Changelog
New updates and improvements to Common Fate.
We've just released Common Fate v2.5. Here's an overview of what's new.
Personalised Notifications Controls
Users can now control which events to be notified about in Slack using the notification settings in the console, available from the profile menu in the bottom left corner.
Access Selector Playground
Administrators can now view their existing Selectors from the settings page in the console. This new page shows which resources are being matched by the selector, with a convenient search function.
You can also use the new Selector playground to test new selector configurations.
You will be able to see resources matches in real time without needing to deploy the Selector.
The selector playground also generates a terraform snippet, making it easy to deploy your new selector.
My Access Requests
Users can now view their own access requests on a dedicated page.
All access requests for the deployment can now be filtered by principal, approver, and closed by.
The access requests are now more clearly separated into pending, active and closed tabs.
Authorization log filters
Authorization logs can now be filtered by principal type, either User or Service, making it easier to search the logs.
The API now supports more advanced filtering, which will be integrated into the Console in a future release.
Click-ops Integrations Setup
Integrations can now be configured via click-ops in the Common Fate console.
This new click-ops approach makes it simpler to configure integration secrets for SaaS customers with built-in secrets management.
AWS RDS Proxy Integration Overhaul
Following feedback from initial users we have overhauled the configuration process for the RDS Proxy.
The proxy and database configuration are now deployed as seperate terraform modules.
These changes significantly reduce downtime during configuration changes.
Databases can now be registered in the terraform modules where they are deployed.
These are breaking changes and we recommend customers drop the existing proxy infrastructure and re-deploy by following the guide here
Improvements
- The advanced search features for the new request page have been documented in the Console and in the user guide in our docs.
- For BYOC customers, the `aws` provider block has been removed from the terraform module. Checkout the migration guide here for full details.
- Fixes an issue where the s3 audit log export feature would continually write the last log event to S3.
- Added syntax highlighting to the cedar policies and json entity data in the authorization logs and access preview pages.