0.4.3

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.4.2

Notes to tag/commit: 8fc1f10

Generated: 2023-07-13

Improvements

• WTS now fetches aggregate response from unconnected commons by making a request without an access token.(previously they were skipped) (#61)

Closing sessions

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.4.1

Notes to tag/commit: 0.4.2

Generated: 2023-05-22

Bug Fixes

• Manually release unneeded db session to free up connection pool to prevent
  crashes (#57)

Improvements

• Close the session in the health check endpoint (#60)
• use GH action to build and push images (#48)

increase sqlalchemy queue pool

Release Notes

For: uc-cdis/workspace-token-service
Notes since tag: 0.4.0
Notes to tag/commit: 103dfb8
Generated: 2022-09-27

Improvements

• double default pool and overflow for SQLAlchemy engine to allow for more
  concurrency (#47)

Aggregate Endpoint

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.3.2

Notes to tag/commit: 0.4.0

Generated: 2022-08-16

New Features

• Add /aggregate/{endpoint} which calls endpoint on each linked commons
  and returns an aggregated response to the end user (#36)
• updating base image to update outdated lets encrypt certificates (#37)

Improvements

• Replaced pipenv with poetry (#36)
• Upgraded to Python 3.9 (Async Flask functionality requires Python >= 3.7)
  (#36)

Dependency Updates

• upgrade Python to 3.9 (#36)
• upgrade Flask to 2.1.3 (#36)
• upgrade pyyaml to 5.4.1 (#36)
• Update to authutils: 5.0.5 (#39)

Bug Fixes

• Docker builds (#43)
• Fix the encryption of refresh tokens in the DB (#40)

Deployment Changes

• This version of WTS requires a DB migration (in cloud-automation
  deployments, the DB should be migrated automatically) (#40)

Prevent Infinite Access Tokens

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.3.1

Notes to tag/commit: 3f58479

Generated: 2021-07-16

Bug Fixes

• Do not allow a user to indefinitely generate access tokens via the /token
  endpoint (#35)
• Fix image build failures caused by the absence of g++ (#29)

New Features

• Enable authentication with access token for GET /token endpoint (#31)

Improvements

• add optional redirect_uri property in idp config to support centralized
  authorization redirect (#23)
• bump to latest authlib and related dependencies (#23)
• add pre-commit-config (#23)

Dependency Updates

• pin cryptography 2.8 b/c of known bug with 2.9 (#22)

WTS DB migration code fix

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.3.0

Notes to tag/commit: 0.3.1

Generated: 2020-03-23

Improvements

• Add initial state migration so that Alembic can be used to create a new WTS
  DB (#20)

Multi-Commons workspace

Release Notes

For: uc-cdis/workspace-token-service

Notes since tag: 0.2.0

Notes to tag/commit: 0.3.0

Generated: 2020-03-20

New Features

• WTS can now store refresh tokens for multiple Fence IDPs. Add "idp"
  parameter to most endpoints to allow specifying which IDP to interact with
  (#19)
• Add "/external_oidc" endpoint that lists the configured identity providers
  (#19)
• DB migration setup with alembic + first migration to add
  "refresh_token.idp" column (#19)

Improvements

• Add "Export to workspace" diagram to the documentation (#19)
• Add unit tests (#19)
• Add Swagger documentation (#17)

Dependency Updates

• Authlib to 0.11, authutils pinned to 4.0.0 (#19)

0.2.0

chore(vulnerabilities): urllib3 and Jinja2 (#15)

still under development release

Merge pull request #11 from uc-cdis/fix/exp

fix(exp): get exp from refresh token