Synnefo

* Add API call for validating OAuth 2.0 access tokens

  ``REMOTE_USER`` header.

  the third party provider.

* Management commands:

  * Introduced new commands:

  * Changed commands:

  * Removed commands:

Cyclades

--------

* Major changes to Cyclades networks:

  * Implement 'cyclades_network' service, containing the /networks, /ports,

  * Implement `snf-manage subnet-{create, list, modify, inspect}' management

    commands for handling of subnets.

  * Implement `snf-manage port-{create, list, remove, inspect}' management

    commands for handling of ports.

  * Add two new settings, 'CYCLADES_FORCED_SERVER_NETWORKS' and

* Implement Floating IP addresses, which are IPv4 addresses that can be

  dynamically added and removed to a running server.

  * Add new 'cyclades.floating_ip' resource.

  * Implement 'snf-manage floating-ip-{create,list,remove,attach,detach}'

  * Add 'floating_ip_pool' attribute to networks to mark networks that can

    be used as floating IP pools.

* Implement 'resize' server action.

  * Implement the 'resize' server action, to change the flavor of a server.

* Compute quotas for CPU and memory of running vms.

  * Make cyclades give a unique name to each Ganeti NIC. NICs are refered by

    their unique name and not by their index inside the VM that are connected

* Support firewall profile for all NICs of an instance. Change firewall

  settings to be filled with the unique name of the NIC. The affected settings

  service.

- New IPs pane from which user can manage floating IPs.

- Redesign public keys overlay as an additional pane view.

  wizard.

  be assigned to the created machine.

- Support for machine resize action. Explicit handling when machine is started

  by displaying an utility shutdown button within the resize overlay.

- Machine IPs toggling subview in icon/single views.

  and no longer used.

- Respect ``SNF:task_state`` machine attribute in order to improve machine

  status display.

  to force browser cache invalidation between versions.

  ``SYNNEFO_FONTS_BASE_URL`` setting.

- Regression fix: Display reboot required notification on machine firewall

  parameters.

  when setting is set to ``False``.

  subview.

- Fix image ordering in machine create wizard.

  for which ui will enable ssh key injection in machine wizard.

------

* Rewrite tests.

* Performance optimizations in object listing.

* Introduce backend method decorator for handling transaction management if no

  transaction is initiated from the frontend.

* Fix Internal Server Errors https://code.grnet.gr/issues/4501 &

  https://code.grnet.gr/issues/4502.

* Fix REQUEST ENTITY TOO LARGE request failure during move operations

  https://code.grnet.gr/issues/4154.

* Fix FORBIDDEN request failure while listing implicitly shared objects

  https://code.grnet.gr/issues/4131.

* Fix issue with the computed size of an updated object.

* Reply with the Merkle hash in the ETag header if MD5 is deactivated.

* Reply with FORBIDDEN (403) to public listing requests performed by non path

  owners.

* Change response status to NOT FOUND (404) while trying to delete an

  already deleted object.

* Change SQLAlchemy version to 0.7

* Change view authorization

  The pithos views do not use the cookie information for user authentication.

  They request (from Astakos) and use a short-term access token for a

  specific resource.

* Remove PITHOS_ASTAKOS_COOKIE_NAME setting, since it is no longer useful

* Add PITHOS_OAUTH2_CLIENT_CREDENTIALS setting to authenticate the views with

  astakos during the resource access token generation procedure

* Add PITHOS_UNSAFE_DOMAIN setting to restrict file serving endpoints to a

  specific host

* Remove command 'resource-export-pithos' subsumed by 'service-export-pithos'.

.. _Changelog-0.14.10:

  a user-configurable <COMPONENT>_BASE_URL. Each API (compute, image, etc.)

  is deployable under a developer-configurable prefix beneath BASE_URL.

* Common synnefo 404/500 templates (located in snf-webproject)

* Added fine grain user auth provider's policies.

    user or group of users.

  * Optionally a user can be assigned to a list of groups, based on the

    authentication method he choosed to signup.

  are now propagated to base django exception handler.

  snf-common settings.

* Improvements in user activation flow

  * User moderation now takes place after the user has verified his email

    address.

  * User model enriched with additional user state fields

    to moderate user explicitly using the `user-modify --accept` or

    `user-modify --reject` commands.

  * Improved logging throught out user activation procedures.

* Remove deprecated AstakosUser model fields: `provider`,

  `third_party_identifier`

  format in setting names: ``ASTAKOS_<PROVIDER_MODULE>_<MSGID>_MSG``

  location.

* Removing authentication provider view is now CSRF protected.

  access available Synnefo services API's.

  achieved using custom gettext files or using astakos messages settings::

	#change of greeting email subject

  	ASTAKOS_GREETING_EMAIL_SUBJECT_MESSAGE = 'Welcome to my cloud'

  ``ASTAKOS_BASE_URL``.

* Management commands:

* refactored/improved /login endpoint used by desktop/mobile clients.

  * endpoint url is now exposed by `weblogin` service

    endpoint url

  * view only allows redirects to `pithos://` scheme urls

    request to identity/tokens to retrieve user uuid.

UI

^^

* Removed feedback endpoint. Feedback requests delegate to astakos feedback

  and no longer used.

  required to be set and are dynamically computed based on ``ASTAKOS_BASE_URL``

  and ``CYCLADES_BASE_URL`` settings.

  create vm calls.

Pithos

------

  * new settings:

    PITHOS_RADOS_STORAGE, PITHOS_RADOS_POOL_BLOCKS, PITHOS_RADOS_POOL_MAPS

  file path)

* Rewritten support for public URLs, with admin-selectable length