All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
3.1.0 - 02-08-2024
- Sites can now add javascript files through
custom_javascript_files
config in 2791. - An option for Google analytics javascript has been added to dashboard in in 2795.
oidc_crypto_passphrase
can be set in ood_portal in 2807.- Titles for menus can now be overriden in 2804.
- Sites can now configure
passenger_log_file
in 2835. - Support for aarch64 builds in 2873.
- The File browser now has a Globus button to link to Globus endpoints in 2858.
- Rclone can now validate remotes in 2952.
- Remote file systems now show in breadcrumbs in 2957.
- Support for adding interactive app profiles in 2958.
- File editor now has syntax highlighting for fortran in 3008.
- Subapps can now override category, subcategory, and metadata in 3006.
- Rclone now supports extra configuration in 2956.
- RSS and MD MOTD formats can now render unsafe HTML in 3007.
CurrentUser
should now be availalbe in ondemand.d config rendering in 3035.- Icons are now present in favorite paths 3076.
- Debian 12 is now supported in 3127.
- Sites can now use a japanese locale in 3180.
- Checkboxes can now use
data-hide-
directives in 3199. - select options can now toggle checkboxes through
data-set-
directives in 3181. - Admins can now set a
default_profile
in 3200. - The files table now has a select all checkbox in 3212.
- Centers can now disable shell links at the app level in 3206.
- Added a rake task to determine ensure unix file formats in 3227.
- Batch Connect apps can now provide a completed.{md, html}.erb in 3269.
- Sites can now disable uploads and downloads in 3236.
- Sites can now use disable_logs in ood_portal.yml to disable logs in apache in 3290.
- Sites can now set arbitrary vhost and location directives in Arbitrary apache conf 3293.
- Warnings will now be logged for items that are not in the allowlist in 3316.
- The dashboard will now load ruby files in config_root/lib in 3307.
- Develop menu now correctly shows/hides when given a configuration in 2848.
- ood-portal-generator correctly uses
proxy_server
in http rewrites in 2870. - auto_modules now support module names with hyphens in them in 2938.
- Quality and compression settings correctly set in noVNC pages in 2995.
- auto_modules correctly filters hidden modules in 2997.
- Sites using ips instead of hostnames correctly populate allowed hosts in 2998.
- ActiveJobs correclty parses NONE time in 2965.
ondemand.d
files are now sorted before loaded in 2944.- The shell app can now ping/pong to keep connections alive in 3135.
- auto_queues are account aware in 3123.
- auto_modules can correctly set their label in 3139.
- Gnome desktops correctly work in 3188.
staged_root
is created as 700 to ensure it's writable by the user in 3202.- MOTD correclty shows up in custom pages in 3216.
- Open OnDemand no longer builds el7 packages in 3232.
- BatchConnect apps now use rsync with safer arguments in 3239.
- Dynamic forms correctly handle options that start with numbers in 3241.
- Multiple domains corrrectly redirect in 3264.
- MATE desktop will only patch the autostart .desktop files if they exist in 3291.
- The navigation bar now follows the menubar pattern to increase accessibility in 3300.
- nav_bar configurations correctly sort menu items in 3344.
- Open OnDemand now requires NodeJS 18 and Ruby 3.1 on applicable platforms in 2885.
- Packaging adds
nodistro
nodejs repos in 3158. - The user usetting file is now in an XDG dirrectory instead of the dataroot in 3308.
3.0.3 - 11-09-2023
- Fixed markdown MOTD in 3119.
3.0.2 - 10-06-2023
auto_modules
now supports modules with hyphens in them in 2938. Backported to 3.0.2 in 2094.auto_modeles
filters hidden modules in 2997. Backported to 3.0.2 in 3036.- The file browser will now correctly download hidden files in 3096. Backported to 3.0.2 in 3104.
ondemand.d
files are now sorted before loaded in 2944. Backported to 3.0.2 in 2960.- noVNC compression and quality settings actually work in 2995. Backported to 3.0.2 in 2996.
- Sending files is no longer done by Nginx, instead this is done by Rails so we can validate it being in the
OOD_ALLOWLIST_PATH
in 3049. Backported to 3.0.2 in 3104. - ERB files in batch connect's output directory are now rendered then copied in 3045. Backported to 3.0.2 in 3104.
- Symlinks outside of
OOD_ALLOWLIST_PATH
will no longer show up in the file browser in 3057. Backported to 3.0.2 in 3104. - Connection views are no longer saved to user writable files in 3091. Backported to 3.0.2 in 3104.
- The file browser will never download files outside of the
OOD_ALLOWLIST_PATH
in 3096. Backported to 3.0.2 in 3104.
3.0.1 - 04-20-2023
- Only depend on the selinux-policy version, not full version including release in 2738.
- Fix 2715 by moving the error partial in 2731.
- Duplicate applications are now filtered in the interactive apps menu in 2730.
- Correctly catch errors from account queries in 2742.
ood_core
bugfixes in 2740.activejobs
now correctly shows kubernetes jobs.auto_accounts
now correctly works with non-standard sacctmgr commands and Slurm clusters with the cluster field set.
- The panels for development apps will always show in interactive sessions in 2757.
- Upgrade to rails 6.1.7.3 in 2747.
3.0.0 - 03-27-2023
- Added support for YAML anchors and aliases when reading configuration (#2214) (#2224)
- Update hterm to 1.91 in #1426.
- Batch connect apps can now use a per cluster dataroot to support sites that have multiple storages in #1409.
- The dashboard now uses strict same site cookies in #1418.
- Build RPMs in CI/CD pipelines using -s flag to disable source download in 1471.
- Dashboard is rails 6.1 in 1830. Myjobs is rails 6.0 in 2032.
context.json
files have moved in location and filename in 1526.- Switch dev container and EL8 e2e tests to use Rocky Linux 8 1534.
- The entire Javascript and CSS pipeline was migrated to webpack, closing 1005. It was then migrated to esbuild in #1957.
- Remove active support dependency for ood-portal-generator in 1572.
- All desktop options now show in bc_desktop 1638.
- Radio buttons are now grouped for labeling in 1611.
- Changed the file editor navbar in 1582.
- CI now uses the
ood_packaging
gem to build artifacts in 1661. - Yaml files now preview in 1758.
- Manifests can now specify and override an app's caption in 1941.
- The file explorer table has been heavily refactored to be more reusable in 1883.
- The shell app will now diplay specific errors in #1966.
- The default authentication scheme for the ood portal generator has been changed to an empty array in #1982. The previous default was OIDC configs.
- Packages now rely on python3 in #2011.
- Passenger and NGINX dependencies are now 6.0.14 and NGINX repectively in #2027.
- NavConfig settings have been deprecated and replaced in 2221.
- noNVC is now 1.3.0, up from 1.1.0 in 2295.
- NavConfig should now use allowlist, deprecating whitelist in 2380.
- Shared apps can now correctly set FACLs in 2398.
- Session info is now stored in a local filesystem instead of in cookies in 2434.
- NavConfig is deprecated in favor of an ondeman.d setting
nav_categories
in 2454. - Passenger security update checks are disabled because users can't update outside of OSC packages in 2660.
- Sites can now server assets out of public/maintanence in 2443.
- Batch connect apps can now enable automatic javascript to dynamically update:
- Several automatic batch connect items have been added:
- Test cases for example files for both ood_portal and nginx_stage in 832.
- Debian packaging in 1466. With many many subsequent patches.
- Automation will now push ondemand tar.gz to release page on tags in 1564.
- Submit.yml's will now be written to the staged root if they have ERB/YML related errors in 1636.
- Apps recognize if they're preset. Preset apps don't show forms, they just launch in #1815.
- Citation information for this source is now available in 1887 and releases are made in 1888.
- Custom CSS files can be added in 2168.
- Cloud Storage.
- Support for Profiles
- Support for opening support tickets in 2292.
- Added ENV override for showing/hiding job arrays in 2327.
- Sites can add custom pages in Custom pages feature 2353.
- BC apps can now display choices made in the card in 2366.
- Added the active sessions widget in 2377.
- BatchConnect choices now appear in the cards if display is set to true in 2381.
- BatchConnect apps can now use
auto_group
attributes in Auto groups 2370. - BatchConnect job directories will now be cleaned on some interval in 2482.
- Added recently used applications widget in 2503.
- Added a configuration to hide app version for batch connects apps in 2462.
- Completed batch connect sessions can relaunch from their card in 2529.
- Sites can add anything to the help menu in 2514.
- The ALLOWED_HOSTS environment variable is populated in the PUN in 2559 and 2567.
- Added support for images from /public location in 2577.
- Added configuration to disable the dashboard welcome message in 2585.
announcment_paths
are now an ondemand.d property with profile support in 2608.
- Batch connect now safely reads files in db in 1402.
- Add retry attempt counter to 404 loop to fix client side loop in #1298.
- Removed Index from Public RootOptions in #1618.
- File uploads have longer upload time limits more in line with TCP TTLs in #1600.
- passenger_options now works correctly in #1793.
- File uploads now respect setgid in 1851.
- Fix uploaded correctly set umasks other than 0022 in 1845.
- Home directories can now change in 1854.
- Activejobs now correctly sorts the time column in 2420.
- Some sites can now disable the shell option for BC apps in 2425, fixing 722.
- The job composers' setup script now recoginizes a 0 byte file and attempts to fix it in 2461.
- The file browser now filters files with non-utf-8 characters in 2626.
- Safari disables form select options because it cannot hide them in 2640.
- RSS MOTD correctly read feeds from a url in 2681.
- SyntaxErrors in announcements safely rescue in 2647.
- SVGs, being unsafe to preview, are now downloaded in 1435 and 1437
- Selinux updates in 1496.
- nginx APIs now validate the redirect on stop requests in #1775.
- Nginx PUNs correclty start with minimal environment in 2157
2.1.0 - 03-09-2023
Similar changelog as 3.0.0. This version was not released to the general public and indeed was renamed 3.0.0.
2.0.32 - 03-27-2023
- Hterm has been updated to v91 in 2632 to add support for more utf-8 characters.
- The files app correctly filters filenames with non-utf-8 characters in their name in 2626.
2.0.31 - 02-07-2023
- The linux Host adapter is now compatabile with apptainer in 2548.
2.0.30 - 02-02-2023
- Dynamic batch connect apps correctly clamp to 0 in 2413.
- Maintanence pages can serve assets in 2436.
2.0.29 - 10-31-2022
- Maintanence pages are no longer the default 503 pages in 2202.
- Open terminal buttons do not appear when ssh to compute node is turn off in 2210.
- Fujitsu TCS shows in active jobs in 2208.
- Libraries use SHA1 instead of MD5 to support FIPS systems in 2328.
- Dynamic batch connect now allows for multiple min & max settings in 2337.
- Dynamic batch connect correctly handles keys with / in them in 2340.
- Open OnDemand now relies on NodeJS 14 (up from 12 which is EOL) in 2316.
- The job composer now allows for copy environment setting in 2324.
- Upgrade to ood_core 0.22.0 in 2349.
- This adds the
vnc_container
batch connect template.
- This adds the
2.0.28 - 08-01-2022
passenger_options
are now safe to use in 2016.- Interactive jobs now have compatability with turbovnc 3.0+ in 2153.
Through the
ood_core
update. - PUNs now start with only the environment variables required in 2156.
- Support for Ubuntu 20.04 packages was added in 2141.
- Support for Ubuntu 18.04 packages was added in 2160.
- Support for
fujitsu_tcs
scheduler also through theood_core
update. - Dex can now be proxied behind Apache in 2183.
2.0.27 - 06-23-2022
- Correctly set
passenger_temp_path
undertmp_root
in 2096.
2.0.26 - 06-02-2022
- The shell app now correctly skips
cluster.d
files it cannot read in 2057.
- Rack dependency has been updated to 2.2.3.1 in 2063.
2.0.25 - 05-20-2022
- 2.0 now depends on a more specific ondemand-passenger ondemand-nginx versions in 2043.
2.0.24 - 05-19-2022
- Dynamic form widgets with min and max settings will now correctly initialize in 2014.
- The shell app now correctly skips
cluster.d
files it cannot read in 1988.
- Releases will now be added to Zenodo in 2039
- Rails has been updated to 5.2.8 up from 5.2.6.x in 2029.
- Passenger has been updated to 6.0.14 in 2026
2.0.23 - 03-02-2022
- Bump ondemand-runtime dependency for bigdecimal gem in 1807.
- nginx_stage can now identify when a username has a @domain in it from SSSD. There are issues When username have domains in them. 1852 identifies this and throws an appropriate error message.
- File uploading now correctly sets the file permissions in 1853.
- Uppy upgrade to 2.0 in 1804.
2.0.22 - 2021-12-21
- Back-ported 1676 to correctly hide options with hyphens.
2.0.21 - 2021-12-20
- Dynamic javascript now correctly clamps values correcting 1649.
- Dynamic javascript can hide multiple elements correcting 1666.
- Dynamic javascript now correctly handles options with numbers, hyphens and underscores back-porting 1656.
2.0.20 - 2021-12-01
- Removed Index from Public RootOptions as to not allow Directory Indexing in 1617.
- Fixed lua warnings
bad argument #2 to 'date'
in 1627. - Uppy claims failure but upload succeeds. This has been fixed in 1600 by extending the timeout.
- Batch connect apps can now have dynamic behaviour through configuration in 1639.
This means we now ship a lot of functionality that sites previously had to code themselves in
form.js
. This introduces theOOD_BC_DYNAMIC_JS
that sites must set to enable this feature.
2.0.19 - 2021-10-29
- Fixed CSS issue where the noVNC range sliders looked washed out and hard to notice - 1384.
- Selinux updates mostly for k8s - 1497
2.0.18 - 2021-10-06
- The svg patch in 2.0.17 needs to account for files with .SVG (all caps) extensions too.
2.0.17 - 2021-10-05
- .svg files in the file browser are now being forced to be downloaded as they could contain malicous javascript that would execute in the browser within a site's context.
2.0.16 - 2021-08-25
- Fixed an issue with non US keyboards could not use
+
keys in the shell app - 1214. - Fixed Ganglia panels visually and semantically - 1031.
- Fixed error messages in creating invalid files - 1322.
- Fixed removing files when allowlists are in place - 1337.
- Sessions stores can now be overridden in 1321.
- upgraded
ood_core
from v0.17.4 to v0.17.6.
2.0.15 - 2021-08-11
- Fix RPM builds to work with top-level Gemfile changes
2.0.14 - 2021-08-10
- Files app shell buttons now correctly redirect to the given cluster in 1317.
- Locales now correctly fallback to english in 1314.
- Manifest YAMLs are now read safely in 1325.
- Updated
ood_core
to v0.17.4.
- Development container tooling in 1305.
2.0.13 - 2021-07-16
- Fixed in
OOD_NAVBAR_TYPE
bug in 1283. kubectl
commands no longer log to syslog in 1290.rake test
works directly now without having to forceRAILS_ENV
in 1285.
- Updated
ood_core
to v0.17.2.
2.0.12 - 2021-07-01
2.0.11 - 2021-06-21
- File preview now correctly shows utf8 characters in 1254.
- Sites that enable user sharing now have to configure pinned apps to get them to show on the landing page in 1248.
- Batch connect now respects cluster level settings enable sshing into the compute nodes in 1173.
- Cluster shell access menu items are now internationalizeable in 916.
2.0.10 - 2021-14-06
- Fixed 1207 a bug in the file editor that was saving 0 byte files when the file being edited has UTF-8 encoded characters.
- Cosmetic fixes to the apps panels in 1213 and 1217.
- Asers can now download multiple files at a time in 1181.
- Administrators can now configure
passenger_pool_idle_time
in 1209. - Administrators can now configure any passenger configuration in 1211.
- Updated ood_core to 0.17.1 in 1223.
2.0.9 - 2021-26-05
- Fixed 1164. Uploading directories now correctly uploads files and any subdirectories.
- Fixed 1109. Active jobs buttons now pull to the left.
- update to ood_core 0.17.0 in 1169.
staged_root
is now available in thesubmit.yml.erb
's context completing 864.
2.0.8 - 2021-12-05
- Fixed an issue with hooks prefixing usernames in 1132
2.0.7 - 2021-12-05
- Fixed an issue the in the files app where the wrong file ownder was being shown in 1125.
- Added some helper hook scripts in 995.
2.0.6 - 2021-11-05
- node and rnode proxies now gaurentees a URL in the request in 1105.
- Uploading files now respects the users umask in 1110.
- Disable the audio bell in the shell by default in 1089.
- Dashboard widgets are now expected to be in views/widgets in 1116.
- pun_pre_hook now uses lua-posix to fork the apache process and set's environment instead of feeding nginx_stage stdin in 1091.
- Removed the rails_12factor dependency in 1112.
- Apps can now define the open in new window behaviour through their manifest in 1094.
- Dalli is now added as a dependency to be provided for folks in ondemand-gems in 1102.
- The files app can now choose which cluster to open in terminal in 1107.
- The files app can now download a directory as a zip in 1108.
- The files app now shows javascript, css and yaml as plain text in 1068
2.0.5 - 2021-27-04
- fix file editor bug with opening files with ampersands in their names #1082
- files app to open terminal app in new window #1083
- fix session card connection tab control that broke when session UUID started with a number #1084
- Session card element id's now have "id_" prefixing the session id, but attribute data-id is added with unmodified session id
2.0.4 - 2021-23-04
- Cosmetic and accessibility defects with XDMoD jobs widget #1076
2.0.3 - 2021-23-04
- Change
HTTPD24_HTTPD_SCLS_ENABLED
back to default value since we no longer need SCL Ruby for user mapping #1072 - Fix minor cosmetic defect on files favorites nav #1074
2.0.2 - 2021-23-04
ood_core
version bumped from 0.16.0 to 0.16.1. See the ood_core's changelog for details.- Set a max PUN per app to 1 in 1069
2.0.1 - 2021-22-04
- The ability to add pinned apps to the dashboard along with a new menu item titled 'Apps' in
870. This change also started added a new general
purpose configuration file. It added the
pinned_apps
configuration item. Other additions to this feature are:- Pinned apps menu items are limited in the navbar in 894.
This is configurable by
pinned_apps_menu_length
. - Pinned apps can be configured through globs in 898.
- Pinned apps can be configured through app manifest data like category, subcategory or metadata in 912 and 939
- This widget has an internationalizable header in 921.
- The string 'Pinned Apps' is internationalizable in 992.
- Pinned apps can be grouped by known fields in 996 and by
metadata in 1026. This adds the
pinned_apps_group_by
configuration item.
- Pinned apps menu items are limited in the navbar in 894.
This is configurable by
- Apps can now supply a metadata map in their mainfest files in 903.
- Read configurations from an ondemand.d directory in 893.
This directory is configurable through the
OOD_CONFIG_D_DIRECTORY
environment variable. - The shell app now supports themes in 630.
- The dashboard's landing page is now configurable. Users can redefine the layout of defined widgets
and add entirely new widgets in 1038. This adds the
landing_page_layout
configuration item.
- Webpacker now uses it's own yarn in tmp in 862.
- Nginx no longer returns the versions in the Server and X-Powered-By headers in 891.
- All rails apps now use the secure cookies in 897.
- Corrected a broken link in the footer in 899
- Users can now speicfy the dex frontend theme in 929.
- Users with specialized conda environments will no longer have issues launching an XFCE desktop in 942.
- Potential XSS with the Job composer in 949.
- Wrong link to docs in ood-portal.conf comments in 1010.
- ood-portal-generator now supports Oracle Linux in 1049.
- Job composer can now store more than 1000 workflows which would previously cause crashes in 1039.
- The all apps page is now a table instead of panels holding lists in 884.
- This table also shows metadata fields in 924.
- Upgraded the dashboard to bootstrap 4 in 991.
- Upgreaded all rials apps to 2.2.5 in 1014.
- The active jobs app is now a part of the dashboard instead of it's own webapp in 1034. This breaks some previous behaviour regarding this app. See the PR's initial comment for details.
- The files app has been completely replaced in 1040 and is now a part of the dashboard. The file-editor was also migrated in into the dashbaord in this change. The old files app's source files were removed in 1051.
- The PUN will now redirect old app URLs to new apps in 1056.
ood_core
version bumped from 0.15.0 to 0.16.0. See the ood_core's changelog for details.
2.0.0 - 2021-02-03
- support
markdown_erb
andtxt_erb
MOTD formats #647 - A pre hook that runs as root before the PUN starts #535
- end-to-end test in rake tasks that build containers #695
- escape html in activejobs table #739
- don't use cached cluster value in session form cache if it is no longer a valid value #748 #761
- ensure LOGNAME set to PUN user #836
- move regex mapping to Lua #729 which removes the need to make Apache aware of SCL Ruby and not rely on system Ruby to launch the mapping script
- upgrade dependencies nginx to 1.18.0 and passenger to 6.0.7
- upgrade dependencies ruby 2.5.5 => 2.7.1 and bundler 1.17.3 => 2.1.4
- upgrade dependency nodejs 10 => 12
- upgrade dependency sqlite3 to 3.26.0 (will ship custom SCL for newer sqlite3 build)
- add ondemand-dex to the Dockerfile in #727
- start using GitHub actions instead of Travis CI #742 #743 #747
- move JOSS publication to OSC/ondemand repo
1.8.20 - 2020-04-14
- Ensure that LOGNAME is set correctly in the PUN in 837.
- Remove unused SELinux dependencies in 853.
- Fixed specifiying dex custom frontend themes in 930.
- Hide Nginx and Passenger versions in the http headers in 892.
- Update to Rails 5.2.5 to avoid broken mimemagic dependency in 1028.
1.8.19 - 2020-12-14
- don't use cached cluster value if it's not available #748
- fix accessability of buttons in active jobs table #732
- use specific versions of packaging repo in #735
1.8.18 - 2020-11-03
- Fix name of setting security_csp_frame_ancestors in example ood_portal_example.yml file
1.8.17 - 2020-10-30
- build bin from nginx_stage gemspec which can end up placing the ruby/node/python wrappers in your PATH which causes issues #719
- replace
security_disable_frames
withsecurity_csp_frame_ancestors
setting that lets you set the value of this header and defaults header to servername instead of none #721
1.8.16 - 2020-10-23
- accessibility: update html titles of apps to be a little more specific to reduce ambiguity #698
- properly escape user input by using Open3 capture methods #702
- by default, set Content Security Policy frame-ancestors: none for all requests, which can be disabled setting security_disable_frames: false in the ood_portal.yml #697
- by default, set HSTS if SSL is in use, which can be disabled setting security_strict_transport: false in the ood_portal.yml #697
1.8.15 - 2020-10-08
- replace text "XDMoD" with "Open XDMoD" in Job Composer
1.8.14 - 2020-10-06
- log formatting options for apache and nginx access logs #677
- Changed language to 'Open XDMoD' #687.
- Update to Rails 5.2.4.4 and ood_core 0.14.0 #690.
- ood_core 0.14.0 additions
- Fixed XDMoD queries for staff users #688.
1.8.13 - 2020-09-21
- make it easier to develop info.html.erb in batch connect apps by gracefully handling crashes and now rendering template from the app root instead of storing a copy of the template in the session #666
- can load .rb locale files alongside .yml files #645
- warn users about job composer links to XDMoD jobs being broken immediately after job starts #676
- ignore bad cache key values when updating from batch connect form cache #655
- properly escape characters in Go To dialog in Files app #660
- force update Files app dependencies using yarn resolutions #661
- accessibility: hide FA icons from screen readers and use real title in app link list #667
- xdmod widgets utilize available space when no motd displays #676
1.8.12 - 2020-08-18
- mod_auth_openidc option for setting OIDCCookieSameSite in ood-portal-generator using "oidc_cookie_same_site: On" or "oidc_cookie_same_site: Off" #651
- default "oidc_cookie_same_site: On" if SSL not enabled so Chrome browser works (useful for ood-images) #651
1.8.11 - 2020-08-10
- grafana config: allow changing the cluster config name when the cluster in OOD differs from the cluster in Grafana #639
- latest ood_core provides CCQ adapter
- Dex default theme is the ondemand theme so this doesn't have to be configured manually #635
- job composer staged_dir guard clauses prevent crash #637
- colors for queued and starting panels changed to differ from completed panels #636
- clarify Powershell is option for setting up SSH tunnel for Native VNC Windows tab #638
1.8.10 - 2020-08-05
- Fixed a dependency bug in dotwi #110 on the dotiw repo.
1.8.9 - 2020-08-05
- specified clusters in app to support glob expressoins #617
- extended view support for SGE #520
- Native VNC connection tab for OOD can be enabled for sites external to OSC #625
- Ability to control which batch connect apps or app attrs use cache to preset values #539
- ood_core 0.12.0 additions
- support glob style wildcard in host names for OOD_SSHHOST_ALLOWLIST #601
- ood_core 0.12.0 fixes
- Safari compatibility alert for BasicAuth #608
- use handlebars in files app to prevent XSS
- update files app dependencies ponse, express, jquery
- ensure default Dex generated secret is stored in file with secure permissions
1.8.8 - 2020-07-22
- Revert the commit that made XDMoD SSO timeout configurable, which introduced a bug #607
1.8.7 - 2020-07-21
- Add back support for DEFAULT_SSHHOST env var in shell app #603
- Replace accidental hardcoded OSC XDMoD host #604
1.8.6 - 2020-07-20
- Configuration for XDMoD auto-login timeout #597
- Handle edge case in job efficiency widget where no data available #597
- Fix XDMoD auto-login iframe trick to properly hide and position iframe so form button clicks in iframe still work #596
- Fix bug where
cluster: ""
in batch connect app resulted in unhandled exception #593
1.8.5 - 2020-07-16
- Broken tests introduced with redirect URIs in Dex #592
1.8.4 - 2020-07-16
- Support for additional redirect URIs in Dex config #591
1.8.3 - 2020-07-16
- Shell App: use OOD_SSHHOST_ALLOWLIST instead of SSHHOST_WHITELIST #582
- Dex config generator now supports configuring multiple static clients #589
1.8.2 - 2020-07-13
- Retain the BC panel after a job completes 559
- XMDOD panels to use SSO, removing perf & summary widgets and added job efficiency widget 578 and 580
- Added jest for shell testing suite 577
- Added Sinatra gems into ondemand-gems for other apps to use 579
- default_sshost is added to the shell's allowlist 564
1.8.1 - 2020-07-06
- ondemand-dex binary location in /usr/sbin not /usr/local #566.
1.8.0 - 2020-07-06
- Chinese localization for "Mainland China simplified characters" #477, thank you @374365283 and @summerwang
- Specify the default login host in the cluster config #508
- Control nginx max upload size by setting byte size in nginx_stage.yml
using configuration option
nginx_file_upload_max
and the files app will now respect this #502 - Add an info.md.erb (or info.html.erb) to the root of any batch connect app to display extra information. the context for the erb is the session and the rendered string is passed through a markdown renderer #556
- Configure a single batch connect app to submit to multiple different clusters, either in form.yml or submit.yml: #524 #536 #538 #553
- Streamlined Copy and Paste for Chrome #537
- Dockerfile for help with development #309
- Configurable logo height using OOD_DASHBOARD_LOGO_HEIGHT set to a value like
100px
which enables using SVG for logos on the dashboard - Add TurboLinks dependeny to the dashboard in decrease loading time 498
- Shell app now requires every host it will connect to to be whitelisted defaulting to hosts in colon delimited SSHHOST_WHITELIST env var or every host specified in the login section of each cluster config #507
- Switch from BasicAuth to Dex for default authentication #474
1.7.14 - 2020-05-27
- Safari bug that broke noVNC #516.
1.7.13 - 2020-05-27
- update to latest ood_core, 0.11.4 (up from 0.11.3) for SLURM bug fixes in #193.
- updated rails to 5.2.4.3 (up from 5.2.4.2) for security vulnerabilites in several rails libraries.
- KDE bc_desktop in #482
1.7.12 - 2020-05-12
- Fix nginx_clean --user --force to properly force kill PUN #485
- Linux Host Adapter: fix to work when a user's default shell is not bash #187
- Linux Host Adapter: fix issue with wrong arguments passed to pstree #188
1.7.11 - 2020-04-23
- update to latest
ood_core
patch version to fix calls to LinuxHost#info_where_owner, particularly by the Active Jobs app
1.7.10 - 2020-04-08
- fix bug with file favorite URLs being incorrectly set in dropdown #472
1.7.9 - 2020-04-03
- remove deprecated Dashboard version string from footer #467
- fix hiding the joy ride script which is meant to be hidden in the DOM on the bottom of the page, not visible #466
1.7.8 - 2020-04-03
- fix use of ActiveSupport::Inflector#parameterize in Rails 5.1+ #71 and commit cbb8b19
- update Rails patch version for dependency security updates #463
- update Job Composer schema file to be Rails 5.2 compliant #463
1.7.7 - 2020-03-30
- Use legal job names in job submission rake task #341 and #355
- Support sanitizing job names of batch connect apps with
OOD_JOB_NAME_ILLEGAL_CHARS
env var #429 - Add CSRF protection via CSRF token and Origin checking when creating shell app websocket connection #444 and #452
- Fix JoyRide tooltip positioning for the Job Composer #396
- Regenerate
ood_portal.conf
whenever Apache is restarted #371. This means you can edit/etc/ood/config/ood-portal.conf
and restart Apache and your change should take effect. - Upgrade Rails to version 5.2 (from 4.2)
- Upgrade noVNC to 1.1.0 (from 1.0) in #428 and #431
- Title to Favorite Paths dropdown #418 and #432
- Action column with delete button in active jobs #423
- Alert for invalid clusters #427
- Configurable SSH Wrapper for Shell app @baverhey #406
- Regenerate ood-portal.conf when apache starts or reloads #371
- Maintenance Mode for OnDemand #370
1.7.6 - 2019-12-20
- Remove Async ClipboardAPI (noVNC copy/paste hack) due to noVNC freezes #356
- Fix missing favicon #322
- Remove hidden/dot files from JobComposer's file list #346
1.7.5 - 2019-12-11
- use Async ClipboardAPI for better copy and paste with Chrome and NoVNC #335
- restrictions on what can be set as a job script in Job Composer to mitigate problem with accidently choosing input file as job script #310
- fix URL used for file-editor assets #343
1.7.4 - 2019-12-04
- Addition of LinuxHost adapter to the Dashboard
- Fixed bug where an unreadable cluster config (e.g. due to file permissions) would cause crashes
1.7.3 - 2019-12-03
-u/--user
flag tonginx_stage nginx_clean
subcommand #315- enable admin to disable shell link to compute node by setting env var
OOD_BC_SSH_TO_COMPUTE_NODE
to falsy value (0, false, off) #306
- rewrite SELinux support by running as
ood_pun_t
context instead ofhttpd_t
context #319
- ensure
BUNDLE_USER_CONFIG
is set to/dev/null
when the dashboard executes the per user setup script for an app #318 - include development and test gems in production build so OnDemand developers can develop against existing gem set #326
- Fix font awesome icon usage for activejobs #323
1.7.2 - 2019-11-19
- Job Compser and ActiveJobs now respect same navbar branding configuration as Dashboard @zooley #101
- running core app unit tests in Travis CI #303
- support for radio buttons in batch connect apps #139
- branding to Job Composer and Active Jobs that match Dashboard #101
- rewrote ood-portal-generator in Ruby with automated tests #108
- SELinux policy issues exposed when installing at external site #110 and #112
- Shell app now uses en_US.UTF-8 as LANG @jasonbuechler #308
- ignore comments when comparing Apache configs in ood-portal-generator #100
1.7.1 - 2019-11-04
- shellcheck static analysis of shell scripts
- monorepo: add all core apps to main repo
- start installing app gems to a
GEM_HOME
under /opt/ood that is built into a separate ondemand-gems rpm - upgrade Dashboard to Rails 5
- fix window.opener vulnerability found by Google's Lighthouse @zooley #88
- accessibility fixes exposed using Deque's aXe utility @zooley #89
- optimize some included pngs using ImageOptim app @zooley #91
- add missing closing tag to missing home directory error page @zooley #92
1.7.0 - 2019-10-14
- update Dashboard to add account balance warnings & dev mode icon picker
- for new installs, sudoers.d/ood script now includes
env_keep
for all env vars starting withNGING_STAGE_
orOOD_
- add support for CentOS/RHEL8
- drop support for CentOS/RHEL6
- upgrade to Ruby 2.5, Node 10, and Passenger 6
1.6.20 - 2019-10-14
- fix bug to ensure
update_ood_portal
installs new config if existing ood-portal.conf matches checksum #83
1.6.19 - 2019-10-09
- ability to set separate proxy server for rewrite rules in ood-portal-generator config
ondemand/ood-portal-generator/share/ood_portal_example.yml
Lines 18 to 22 in 4e26149
1.6.18 - 2019-10-09
- stop shell app from changing directory to the home directory prior to initiating ssh connection which introduced a crash when the home directory does not exist when we upgraded the shell app's pty dependency
1.6.17 - 2019-09-26
- ensure ood-portal.conf generated on new install #65
1.6.16 - 2019-09-25
- debian fix for bin/setup in Active Jobs and Dashboard
- use latest ondemand release RPM
- fixed exit codes for
update_ood_portal
script
1.6.15 - 2019-09-24
- files app updated for Lustre copy bugfix
1.6.14 - 2019-09-19
- files, file editor, job composer apps all get fix in bin/setup for output redirection
- files app gets cachebusting fix for "FancyBox" so images show newest version of file
1.6.13 - 2019-09-19
- Depend on system git instead of rh-git29 which is an EOL SCL
- Generate a checksum file when running
update_ood_portal
to avoid overwriting the Apache configood-portal.conf
if the file contains manual modifications
1.6.12 - 2019-09-11
- Reverted use of Rsync in Files app; use of Rsync caused resource exhaustion on the web nodes when file copies took longer than 1 minute
1.6.11 - 2019-08-30
- Fixed bug in the File Explorer when attempting to copy directories on a Lustre FS; a side effect of this fix is that copy-progress messages are no longer sent to the client
1.6.10 - 2019-08-27
- Upgraded dependencies for multiple apps
1.6.9 - 2019-08-20
- Fixed bug where user's login shell was always set to Bash inside desktop sessions
1.6.8 - 2019-08-13
- Fixed issue in Dashboard where older browsers (IE) could not connect to VNC sessions ood-dashboard
1.6.7 - 2019-06-28
- Added ability to disable RewriteEngine
1.6.6 - 2019-06-25
- Cache bust for
ood_shell.js
1.6.5 - 2019-06-20
- Added new check to enable developer mode in Dashboard
- Fixed bugs with Firefox and MS Edge in the Shell
1.6.4 - 2019-06-16
- Added VNC quality and compression controls to Dashboard
- Added link to compute node that a VNC job is running on in the Dashboard
- Changed 'Open in Terminal' button to offer multiple options when
OOD_SSH_HOSTS
is set in the File Explorer
- Fixed possible crash when running the Job Composer for the first time
- Fix sorting of cluster dropdown (#168)
1.6.3 - 2019-05-21
- Fixed translation bug in Dashboard
1.6.2 - 2019-05-15
- Fixed another translation issue in Dashboard
1.6.1 - 2019-05-15
- Fixed crashing bug in Dashboard
1.6.0 - 2019-05-10
- Added ability to render HTML or Markdown in job template manifests (#278)
- Added I18n hooks to Job Composer for Job Options with an initial OSC/English locale
- Added job array support for PBSPro and LSF
- Added placeholder for job array in job options
- Changed Shell to use the maintained
node-pty
instead ofpts.js
- Slurm adapter now returns
nil
instead of'(null)'
forOodCore::Job::Info#account_id
- Updated Gems to address CVEs
nginx_stage
changed to always remove (and report removal of onstderr
) stale Passenger PID and socket files (#11)
- Disabled warning in Job Composer about Gems not being eager loaded
- Fixed a crash in nginx_stage relating to numeric values in pun_custom_env
- Fixed Active Jobs showing
'null'
when forOodCore::Job::Info#account_id
was nil - Fixed Active Jobs showing integer Time Used instead of
HH:MM:SS
- Fixed bug in
ood_core
live system test - Fixed bug with Slurm adapter when submit time is not available
- Fixed bug with the live system test that impacted non-LSF systems
- Fixed issue where Slurm comment field might break job info parsing
- Fixed layout bug in Job Composer (#290)
- Fixed possible crash when comparing two clusters if the id of one of the clusters is nil
- Job Composer with Grid Engine will attempt to detect if the user has set the working directory, and if not will set it (matching behavior of other adapters)
- Prevent long job names from breaking the Job Composer layout (#290)
- Fixed bug where using integers as values in
pun_custom_env
caused aTypeError
(#26)
1.5.5 - 2019-02-18
- Added app title to noVNC launch button to Dashboard
- Added BatchConnect app version to new session form
- Added I18n hooks for Dashboard with an initial OSC/English locale
- Added OOD and Dashboard version to footer
- Added support for fetching quota from a URL
- Allow BatchConnect applications to raise errors that can be shown to users
- Fixed bug in Active Jobs that broke when cluster configs changed
- Fixed bug in File Explorer when
OOD_SHELL
was an empty string - Handled file not found errors with Announcements and MOTDs
- Updated Gems to address CVEs
1.5.4 - 2019-02-07
- Fixed bug in Active Jobs that broke Ganglia graphs
1.5.3 - 2019-02-7
- Always load the default profile in nginx_stage as we now use the new ondemand SCL
- Include RUBYLIB in the env vars that are declared in the nginx config to be preserved
- Updated Activejobs, Dashboard, and Job Composer to reduce app load time
1.5.2 - 2019-01-31
- RPM friendly execution mode of update_ood_portal script when running from rpm #27
1.5.1 - 2019-01-30
- updated infrastructure components to point to new ondemand-nginx paths
1.5.0 - 2019-01-30 [YANKED]
- Dasboard
- version string to footer
- add support for localization of home page welcome text and motd title with added setup to be able to add support for more localization options in the future
- the home page html (both logo and text) can now be customized using a single html formatted string in /etc/ood/config/locales/en.yml with the welcome_html key
- JobComposer
- submit jobs using job array in job options (for supported adapters)
- ActiveJobs
- ensure base URI for XHR requests are always correct
- Job Composer
- handle job arrays submitted through app gracefully for Torque, Slurm, and SGE
- ActiveJobs
- XHR response is now "streamed" and handled using oboe.js to progressively update the view, so when viewing all jobs from all clusters you see jobs from one cluster at a time instead of waiting for them all to be transferred
- no longer filter out array jobs for Torque, Slurm and SGE since these are now supported
- no longer pre-sort jobs so user's jobs appear first when loading all jobs
- use more Rails conventional url for getting all jobs (index.json)
1.4.10 - 2019-01-11
- Fixed error in ood_core that caused crashes in MyJobs with a SGE cluster
- Fixed issue with displaying launch button with invalid Batch Connect apps #435
- Fixed error where users were unable to rename/move files using the FileExplorer #186
- Updated ood_core to newest in all core apps
1.4.9 - 2018-12-31
- Update Dashboard to improve Quotas
1.4.8 - 2018-12-31
- Update Dashboard to fix a divide by zero error when a resource is not limited
1.4.7 - 2018-12-26
- Update Dashboard, Active Jobs, and Job Composer to use latest version of
ood_core
for bug fixes to SGE and Torque adapters
1.4.6 - 2018-12-21
- Reverting a change which may cause Apache configs to be replaced
1.4.5 - 2018-12-19
- Set
OOD_DEV_APPS_ROOT
env var to the parent directory of a user's dev app, so that the Dashboard and other apps will know where dev apps are deployed to, since this is a configuration that will likely differ from site to site - Default and customizable error page for missing home directory so sites that use pam_mkhomdir.so to create the home directory for new users on login can have a sensible first login flow via OnDemand (see Discourse discussion)
- Change user tmpdir location to fix upload error due to default permissions on /var/lib/nginx being more restrictive in NGINX 1.14 #16
- Use same version string for all components, which will be this OnDemand version
- Error reporting for missing home directory occurs after launch of PUN (the error is reported as a change to the PUN config) instead of aborting the launch of the PUN
1.4.4 - 2018-12-04
nginx_stage
generates a per user asecret_key_base.txt
file containing a secure random 128 char string and setsSECRET_KEY_BASE
env var to this string so that each user's Rails app now more securely can encrypt cookies- ability to define arbitrary env var name and value pairs in
nginx_stage.yml
config file - ability to define an arbitrary list of env vars to declare in the PUN config (so they are retained from whatever is set in /etc/ood/profile)
- distinct default profile file at /opt/ood/nginx_stage/etc/profile so this can optionally be sourced by custom /etc/ood/profile
- Update
nginx_stage
to work with Passenger 5 and NGINX 1.14 - Since NGINX 1.14 now strips environment, we explicitly pass these env vars to NGINX:
PATH LD_LIBRARY_PATH X_SCLS MANPATH PCP_DIR PERL5LIB PKG_CONFIG_PATH PYTHONPATH XDG_DATA_DIRS SCLS
- Default path to developer apps are stored at
/var/www/ood/apps/dev/%{owner}/gateway/%{name}
, requiring a symlink to be generated by a developer to enable developer mode
- Fix bug where if you set
ONDEMAND_TITLE
andONDEMAND_PORTAL
in nginx_stage.yml config file you can end up with different values set inOOD_PORTAL
andOOD_DASHBOARD_TITLE
1.4.3 - 2018-10-19
- Handle spaces in domain groups correctly: https://github.com/OSC/ondemand/commit/09c22c5f0960b39b30167830e23cf3010a91fc44
- Switched to monorepo for infrastructure components, archiving old repos for
nginx_stage
,ood_auth_map
,mod_ood_proxy
,ood-portal-generator
- Updated SCL dependencies to rh-ruby24, rh-git29, rh-nodejs6
1.4.2 - 2018-9-14
- Changelog being added in 1.4.5 but backfilling history to 1.4.2
- From 1.3.7 - 1.4.2 updated app versions