Skip to content

Releases: FINRAOS/Gatekeeper

Release 1.3

09 Oct 17:31
@SMxJrz SMxJrz
v1.3
5f92707
Compare
Choose a tag to compare
Release 1.3 Latest
Latest

EC2 + RDS

Enhancements

Added a way for administrators to override approval criteria, see the documentation for more information on how it works, particularly around gatekeeper.account.sdlcOverrides

EC2

Enhancements

  • Added configuration properties that will enable gatekeeper to push request event details to an SNS topic. This will help with downstream apps that need to act on the Gatekeeper request data as the requests get granted/expired. You can see how we are leveraging this feature here:

Gatekeeper @ RE:INFORCE 2019

RDS

Fixes

  • Made the role check more robust for users that are mixed roles across applications (DBA in one, but DEV in others for example)
Assets 2
Loading

Release 1.2

30 May 18:00
@SMxJrz SMxJrz
v1.2
f508188
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Release 1.2

In This Release:

RDS + EC2

Enhancements

  • Justification (For when approval is required)
    • Added an additional field to for users to link their ticket numbers (if required by your organization)
    • You can configure the messaging in this field to reflect your ticketing system (i.e. JIRA)
      • You can choose to make this field mandatory
    • Added an option to make the justification mandatory
  • The emails have been enhanced to provide the following information
    • Ticket ID
    • Approver DL to show the users of the app who to contact with questions/concerns

Fixes

  • Fixed an issue where sometimes when clicking Add Self the user was not properly added to the request.

EC2

Fixes

  • Application should now properly forward hours over to the SSM Script
    • Reference SSM Document should now reflect this change as well.

RDS

Enhancements

  • Added a way to plug in additional DB engines that aren't supported by Gatekeeper (like Oracle)
  • Added two new roles meant for elevated access (Both of these roles are configurable)
    • read-only confidential
    • dba confidential

Issues

#29 #35

Assets 2
Loading

Release 1.1

12 Jul 19:00
@SMxJrz SMxJrz
v1.1
843f413
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Release 1.1

This release enhances the RDS portion of gatekeeper:

  1. Admin view has been added to RDS
    1. Approvers can view list of users for RDS instances that are set up for gatekeeper
    2. Approvers can revoke access from any user that has been created by gatekeeper ("gk-*" users)

gatekeeper-ui: https://hub.docker.com/r/finraos/gatekeeper-ui/
gatekeeper-ec2-service: https://hub.docker.com/r/finraos/gatekeeper-ec2-service/
gatekeeper-rds-service: https://hub.docker.com/r/finraos/gatekeeper-rds-service/

To use this container pull:
finraos/gatekeeper-ui:1.1
finraos/gatekeeper-ec2-service:1.1
finraos/gatekeeper-rds-service:1.1

Issues:
#1 #6 #12 #13

Assets 2
Loading

1.0 Release

19 Jun 23:06
@SMxJrz SMxJrz
v1.0
ae455e1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
1.0 Release

This is the 1.0 release of Gatekeeper. Please refer to documentation for installation instructions.

gatekeeper-ui: https://hub.docker.com/r/finraos/gatekeeper-ui/
gatekeeper-ec2-service: https://hub.docker.com/r/finraos/gatekeeper-ec2-service/
gatekeeper-rds-service: https://hub.docker.com/r/finraos/gatekeeper-rds-service/

Assets 2
Loading