Logo Passbolt
Product

Product

Editions

Pricing
Help

Docs

Community

Blog
Sign inGet started - freeGitHub4.8k

Baianá

Baianá

Passbolt v4.10.0 is a maintenance update that prepares for the upcoming v5 release, introducing beta support for the v5 resource type format within the v4 user interface and addressing reported issues.

Ready to ride into the future with Passbolt V5?

This release is particularly valuable for maintainers of clients or integrations, offering an early preview of the v5 resource type format to aid in planning for future adaptations. While previous content types will remain supported until version 6, the new content types expand functionality, empowering technical teams to manage a broader range of credentials. Stay tuned—a blog article will be released soon to explain how to enable v5 support and begin testing your integrations.

Thank you to our community for your continued support.

API

Added

  • PRO PB-34451 Update tags table with metadata fields
  • PRO PB-35416 Update tags endpoints to support v5 format
  • PRO PB-35697 Add ability to reuse existing shared tag by passing uuid
  • PRO PB-35760 Tags endpoints to throw an error if allow_usage_of_personal_keys is set to false and personal key is used
  • PRO PB-35746 As an administrator I can run a command to migrate the tags to v5 format
  • PRO PB-35934 Update edit tags to support allow_v5_v4_downgrade settings
  • PRO PB-21404 As an admin I'd like to purge directory_reports
  • PB-34458 Add v5 config flag PASSBOLT_V5_ENABLED
  • PB-34459 Add metadata plugin
  • PB-34450 Update resources table with metadata fields
  • PB-34455 Update comments table with data field
  • PB-34452 Update folders table with metadata fields
  • PB-34454 Create metadata_private_keys table
  • PB-34453 Create metadata_session_keys table
  • PB-34456 Create metadata_keys table
  • PB-34446 Add new resource_types entries for v5 resource types
  • PB-34448 Update resource_types table to add deleted field
  • PB-34472 Add GET/POST /metadata/settings.json endpoints
  • PB-34465 Add MetadataPrivateKey entity
  • PB-34466 Add MetadataPrivateKeysTable table
  • PB-34460 Add MetadataKey entity
  • PB-34462 Add MetadataKeysTable table
  • PB-34461 As a logged-in user the settings.json provides information on the metadata plugin
  • PB-34464 Cache key info in public key validation service for a single request
  • PB-34467 Add POST /metadata/keys.json endpoint
  • PB-34471 Add GET /metadata/keys endpoint
  • PB-35259 Update support for created_by and modified_by for metadata keys
  • PB-35163 Update DELETE /groups/<uuid>.json to support v5 resource format
  • PB-35162 Update DELETE /users/<uuid>.json endpoint to clean up metadata private & session keys
  • PB-35119 Add setup complete controller test (v5 key sharing)
  • PB-35119 Start integration of user setup complete with v5 requirements
  • PB-35122 Add support for v5 create, update resource entities
  • PB-35152 Add DELETE /metadata/session-keys/<uuid>.json endpoint
  • PB-35151 Add POST /metadata/session-keys.json endpoint
  • PB-35150 Add GET /metadata/session-keys.json endpoint
  • PB-34611 Add DELETE/PUT /resource-types/<uuid>.json endpoint
  • PB-35365 Update POST /share/folders/<uuid>.json to support v5 logic
  • PB-35363 Update GET /folders/<uuid>.json to support v5 format
  • PB-35363 Update GET /folders.json to support v5 format
  • PB-35921 Add API endpoint PUT /metadata/session-keys/<uuid>.json
  • PB-35368 As a developer I can run a command to create metadata private key & share it with all users
  • PB-35362 Update PUT /folders/<uuid>.json to support v5 format
  • PB-35361 Update POST /folders.json to support v5 format
  • PB-35120 Add healthcheck to try to decrypt the server metadata private key entry for the shared key
  • PB-35165 Update POST /share/resources/<uuid>.json to support v5 logic
  • PB-35166 Update email notification template to not include metadata (name, uri, etc.)
  • PB-35166 Update POST /share/simulate/resources/<uuid>.json to support v5 logic
  • PB-35157 Email changes for resources changes for V5
  • PB-35157 Add validation for metadata fields
  • PB-35160 Update GET /resources.json endpoint to support v5 format
  • PB-35275 Add edit and create individual metadata private key endpoints
  • PB-35171 Create a Service and CLI task to migrate v4 to v5 resources
  • PB-35272 Add server settings to prevent edition of metadata settings and key
  • PB-35260 Add signature verification for metadata private key sharing service
  • PB-35277 As an administrator I must receive an email notification when a metadata key is added
  • PB-35276 As an administrator I must receive an email notification when the metadata settings are updated
  • PB-35751 As an administrators I can update the metadata settings using command line
  • PB-35748 As an administrator I can run a command to migrate all the items to v5 format
  • PB-35747 As an administrator I can run a command to migrate the folders to v5 format
  • PB-35756 Update resource create endpoint to throw an error if allow_usage_of_personal_keys is set to false and personal key is used
  • PB-35758 Update folders create/update endpoints to throw an error if allow_usage_of_personal_keys is set to false and personal key is used
  • PB-35928 Add allow_v5_v4_downgrade to metadata types settings
  • PB-35945 Add static method to cache and reuse MetadataTypesSettingsGetService results
  • PB-35946 Add static method to cache and reuse MetadataKeysSettingsGetService results
  • PB-35930 Update edit resource to support allow_v5_v4_downgrade settings
  • PB-35931 Update edit folders to support allow_v5_v4_downgrade settings
  • PB-35937 Add allow_v5_v4_downgrade settings to passbolt update_metadata_types_settings command
  • PB-35084 Add the distribution/gpg information in the health-check
  • PB-35866 Add OperatingSystemHealthcheck for 32 vs 64 bit
  • PB-36228 ResourceCreateController should populate empty metadata_key_id if key type is user_key
  • PB-36280 Add created_by and modified_by to metadata keys index service
  • PB-34080 As an admin running the passbolt cleanup, I should delete duplicate resources_tags entries
  • PB-36516 Add populatedMetadataUserKeyId request data massaging to folder create and update
  • PB-36515 Add populatedMetadataUserKeyId request data massaging to resource edit
  • PB-36558 Add baseline support for metadata key expiry
  • PB-35085 Add TimeSyncHealthcheck for system clock sync status
  • PB-36574 As a user I can delete a metadata key that is expired and not in use

Improved

  • PB-34609 Adds is-deleted filter and resources_count contain to ResourceTypesIndexController.php

Security

  • PB-35882 Bump cakephp/twig-view to 1.3.1 to get rid of twig security vulnerability warning
  • PB-36609 Bump twig/twig composer package to v3.11.2
  • PB-36609 Bump symfony/process composer package to v5.4.46

Fixed

  • PRO PB-35742 Fix metadata type settings should be used in tags created/edit endpoints
  • PRO PB-35957 Fix OIDC SSO aud attribute could be an array
  • PB-34189 Fix 500 on GET resources.json when passing 1 as parameter to some filters
  • PB-35173 As a logged-in user I should not get a 500 if the folder does not exist
  • PB-34481 Fix 500 error on /mfa/verify/{provider}.json on account with no 2FA set up
  • PB-35669 Fix GenerateOpenPGPKeyService should default to GNUPGHOME environment variable if set
  • PB-35724 Fix GenerateOpenPGPKeyService should generate key with empty passphrase
  • PB-35709 Fix theme back to default randomly after refresh or navigation
  • PB-35849 Fix API app does not update "Last logged in" time
  • PB-35980 Fix has-parent filter returning duplicate resources (GITHUB #523)
  • PB-36208 Fix LogFolderWritableHealthcheck help text paths

Maintenance

  • PRO PB-35957 Improve BaseIdToken test coverage
  • PB-34399 Bump singpolyma/openpgp-php package to v0.7
  • PB-34305 Upgrade lockfile-lint library on passbolt_api package-lock.json
  • PB-34306 Upgrade openpgp library on passbolt_api package-lock.json
  • PB-33333 Refactor GroupUpdateControllerTest to use Fixture Factories
  • PB-33332 Refactor ResourcesDeleteControllerTest to use Fixture Factories
  • PB-33332 Refactor ResourcesUpdateControllerTest to use Fixture Factories
  • PB-33332 Refactor ResourcesViewControllerTest to use Fixture Factories
  • PB-33332 Refactor resource index controller test
  • PB-22603 Refactor resources share service test with factories
  • PB-33331 Add missing test cases for RecoverCompleteService
  • PB-35433 Fix phpcs config to allow per file fixing in IDE
  • PB-33330 Add missing test cases for SetupCompleteService
  • PB-33329 Add missing test cases for RecoverAbortService
  • PB-35777 Remove cloaking !empty() around method calls
  • PB-35856 Fix up editorconfig for composer.json editing
  • PB-35918 Bump composer/composer package to 2.8.1
  • PB-34234 CI changes to use downstream repo
  • PB-36605 Fix testVersionCommand_Compare_With_ChangeLogs failing test
  • PB-35763 Refactor resource tags add controller
  • PB-36607 Bump cakephp/cakephp composer package version to 4.5.7

Browser extension

Added

  • PB-16113 As LU I should be able to drag and drop a resource I own on a shared tag
  • PB-35412 WP3-2.1 Implement MetadataPrivateKey entity to support metadata private key
  • PB-35419 WP3-2.3 Implement MetadataPrivateKeys collection to support collection of metadata private keys
  • PB-35420 WP3-2.5 Implement MetadataKey entity to support metadata key
  • PB-35421 WP3-2.6 Implement MetadataKeys collection to support collection of metadata keys
  • PB-35422 WP3-2.2 Implement decryptOne on DecryptMetadataPrivateKeys service to decrypt a metadata private key
  • PB-35424 WP3-2.4 Implement decryptAll on DecryptMetadataPrivateKeys service to decrypt a metadata private keys collection
  • PB-35425 WP3-2.7 Implement decryptAllFromMetdataKeysCollection on DecryptMetadataPrivateKeys service to decrypt metadata private keys on MetadataKeys collection
  • PB-35426 WP3-2.8 Implement the function findAll on the FindMetadataKeys service to retrieve metadata keys from the API and decrypt any metadata private keys found if any
  • PB-35427 WP3-2.9 Implement the function findAllForSessionStorage on the FindMetadataKeys service to retrieve metadata keys for the Session storage
  • PB-35428 WP3-2.10 Adapt resource entity to support both encrypted metadata and non encrypted metadata
  • PB-35429 WP3-2.11 Implement decryptAllFromForeignModels on DecryptMetadata service to decrypt metadata on a resource collection
  • PB-35430 WP3-2.12 Decrypt metadata of v5 resources types when retrieving resources from the API
  • PB-35684 WP3-3.4 Implement encryptOneForForeignModel on EncryptMetadata service to encrypt metadata on a resource
  • PB-35686 WP3-3.5 Encrypt metadata of v5 resource types when editing new resource types
  • PB-35688 WP3-3.1 Add necessary capabilities to resource types collection and entity to support v5 types in the UI
  • PB-35692 WP3-4.1 implement metadata types settings entity to support metadata types settings
  • PB-35693 WP3-4.2 Implement findSettings on MetadataTypesSettingsApiService to retrieve metadata types settings
  • PB-35694 WP3-4.3 Implement findTypesSettings on FindMetadataSettingsService to retrieve metadata types settings entity
  • PB-35695 WP3-4.4 IImplement MetadataTypesSettingsLocalStorage to store and retrieve metadata types settings from local storage
  • PB-35696 WP3-4.5 Implement findAndUpdateTypesSettings on FindAndUpdateMetadataSettingsService to retrieve metadata types settings from the API and store them in the local storage
  • PB-35698 WP3-4.7 Implement GetOrFindMetadataTypesSettingsController to provide capability to retrieve the metadata types settings from the UI
  • PB-35700 WP3-4.6 Implement getOrFindMetadataTypesSettings on GetOrFindMetadataSettingsService to retrieve metadata types settings from store or from the API and store them in the local storage
  • PB-36225 WP3-4.10 Create resource service should determine personal resource only with permissions of the destination folder
  • PB-35701 WP3-4.8 WebApp/QuickApp lazy loads metadata types settings and provide it to components that need them
  • PB-35703 WP3-4.10 WebApp CreateResource component creates resources of type v5
  • PB-35704 WP3-4.11 Webapp CreateStandaloneTotp component creates resources of type v5
  • PB-35705 WP3-3.6 Webapp EditResource component updates resources of type v5
  • PB-35707 WP3-4.12 Encrypt metadata of v5 resource types when creating new resources
  • PB-35710 WP3-5.1 Migrate import resources controller logic into a dedicated service
  • PB-35718 WP3-5.2 Resources import parsers should determine imported resource type based on imported data and configuration
  • PB-35721 WP3-5.3 import resources of type v5
  • PB-35755 WP3-6.2 Share resources of type v5
  • PB-35853 WP3-4.14 Add resource types v5 to the list of supported resource types
  • PB-35893 WP3-7.1 Implement MetadataKeysSettingsEntity to support metadata keys settings
  • PB-35895 WP3-7.2 Implement findSettings on MetadataKeysSettingsApiService to retrieve metadata keys settings
  • PB-35896 WP3-7.3 Implement findKeysSettings on FindMetadataSettingsService to retrieve metadata keys settings as entity
  • PB-35897 WP3-7.4 Implement MetadataKeysSettingsLocalStorageService to store and retrieve metadata keys settings from local storage
  • PB-35898 WP3-7.5 Implement findAndUpdateKeysSettings on FindAndUpdateMetadataSettingsService to retrieve metadata keys settings from the API and store them in the local storage
  • PB-35899 WP3-7.6 Implement getOrFindMetadataKeysSettings on GetOrFindMetadataSettingsService to retrieve metadata keys settings from storage or from the API and store them in the local storage
  • PB-35900 WP3-7.7 Enforce metadata encryption using the metadata key as dictated by the metadata key settings
  • PB-35901 WP3-5.6 Implement encryptAllFromForeignModels on EncryptMetadata service to encrypt metadata on a collection of resources
  • PB-35902 WP3-9.1 Implement MetadataKeysSessionStorageService to store and retrieve metadata keys from session storage
  • PB-35903 WP3-9.2 Implement findAndUpdateAll on FindAndUpdateKeysSessionStorageService to retrieve metadata keys from the API and store them in the local storage
  • PB-35904 WP3-9.3 Implement getOrFindAll on GetOrFindMetadataKeysService to retrieve metadata keys from storage or from the API and store them in the local storage
  • PB-35907 WP3-9.5 decrypt metadata service should retrieve keys from session storage
  • PB-35912 WP3-2.16 Implement MetadataPrivateKeyData entity to support decrypted metadata private key data
  • PB-35914 WP3-2.19 Update metadata_key_type to be aligned with the API value for the shared_key
  • PB-35915 WP3-2.18 update the resource metadata object_type to be aligned with the API
  • PB-35947 WP3-2.17 Update MetadataPrivateKey entity to support MetadataPrivateKeyData
  • PB-35982 WP3-2.20 allow a metadata_key_id to be set when metadata_key_type is set to 'user_key'
  • PB-35989 WP3-4.13 QuickApp components creates resource of type v5 accordingly to metadata settings
  • PB-36187 WP3-9.5.1 Refactor decryptMetadataService to welcome keys coming from getOrFindMetadataKeys
  • PB-36226 Create an event to get the account of the user
  • PB-36230 WP3-5.3.2 Encrypt EncryptMetadataService.encryptAllFromForeignModels should not crash if v4 resource type are sent for encryption
  • PB-36231 WP3-5.3.3 ImportResourceService should encrypt a v5 resource type metadata

Improved

  • PB-35702 WP3-4.9 WebApp DisplayResourcesWorkspaceMainMenu should be able to determine the type of content to create
  • PB-35718 WP3-5.2 Resources import parsers should determine imported resource type based on imported data and configuration
  • PB-35802 WP3-3.2 WebApp lazy loads resource types and replace resourceTypeSettings usage with it
  • PB-35803 WP3-3.2 QuickApp lazy loads resource types and replace resourceTypeSettings usage with it
  • PB-35987 WP3-4.13 QuickApp components creates resource button should be display only when possible
  • PB-35988 WP3-4.13 Inform components creates or save resources should be display only when possible

Fixed

  • PB-35709 Fix: theme back to default randomly after refresh or navigation
  • PB-35714 Fix: Infinite loading when user try an account recovery process on another profile with an extension installed
  • PB-35861 Fix: Wrong resource type is displayed in resource sidebar
  • PB-36123 Fix: Filtering resources with a second group should not enter in a filtering loop between the first and second selected groups
  • PB-36236 Fix: Resource type requirements when retrieving resources to export resulting in cardinality issue with some environment

Maintenance

  • PB-35762 WP3-6.1 Migrate share resources model logic into a dedicated service
  • PB-35788 WP3-3.2 Handle resource types settings using an HOC