Add file to the reno documentation build to show release notes for
stable/2024.1.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/2024.1.
Sem-Ver: feature
Change-Id: Ib981fcfb22708b3873a762703f177a1c99898b49
As per the current release tested runtime, we test
python version from 3.8 to 3.11 so updating the
same in python classifier in setup.cfg
Change-Id: I1dfb59aaccbc50deda08863007536c46f4445a44
... so that operators can hide the healthcheck endpoint, which is
usually deployed without any auth mechanism, from users accessing
APIs through front-end load balancer or reverse proxy.
Note that this behavior is optional and can be enabled by
the new option.
Change-Id: Ib87da1b3d231dea44939686af544db101d68e179
The oslo namespace package was removed once[1] but was readded[2]
because of some problems at the time because nova required the old
namespace until liberty release.
Time has passed and now we should be ready to re-remove it.
[1] 18d7b08490
[2] ce6ca04280
Change-Id: If2163eb1229448dd4bf765978b6f4cc5cbdd0a25
Add file to the reno documentation build to show release notes for
stable/2023.2.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/2023.2.
Sem-Ver: feature
Change-Id: Ibd04af962cf169e169b1c14af5317c118d65a5f0
Currently doc jobs are broken because the latest sphinx 7.2.0 is not
compatible with the latest release of openstackdocstheme.
This updates the docs/releasenotes target to use the global upper
constraints to avoid that issue.
Change-Id: I8aeae9a380c4560c52bc13abd1745d69845071a0
Within 2023.2 python version 3.9 and 3.10 are the
supported python runtimes [1].
[1] https: //review.opendev.org/c/openstack/governance/+/872232
Change-Id: I45f418ea67bd24a91ec0ca1989b7c54b234a2242
Apply a timeout to requests calls to avoid uncontrolled
resource consumption (CWE-400) [1].
However we should notice bandit didn't warned here.
It didn't detected the request without the configured timeout.
[1] https://cwe.mitre.org/data/definitions/400.html
Change-Id: I6a4701592e0b245b798fbe916f78a5e8114e92ef
Add file to the reno documentation build to show release notes for
stable/2023.1.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/2023.1.
Sem-Ver: feature
Change-Id: Ia920d3d542e54d26557c7ae6f4d503fdd365d787
Add file to the reno documentation build to show release notes for
stable/zed.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/zed.
Sem-Ver: feature
Change-Id: I13554b310a209c3d86ba531c7b4ec32188a19968
In Zed cycle testing runtime, we are targetting to drop the
python 3.6/3.7 support, project started adding python 3.8 as minimum,
example nova:
- 56b5aed08c/setup.cfg (L13)
Change-Id: Ia82c3c5e8d16fa9d111430a57588e49ab512775a
Add file to the reno documentation build to show release notes for
stable/yoga.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/yoga.
Sem-Ver: feature
Change-Id: Ib011e6b4377fdfbd1e74fcd28ef3d57298dd4463
... so that the middleware can be loaded using the python egg instead
of the direct path.
Closes-Bug: #1940738
Change-Id: I57408766c120d2c9784f3886457e91ee7d30de1b
Add file to the reno documentation build to show release notes for
stable/xena.
Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on
stable/xena.
Sem-Ver: feature
Change-Id: I3b7528dd3718acb5a9dbee8e65316c562e437844
... so that its options can be rendered by oslo-config-generator by
adding the entry point.
This change also updates the base oslo.middleware entry point to
include options of the middleware because the base entry point is
supposed to include all options in the oslo.middleware library.
Closes-Bug: #1940747
Change-Id: Ic9d79d9c46fc1dc78aa4d089e36219b2a34f4099
This change introduces the new [healthcheck] allowed_source_ranges
option, to restrict access to healthcheck endpoint within specific
network ranges. This parameter is useful to avoid access from external
network, because healthcheck endpoint has no authentication usually.
Change-Id: I2b88704c260edd1a4c49cfde9de4cee4b90be862
This adds a middleware that can be used as an alternative to noauth in
standalone environments.
This middleware uses a password file which supports the Apache htpasswd
syntax. This file is read for every request, so no service restart is
required when changes are made.
The only password digest supported is bcrypt, and the ``bcrypt``
python library is used for password checks since it supports ``$2y$``
prefixed bcrypt passwords as generated by the Apache htpasswd utility.
Adapted from I874783b8ece0eedf27a94dfed5163d0c82f8b9de.
Change-Id: I3d80d86afd063af9fa2f411885dbd0dc65a7bbc7
Setuptools v54.1.0 introduces a warning that the use of dash-separated
options in 'setup.cfg' will not be supported in a future version [1].
Get ahead of the issue by replacing the dashes with underscores. Without
this, we see 'UserWarning' messages like the following on new enough
versions of setuptools:
UserWarning: Usage of dash-separated 'description-file' will not be
supported in future versions. Please use the underscore name
'description_file' instead
[1] https://github.com/pypa/setuptools/commit/a2e9ae4cb
Change-Id: Ic9487a052e549a91fcf09b94e5fae525548f8d68
Add a warning in the doc to explain '/healthcheck' doesn't provide
any sort of check if the API actually works.
Change-Id: Ib4a065f31140f885d3de53e2423e7b4a6635f345