Current Series Release Notes¶

0.0.0¶

Development mode has been added to Deckhand, allowing for the possibility of running Deckhand without Keystone. A new paste file has been added to etc/deckhand called noauth-paste.ini which excludes Keystone authentication. To run Deckhand in development mode, set development_mode as True in deckhand.conf. Note that Deckhand will expect to find noauth-paste.ini on the host with development_mode set as True in etc/deckhand/deckhand.conf.sample.

Adds a new endpoint to the Deckhand Validations API, GET /api/v1.0/{revision_id}/validations/detail, which allows for the possibility of listing all validations for a revision with details. The response body includes all details returned by retrieving validation details for a specific validation entry.

The oslo.policy framework has been integrated into Deckhand. All currently supported endpoints are covered by RBAC enforcement. All default policy rules are admin-only by default. The defaults can be overridden via a custom policy.yaml file.

Deckhand now supports secret substitution for documents. The endpoint GET revisions/{revision_id}/rendered-documents has been added to Deckhand, which allows the possibility of listing fully substituted documents. Only documents with metadata.substitutions field undergo secret substitution dynamically.

Deckhand will no longer throw an AttributeError after a yaml.scanner.ScannerError is raised when attempting to parse a malformed YAML document. Deckhand should now correctly raise a “400 Bad Request” instead.

Deckhand will allow only one document with the schema LayeringPolicy to exist in the system at a time. To update the existing layering policy, the layerign policy with the same name as the existing one should be passed in. To create a new layering policy, delete the existing one first.