diff --git a/CHANGELOG.md b/CHANGELOG.md index 867a43e7fb..834921d9db 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,63 @@ +## Fleet 4.35.0 (Jul 31, 2023) + +* Combined the query and schedule features to provide a single interface for creating, scheduling, and tweaking queries at the global and team level. + +* Merged all functionality of the schedule page into the queries page. + +* Updated the save query modal to include scheduling-related fields. + +* Updated queries table schema to allow storing scheduling information and configuration in the queries table. + +* Users now able to manage scheduled queries using automations modal. + +* The `osquery/config` endpoint now includes scheduled queries for the host's team stored in the `queries` table. + +* Query editor now includes frequency and other advanced options. + +* Updated macOS MDM setup UI in Fleet UI. + +* Changed how team assignment works for the Puppet module, for more details see the [README](https://github.com/fleetdm/fleet/blob/main/ee/tools/puppet/fleetdm/README.md). + +* Allow the Puppet module to read different Fleet URL/token combinations for different environments. + +* Updated server logging for webhook requests to mask URL query values if the query param name includes "secret", "token", "key", "password". + +* Added support for Azure JWT tokens. + +* Set `DeferForceAtUserLoginMaxBypassAttempts` to `1` in the default FileVault profile installed by Fleet. + +* Added dark and light mode logo uploads and show the appropriate logo to the macOS MDM migration flow. + +* Added MSI installer deployement support through MS-MDM. + +* Added support for Windows MDM STS Auth Endpoint. + +* Added support for installing Fleetd after enrolling through Azure account. + +* Added support for MDM TOS endpoint. + +* Updated the "Platforms" column to the more explicit "Compatible with". + +* Improved delivery of Apple MDM profiles by not re-sending `InstallProfile` commands if a host switches teams but the profile contents are the same. + +* Improved error handling and messaging of SSO login during AEP(DEP) enrollments. + +* Improved the reporting of the Puppet module to only report as changed profiles that actually changed during a run. + +* Updated ingestion of host detail queries for MDM so hosts that report empty results are counted as "Off". + +* Upgraded Go version to v1.19.11. + +* If a policy was defined with an invalid query, the desktop endpoint now counts that policy as a failed policy. + +* Fixed issue where Orbit repeatedly tries to launch Nudge in the event of a launch error. + +* Fixed Observer + should be able to run any query by clicking create new query. + +* Fixed the styling of the initial setup flow. + +* Fixed URL used to check Gravatar network availability. + ## Fleet 4.34.1 (Jul 14, 2023) * Fixed Observer+ not being able to run some queries. diff --git a/changes/12480-puppet-module-changes b/changes/12480-puppet-module-changes deleted file mode 100644 index a9a7371b1a..0000000000 --- a/changes/12480-puppet-module-changes +++ /dev/null @@ -1 +0,0 @@ -* Improve the reporting of the puppet module to only report as changed profiles that actually changed during a run. diff --git a/changes/12481-profile-redelivery-v2 b/changes/12481-profile-redelivery-v2 deleted file mode 100644 index 84612e93c9..0000000000 --- a/changes/12481-profile-redelivery-v2 +++ /dev/null @@ -1 +0,0 @@ -* Improved delivery of Apple MDM profiles by not re-sending `InstallProfile` commands if a host switches teams but the profile contents are the same. diff --git a/changes/12532-puppet-module-team-assignment b/changes/12532-puppet-module-team-assignment deleted file mode 100644 index c3cb0564a8..0000000000 --- a/changes/12532-puppet-module-team-assignment +++ /dev/null @@ -1 +0,0 @@ -* Changed how team assignment works for the Puppet module, for more details see the [README](https://github.com/fleetdm/fleet/blob/main/ee/tools/puppet/fleetdm/README.md) diff --git a/changes/12570-mask-webhook-url-logs b/changes/12570-mask-webhook-url-logs deleted file mode 100644 index b86d5d399a..0000000000 --- a/changes/12570-mask-webhook-url-logs +++ /dev/null @@ -1 +0,0 @@ -- Updated server logging for webhook requests to mask URL query values if the query param name includes "secret", "token", "key", "password". diff --git a/changes/12608-force-fv b/changes/12608-force-fv deleted file mode 100644 index b0257ce47e..0000000000 --- a/changes/12608-force-fv +++ /dev/null @@ -1 +0,0 @@ -* Set `DeferForceAtUserLoginMaxBypassAttempts` to `1` in the default FileVault profile installed by Fleet. diff --git a/changes/12636-merge-schedule-into-queries b/changes/12636-merge-schedule-into-queries deleted file mode 100644 index bea20bbdda..0000000000 --- a/changes/12636-merge-schedule-into-queries +++ /dev/null @@ -1 +0,0 @@ -- Merged all functionality of the Schedule page into the Queries page diff --git a/changes/12644-include-scheduled-queries-in-getclientconfig b/changes/12644-include-scheduled-queries-in-getclientconfig deleted file mode 100644 index f572537098..0000000000 --- a/changes/12644-include-scheduled-queries-in-getclientconfig +++ /dev/null @@ -1,2 +0,0 @@ -- The `osquery/config` endpoint should include scheduled queries for the host's team stored in the - `queries` table. diff --git a/changes/12645-manage-query-automations b/changes/12645-manage-query-automations deleted file mode 100644 index 0df3de75f3..0000000000 --- a/changes/12645-manage-query-automations +++ /dev/null @@ -1 +0,0 @@ -- Users able to manage schedulable queries (new feature) with automations modal diff --git a/changes/12646-new-query-editor b/changes/12646-new-query-editor deleted file mode 100644 index 45a8b4427c..0000000000 --- a/changes/12646-new-query-editor +++ /dev/null @@ -1 +0,0 @@ -- Query editor includes frequency and other advanced options diff --git a/changes/12646-update-save-query-modal b/changes/12646-update-save-query-modal deleted file mode 100644 index 8c136872ea..0000000000 --- a/changes/12646-update-save-query-modal +++ /dev/null @@ -1 +0,0 @@ -- Update the save query modal to include scheduling-related fields. diff --git a/changes/12692-macos-helpful-message b/changes/12692-macos-helpful-message deleted file mode 100644 index 09ae83e0ef..0000000000 --- a/changes/12692-macos-helpful-message +++ /dev/null @@ -1 +0,0 @@ -* Improve error handling and messaging of SSO login during AEP(DEP) enrollments. diff --git a/changes/12872-upgrade-go-version b/changes/12872-upgrade-go-version deleted file mode 100644 index 718ee105cc..0000000000 --- a/changes/12872-upgrade-go-version +++ /dev/null @@ -1 +0,0 @@ -* Upgraded Go version to v1.19.11 diff --git a/changes/12897-puppet-envs b/changes/12897-puppet-envs deleted file mode 100644 index 8d3727d73c..0000000000 --- a/changes/12897-puppet-envs +++ /dev/null @@ -1 +0,0 @@ -* Allow the puppet module to read different Fleet URL/token combinations for different environments diff --git a/changes/12935-fix-setup-flow-styling b/changes/12935-fix-setup-flow-styling deleted file mode 100644 index f8e0bde4fb..0000000000 --- a/changes/12935-fix-setup-flow-styling +++ /dev/null @@ -1 +0,0 @@ -* Fixed the styling of the initial setup flow diff --git a/changes/12999-platforms-column b/changes/12999-platforms-column deleted file mode 100644 index 3affe1d53a..0000000000 --- a/changes/12999-platforms-column +++ /dev/null @@ -1 +0,0 @@ -* Update the "Platforms" column to the more explicit "Compatible with" diff --git a/changes/7765-combine-schedules-and-queries b/changes/7765-combine-schedules-and-queries deleted file mode 100644 index 59b8a029ba..0000000000 --- a/changes/7765-combine-schedules-and-queries +++ /dev/null @@ -1 +0,0 @@ -- Combine the query and schedule features to provide a single interface for creating, scheduling, and tweaking queries at the global and team level. diff --git a/changes/7765-queries-schedules-schema-updates b/changes/7765-queries-schedules-schema-updates deleted file mode 100644 index 9bc0290432..0000000000 --- a/changes/7765-queries-schedules-schema-updates +++ /dev/null @@ -1 +0,0 @@ -- Updated 'queries' table schema to allow storing scheduling information and configuration in the 'queries' table. diff --git a/changes/fix-gravatar-url b/changes/fix-gravatar-url deleted file mode 100644 index 6a76fc80a0..0000000000 --- a/changes/fix-gravatar-url +++ /dev/null @@ -1 +0,0 @@ -* Fixed URL used to check Gravatar network availability. diff --git a/changes/issue-12053-dark-and-light-mode-logo b/changes/issue-12053-dark-and-light-mode-logo deleted file mode 100644 index 90074397fa..0000000000 --- a/changes/issue-12053-dark-and-light-mode-logo +++ /dev/null @@ -1 +0,0 @@ -- add dark and light mode logo uploads and show the appropriate logo to the macOS mdm migration flow diff --git a/changes/issue-12168-update-macos-mdm-setup-uo b/changes/issue-12168-update-macos-mdm-setup-uo deleted file mode 100644 index 71f41c686c..0000000000 --- a/changes/issue-12168-update-macos-mdm-setup-uo +++ /dev/null @@ -1 +0,0 @@ -- update macos mdm setup UI in fleet UI diff --git a/changes/issue-12529-mdm-counts-off b/changes/issue-12529-mdm-counts-off deleted file mode 100644 index 7d8236f3a4..0000000000 --- a/changes/issue-12529-mdm-counts-off +++ /dev/null @@ -1 +0,0 @@ -- Updated ingestion of host detail queries for MDM so hosts that report empty results are counted as "Off". \ No newline at end of file diff --git a/changes/issue-12600-azure-install-support b/changes/issue-12600-azure-install-support deleted file mode 100644 index c0c56642a3..0000000000 --- a/changes/issue-12600-azure-install-support +++ /dev/null @@ -1 +0,0 @@ -* Adding support to install Fleetd after enrolling through Azure account diff --git a/changes/issue-12600-windows-installer b/changes/issue-12600-windows-installer deleted file mode 100644 index a5cb01d398..0000000000 --- a/changes/issue-12600-windows-installer +++ /dev/null @@ -1 +0,0 @@ -* Add MSI installer deployement support through MS-MDM diff --git a/changes/issue-12604-azure-tos-endpoint b/changes/issue-12604-azure-tos-endpoint deleted file mode 100644 index 11f6f7a41f..0000000000 --- a/changes/issue-12604-azure-tos-endpoint +++ /dev/null @@ -1 +0,0 @@ -* Adding support for MDM TOS endpoint diff --git a/changes/issue-12613-azure-jwt-support b/changes/issue-12613-azure-jwt-support deleted file mode 100644 index 75c117501c..0000000000 --- a/changes/issue-12613-azure-jwt-support +++ /dev/null @@ -1 +0,0 @@ -* Adding support for Azure JWT tokens diff --git a/changes/issue-12614-adding-support-for-sts-auth-endpoint b/changes/issue-12614-adding-support-for-sts-auth-endpoint deleted file mode 100644 index fc8b751257..0000000000 --- a/changes/issue-12614-adding-support-for-sts-auth-endpoint +++ /dev/null @@ -1 +0,0 @@ -* Adding support for Windows MDM STS Auth Endpoint diff --git a/changes/issue-12759-nudge-launch-errors b/changes/issue-12759-nudge-launch-errors deleted file mode 100644 index 658ab19335..0000000000 --- a/changes/issue-12759-nudge-launch-errors +++ /dev/null @@ -1,4 +0,0 @@ -- Addressed issue where Orbit repeatedly tries to launch Nudge in the event of a launch error, which - causes Nudge to steal focus from the user's current application. Instead, Nudge will now be disabled - if it encounters a launch error. It will remain disabled until Orbit is restarted or the Nudge app - is updated. diff --git a/charts/fleet/Chart.yaml b/charts/fleet/Chart.yaml index 59a721eb76..4212b398b7 100644 --- a/charts/fleet/Chart.yaml +++ b/charts/fleet/Chart.yaml @@ -8,4 +8,4 @@ version: v5.0.1 home: https://github.com/fleetdm/fleet sources: - https://github.com/fleetdm/fleet.git -appVersion: v4.34.1 +appVersion: v4.35.0 diff --git a/charts/fleet/values.yaml b/charts/fleet/values.yaml index c09e5906f2..440f61faa2 100644 --- a/charts/fleet/values.yaml +++ b/charts/fleet/values.yaml @@ -2,7 +2,7 @@ # All settings related to how Fleet is deployed in Kubernetes hostName: fleet.localhost replicas: 3 # The number of Fleet instances to deploy -imageTag: v4.34.1 # Version of Fleet to deploy +imageTag: v4.35.0 # Version of Fleet to deploy podAnnotations: {} # Additional annotations to add to the Fleet pod serviceAccountAnnotations: {} # Additional annotations to add to the Fleet service account resources: diff --git a/infrastructure/dogfood/terraform/aws/variables.tf b/infrastructure/dogfood/terraform/aws/variables.tf index 633bf3562a..18c666cc51 100644 --- a/infrastructure/dogfood/terraform/aws/variables.tf +++ b/infrastructure/dogfood/terraform/aws/variables.tf @@ -56,7 +56,7 @@ variable "database_name" { variable "fleet_image" { description = "the name of the container image to run" - default = "fleetdm/fleet:v4.34.1" + default = "fleetdm/fleet:v4.35.0" } variable "software_inventory" { diff --git a/infrastructure/dogfood/terraform/gcp/variables.tf b/infrastructure/dogfood/terraform/gcp/variables.tf index 912871e652..d269e6b275 100644 --- a/infrastructure/dogfood/terraform/gcp/variables.tf +++ b/infrastructure/dogfood/terraform/gcp/variables.tf @@ -68,5 +68,5 @@ variable "redis_mem" { } variable "image" { - default = "fleet:v4.34.1" + default = "fleet:v4.35.0" } diff --git a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf index ed2fdafdac..4baa364886 100644 --- a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf +++ b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf @@ -206,7 +206,7 @@ resource "random_uuid" "jitprovisioner" { # Use the local to make the trigger work. locals { - fleet_tag = "v4.34.1" + fleet_tag = "v4.35.0" } resource "null_resource" "standard-query-library" { diff --git a/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf b/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf index 0fdff7a0ee..271fbac321 100644 --- a/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf +++ b/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf @@ -165,7 +165,7 @@ resource "helm_release" "main" { set { name = "imageTag" - value = "v4.34.1" + value = "v4.35.0" } set { diff --git a/tools/fleetctl-npm/package.json b/tools/fleetctl-npm/package.json index 5691b23648..c8fa2ad9ab 100644 --- a/tools/fleetctl-npm/package.json +++ b/tools/fleetctl-npm/package.json @@ -1,6 +1,6 @@ { "name": "fleetctl", - "version": "v4.34.1", + "version": "v4.35.0", "description": "Installer for the fleetctl CLI tool", "bin": { "fleetctl": "./run.js"