly useful on partially parsed input.

  • Panic with unknown subject set during expand (#1139) (1f3c568)

  • Properly lex imports in OPL (#1041) (26944e9)

  • Race condition (05ec2da)

  • Race condition in setup (#1107) (07dfce7)

  • Recover from panics in gRPC server (#1149) (3e38d13):

    Panics in the gRPC server now result in codes.Internal being returned, instead of killing the server.

  • Relative file URL parsing (#1145) (03cac63)

  • Relax OPL parsing (#1059) (a15c5ad):

    • Allow semicolons in more places
    • Allow commas in more places
  • Tiny stuff (#1211) (719a7d5):

    • fix: tracing in persistence.sql.TraverseSubjectSetRewrite

    • fix: incorrect HTTP return code

  • Trace SQL in TraverseSubjectSetExpansion (#1242) (8968451)

  • Tune error message (b51d215)

  • Use resilient HTTP client (e431978)

  • Validate subjects before mapping (#1039) (71b30c4)

Code Generation

  • Pin v0.11.0-alpha.0 release commit (7f1f580)

Code Refactoring

Documentation

  • Add getting started guide to readme (#1094) (e3b88d2)

  • Adds JSDoc to the npm package '@ory/keto-namespace-types' (#1136) (b582375)

  • Allow $schema key in config.schema.json (#1083) (333af27)

  • Fix invalid link (#1072) (2686e98)

  • Fix quickstart up.sh (#1158) (30a74c6):

    Added --insecure-disable-transport-security flag to all client commands.

  • Improve rewrites example (d809c76)

  • Standardize license headers (#1061) (6c0e1ba)

  • Update README content and links (#1043) (7aacf0d)

Features

  • Add API to list namespaces (a8d8767)

  • Add libfuzzer for parser (05c9a01)

  • Add option to add custom health checks (#1225) (3399f60)

  • Allow loading OPL configs from base64 URLs (640abc1)

  • Allow permits referencing permits (c4d84f6):

    You can now use this.permits.<permission>(ctx) to reference another
    permission in a permission declaration.

    Example:

    comment: (ctx: Context) => this.permits.read(ctx)
    
  • Allow quoting object keys in OPL (081d834)

  • Allow setting the authority header in the CLI (17f10ef)

  • Emit events through tracing (#1244) (70dd8be)

  • Expose function to generate OPL (#1057) (b80a230)

  • Expose OPL syntax check API (57ff639)

  • Faster SQL queries for checks and strict check mode (#1171) (8e07890):

    With this change we introduce an experimental strict mode that drastically reduces the number of SQL queries performed during checks. This is experimental to allow adjusting its behavior in a breaking manner, but it is ready for production usage.
    Also some of the non-strict queries are optimized.

  • Handle HTTP config locations (6571bae)

  • Improve tracing (#1169) (64dc85e)

  • Rename to Ory Network (#1081) (3fe1d68)

  • Return bad request on DELETE body (#1219) (195182c)

  • Support Array<> syntax in type decl (#1152) (c4c456b):

    You can now use Array<T> as an alternative to T[] when declaring
    types for relations in the Ory Permission Language.

  • Support semicolons in types (#1151) (a06eda7), closes #1135

Tests

Unclassified

Changelog

  • 137fe6b ci: authenticate nancy action (#1239)
  • 5b239e5 autogen(docs): generate and bump docs
  • 837093b autogen(docs): regenerate and update changelog
  • 8f5134c autogen(docs): regenerate and update changelog
  • 0118850 autogen(docs): regenerate and update changelog
  • 026fc87 autogen(docs): regenerate and update changelog
  • c1f45e3 autogen(docs): regenerate and update changelog
  • 2e8d633 autogen(docs): regenerate and update changelog
  • ce1caaf autogen(docs): regenerate and update changelog
  • ef73f05 autogen(docs): regenerate and update changelog
  • a03225c autogen(docs): regenerate and update changelog
  • 85e1182 autogen(docs): regenerate and update changelog
  • 9bc7522 autogen(docs): regenerate and update changelog
  • a39325c autogen(docs): regenerate and update changelog
  • 0bf0d53 autogen(docs): regenerate and update changelog
  • 69ef50a autogen(docs): regenerate and update changelog
  • 9215c06 autogen(docs): regenerate and update changelog
  • a2a3912 autogen(docs): regenerate and update changelog
  • d248c96 autogen(docs): regenerate and update changelog
  • 89bd276 autogen(docs): regenerate and update changelog
  • 3d259e7 autogen(docs): regenerate and update changelog
  • 4dfd5a4 autogen(docs): regenerate and update changelog
  • 305f10b autogen(docs): regenerate and update changelog
  • f6bcd1b autogen(docs): regenerate and update changelog
  • b31e744 autogen(docs): regenerate and update changelog
  • d98142d autogen(docs): regenerate and update changelog
  • a0da6d6 autogen(docs): regenerate and update changelog
  • d4e5eb8 autogen(docs): regenerate and update changelog
  • 21c2847 autogen(docs): regenerate and update changelog
  • 2e19042 autogen(docs): regenerate and update changelog
  • 971c43b autogen(docs): regenerate and update changelog
  • b0a6f9d autogen(docs): regenerate and update changelog
  • 3ada1b0 autogen(docs): regenerate and update changelog
  • 8aef051 autogen(docs): regenerate and update changelog
  • 5abb188 autogen(docs): regenerate and update changelog
  • b82f0d2 autogen(docs): regenerate and update changelog
  • 8fdb135 autogen(docs): regenerate and update changelog
  • ce92728 autogen(openapi): regenerate swagger spec and internal client
  • d8d0797 autogen: add v0.10.0-alpha.0 to version.schema.json
  • 7f1f580 autogen: pin v0.11.0-alpha.0 release commit
  • 3fb1ca5 autogen: pin v0.11.0-alpha.0.pre.1 release commit
  • bd296cc chore(deps): bump @grpc/grpc-js from 1.7.3 to 1.8.5 in /proto (#1202)
  • 28fb184 chore(deps): bump @grpc/grpc-js from 1.8.5 to 1.8.8 in /proto (#1234)
  • 45bad27 chore(deps): bump @grpc/grpc-js from 1.8.8 to 1.8.9 in /proto (#1245)
  • 4420fad chore(deps): bump @grpc/grpc-js from 1.8.9 to 1.8.10 in /proto (#1252)
  • 51c89c8 chore(deps): bump alpine from 3.16.2 to 3.17.2 in /.docker (#1236)
  • 2d2b6d6 chore(deps): bump docker image alpine to 3.16.2 (#1101)
  • ca8e5b6 chore(deps): bump github.com/containerd/containerd in /.bin (#1177)
  • 0059efc chore(deps): bump github.com/ory/x from 0.0.473 to 0.0.487 (#1067)
  • 9f143c0 chore(deps): bump github.com/ory/x from 0.0.496 to 0.0.502 (#1102)
  • 4b7a84c chore(deps): bump github.com/ory/x from 0.0.540 to 0.0.541 (#1253)
  • 6030362 chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp (#1232)
  • 2410440 chore(deps): bump go.uber.org/goleak from 1.2.0 to 1.2.1 (#1240)
  • 59777cc chore(deps): bump golang in /.docker (#1103)
  • 878c91f chore(deps): bump golang in /.docker (#1243)
  • 6ba711b chore(deps): bump golang.org/x/oauth2 from 0.4.0 to 0.5.0 (#1241)
  • d24ef6e chore(deps): bump google.golang.org/grpc from 1.52.3 to 1.53.0 (#1226)
  • 33b986c chore(deps): bump grpc-tools from 1.11.3 to 1.12.4 (#1221)
  • d50ce26 chore(deps): bump grpc_tools_node_protoc_ts from 5.3.2 to 5.3.3 (#1223)
  • c2fe62b chore(deps-dev): bump prettier from 2.7.1 to 2.8.4 (#1233)
  • 94f6b22 chore: add initial seeds for fuzzer
  • c24931f chore: address review comments
  • 2425599 chore: address review comments
  • f4eb903 chore: bump all deps
  • 1379dde chore: bump dependencies (#1251)
  • dc88e6c chore: bump deps (#1090)
  • cbbb91e chore: bump deps (#1222)
  • 695d512 chore: dev dependency and tooling upgrades (#1097)
  • b80c42b chore: expose check command (#1058)
  • 6a14010 chore: fix dev dependency installing
  • 3724528 chore: fix format
  • 1153a15 chore: fix package-lock.json (#1104)
  • 5fd186d chore: format (new year) (#1172)
  • 423647a chore: improve CLI error messages (#1132)
  • c2a0ab3 chore: install dev dependencies using custom scripts (#1071)
  • 6409926 chore: license checker (#1098)
  • fbbff0a chore: list contributors in file (#1118)
  • 5f6437c chore: mark fuzzer output as generated
  • cf1eb9d chore: remove format header (#1105)
  • 2c2a00f chore: remove protoc action (#1220)
  • ee34efb chore: remove unused file
  • 5d19a8f chore: update Ory CLI with breaking changes to the format task (#1111)
  • 2b03d6f chore: update repository templates to ory/meta@23d918a
  • 31e323a chore: update repository templates to ory/meta@4a68ca0
  • 642f674 chore: update repository templates to ory/meta@6ab5ce6
  • 596259d chore: update repository templates to ory/meta@6be34ae
  • 8e10e4a chore: update repository templates to ory/meta@852a1ae
  • 88c0782 chore: update repository templates to ory/meta@a1264fa
  • 5036ec2 chore: update repository templates to ory/meta@a2fba7e
  • 8a0404b chore: update repository templates to ory/meta@b41b1ee
  • b58fcb5 chore: update repository templates to ory/meta@d3f8710
  • 5d6c0e4 chore: update repository templates to ory/meta@ea86906
  • d8fe24d chore: use new generic pointerx
  • 9d3a0d4 ci: move git config to the right context
  • 6152bd6 ci: properly update proto reference in docs
  • 2e4109b ci: run checks in merge queues (#1237)
  • 7c24134 ci: set git user and email (#1109)
  • e3b88d2 docs: add getting started guide to readme (#1094)
  • b582375 docs: adds JSDoc to the npm package '@ory/keto-namespace-types' (#1136)
  • 333af27 docs: allow $schema key in config.schema.json (#1083)
  • 2686e98 docs: fix invalid link (#1072)
  • 30a74c6 docs: fix quickstart up.sh (#1158)
  • d809c76 docs: improve rewrites example
  • 6c0e1ba docs: standardize license headers (#1061)
  • 7aacf0d docs: update README content and links (#1043)
  • a8d8767 feat: add API to list namespaces
  • 05c9a01 feat: add libfuzzer for parser
  • 3399f60 feat: add option to add custom health checks (#1225)
  • 640abc1 feat: allow loading OPL configs from base64 URLs
  • c4d84f6 feat: allow permits referencing permits
  • 081d834 feat: allow quoting object keys in OPL
  • 17f10ef feat: allow setting the authority header in the CLI
  • 70dd8be feat: emit events through tracing (#1244)
  • 57ff639 feat: expose OPL syntax check API
  • b80a230 feat: expose function to generate OPL (#1057)
  • 8e07890 feat: faster SQL queries for checks and strict check mode (#1171)
  • 6571bae feat: handle HTTP config locations
  • 64dc85e feat: improve tracing (#1169)
  • 3fe1d68 feat: rename to Ory Network (#1081)
  • 195182c feat: return bad request on DELETE body (#1219)
  • c4c456b feat: support Array<> syntax in type decl (#1152)
  • a06eda7 feat: support semicolons in types (#1151)
  • 5f89fcf fix: allow comments in more places in OPL (#1117)
  • a86db70 fix: do not insert UUID mappings on readonly APIs (#1190)
  • e646380 fix: docs broken links (#1254)
  • d38e006 fix: more robust parser
  • 4503a74 fix: more robust query counting (#1218)
  • b4bef07 fix: only type-check if there are no parser errors
  • 1f3c568 fix: panic with unknown subject set during expand (#1139)
  • 26944e9 fix: properly lex imports in OPL (#1041)
  • 05ec2da fix: race condition
  • 07dfce7 fix: race condition in setup (#1107)
  • 3e38d13 fix: recover from panics in gRPC server (#1149)
  • 03cac63 fix: relative file URL parsing (#1145)
  • a15c5ad fix: relax OPL parsing (#1059)
  • 719a7d5 fix: tiny stuff (#1211)
  • 8968451 fix: trace SQL in TraverseSubjectSetExpansion (#1242)
  • b51d215 fix: tune error message
  • e431978 fix: use resilient HTTP client
  • 71b30c4 fix: validate subjects before mapping (#1039)
  • ffc3ab7 refactor: move SDK naming to v1 (#1138)
  • 775b065 test: add benchmark for UUID mapper (#1200)

Artifacts can be verified with cosign using this public key.