Enhancements
- Hot reloading audit configuration (#409)
- Add configuration for REST API whitelisting (#520)
- Implement ability to configure readonly fields for audit configuration (#559)
- Decrypt SAML assertions (#539)
- Add REST API method to audit logging (#589)
- Log index event requests on transport layer (#588)
- Added kibana attribute to security config which will be used by tenantinfo api. (#514)
- Log granted privileges on REST layer if user has access to opendistro APIs (#594)
Bug fixes
- Fix broken link to security configuration page (#558)
- Make sure Internal users API supports adding reserved opendistrosecurityroles
(by superuser). Do not filter out reserved roles in the InternalUsersModelV7 (#556)
- Removing hidden/reserved roles added via roles mapping (#586)
Maintenance
- Refactoring: moved getSettingAsSet() method and DEFAULT_DISABLED_CATEGORIES from AuditConfig to ConfigConstants. (#543)
- Introduced method to construct AuditCategory EnumSet from Settings (#543)
- Use Jackson to serialize and de-serialize audit configuration (#542)
- Support "true" and "false" String to boolean conversion in DefaultObjectMapper.getOrDefault() (#548)
- Removing static ILM action groups (#552)
- Fix failing NodesDnApiTest#testNodesDnApi (#568)
- Upgrade Apache CXF to 3.2.14 (#577)
- Upgrade Apache Kafka Client to 2.5.0 (#584)
- Upgrade Onelogin Java SAML to 2.5.0 (#585)
- Upgrade Bouncy Castle to 1.66 (#603)
- Upgrade OpenSAML SAML Provider Implementations to 3.4.5 (#604)