Changelog
- 🐞Fix (KBN) issue with Observability Overview-based applications hiding
- 🐞Fix (KBN) Correct
kibana.index
handling for KBN >= 7.9.0 when multi-tenancy is disabled or unavailable - 🐞Fix (KBN) Unrestricted Kibana Access on the tenancy switch when a selected tenant is not available anymore
- 🐞Fix (KBN) Unhandled error during login when
multiTenancyEnabled: false
- 🐞Fix (ES) LDAP connectivity improvements
- 🚀New (KBN) 8.10.2, 8.10.1, 8.9.2, 7.17.13 support
- 🚀New (ES) 8.10.2, 8.10.1, 8.10.0, 8.9.2, 7.17.13 support
- 🧐Enhancement (KBN) Expose interactive Swagger as a new Security settings tab
- 🧐Enhancement (KBN) Provide detailed information about the invalid activation key
- 🧐Enhancement (ES) additional
hide_apps
validation in thekibana
rule - 🐞Fix (KBN) the issue with the persistence of an activation key provided via UI when
readonlyrest_kbn.cookiePass
was not provided. The readonlyrest_kbn.cookiePass is requiredkibana.yml
property - 🐞Fix (KBN) issues for Kibana versions between 7.9.0 and 7.10.2, related to the activation key, Spaces, and readonlyREST menu crash
- 🐞Fix (KBN) The issue with a logout from Kibana when the link to the Kibana is open from a third-party application like
Gmail
- 🐞Fix (ES) stack-management screen fix in case of
xpack.security.enabled: true
- 🚀New (KBN/ES) ECK support
- 🚀New (KBN) 8.9.1, 8.9.0, 7.17.12 support
- 🚀New (ES) 8.9.1, 8.9.0, 7.17.12 support
- 🚀New (KBN) Introduce the new ReadonlyREST API
- 🧐Enhancement (KBN) Remove application item info from URL on the tenant switch to avoid a 404 not found message
- 🧐Enhancement (KBN) Provide Reordering available tenancies for proxy auth authentication
- 🧐Enhancement (KBN) Provide information about granted/rejected log-in users to debug logs
- 🚀New (KBN) 8.8.2, 8.8.1, 8.8.0, 7.17.11 support
- 🚀New (ES) 8.8.2, 7.17.11 support
- 🚀New (ES) 8.8.1 support
- 🧐Enhancement (KBN) Handle
elasticsearch.serviceAccountSupport
configuration property - 🧐Enhancement (KBN) Provide a way to Hidden apps Stack management items hiding
- 🧐Enhancement (KBN) Provide an automated migration of tenancy indices on major Kibana version upgrade
- 🧐Enhancement (ES) external group name patterns support in the external to local groups mapping
- 🐞Fix (KBN) the issue with the replica number being set to 0 on tenant index creation
- 🐞Fix (KBN) users won’t log out from Kibana on the 500 status error
- 🐞Fix (KBN) the issue with Kibana keystore not being read by the Kibana plugin
- 🐞Fix (KBN < 7.9.0) logging issue when two Kibanas are handled by one browser at the same time
- 🐞Fix (ES) resolving ENVs to YAML number in ROR settings
- 🚀New (KBN) 8.7.1, 7.17.10 support
- 🚀New (ES) 8.8.0, 8.7.1, 7.17.10 support
- 🚀New (KBN) Add CSRF protection in the login form
- 🚀New (KBN) Restore deprecated “kibana.index” support for Kibana > 8.x
- 🧐Enhancement (KBN) Provide a way to disable multi-tenancy in ROR Enterprise
- 🧐Enhancement (KBN) Realign index templates behaviour to the old platform
- 🧐Enhancement (KBN) Error logs when SAML obtains an unusable username from the assertion
- 🧐Enhancement (KBN) Test configuration warnings improvement
- 🐞Fix (KBN) Security card not hidden by default
- 🐞Fix (KBN) Hidden apps regex with two “or” operators don’t hide all kibana apps
- 🐞Fix (KBN) Fix Alerting Rules resulting in logout issue
- 🐞Fix (KBN) Fix audit dashboard
- 🐞Fix (KBN) Stop handling 500 error from
api/lens/existing_fields
- 🐞Fix (KBN) Fix lens app
- 🐞Fix (KBN < 7.9.x) using a custom kibana index in cooperation with ROR Free
- 🚨Security Fix (ES) "/" endpoint was not protected for ES 8.x
- 🚨Security Fix (ES) "/_cat" endpoint was not protected for all ES versions
- 🚀New (KBN) 8.7.0, 8.6.2 support
- 🚀New (ES) 8.7.0, 8.6.2 support
- 🧐Enhancement (KBN) optimisation in hidden apps feature
- 🐞Fix (KBN) Opening index management mappings tab forces logout
- 🐞Fix (KBN) Fix dark mode in the ROR menu
- 🐞Fix (KBN) YAML editor updates and fixes
- 🐞Fix (ES) Data streams support in the
indices
rule - 🐞Fix (ES) NPE when
_search
with aggregations (script) and thefields
rule were used together
- 🚀New (KBN) 8.6.1, 8.6.0, 7.17.9 support
- 🚀New (ES) 8.6.1, 8.6.0, 7.17.9 support
- 🧐Enhancement (KBN) Activation key management UI
- 🧐Enhancement (KBN) Less verbose logging in info mode
- 🧐Enhancement (KBN) “Stack management” kibana compatibility
- 🐞Fix (KBN) Test settings pop up won’t show
- 🐞Fix (KBN) hide apps behaviour when “Management” is hidden
- 🐞Fix (KBN) Data view with a “:” symbol forces logout from a kibana
- 🐞Fix (KBN) Session probe causes constant refresh when no
kibana_access
defined - 🐞Fix (ES) large report generation using data from a remote cluster with enabled x-pack security
- 🚀New (KBN) 8.5.3, 7.17.8 support
- 🚀New (ES) 8.5.3, 7.17.8 support
- 🐞Fix (KBN) ROR KBN patching script
- 🚀New (KBN) Activation Key API: read AK from ROR_ACTIVATION_KEY.txt
- 🚀New (KBN) Activation Key API: submit AK via POST /pkp/license (Basic auth)
- 🚀New (KBN) Inject CSS/JS files in login page
- 🚀New (KBN) Add user metadata to for extra UI customization
- 🧐Enhancement (ES) all authorization rules support wildcards in group names
- 🧐Enhancement (ES) connections in the LDAP pool should not be closed unnecessarily
- 🧐Enhancement (KBN) Deterministic reporting index detection
- 🧐Enhancement (KBN) Move free type impersonation to the local users area
- 🧐Enhancement (KBN) don’t logout when initial JWT token expires
- 🐞Fix (KBN) Direct Kibana API requests not aware of kibana_index
- 🐞Fix (KBN) RO and RO_strict kibana accesses
- 🐞Fix (ES) Unknown structure of index settings issue fix
- 🐞Fix (ES) resolving index names with wildcards should take into consideration the current index state and request indices options
- 🚀New (KBN) 8.5.2, 8.5.1, 8.5.0, 7.17.7 support
- 🚀New (ES) 8.5.2, 8.5.1, 8.5.0, 7.17.7 support
- 🚀New (ES) Added support for certificates in PEM format
- 🧐Enhancement (KBN) SAML groups list duplication made header size exceed limits
- 🧐Enhancement (KBN) kibana_access: admin has now privileges to manage a Kibana cluster
- 🧐Enhancement (ES) added distributed and persistent Test Settings & Auth Mocks configuration for the Impersonation Feature
- 🧐Enhancement (ES) handling high load when LDAP rules are used
- 🧐Enhancement (ES)
client_authentication
settings in internode SSL configuration - 🧐Enhancement (ES)
acl:available_groups
dynamic variable can be used in a single value context - 🐞Fix (ES) SNI handling (internode SSL)
- 🚀New (KBN) 8.4.3, 8.4.2, 8.4.1, 8.4.0, 7.17.6 support
- 🚀New (ES) 8.4.3, 8.4.2, 8.4.1, 8.4.0, 7.17.6 support
- 🚀New (KBN)
kibana_custom_js_inject_file
feature - 🐞Fix (ES) resolving indices in the remote x-pack cluster
- 🐞Fix (KBN|PRO) ROR menu title wraps when version text is too short (cosmetic)
- 🐞Fix (KBN) infinite loading when kibana_access not defined for user
- 🐞Fix (KBN) transient error with randomly choosing off range bind port on localhost
- 🐞Fix (KBN) 404 on login when
xpack.spaces.enabled: false
- 🚀New (KBN|ES) 8.3.3, 8.3.2, 8.3.1, 8.3.0, 7.15.5 support
- 🧐Enhancement (KBN) Search box in tenancy switcher (when #tenancies > 5)
- 🧐Enhancement (ES) added configuration warnings in the Impersonation Feature
- 🐞Fix (KBN) Logout didn’t delete the SAML session on the IdP
- 🐞Fix (KBN) 5xx errors from Elasticsearch break Kibana users’ session unrecoverably
- 🐞Fix (ES) ROR node cooperation with X-pack nodes
- 🧐Enhancement (KBN) Prevent native credentials dialogue to appear in Kibana when ES responds 401
- 🧐Enhancement (KBN) Logging in after logout shows the same page you last visited
- 🧐Enhancement (KBN) x-ror-correlation-id header lets you audit a whole Kibana session
- 🐞Fix (ES|KBN) tenancy selector didn't work well with
jwt_auth
andror_kbn_auth
rules - 🐞Fix (KBN) Support for special characters in tenancy names
- 🐞Fix (KBN) OIDC logout flow redirecting to bad request error
- 🐞Fix (KBN) OIDC connector not working in Kibana < 7.12.0
- 🚨Security Fix (ES) CVE-2022-25647 & CVE-2022-24823 & CVE-2020-13956 & CVE-2020-36518 & CVE-2020-13956 & CVE-2020-36518
- 🚨Security Fix (KBN) “Security” app not entirely hidden in 8.2.x
- 🚀New (ES) New Support for 8.2.3, 8.2.2, 8.2.1, 7.17.4
- 🚀New (KBN) New Support for 8.2.2 8.2.1, 7.17.4
- 🧐Enhancement (KBN) SAML cert is now required
- 🧐Enhancement (KBN) moved OIDC to better library
- 🧐Enhancement (KBN) OIDC jwksURL is now required
- 🐞Fix (ES)
indices: ["1"]
interpreted as integer and fails to parse - 🐞Fix (KBN) /login?jwt=xxx authorization now works again
- 🐞Fix (KBN) OIDC/SAML assertion claims were not forwarded to ES
- 🐞Fix (KBN) include whitelisted headers while logging
- 🐞Fix (KBN) basepath handling fixes (too many redirects)
- 🐞Fix (KBN) Make ROR default space the actual default one
- 🐞Fix (KBN) OIDC connection error
- 🚨Security Fix (KBN) XSS sanitize path requested
- 🚀New (KBN) New Support for 8.2.0 8.1.3, 8.1.2, 8.1.1, 8.1.0, 8.0.0, 8.0.1, 7.17.3, 7.17.2
- 🚀New (ES) New Support for 8.2.0, 8.1.3, 8.1.2, 8.1.1, 8.1.0, 8.0.0, 8.0.1 (required additional patching step)
- 🚀New (ES) New Support for 7.17.3, 7.17.2
- 🧐Enhancement (KBN) Stop inlining whitelisted headers into Authorization header
- 🧐Enhancement (KBN) Log additional errors and info related to HA
- 🧐Enhancement (KBN) Misc internal dependencies upgrades
- 🐞Fix (KBN) Mandatory elasticsearch credentials in kibana.yml
- 🐞Fix (KBN) whitelistedPaths: log errors when 404 occurs
- 🐞Fix (KBN)
elasticsearch.requestHeadersWhitelist
should be case insensitive - 🐞Fix (ES) X-Pack SSL nodes cooperation with ROR SSL nodes
- 🐞Fix (ES) _msearch issue when filter rules was used in matched block
- 🚀New (ES) New Support for 7.17.0, 7.17.1
- 🚀New (KBN) New Support for 7.17.0
- 🧐Enhancement (ES) Separate "audit" section for all audit settings
- 🐞Fix (KBN) Editor rendering issue with kibana basePath enabled
- 🚀New (ES) New Support for 7.16.3, 7.16.2, 6.8.23, 6.8.22
- 🚀New (KBN) New Support for 7.16.3, 7.16.2, 7.16.1, 7.16.10, 6.8.23, 6.8.22, 6.8.21
- 🧐Enhancement (ES) fields rule handling in the context of x-Pack SQL requests
- 🐞Fix (ES) filter rule handling in the context of x-Pack SQL requests
- 🐞Fix (KBN) POST / bulk cause an 400 error in devtools console
- 🐞Fix (KBN) More robust Kibana patcher + better logs messages
- 🚀New (ES) New Support for 7.16.1, 7.16.0, 6.8.21
- 🚀New (KBN) Support Kibana 7.15.2
- 🧐Enhancement (KBN) kibana_hide_apps: [ror|kibana] to remove kibana mgmt button
- 🐞Fix (KBN) Index management tabs result in "forbidden" error
- 🐞Fix (KBN) Regression in Kibana < 6.8.x front end crash
- 🐞Fix (KBN) Kibana < 7.8.x prevent navigation to hidden apps from home links
- 🐞Fix (KBN) Kibana < 7.8.x implicitly hide kibana:dashboard when kibana:dashboards is hidden (and viceversa)
- 🐞Fix (KBN) Kibana < 7.8.x broken
clearSessionOnEvents: [tenancyHop]
- 🚀New (KBN) Support Kibana 7.15.1
- 🚀New (ES) New Support for 7.15.2
- 🧐Enhancement (KBN) Support "server.ssl.supportedProtocols" settings
- 🧐Enhancement (KBN) Support "server.ssl.cipherSuites"
- 🧐Enhancement (KBN) Always honor SSL cipher order
- 🐞Fix (KBN) Don'thide "Add/Remove field as column" in Discover app for RO users
- 🐞Fix (KBN) More alerting fixes (only for main tenancy)
- 🚀New (KBN) Support Kibana 7.15.0, 7.14.2
- 🚀New (ES) New Support for 7.15.1, 6.8.19, 6.8.20
- 🧐Enhancement (ES) when ROR is starting any request is going to end up with HTTP 403 response, instead of HTTP 503
- 🧐Enhancement (KBN) "server.basePath" kibana option implementation
- 🧐Enhancement (KBN) Support full regex in kibana_hidden_apps rule
- 🧐Enhancement Crash if Kibana is not patched
- 🧐Enhancement (KBN) Honour kibana setting "logging.dest"
- 🧐Enhancement (KBN) Confirm before overwriting audit log dashboard
- 🐞Fix (ES) verbosity: error fix in case of ROR KBN login request
- 🐞Fix (KBN) Make alerting work on primary tenancy
- 🐞Fix (KBN) OIDC fix sameSite / secure cookie options
- 🐞Fix (KBN) Login form is stretched when long error
- 🐞Fix (KBN) Login form is stretched when long error
- 🐞Fix (KBN) Resolve browser console errors on a popover close
- 🚀New (ES) New Support for 7.15.0, 7.14.2
- 🚀New (KBN) VS Code style YAML editor
- 🚀New (KBN) Skip rendering hidden app groups entirely
- 🚀New (KBN) Redesigned ROR Menu
- 🚀New (KBN) Dark theme awareness
- 🐞Fix (KBN) Broken Kibana Spaces
- 🐞Fix (KBN) Support Kibana's undocumented "server.ssl.*" settings
- 🐞Fix (KBN) cookiePass config parsing broke load balancing
- 🚀New (ES) New Support for 7.14.1
- 🐞Fix (KBN) Error in patching for 7.14.0
- 🐞Fix (KBN) clearSessionOnEvents now works as expected
- 🐞Fix (KBN) login form font loads correctly
- 🚨Security Fix (KBN) xml-crypto dependency update
- 🚀New (KBN) New Support for 7.14.0, 6.8.18
- 🧐Enhancement (KBN) Parse credentials in /api/* requests, no need for valid cookie. Supersedes whitelistedPaths
- 🐞Fix (KBN)Caching issues switching tenancies with dark/light theme
- 🐞Fix (KBN) Newly created Space shows in all tenancies when using default kibana index
- 🐞Fix (KBN < 7.9.x) nextUrl works again with SAML and OIDC
- 🚨Security Fix (KBN) upgraded dependencies due to security fixes
- 🚨Security Fix (KBN) disable x-powered-by to avoid fingerprinting
- 🚀New (ES) Support for ES 7.14.0 & 6.8.18
- 🚀New (KBN) Support for Kibana 7.13.x series
- 🧐Enhancement (KBN) honor configurations coming from ENV and CLI options
- 🧐Enhancement (KBN) when metadata has no username, login must be denied
- 🧐Enhancement (KBN) audit tab ported to new platform
- 🧐Enhancement (ES) improved ES resources cleaning when ROR returns FORBIDDEN response
- 🧐Enhancement (KBN < 7.9.x) auto clean-up dangling SAML/OIDC cookies
- 🐞Fix (ES) not allowed aliases should not present in a response for a Get Index API request
- 🐞Fix (KBN) fix dev-tools and import saved object not working
- 🐞Fix (KBN) honor
requestHeadersWhitelist
in user metadata request (login) - 🐞Fix (KBN < 7.9.x) do not crash on invalid metadata
- 🚨Security Fix (KBN) prevent direct navigation to hidden apps
- 🚀New (ES) 7.13.4, 7.13.3, 7.13.2, 6.8.17 support
- 🚀New (KBN) new minimal Kibana Management menu when "Management" app is hidden
- 🧐Enhancement (KBN) logout active Kibana session if key metadata/permissions change in ACL
- 🧐Enhancement (KBN) better port number validation
- 🧐Enhancement (ES) improved cluster indices handling
- 🐞Fix (ES) search template API handling with
filter
andfields
rule - 🐞Fix (ES) multi-tenancy issue when groups_provider_authorization is used
- 🐞Fix (ES)
x_forwarded_for
rule: wrong handling of / request - 🐞Fix (ES) Issue with handling ResizeRequest which made it unable to upgrade Kibana to version 7.12.0+
- 🐞Fix (KBN) some Kibana requests arrive to ES without credentials
- 🐞Fix (KBN) inconsistent read after write in session storage lead to issues with round robin load balancing
- 🐞Fix (KBN) bad multipart POST handling leads to saved object import errors
- 🚀New (ES) 7.13.0, 7.13.1 support
- 🐞Fix (ES) Regression in multi-tenancy handling
- 🐞Fix (ES) Proper handling of _snapshot/_status endpoint
- 🚀New (KBN) 7.12.x compatibility
- 🧐Enhancement (KBN < 7.9.x) OIDC errors visibility
- 🧐Enhancement (KBN < 7.9.x) Smarter session probe algorithm
- 🐞Fix (KBN < 7.9.x) Don't hide visualizations list search box in RO mode
- 🚀New (KBN) support 7.9.0, 7.9.1, 7.10.0, 7.10.1, 7.10.2, 7.11.0, 7.11.1, 7.11.2 (with ROR new platform)
- 🚀New (ES) 7.12.1 support
- 🧐Enhancement (KBN) logout if the credentials/metadata of the current user change in the ACL
- 🐞Fix (KBN) prevent SAML/OIDC initiated Kibana sessions from expiring after
session_timeout_minutes
despite continued interaction
- 🐞Fix (ES) Getting index templates issue when no
indices
rule was used in matched block
- 🚀New (ES) 7.12.0, 7.11.2 support
- 🐞Fix (KBN) Prevent cookie expiration deadlock in browsers when using SAML/OIDC
- 🐞Fix (KBN) When credentials change in the ACL, make it possible to login again
- 🐞Fix (KBN) Kibana management app ID changed from "kibana:management" to "kibana:stack_management"
- 🚀New (ES) 7.11.1 support
- 🚀New (ES) 7.11.0, 7.10.2, 6.8.14 support
- 🧐Enhancement (KBN) X-Forwarded-For copied from incoming request (or filled with source IP) before forwarding to ES
- 🧐Enhancement (KBN) Kibana logout event generates a special audit log entry in ROR audit logs index
- 🧐Enhancement (KBN) ROR panel shows "reports" button if kibana:management app is hidden
- 🐞Fix (ES) SQL API - better handling of invalid query
- 🐞Fix (ES) wrong behaviour of
kibana_access
rule for ROR actions when ADMIN value is set
- 🧐Enhancement (ES) Full support for ILM API
- 🧐Enhancement (KBN) Enforce read-after-write consistency between kibana nodes
- 🧐Enhancement (KBN ENT) OIDC custom claims incorporated in "assertion" claim
- 🧐Enhancement (KBN ENT) OIDC support for configurable kibanaExternalHost (good for Docker)
- 🧐Enhancement (KBN ENT) ROR adds "ror-user_" class to "body" tag for easy per-user CSS/JS
- 🧐Enhancement (KBN ENT/PRO) ROR adds "ror-group_" class to "body" tag for easy per-group CSS/JS
- 🐞Fix (ES) "username" in audit entry when request is rejected
- 🚀New (ES) 7.10.1 support
- 🚀New (ES) 7.10.0 support
- 🧐Enhancement (ES) Fields rule performance improvement
- 🧐Enhancement (ES) Resolved index API support
- 🐞Fix (ES) index resolve action should be treated as readonly action
- 🐞Fix (ES) /_snapshot and /_snapshot/_all should behave the same
- 🚨Security Fix (ES) search template handling fix
- 🚀New (ES) 7.9.3 & 6.8.13 support
- 🧐Enhancement (ES) full support for ES Snapshots and Restore APIs
- 🐞Fix (KBN) fix crash in error handling
- 🐞Fix (ES) don't remove ES response warning headers
- 🐞Fix (ES) issue when entropy of /dev/random could have been exhausted when using JwtToken rule
- 🚀New (ES) 7.9.2 support
- 🐞Fix (KBN) fix code 500 error on login in Kibana
- 🚀New (ES) introduced must_involve_indices option for indices rule
- 🧐Enhancement (ES) negation support in headers rules
- 🐞Fix (KBN) deep links query parameters are now handled
- 🐞Fix (KBN) make sure default kibana index is always discovered (fixes reporting in 6.x)
- 🐞Fix (ES) /_cluster/allocation/explain request should not be forbidden if matched block doesn't have indices rules
- 🐞Fix (ES) remote address extracting issue
- 🐞Fix (ES) missing handling of aliases API for ES 7.9.0
- 🚀New (ES) 7.9.0 support
- 🧐Enhancement (ES) aliases API handling
- 🧐Enhancement (ES) dynamic variables support in fields rule
- 🐞Fix (ES) potential memory leak for ES 7.7.x and above
- 🐞Fix (ES) cross cluster search issue fix for X-Pack _async_search action
- 🐞Fix (ES) XFF entry in audit issue
- 🐞Fix (KBN) SAML certificate loading
- 🐞Fix (KBN) SAML loading groups from assertion
- 🐞Fix (KBN) fix reporting in pre-7.7.0
- 🐞Fix (ES) X-Pack _async_search support
- 🐞Fix (ES) _rollover request handling
- 🐞Fix (KBN) multitenancy+reporting regression fix (for 7.6.x and earlier)
- 🐞Fix (KBN) "x-" headers should be forwarded in /login route when proxy passthrough is enabled
- 🐞Fix (KBN) SAML metadata.xml endpoint not responding
- 🐞Fix (KBN) NAT/reverse proxy support for SAML
- 🐞Fix (KBN) SAML login redirect error
- 🐞Fix (ES) _readonlyrest/metadata/current_user should be always allowed by filter/fields rule
- 🚀New 7.7.1, 7.8.0 support
- 🧐Enhancement (KBN) tidy up audit page
- 🧐Enhancement (KBN FREE) clearly inform when features are not available
- 🧐Enhancement (KBN) ship license report of libraries
- 🧐Enhancement (ES) filter rule performance improvement
- 🐞Fix (KBN) proxy_auth: avoid logout-login loop
- 🐞Fix (KBN) 404 error on font CSS file
- 🐞Fix (ES) /_mget handling by indices rule when no index from a list is found
- 🐞Fix (ES) available groups order in metadata response should match the order in which groups appear in ACL
- 🐞Fix (ES) .readonlyrest and audit index - removed usage of explicit index type
- 🚀New 7.7.0, 7.6.2, 6.8.9, 6.8.8 support
- 🧐Enhancement (ES/KBN) kibana_access can be explicitly set to unrestricted
- 🐞Fix (ES) remote indices searching bug
- 🐞Fix (ES) cross cluster search support for _field_caps request
- 🚨Security Fix (ES) create and delete templates handling
- 🐞Fix (KBN) Regression in proxy_auth_passthrough
- 🧐Enhancement (KBN) whitelistedPaths now accepts basic auth credentials
- 🧐Enhancement (KBN) removed ROR from Kibana sidebar. Admins have a link in new panel.
- 🧐Enhancement (KBN) avoid show login form redirecting from SAML IdP
- 🚨Security Fix (KBN) server-side navigation prevention to hidden apps
- 🐞Fix (ES) Interpolating config with environment variables in SSL section
- 🐞Fix (KBN Ent 6.x) Fixed default space creation in
- 🐞Fix (KBN 6.x) Fixed error toast notification not showing
- 🐞Fix (KBN Ent) Fixed missing Axios dependency
- 🐞Fix (KBN Ent) Fixed SAML connector
- 🐞Fix (KBN) Toast notification overlap with logout bar
- 🧐Enhancement (KBN) Restyled logout bar
- 🧐Enhancement (KBN) Configurable periodic session checker
- 🚀New (ES/KBN) 7.6.1 compatibility
- 🚀New (ES) customizable name of settings index
- 🧐Enhancement (KBN) configurable ROR cookie name
- 🧐Enhancement (ES/KBN) handling of encoded ROR headers in Authorization header values
- 🧐Enhancement (KBN) user feedback on why login failed
- 🐞Fix (ES) support for multiple header values
- 🐞Fix (ES) releasing LDAP connection pool on reloading ROR settings
- 🐞Fix (KBN) multitenancy issue with 7.6.0+
- 🐞Fix (KBN) creation of default space for new tenant
- 🐞Fix (KBN 6.x) in RO mode, don't hide add/remove over fields in discovery
- 🐞Fix (KBN 6.x) index template & in-index session manager issues
- 🚀New (KBN) 7.6.0 support
- 🧐Enhancement (KBN) less verbose info logging
- 🧐Enhancement (KBN) start up time semantic check for settings
- 🐞Fix (KBN Free) missing logout button
- 🐞Fix (KBN) error message creating internal proxy
- 🐞Fix (KBN 6.x) add field to filter button invisible in RO mode
- 🚀New (ES) 7.6.0 support, Kibana support coming soon
- 🚀New (KBN) Audit log dashboard
- 🚀New (KBN) Template index can now be declared per tenant instead of globally
- 🚀New (ES) custom trust store file and password options in ROR settings
- 🧐Enhancement (ES) When "prompt_for_basic_auth" is enabled, ROR is going to return 401 instead of 404 when the index is not found or a user is not allowed to see the index
- 🧐Enhancement (ES) literal ipv6 with zone Id is acceptable network address
- 🧐Enhancement (ES) LDAP client cache improvements
- 🐞Fix (ES) /_all/_settings API issue
- 🐞Fix (ES) Index stats API & Index shard stores API issue
- 🐞Fix (ES) readonlyrest.force_load_from_file setting decoding issue
- 🐞Fix (KBN) allowing user to be logged in in two tabs at the same time