Release Notes for CyberArk Conjur Service Broker for VMware Tanzu

These are release notes for CyberArk Conjur Service Broker for VMware Tanzu

v1.2.0

Release Date: August 7, 2020

Features in this release:

  • Improved service-broker validation and error handling

    • Service broker returns 404 when the org or space policy branches do not exist as expected with a helpful error message, rather than returning 500.
    • If a value is given to the CONJUR_POLICY environment variable, service-broker verifies that the given policy exists on the server, and provides a helpful error if it does not exist.
  • Expanded buildpack configuration capabilities

    • The runtime location for secrets.yml can now be configured by setting the SECRETS_YAML_PATH environment variable for the Cloud Foundry application.
    • Buildpack supply step now scans build directory for candidate secrets.yml files, and reports them to the buildpack deploy output during the supply phase. If unable to locate any secrets.yml files, it will exit.
  • The buildpack now properly reads only the Conjur credentials from VCAP_SERVICES. Previously, it
    could consume credentials for other services, if their field names exactly matched those used by Conjur (e.g. version is a very common field).

Known issues in this release: No known issues.

v1.1.1

Release Date: June 21, 2019

Features in this release:

  • Addresses a CVE in the version of the CF CLI that is included in the tile.

v1.1.0

Release Date: May 2, 2019

Features in this release:

  • Added space-scoped host identities
    VMware Tanzu operators now have the option to issue a shared Conjur identity for all applications in a space, or an identity for each application individually. Read more about this here.

v1.0.0

Release Date: March 7, 2019

Features in this release:

  • Simplified policy management and deployment:

    • Conjur Service Broker automatically creates policy branches in Conjur to mirror org and space structure in VMware Tanzu during the service instance provisioning.
    • Entitlements can be added to orgs and spaces.
    • Applications are auto-enrolled into org and space layers on bind.
  • Applications use Conjur followers to retrieve secrets for a improved scalability

  • Conjur Buildpack is updated to a supply buildpack to enable use of multi-buildpack functionality

Known issues in this release:

  • Conjur Buildpack does not currently support Java applications using Spring Boot 1.4+

v0.3.3

Release Date: June 26, 2018

Features included in this release:

  • Conjur Service Broker is updated to include vendored gem dependencies

Known issues in this release: No known issues.

v0.3.2

Release Date: May 8, 2018

Features included in this release:

  • Fixed issue with applying buildpack

Known issues in this release: No known issues.

v0.3.1

Release Date: May 1, 2018

Features included in this release:

  • Fixed issue with applying buildpack

Known issues in this release: Health check not running as expected on tile install. Credentials entered in tile config should be validated manually before using the tile.

v0.3.0

Release Date: April 27, 2018

Features included in this release:

  • Added support for host annotations in Conjur Service Broker
  • Improved performance of Conjur Buildpack

Known issues in this release: Buildpack installation does not function as expected. If you have installed this release, please re-upload the CyberArk Conjur Buildpack manually by following the instructions in the buildpack documentation, or upgrade to v0.3.1.

v0.2.1

Release Date: February 14, 2018

Features included in this release:

  • Added support for Conjur Enterprise (v4).
  • Added support for a VMware Tanzu-specific namespace.

Known issues in this release: No known issues.

v0.1.0

Release Date: January 31, 2018

Features included in this release:

  • Service Broker provides an interface between VMware Tanzu applications and an existing Conjur appliance.
  • Buildpack installs Summon tool.
  • Secrets defined to Summon in a secrets.yml file are obtained from Conjur and injected into the VMware Tanzu environment.
  • Initial Private Beta Release.

Known issues in this release: No known issues.