# Release Notes

## 1.3

### Migration Guide

For a step-by-step guide migrating from Grey Matter 1.2 to 1.3, follow the [1.3 Migration Guide](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/1.3-migration-guide).

### Artifacts

Grey Matter 1.3 GA artifacts are now available. Artifacts can be found in the staging repositories:

* [Images](https://nexus.greymatter.io/#browse/browse:docker:v2%2Frelease)
* [Binaries](https://nexus.greymatter.io/#browse/browse:raw:release)

### Server versions

#### Fabric

* `gm-proxy:1.5.1`
* `gm-control:1.5.3`
* `gm-control-api:1.5.4`
* `gm-jwt-security:1.2.0`
* `gm-jwt-security-gov:1.2.0`
* `greymatter:2.0.1` (CLI)

#### Sense

* `gm-catalog:1.2.2`
* `gm-dashboard:4.0.2`
* `gm-slo:1.2.0`

#### Platform Services

* `gm-data:1.1.5`
* `gm-apier:2.0.4`

### Tooling

* [`vscode-greymatter:0.0.1`](https://marketplace.visualstudio.com/items?itemName=greymatter.greymatter)

### Added

* CLI [`greymatter generate`](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/cli/generate) command for generating template based configurations
* CLI native GitOps workflow support via the [`greymatter sync`](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/cli/sync) command
* CLI supports [tab completions](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/cli/utils#completion)
* CLI supports creation of [default objects](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/cli/create#interactive-editor)
* gm-control [serves a REST interface for the xDS protocol](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/fabric-1/grey-matter-proxy/connect-to-control#rest) via `GM_CONTROL_XDS_ENABLE_REST` and  gm-proxy `PROXY_REST_DYNAMIC` environment variables
* gm-control-api [Redis persister backend](https://greymatter.gitbook.io/grey-matter-documentation/1.3/broken-reference)
* gm-control-api support for [certificate revocation lists](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/security/tls#certificate-revocation)
* gm-control-api Experimental UI - control plane visualization and configuration tool
* gm-control-api Route object now supports Envoy [header manipulation fields](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/api/fabric-api/route)
* gm-control-api Listener object supports configuring [access loggers](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/api/fabric-api/listener#access_loggers)
* gm-dashboard [pagination of service cards](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/sense/application#configuration-variables) in [Fabric view](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application)
* gm-dashboard [inline documentation](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application/inline-documentation#enable-inline-documentation) displays service API docs, enabled via the `ENABLE_INLINE_DOCS` environment variable
* gm-dashboard now allows [categorization of services by protocol type](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application/protocols) in Fabric view
* gm-dashboard display new service fields provided by Catalog
* gm-catalog service [Redis persister backend](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/sense/catalog#configure-persistence-with-redis)
* gm-catalog [Zone metadata update](https://github.com/greymatter-io/gm-gitbook-sync/tree/5137e2101d1c630aa1c55d164eb847be783634a1/usage/application/catalog/README.md#zones) to expose `externalLinks` field
* gm-catalog [Cluster object new fields](https://github.com/greymatter-io/gm-gitbook-sync/tree/5137e2101d1c630aa1c55d164eb847be783634a1/usage/application/catalog/README.md#service-entry):
  * protocols (read only)
  * businessImpact
  * externalLinks
  * status (read only)
  * ownerURL
  * description
  * apiEndpoint
  * apiSpecEndpoint
* gm-catalog can optionally [connect to Control via TLS](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/sense/catalog#configured-via-zone-objects)
* gm-data now allows for calculated yield statement, to simplify conversion for certain kinds of policies
* gm-data feature flags to leave playground and HTML UI off by default
* gm-data /playground endpoint in GM Data to figure out policies by allowing for hypothetical JWT, policy, and object values to calculate privileges
* gm-data Open Policy Agent support
* gm-apier [new platform service](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/api/apier-api) for exposing spreadsheets as RESTful APIs
* new [VSCode plugin](https://greymatter.gitbook.io/grey-matter-documentation/1.3/guides/fabric-guides/vscode-ext-guide) providing easy creation of mesh configs

### Fixed

* gm-proxy now properly parses Base64 encoded certificates
* gm-proxy does not segfault when using the [oidc-validation filter](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/api/fabric-api/filters/http/gm-oidc-validation) and the `userInfo` block is not configured
* gm-proxy can set more than one header via filters
* gm-proxy memory leaks
* gm-jwt-security creates path for users.json if it doesn't exist
* gm-jwt-security-gov will not assert on blank attributes
* gm-control [AWS ECS plugin](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/fabric-1/gm-control/gm-control-ecs) support for different network modes
* gm-control continues polling failed namespaces
* gm-control trims whitespace when specifying multiple namespaces for k8s service discovery
* gm-control re-enables [Prometheus stats backend](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/fabric-1/gm-control/als_stats#example-configuration) via the `GM_CONTROL_STATS_BACKENDS` environment variable
* gm-catalog sends `Allow` header with 405 response codes
* gm-catalog bug causing main thread to block when updating an existing xDS server configuration
* gm-control-api now allows `PUT` on the `/zone` route
* gm-control-api rejects duplicate Proxy objects with the same `name` fields
* gm-control-api ensures a Proxy object `name` only matches one sidecar
* gm-control-api Domain redirects now allow users to perform port rewrites
* gm-control-api Route level redirects work
* gm-dashboard misc bug fixes and browser support
* gm-dashboard moved selected listener to URL state and ensured consistent ordering of listeners in the [control panel](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application/controlpanel)
* gm-data filehandle leaks
* gm-data security hole where users with `update` privileges but no `delete` or `purge` privileges on a file could update the file to add `delete` and `purge` privileges
* gm-data bug when misspelling function names in object-policy, creating a nil pointer crash
* gm-data bug in plaintext serialization of custom attributes
* gm-data bug fix when using literal paths in parentoid. If you had multiple matching home directories, you might get the message 'the update requires jwt field Name to match object field' even though it is misspelled. Now there is the ability to set parentoids literally, e.g. `parentoid:"1/world/joe@gmail.com/documents"` for `name:"plans.doc"`. It should create all intermediate directories if they do not already exist.
* gm-data allows the kv pair to look in a JWT for blobkey permissions to be configurable, so it is possible for bots to read from AWS CLI

### Changed

* gm-proxy [JWT Security filter](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/api/fabric-api/filters/http/gm-jwt-security) sets better defaults for timeouts and caching
* gm-proxy base build updated to Envoy v1.15
* gm-control Consul plugin now supports an ACL token
* gm-control and gm-control-api output structured error logs, configured via the [`GM_CONTROL_CONSOLE_FORMAT` (control)](https://greymatter.gitbook.io/grey-matter-documentation/1.3/reference/setup/fabric-1/gm-control#logging) and [`GM_CONTROL_API_LOG_FORMAT` (control api)](https://greymatter.gitbook.io/grey-matter-documentation/1.3/broken-reference) env vars
* gm-dashboard performance improvements with large number of cards in [Fabric view](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application#service-mesh-page)
* gm-dashboard displays filter configuration as JSON in the [control panel](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application/controlpanel)
* gm-slo-service deprecation warning on [/businessImpact endpoint](https://greymatter.gitbook.io/grey-matter-documentation/1.3/usage/application/slo#route-businessimpact-deprecated), it is now a field on the [Cluster object in gm-catalog](https://github.com/greymatter-io/gm-gitbook-sync/tree/5137e2101d1c630aa1c55d164eb847be783634a1/usage/application/catalog/usage.md#updating-an-entry)
* gm-data returns cluster and zone in all responses
* gm-data log format is altered to give timestamps of the event, not start of http call
* gm-data `GET` /stats now reports the size of Mongo database pool
* gm-data no longer allows the creation of world-writable files
* All Fabric and Sense services now serve OpenAPI documentation in either JSON, YAML, or HTML format
* All Go-based Fabric, Sense, and Platform services upgraded to Go v1.14.6
* All NodeJS-based Sense services upgraded

### Known Issues

* gm-apier crashes with the error `[CRITICAL] WORKER TIMEOUT` when fetching a file if more than one worker process is started. The severity of this issue has been reduced by changing the number of workers in the pool to 1. With this setting, the maximum file size limit during HTTP file fetching is around 20-25mb. gm-apier can still handle files loaded directly from the file system up to at least 500mb.