The names of the token-related permissions have changed as described below. When deploying relengapi-2.0.0, any existing configuration should be updated simultaneously to use the new names.
base.tokens.issue has become
base.tokens.view has become
base.tokens.revoke has become
auth_tokens table has acquired three new columns, which should be added to the database before or during the update.
task_id column is no longer nullable.
Previous versions of RelengAPI mistakenly expected a header named
Authentication instead of the standard
In this version of RelengAPI, both are accepted, but clients should switch to use the correct, standard header.
Authentication will be dropped in relengapi-3.0.0
Add token types usr, prm, and tmp. (#175, #186, #201)
Add S3 support (#183)
Fix IntegrityError in
Reset DB sessions between Celery tasks, so a failed transaction does not poison the next task (#193, #200)
Accept the standard "Authorization" header for authentication, keeping backward compatibility with the existing "Authentication" header (#192)
UI improvements to the token interface (#175, #199)
Prohibit open redirects in the login process (#187)
Support using Python logging in Celery tasks (#205)