v0.8.0

Breaking

• Moved Maven artifact to de.stklcode.jvault:jvault-connector (#28)
• Removed support for HTTPVaultConnectorFactory#withSslContext() in favor of #withTrustedCA() due to

Features

• Support for KV version 2 secret engine (#16)
• Ability to pass custom mount point to KV v2 read/write methods (#25)

Improvements

• refactoring of the internal SSL handling (#17)
• VaultConnector extends java.io.Serializable (#19)
• Added missing flags to SealResponse (#20)
• Added replication flags to HealthResponse (#21)
• Enforce TLS 1.2 by default with option to override (#22)
• Build environment and tests now compatible with Java 10
• Updated dependencies to fix vulnerabilities (i.e. CVE-2018-7489)
• New static method Token.builder() to get token builder instance
• New static method AppRole.builder() to get AppRole builder instance

Deprecation

• VaultConnectorFactory is deprecated in favor of VaultConnectorBuilder with identical API (#18)
• AppRoleBuilder#withBoundCidrList(List) is deprecated in favor of AppRoleBuilder#withSecretIdBoundCidrs(List) (#24)

v0.7.1

• [improvement] Added automatic module name for JPMS compatibility
• [dependencies] Minor dependency updates
• [test] Tested against Vault 0.9.5

v0.7.0

• [feature] Retrieval of health status via getHealth() (#15)
• [improvement] seal(), unseal() are now void and throw Exception on error (#12)
• [compatibility] Adaptation to Vault 0.8 endpoints for renew and revoke, breaking 0.7 compatibility (#11)
• [deletion] Removed deprecated listAppRoleSecretss() (use listAppRoleSecrets()) (#14)
• [test] Tested against Vault 0.8.3

v0.6.2

• [fix] Prevent potential NPE on SecretResponse getter
• [fix] Removed stack traces on PUT request and response deserialization (#13)
• [improvement] Fields of InvalidResposneException made final
• [deprecation] listAppRoleSecretss() in favor of listAppRoleSecrets() (#14)
• [test] Tested against Vault 0.8.1, increased coverage

v0.6.1

• [fix] TokenModel.getPassword() returned username instead of password
• [fix] TokenModel.getUsername() and getPassword() could produce NPE in multithreaded environments
• [fix] TokenData.getCreatinTtl() renamed to getCreationTtl() (typo fix)
• [test] Tested against Vault 0.7.3

v0.6.0

• [feature] Initialization from environment variables using fromEnv() in factory (#8)
• [feature] Automatic authentication with buildAndAuth()
• [feature] Custom timeout and number of retries (#9)
• [feature] Connector implements AutoCloseable
• [fix] SecretResponse does not throw NPE on get(key) and getData()
• [test] Tested against Vault 0.7.2

v0.5.0

• [feature] Convenience methods for DB credentials (#7)
• [fix] Minor bugfix in TokenBuilder
• [deprecation] SecretResponse.getValue() deprecated
• [test] Tested against Vault 0.7.0

v0.4.1

• [fix] Factory Null-tolerant for trusted certificate (#6)
• [test] StackTraces tested for secret leaks
• [test] Tested against Vault 0.6.4

v0.4.0

• [feature] Option to provide a trusted CA certificate (#2)
• [feature] Deletion, revocation and renewal of secrets (#3)
• [feature] Token creation (#4)
• [feature] AppRole auth backend supported (#5)
• [improvement] Support for complex secrets
• [deprecation] App-ID backend marked as deprecated

v0.3.0

• [feature] Retrieval of JSON objects (#1)
• [test] Tested against Vault 0.6.2