tea-release.2.0.2: Python version update to 3.10

What's Changed

• Use aws_s3_object instead of aws_s3_bucket_object by @gjclark in #821
• Update Dependencies by @reweeden in #839
• Update RAIN API core and open telemetry by @gjclark in #843
• PR-6096: Upgrade to Python 3.10 by @gjclark in #842

New Contributors

• @gjclark made their first contribution in #821

Full Changelog: tea-release.2.0.1...tea-release.2.0.2

tea-release.2.0.1

This release adds the required DAR tag to the code bucket created by the terraform module as well as regular dependency updates.

What's Changed

• PR-5848 Add DAR tag to terraform module by @reweeden in #814
• Improve tea-cli help text by @reweeden in #816
• Update dependencies by @reweeden in #820

Full Changelog: tea-release.2.0.0...tea-release.2.0.1

tea-release.2.0.0

Breaking Changes

• The /locate endpoint now requires the full bucket name to be provided in the bucket_name query parameter.
  Previously it expected only the trailing part of the bucket name with the BUCKET_NAME_PREFIX stripped off

Backwards Compatible Changes

• Added CORS preflight OPTIONS request.
  Some cross origin requests were failing when using certain libraries that send CORS preflight requests
• Added A-api-request-uuid for metrics NGAP-11057

What's Changed

• Update dependencies by @reweeden in #774
• Allow floating points for session TTL by @reweeden in #776
• Fix docs build by @reweeden in #778
• PR-5069 Refactor locate endpoint by @reweeden in #777
• PR-5727 Update dependencies by @reweeden in #797
• Add workflow_dispatch trigger to e2e tests workflow by @reweeden in #804
• Fix locate endpoint bucket name test by @reweeden in #802
• Standardize quotes and log calls by @reweeden in #805
• PR-5790 Add CORS preflight OPTIONS request by @reweeden in #803
• Chore: Update CodeCov Version to 4 by @mattp0 in #809
• Add support for A-api-request-uuid query parameter by @jeffersonwhite in #807
• Update dependencies by @reweeden in #810

New Contributors

• @jeffersonwhite made their first contribution in #807

Full Changelog: tea-release.1.3.5...tea-release.2.0.0

tea-release.1.3.5: Dependency updates

What's Changed

• Fix docs build by @reweeden in #778
• PR-5727 Update dependencies by @reweeden in #797

Full Changelog: tea-release.1.3.4...tea-release.1.3.5

tea-release.1.3.4: Session TTL bugfix

Fixes a bug where the SessionTTL parameter in the CloudFormation was no longer being respected and only the default of 7 day sessions was being used. Also includes regular dependency updates.

What's Changed

• PR-4061 Add TEA command line tool by @reweeden in #734
• Update isort config by @reweeden in #745
• Get session ttl from environment variable by @reweeden in #741
• PR-5371 Update all dependencies by @reweeden in #769
• Update dependencies by @reweeden in #774
• Allow floating points for session TTL by @reweeden in #776

Full Changelog: tea-release.1.3.3...tea-release.1.3.4

tea-release.1.3.3: Bugfix and dependency updates

Fixes a bug where trying to access objects with a : or other special characters in the name would result in an invalid signature causing S3 to return a 403 error. There was also some internal restructuring of the project layout and dependency updates.

What's Changed

• PR-3136 rename lambda folder by @reweeden in #531
• Use moto for tests by @reweeden in #708
• PR-4048 use devel as default branch by @reweeden in #710
• PR-4752 Fix issue with presigned URLs not working for keys with weird characters by @reweeden in #730

Full Changelog: tea-release.1.3.2...tea-release.1.3.3

tea-release.1.3.2: Fix userid being `None` for public data

This release fixes an issue introduced in v1.2.0 where the userid for metrics reporting was not being set for public data even if the user was logged in.

What's Changed

• Update docs by @reweeden in #698
• Fix userid none for public data by @reweeden in #700
• PR-4138 Remove Jenkins configuration by @reweeden in #704
• Refactor GitHub Actions by @reweeden in #705

Full Changelog: tea-release.1.3.1...tea-release.1.3.2

tea-release.1.3.1: Official S3 direct access support

With this release we are officially supporting S3 Direct access through TEA. This feature was experimentally implemented in v1.2.0 while we monitored its stability. This release also includes regular dependency updates.

Enabling S3 Direct Access Support (Optional)

For detailed information please refer to our docs page: https://tea-docs.asf.alaska.edu/s3access/

TEA now has the ability to hand out S3 direct access credentials through an /s3credentials endpoint. This is OFF by default and can be enabled via the CloudFormation parameter EnableS3CredentialsEndpoint, or if using the terraform module, the variable s3credentials_endpoint. Changes to this parameter can only take effect on the first stack update after switching to the new CloudFormation template (see technical limitations below for more info), so if you are attempting to enable it and it's not working, this may be why.

If you are considering turning on the S3 credentials endpoint and are making use of the granular prefix based permissions in TEA (rather than simple bucket level permissions) please read the compatibility section in our docs: https://tea-docs.asf.alaska.edu/configuration/#s3-direct-access-compatibility

Technical Limitations of CloudFormation

Due to some limitations of CloudFormation, this change will only take effect when the API gateway deployment is updated which typically only happens on initial deployment. To work around this, the name of the CloudFormation resource for the API gateway deployment will have a unique random number appended to it in each release. If you need to force an update more frequently than that, you will need to manually change the name of the 'EgressAPIdeployment' resource in your CloudFormation template before redeploying.

What's Changed

• Specify correct Content-Type for /profile by @yuvipanda in #681
• PR-3844 update dependencies by @reweeden in #695

New Contributors

• @yuvipanda made their first contribution in #681

Full Changelog: tea-release.1.3.0...tea-release.1.3.1

tea-release 1.3.0 S3 direct access changes

Adds support for bucket prefix permissions for s3 direct access and changes the credential endpoint response to use camel case keys.

What's Changed

• PR-3244 Policy permission fix and dependency update by @reweeden in #651
• GitHub Actions prereleases by @reweeden in #655
• Fixing CVE ReDoS by @mckadesorensen in #661
• Update configuration.md by @krobin10 in #663
• PR-3696 Change s3credential response to use camelCase keys by @reweeden in #668
• Pin ubuntu version in e2e github workflow by @reweeden in #669
• Update region in setup_jwt_cookie.sh by @mckadesorensen in #671

New Contributors

• @krobin10 made their first contribution in #663

Full Changelog: tea-release.1.2.0...tea-release.1.3.0

tea-release 1.2.0 S3 direct access support

This release adds an experimental option to enable deploying endpoints for S3 direct access. This feature is still under development so it is recommended to hold off on using this release at this time.

What's Changed

• PR-3244 Add s3 credentials endpoint by @reweeden in #643
• PR-3244 Use jinja2 for CloudFormation variables by @reweeden in #645
• PR-3244 S3 credential fix by @reweeden in #644
• Replace all references to api deployment by @reweeden in #647
• Fix GitHub actions deprecations by @reweeden in #648
• PR-3244 Add s3credentialsREADME endpoint by @reweeden in #650

Full Changelog: tea-release.1.1.1...tea-release.1.2.0