9.3.3

Release Notes

For: uc-cdis/fence

Notes since tag: 9.3.2

Notes to tag/commit: 9.3.3

Generated: 2023-12-07

Bug Fixes

• Fixes issue with usersync and MFA policy management in cases where a user
  has not been persisted by Fence. (#1125)

Improvements

• Add a new log that includes data information per signed URL generation
  which includes the size, bucket used, authz, acl, and requesting user
  (#1124)

9.3.2

Release Notes

For: uc-cdis/fence

Notes since tag: 9.3.1

Notes to tag/commit: 9.3.2

Generated: 2023-11-17

Bug Fixes

• Fixes issue where users not present in arborist would have blank resources
  and authz fields when they should have values for open access data within
  the commons. (#1122)

9.3.1

Release Notes

For: uc-cdis/fence

Notes since tag: 9.3.0

Notes to tag/commit: 9.3.1

Generated: 2023-10-05

Improvements

• Downloads through GA4GH DRS are recorded in audit service (#1117)

9.3.0

Release Notes

For: uc-cdis/fence

Notes since tag: 9.2.0

Notes to tag/commit: 9.3.0

Generated: 2023-08-25

New Features

• Enables support for identifying when users have authenticated with MFA.
  (#1106)

Dependency Updates

• temporarily override authlib install with a forked version with a security
  patch (#1110)

Deployment Changes

• Deployment changes to enable this feature for commons are described here
  https://github.com/uc-cdis/fence/blob/e36f6574ade17bb8c9c0c9df8801f9a59de423b1/docs/fence_multifactor_authentication_guide.md
  (#1106)

9.2.0

Release Notes

For: uc-cdis/fence

Notes since tag: 9.1.4

Notes to tag/commit: 9.2.0

Generated: 2023-08-01

New Features

• Usersync now supports parent/child study authorizations from dbGaP,
  granting user access to child studies when they're given access to parent
  studies. fence-config.yaml should have its dbGaP config updated to include
  the parent_to_child_studies_mapping property to define known parent to
  child relationships in dbGaP. (#1102)

Improvements

• Enable client-credentials on /download/{guid} and
  /ga4gh/drs/v1/objects/{guid}/access/{access_id} endpoints (#1104)

Dependency Updates

• Cryptography minimum version changed to 41.0.2 from 3.5. Support for
  OpenSSL <1.1.1d has been removed, support for LibreSSL <3.6 dropped. See
  https://cryptography.io/en/latest/changelog/#v41-0-0 for more information.
  (#1102)

Deployment Changes

• Update fence-config.yaml to include parent_to_child_studies_mapping to
  define parent/child relationships within the dbGaP block of the config.
  (#1102)

9.1.4

Release Notes

For: uc-cdis/fence

Notes since tag: 9.1.3

Notes to tag/commit: 9.1.4

Generated: 2023-06-22

Bug Fixes

• Fix usersync issue where arborist would not receive updates when Google
  update errors occur. (#1105)

9.1.3

Release Notes

For: uc-cdis/fence

Notes since tag: 9.1.2

Notes to tag/commit: 9.1.3

Generated: 2023-05-31

Improvements

• Switching the and with , in user scope description by @nss10 in #1101

Full Changelog: 9.1.2...9.1.3

9.1.2

Release Notes

For: uc-cdis/fence

Notes since tag: 9.1.1

Notes to tag/commit: 9.1.2

Generated: 2023-05-25

Bug Fixes

• Fixes issue where get/add/remove members for google groups weren't working.
  (#1100)

9.1.1

Release Notes

For: uc-cdis/fence

Notes since tag: 9.1.0

Notes to tag/commit: 9.1.1

Generated: 2023-05-18

Bug Fixes

• Usersync no longer prematurely ends when encountering google errors.
  (#1097)

9.1.0

Release Notes

For: uc-cdis/fence

Notes since tag: 9.0.0

Notes to tag/commit: 9.1.0

Generated: 2023-05-17

Improvements

• More robust CSV parsing in usersync (#1098)
• Adds backoff for the give_service_account_billing_access calls (#1095)
• Fix SQLAlchemyDriver warning when running fence-create commands (#1096)

New Features

• Add new endpoint, /data/buckets, that exposes bucket-region mapping from
  the fence-config (#1083)