Changelog 19.5 KB
Newer Older
1
.. _Changelog:
2 3 4 5

Unified Changelog file for Synnefo versions >= 0.13
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

6 7
Since v0.13 most of the Synnefo components have been merged into a single
repository and have aligned versions.
8

9 10 11 12 13
v0.14next
=========

Released: UNRELEASED

14 15 16 17 18
Synnefo-wide
------------

* Integrate Pithos tests in continuous integration.

19 20 21 22 23 24 25 26 27
* Change astakosclient to accept AUTH_URL instead of BASE_URL
	ASTAKOS_BASE_URL settings has been removed from Pithos and Cyclades
	and has been replaced with ASTAKOS_AUTH_URL. Both Pithos and Cyclades
	proxy the Astakos services under ASTAKOS_PROXY_PREFIX path.
	ASTAKOS_PROXY_PREFIX by default has a value of '_astakos'.
	More specifically, Astakos' identity service is proxied under
	'_astakos/identity', Astakos' account service is under '_astakos/account'
	and Astakos' ui service is under '_astakos/ui'.

28 29 30 31 32 33 34
Astakos
-------

* Changes in project schema:

  * A Project entry is created when submitting an application for a new
    project, rather than on approval. Its state is dependent on the state
35 36
    of its `reference' application (current definition). Lock Project rather
    than Chain (the latter is semantically obsolete).
37

38 39 40 41
  * Project states "Active - Pending" and "Suspended - Pending" have been
    removed. In management command `project-list', the existence of a pending
    modification is indicated by a non-blank `Pending AppID'.

42
  * Improve recording of project, application, and membership actions.
43

44 45
* Implement API calls for projects.

46 47 48 49 50 51
* Store the base URL of a component. Deployer should provide it when adding
  a new component. Service endpoints originating from a component are
  expected to match its base URL; otherwise, a warning is issued.
  Re-registration with `snf-component-register' affects both the base and
  the ui URL.

52 53 54
* Remove API call GET /account/v1.0/authenticate in favor of
  POST /identity/v2.0/tokens.

55
* Management commands:
56 57
  * Introduced new commands:
     * component-show
58 59 60
  * Changed commands:
     * component-add got options --base-url and --ui-url

61 62 63
Cyclades
--------

Christos Stavrakakis's avatar
Christos Stavrakakis committed
64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80
* Implement Floating IP addresses, which are addresses that can be dynamically
  added and removed to a running server.

  * Implement the 'os-floating-ips' and 'os-floating-ip-pools' API extensions.
  * Implement 'snf-manage floating-ip-list' management command.
  * Add 'floating_ip_pool' attribute to networks. Such networks must exist to
    all Ganeti backends.

* Speed up server reconciliation, by performing parallel reconciliation for
  each backend.
* Implement IPv6 only networks.
* Implement 'resize' server action.

  * Implement the 'resize' server action, to change the flavor of a server.
  Only 'cpu' and 'memory' resizing is supported.

* Compute quotas for CPU and memory of running vms.
81
* Obsolete PUBLIC_USE_POOL setting, since Cyclades manages IP pool for all
Christos Stavrakakis's avatar
Christos Stavrakakis committed
82
  type of networks.
83
* Extend servers info API response with 'SNF:fqdn' attribute, and introduce
84
  CYCLADES_SERVERS_FQDN to set the template for servers FDQN.
85 86 87 88
* Extend servers info API response with 'SNF:port_forwarding' attribute,
  describing port fowarding rules (DNAT) that are applied to vms. The
  description of such rules is done via the new CYCLADES_PORT_FORWARDING
  setting.
89 90
* Change --dhcp option of network management commands from a flag to a boolean
  value, e.g. --dhcp=True
91 92 93
* Remove 'ARCHIPELAGO_BACKENDS' setting used to distinquish between backends
  that hosted only archipelago backends. Instead allocation is based on which
  disk-templates are enabled in each backend.
94
* Implement 'snf-manage server-remove' management command.
95 96 97 98 99 100 101
* Move reconciliation of IP pools from 'reconcile-networks' to
  'reconcile-pools'. The IP pool reconciliation does not reconcile the IP
  pools with Ganeti. Instead it checks if the pool is consistent with the
  IPs that are used by instances.
* Do not automatically release externally reserved IPs if they are released
  from a Ganeti backend. Management of externally reserved IPs must be
  performed from Cyclades with 'network-modify' command.
102

103 104 105 106 107 108 109
Pithos
------

* Refactor metadata schema (table attributes) in Pithos DB to speedup current
objects by domain attribute. This is used by Plankton for listing VM images.

* Enforce container-level atomicity in (most) Pithos API calls.
110

Christos Stavrakakis's avatar
Christos Stavrakakis committed
111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127
.. _Changelog-0.14.10:

v0.14.10
=======

Released: UNRELEASED

Cyclades
-------

* This is the first release to support Ganeti 2.8. Support for older versions
  of Ganeti is dropped.
* Use Ganeti opportunistic locking to achive parallelized instance creations
  in the same backend. Add setting 'GANETI_USE_OPPORTUNISTIC_LOCKING' to
  enable the use of this feature.
* Fix warning message while getting object permissions to appear only when
  path is None and the object has permissions
128

129 130 131 132 133
.. _Changelog-0.14.9:

v0.14.9
=======

134
Released: Mon Nov 11 12:13:31 EET 2013
135 136 137 138

* Astakos: Fix minor problems with logging in the Astakos module, which could
  lead to unexpected exceptions

Christos Stavrakakis's avatar
Christos Stavrakakis committed
139 140 141 142 143
.. _Changelog-0.14.8:

v0.14.8
=======

144
Released: Fri Nov  8 17:25:08 EET 2013
Christos Stavrakakis's avatar
Christos Stavrakakis committed
145 146 147 148

Synnefo-wide
------------

149 150
* This is the first release to support Debian Wheezy along with Squeeze. You
  can mix and match nodes freely.
151
* Update Django dependency to Django>=1.2,<1.5. Django 1.4.5 is available for
152
  Squeeze through squeeze-backports.
153 154
* Since this version, Synnefo ships an example Gunicorn configuration file
  that is automatically installed at ``/etc/gunicorn.d/synnefo.example``.
Christos Stavrakakis's avatar
Christos Stavrakakis committed
155 156 157 158 159 160 161

Cyclades
--------

* On VM creation, pass the hashmap of the image (pithosmap://) instead of the
  image URL (pithos://). Access to the Pithos DB by Ganeti nodes is no longer
  required.
162 163 164 165 166 167 168 169
* Workaround race between server creation and server deletion. This will be
  fixed properly by updating Ganeti to support the 'depends' attribute for
  OP_INSTANCE_REMOVE.

Astakos
-------

* For Shibboleth logins, store all attributes along with the user in the DB.
Christos Stavrakakis's avatar
Christos Stavrakakis committed
170

171 172 173 174 175 176 177 178 179 180 181 182
.. _Changelog-0.14.7:

v0.14.7
=======

Released: Wed Sep 18 17:50:12 EEST 2013

Cyclades
--------

* Fix bug in helpdesk view

183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208
.. _Changelog-0.14.6:

v0.14.6
=======

Released: Wed Sep 18 16:18:58 EEST 2013

Pithos
------

* Substitute the PITHOS_BACKEND_QUOTA setting with two
  distinct settings: PITHOS_BACKEND_ACCOUNT_QUOTA &
  PITHOS_BACKEND_CONTAINER_QUOTA
* Set PITHOS_BACKEND_CONTAINER_QUOTA default value to 0 (unlimited)
* Fix bug that resulted in DB deadlocks.

Cyclades
--------

* Fix bug in snf-dispatcher that resulted in servers to be deleted from the
  DB even if the corresponding Ganeti job failed.

Branding
--------

* Add new BRANDING_FOOTER_EXTRA_MESSAGE setting.
209

210

211 212 213 214 215 216 217 218 219 220 221 222 223 224 225
.. _Changelog-0.14.5:

v0.14.5
=======

Released: Wed Aug  7 11:19:49 EEST 2013

Pithos
------

* Fix security issue with handling Pithos versions.


.. _Changelog-0.14.4:

226 227 228 229 230 231 232 233 234 235 236
v0.14.4
=======

Released: Mon Jul 29 12:24:22 EEST 2013

Pithos
------

* Fix bug in reconcile resources management command.


237 238 239 240 241
.. _Changelog-0.14.3:

v0.14.3
=======

242 243
Released: Thu Jul 25 12:22:47 EEST 2013

244 245 246 247 248
Synnefo-wide
------------

* Use the SYNNEFO_TRACE environmental variable to control whether the greenlet
  tracing code will get loaded or not.
Stratos Psomadakis's avatar
Stratos Psomadakis committed
249 250 251
* Split the HIDDEN_COOKIES setting in HIDDEN_HEADERS and HIDDEN_COOKIES, and
  add the MAIL_MAX_LEN setting, to limit the mail size for unhandled
  exceptions.
252 253


254 255
.. _Changelog-0.14.2:

256 257
Released: Fri Jul 12 13:13:32 EEST 2013

258 259 260 261 262 263 264 265
v0.14.2
=======

Cyclades
--------

* Add new setting PITHOS_BACKEND_POOL_SIZE, which configures the size
  of the pool of Pithos backends that are used by plankton.
266

267

268
.. _Changelog-0.14:
269

270 271
v0.14
=====
272

273
Released: Tue Jun 25 14:01:19 EEST 2013
274 275 276

Synnefo-wide
------------
277

278 279
* Create 'snf_django' Python package to hold common code for all Synnefo
  components.
280

281 282 283 284 285 286 287 288 289
* Create a JSON-exportable definition document for each Synnefo Components
  (Astakos, Cyclades, Pithos, etc.) that consolidates APIs (services),
  resources, and other standardized properties (e.g. default URL prefixes).

* Standardize URLs for Synnefo Components, impose structure and naming
  conventions to related settings. Make each component deployable under
  a user-configurable <COMPONENT>_BASE_URL. Each API (compute, image, etc.)
  is deployable under a developer-configurable prefix beneath BASE_URL.

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
290 291 292 293
* Deprecate CLOUDBAR_ACTIVE_SERVICE setting from all apps. 

* Common synnefo 404/500 templates (located in snf-webproject)

294 295
Astakos
-------
296

297
* Redesign of the accounting system (quotaholder) and integration into
298
  Astakos.
299 300 301 302 303 304 305 306 307 308 309 310

  * Simplified the quotaholder model; removed tables Entity and Policy; now
    table Holding contains limit and usage for every holding.
  * Extended table Holding, so that we can keep track of quota for every
    valid combination of holder (e.g. user), resource, and source (e.g. the
    default system or some specific project).
  * Refactored code for issuing and resolving commissions for robustness;
    added a 'force' option to bypass the upper limit check when issuing a
    commission.
  * Simplified syncing to the quotaholder; removed fields from models
    Project and ProjectMembership, previously needed for syncing; removed
    state PROJECT_DEACTIVATED from ProjectMembership.
311 312 313
  * Removed settings ASTAKOS_QUOTAHOLDER_URL, ASTAKOS_QUOTAHOLDER_TOKEN,
    and ASTAKOS_QUOTAHOLDER_POOLSIZE.

314 315 316 317 318 319
* API-related changes:

  * Implemented API calls for quota, resources, and commissions.
  * Moved all API calls under '/account/v1.0'.
  * Implemented the keystone API call POST /tokens under '/identity/v2.0'.

320 321
* Service and resource specification and handling:

322 323 324 325 326 327 328
  * Specified a format for defining services along with the API endpoints
    and the resources they expose. Migrated internal resource name by
    prefixing it with service name (e.g. 'vm' becomes 'cyclades.vm');
    renamed registered service 'pithos+' to 'pithos'.
  * Specified a procedure to register a Synnefo component, its services and
    their resources in astakos and set the resources' default base quota
    limit. Removed resource definitions from settings.
329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349
  * Moved service and resource presentation data out of the respective db
    models into a separate file of UI constants.

* Converted the limit on pending applications from a setting to a quotable
  resource. Converted the related user setting to a user-specific base quota
  limit. Deprecated model UserSetting; removed setting
  ASTAKOS_PENDING_APPLICATION_LIMIT.

* Changes in locking strategy:

  * Lock only project's chain for all project operations; lock user before
    syncing to quotaholder.
  * When locking multiple rows (e.g. users or holdings) include an ORDER BY
    clause in the query to impose ordering on locking.

* Changes in views:

  * Replaced custom transaction context with a simple decorator for managing
    transactions and a context 'ExceptionHandler', which logs and suppresses
    exceptions

350 351 352 353 354 355 356 357 358 359
* Added fine grain user auth provider's policies.

  * Administrator can override default auth provider policies to a specific 
    user or group of users.
  * Optionally a user can be assigned to a list of groups, based on the
    authentication method he choosed to signup.

* Removed explicit handling of SMTP errors on each email delivery. Exceptions 
  are now propagated to base django exception handler.

360 361 362 363
* Email used in html/email tempaltes which prompt user to contact for service 
  support prompts is now defined in ``CONTACT_EMAIL`` setting introduced in 
  snf-common settings.

364 365 366 367 368 369 370 371
* Improvements in user activation flow

  * User moderation now takes place after the user has verified his email
    address.
  * User model enriched with additional user state fields
  * Split activation email from moderation process. Administrator is required 
    to moderate user explicitly using the `user-modify --accept` or
    `user-modify --reject` commands.
372
  * Improved logging throught out user activation procedures.
373

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
374 375 376 377 378 379 380 381 382 383 384 385 386 387
* Remove deprecated AstakosUser model fields: `provider`,
  `third_party_identifier`

* Allow override of authentication provider messages using the following 
  format in setting names: ``ASTAKOS_<PROVIDER_MODULE>_<MSGID>_MSG``

* Cloudbar automatically tries to identify the active service based on window 
  location.

* Removing authentication provider view is now CSRF protected.

* New `API access` view, containing useful information to users on how to 
  access available Synnefo services API's.

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
388 389 390 391 392 393 394
* Remove of ASTAKOS_*_EMAIL_SUBJECT settings. All email subjects are now 
  defined in astakos.im.messages module. Overriding default values can be 
  achieved using custom gettext files or using astakos messages settings::
	
	#change of greeting email subject
  	ASTAKOS_GREETING_EMAIL_SUBJECT_MESSAGE = 'Welcome to my cloud'

395 396 397 398
* Remove ``ASTAKOS_ACTIVATION_REDIRECT_URL`` and ``ASTAKOS_LOGIN_SUCCESS_URL`` 
  from astakos .conf file. Settings are dynamically computed based on 
  ``ASTAKOS_BASE_URL``.

399 400
* Management commands:

401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419
  * Introduced new commands:
     * authpolicy-{add, list, remove, set, show}
     * group-{add, list}
     * component-{add, list, modify, remove}
     * reconcile-resources-astakos
     * resource-{export-astakos, import, modify}
     * service-{export-astakos, import, show}
  * Renamed commands:
     * astakos-quota to quota
     * user-update to user-modify
     * full-cleanup to cleanup-full
  * Removed commands:
     * astakos-init
     * invitation-{details, list}
     * project-sync
     * resource-{add, remove}
     * service-{add, remove, token-renew, update}
     * user-invite
     * user-set-initial-quota (integrated its functionality in user-modify and quota)
420 421
  * Added quota and project-related information in user-show command; added
    membership information in project-show.
422

423 424
Cyclades
--------
425

Christos Stavrakakis's avatar
Christos Stavrakakis committed
426 427 428
* Make 'type' attribute required for network create API request.
* Networks not created to all Ganeti backends upon creation, they are instead
  created to a backend only when a VM connects to the network.
429 430
* Add 'CYCLADES_ASTAKOSCLIENT_POOLSIZE' setting which tunes the size of the
  http connection pool to astakos.
431
* Remove 'CYCLADES_USER_CATALOG_URL' and 'CYCLADES_USER_FEEDBACK_URL' settings
432 433
* Remove CYCLADES_USE_QUOTAHOLDER, CYCLADES_QUOTAHOLDER_TOKEN,
  CYCLADES_QUOTAHOLDER_URL, CYCLADES_QUOTAHOLDER_POOLSIZE settings
434 435 436 437 438
* Rename 'cyclades-usage-verify' management command to
  'reconcile-resources-cyclades'. Also, remove 'cyclades-usage-reset' command,
  which is equivalent to 'reconcile-resources-cyclades --fix'.
* Rename 'cyclades-reconcile-commissions' management command to
  'reconcile-commissions-cyclades'.
439 440 441
* Remove obsolete 'MAX_VMS_PER_USER', 'MAX_NETWORKS_PER_USER',
  "VMS_USER_QUOTA" and "NETWORKS_USER_QUOTA" settings, since their usage
  is covered by Quotaholder.
442 443 444
* Remove obsolete setting 'API_ROOT_URL', since it is being covered by
  the use of CYCLADES_BASE_URL* Remove obsolete setting 'API_ROOT_URL', since
  it is being covered by 'CYCLADES_BASE_URL'.
445 446
* Remove obsolete settings GANETI_DISK_TEMPLATES and
  DEFAULT_GANETI_DISK_TEMPLATE
447

448 449
Cyclades helpdesk
-----------------
450

451 452 453 454
* Additional start/stop vm action
* Display extend backend info in vm's view
* Fixed IP lookup

455 456
Pithos
------
457

458 459
* Remove PITHOS_AUTHENTICATION_USERS setting, which was used to override
  astakos users.
460 461
* Remove 'PITHOS_USER_CATALOG_URL', 'PITHOS_USER_FEEDBACK_URL' and
  'PITHOS_USER_LOGIN_URL' settings.
462 463
* Remove PITHOS_USE_QUOTAHOLDER, PITHOS_QUOTAHOLDER_URL,
  PITHOS_QUOTAHOLDER_TOKEN and PITHOS_ASTAKOSCLIENT_POOLSIZE
464 465 466 467 468

Tools
-----


469 470 471 472 473
.. _Changelog-0.13:

v0.13
=====

474
Released: Wed Apr 10 18:52:50 EEST 2013
475

476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505
In v0.13 the code was very heavily refactored for increased uniformity since
most of the Synnefo components have been merged into a single repository. Thus,
**just for this version** we will not document a complete Changelog (features,
fixes, improvements, issues, setting changes), but rather just copy from the
`NEWS` file with minor additions wherever needed.

Synnefo-wide
------------

* Support for pooling throughout Synnefo

  * Pooled Django DB connections, Pithos backend connections, HTTP
    connections using single `objpool` package

* Improved management commands

  * Unified codebase for output of tables in JSON, CSV

* Bring most of Synnefo code inside a single, unified repository

  * support automatic Python and Debian package builds for individual commits
  * with automatic version generation

* Overhauling of Synnefo settings: renames and refactoring, for increased
  uniformity (in progress)
* Deployment: Standardize on gunicorn, with gevent-based workers
  and use of Green threads throughout Synnefo
* Documentation: New scale-out guide, with distinct node roles,
  for mass Synnefo deployments

506 507 508
Astakos
-------

509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530
* Support multiple authentication methods

  * Classic (username/password), Shibboleth, LDAP/Active Directory,
    Google, Twitter, LinkedIn
  * Users can enable/disable auth methods, and switch between them

* Introduce a UUID as a global identifier for users, throughout Synnefo

  * The UUID remains constant as the user enables/disables login methods

* Allow users to modify their email address freely
* Per-user, per-resource accounting mechanism (quotaholder)
* Full quota support, with per-user, per-resource quotas, based on quotaholder
* Projects: Users can create and join Projects

  * Projects grant extra resources to their members

* UI Enhancements for quotas and projects

  * distinct Usage tab, showing usage of individual resources
  * Project management UI
  * New Overview page
531

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
532 533 534 535 536 537 538 539 540
* refactored/improved /login endpoint used by desktop/mobile clients.
  * endpoint url is now exposed by `weblogin` service
  * clients should use unauthenticated identity/tokens api to resolve the 
    endpoint url
  * view only allows redirects to `pithos://` scheme urls
  * removed uuid from redirect parameters. Client should use authenticated 
    request to identity/tokens to retrieve user uuid.


541 542 543
Cyclades
--------

544 545 546 547 548 549 550 551 552 553 554 555 556 557
* Commission resources on quotaholder/Astakos
* Support mass creation of flavors
* Support for the ExtStorage disk template in Ganeti
* Query and report quotas in the UI
* Pass VM configuration parameters over a VM-side API (`vmapi`)

  * Do not pass sensitive data as Ganeti OS parameters
  * Keep sensitive data in memory caches (memcached) and
    never allow them to hit the disk

* Display additional backend information in helpdesk machines list
* Allow helpdesk users to search for an account using a known machine id
* Helpdesk actions are now logged using the synnefo's common login
  infrastructure
558

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
559 560 561 562 563 564 565 566
UI
^^
* Removed feedback endpoint. Feedback requests delegate to astakos feedback
  service. ``FEEDBACK_CONTACTS``, ``FEEDBACK_EMAIL_FROM`` settings removed, 
  and no longer used.
* ``UI_LOGIN_URL``, ``UI_GLANCE_URL``, ``COMPUTE_URL`` settings no longer 
  required to be set and are dynamically computed based on ``ASTAKOS_BASE_URL``
  and ``CYCLADES_BASE_URL`` settings.
Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
567 568
* File group is no longer included in ssh keys personality metadata sent in 
  create vm calls.
Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
569 570
  

571 572 573
Pithos
------

574
* Support storage of blocks on a RADOS backend, for Archipelago
575 576 577 578

  * new settings:
    PITHOS_RADOS_STORAGE, PITHOS_RADOS_POOL_BLOCKS, PITHOS_RADOS_POOL_MAPS

Kostas Papadimitriou's avatar
Kostas Papadimitriou committed
579 580 581
* X-Object-Public now contains full url (domain + proper component prefix + 
  file path)

582
* Rewritten support for public URLs, with admin-selectable length
583

584 585 586 587 588 589 590 591 592 593 594 595 596 597 598 599 600 601 602 603
  * new settings:
    PITHOS_PUBLIC_URL_SECURITY, PITHOS_PUBLIC_URL_ALPHABET

* Enable pithos backend to use external quotaholder component

  * new settings:
    PITHOS_USE_QUOTAHOLDER, PITHOS_QUOTAHOLDER_URL, PITHOS_QUOTAHOLDER_TOKEN,
    PITHOS_QUOTAHOLDER_POOLSIZE

* Moderated version debiting mechanism

  * new setting:
    PITHOS_BACKEND_FREE_VERSIONING

* Proxy Astakos user-visible services

  * new settings:
    PITHOS_PROXY_USER_SERVICES, PITHOS_USER_CATALOG_URL,
    PITHOS_USER_FEEDBACK_URL, PITHOS_USER_LOGIN_URL

604
Tools
605 606
-----

607
* Extend snf-burnin to include testing of Pithos functionality