IronCore Labs Home
  1. Docs
  2. SaaS Shield
  3. Suite
  4. Amazon S3
  5. Changelog
  1. Docs
  2. SaaS Shield
  3. Suite
  4. Amazon S3
  5. Changelog

Changelog

See our buildlog for relationships between specific docker hashes and version tags. The most recent releases are at the bottom of the file. There will only ever be multiple hashes for a single version tag if the underlying image was rebuilt to fix a security vulnerability.

v1.6.0

  • Add new configuration option read-only-aws-creds. By default, this will be read from the environment variables READ_ONLY_S3_ACCESS_KEY_ID and READ_ONLY_S3_SECRET_ACCESS_KEY.
    • If present, this AWS Access Key ID/Secret Key will be used for fetching the folder mapping. If these credentials are not present, the S3 proxy will continue to use one of the credentials from the regular AWS credentials map.
  • Add new error response when attempting to transfer a payload in multiple chunks (not supported by the S3 proxy).
  • Change container to output structured JSON logging.

v1.5.2

  • Added a retry if we get a 403 due to the EDEK being out of sync with the object.

v1.5.1

  • Fixed an issue where some clients caused a signature calculation error. This was due to a defect in the server and will not require changes to the client configuration.

v1.5.0

  • Add support for CORS_ALLOWED_ORIGIN environment variable. See Advanced Install for details.

v1.4.0

v1.3.1

  • Dependency updates

v1.3.0

  • Images are no longer based on alpine and are instead built from scratch.

v1.2.5

  • added multi arch builds. amd64 and arm64 docker containers are both published to gcr.

v1.2.0

  • Added support for capture groups in the folder mapping with the capture-tenant-regex key.
    • In the folder mapping, the object-regex key has been renamed to explicit-tenant-regex. To maintain compatibility, we will still support the object-regex key until the next major release.

v1.1.1

  • Fixed bug that prevented configuring new features added in v1.1.0 in a deployment.

v1.1.0

  • Added ability to specify encryption tenant ID in request headers.
  • Added configuration option to deny encryption requests with invalid tenant ID.

v1.0.0

Initial release

Versioning Policy

See our container versioning policy documentation.

Was this page helpful?

One sec... bot checking