Skip to main content

v1.12.2

Discover the new features, logic changes, bug fixes, breaking changes, and known issues and limitations in this Piiano Vault release.

New features

  • A new JWT enforcer type: https://app.piiano.io/prop-claim-ref allows you to reference a claim from the JWT token as the value of a property enforcement. See Namespace claims for JWT tokens for more information.
  • Namespace claims can now be nested. For example, placing an all-of claim inside an any-of claim.
  • Direct JWT authentication now supports a new configuration: extra_claims. This configuration allows you to add extra claims (configured in the IAM) to be attached to the JWT token when it is sent to Vault. See JWT configuration in the IAM file for more information.
  • Direct JWT authentication now supports a new configuration: namespace_top_claim. This configuration is used to specify the top claim in the JWT token that contains the namespace claims. See JWT configuration in the IAM file for more information.
  • A new JWT enforcer type: https://app.piiano.io/all-of that requires all the properties in the claim to be enforced. Although it's the default behavior, it's helpful if nested under other enforcer expressions such as any-of. See Namespace claims for JWT tokens for more information.
  • JWT enforcers https://app.piiano.io/any-of and https://app.piiano.io/all-of supports an optional identifier to allow multiple enforcers of the same type at the same level. See Namespace claims for JWT tokens for more information.

Logic changes

  • JSON data type now accepts all valid JSON values, including an array, string, number, object, etc. Previously, it only accepted an object.

On this page