All notable changes to this project are documented in this file.
The format is based on Keep a Changelog, with the exception that this project does not follow Semantic Versioning.
For details about compatibility between different releases, see the Commitments and Releases section of our README.
- Support claim in device import in the Console.
3.26.0 - 2023-06-06
- Support for scanning a QR code that only contains the hexadecimal encoded DevEUI.
- Experimental flag
ns.adr.auto_narrow_steer
. When enabled, end devices which do not have an explicit channel steering mode will be steered towards the LoRa narrow channels.
- Console not applying webhook field masks when creating a webhook from a template that has field masks set.
- LoRa Basics Station
PONG
messages will now contain the application payload of the associatedPING
, as required by the WebSockets specification.- This fix enables
PING
/PONG
behavior for non reference implementations of the LNS protocol.
- This fix enables
- Fix crash of "Edit webhook" view due to invalid Authorization header encoding in the Console.
3.25.2 - 2023-05-16
- Experimental channel steering API, which allows steering end devices from the wide (250kHz or 500kHz) channels towards the narrow (125kHz) channels.
- This API is mainly relevant for end devices operating in the US915 and AU915 regions, as they may join via a wide channel, but users may want to steer them towards the narrow channels.
- The new settings can be found under
mac-settings.adr.mode.dynamic.channel-steering
. mac-settings.adr.mode.dynamic.channel-steering.mode.lora-narrow
steers the end devices towards the LoRa modulated narrow channels.mac-settings.adr.mode.dynamic.channel-steering.mode.disabled
does not steer the end devices - end devices are left to operate in their currently active channels, wide or narrow.- The default behavior is to avoid steering the end devices, but this is subject to change in future versions. Consider explicitly specifying a certain behavior (
lora-narrow
ordisabled
) if you depend on not steering the end devices.
- Uplink and downlink message frequencies are now validated and zero values are dropped.
- Such traffic would have always been dropped by the Network Server, but it is now dropped in the Gateway Server.
- Simulated uplink traffic now requires a frequency value as well.
- Multiple ADR algorithm bugs:
- An off-by-one error which caused the ADR algorithm to not take into consideration the signal qualities of the uplink which confirmed a parameter change. In effect, this fix improves the quality of the link budget estimation.
- A flip-flop condition which caused the algorithm to swap back and forth between a higher and a lower transmission power index every 20 uplinks. In effect, this fix will cause the algorithm to change the transmission power index less often.
- A condition mistake which caused the algorithm to avoid increasing the transmission power if it would not completely fix the missing link budget. In effect, this will cause the algorithm to increase the transmission power in situations in which the link budget deteriorates rapidly.
- In fixed channel plans such as US915 and AU915, the the associated wide (500kHz) channel is now enabled by default.
3.25.1 - 2023-04-18
- Fallback end device version identifiers to be used while importing end devices using the Console.
- The Things Stack is now built with Go 1.20.
--with-claim-authentication-code
flag for the end devicecreate
command via the CLI. Users must use a valid claim authentication code that is registered on a Join Server instead of generating one during end device creation.
- Attempting to claim an end device with a generated DevEUI will now result in an error.
- Claiming an end device using command line flags.
- 24 hour stack components deadlock when the default clustering mode is used.
3.25.0 - 2023-04-05
- Optional Network Server database migration that removes obsolete last invalidation keys is now available.
- LoRaWAN Application Layer Clock Synchronization support.
- It is available using the
alcsync-v1
application package. - Can be enabled using the Console by visiting the application settings and ticking the Use Application Layer Clock Synchronization checkbox. By default, the package will operate on FPort 202.
- It is available using the
- Drop uplink frames with CRC failure.
- Returning special float values, such as
NaN
andInfinity
as part of the decoded payloads.- While the concepts of
NaN
andInfinity
are part of JavaScript, JSON does not have a dedicated value for such values. - Historically we have rendered them in their string form, i.e.
"NaN"
and"Infinity"
, but this form is not standard nor accepted by the standard libraries of most programming languages (at least by default). - Most usages of
NaN
are actually result of operations with the JavaScript concept ofundefined
, and are not intentional. Mathematical operations that interact withundefined
returnNaN
- for exampleundefined * 5
isNaN
. It is not hard to reachundefined
in JavaScript, as array access to undefined indices isundefined
, and payload decoders generally work by consuming the frame payload bytes. - Future The Things Stack versions may not render such values, or may discard the decoded payload completely. The deprecation discussion can be tracked on GitHub.
- While the concepts of
- Automatic migrations of the Network Server database using
ns-db migrate
from versions prior to v3.24 are removed. Migrating from prior versions should be done through v3.24 instead.
3.24.2 - 2023-03-09
- Device claiming that transfer devices between applications is now deprecated and will be removed in a future version of The Things Stack. Device claiming on Join Servers, including The Things Join Server, remains functional. This deprecates the following components:
- API for managing application claim authorization (
EndDeviceClaimingServer.AuthorizeApplication
andEndDeviceClaimingServer.UnauthorizeApplication
) - CLI commands to manage application claim settings (
ttn-lw-cli application claim [authorize|unauthorize]
) - CLI command to claim end devices (
ttn-lw-cli devices claim
)
- API for managing application claim authorization (
- The CLI now continues deleting devices when unclaiming from the Join Server fails. This resembles the behavior in the Console. This no longer stops devices from being deleted if the Join Server is unavailable or the claim is not held.
- Organization API Keys' rights no longer are considered invalid during fetch operations. If the proper right is attached to said API key it is possible to fetch all fields of an entity, previous to this fix only public safe fields were fetchable.
- Fix Sentry issue related to the component requests in the Console.
3.24.1 - 2023-02-16
- Network Server ID (NSID) used for Backend Interfaces interoperability via the
ns.interop.id
anddcs.edcs.ns-id
configuration options.- In the Network Server,
ns.interop.id
acts as a fallback value forsender-ns-id
in Join Server interoperability configuration.
- In the Network Server,
- Key vault cache time-to-live for errors configuration option
key-vault.cache.error-ttl
. This defaults tokey-vault.cache.ttl
.
- Device Claiming Server configuration option
dcs.edcs.network-server.home-ns-id
. Usedcs.edcs.ns-id
instead.
- Key unwrap caching.
- Desired RX1 delay and desired beacon frequency not being possible to set for OTAA devices.
- Fix open redirect vulnerability for Console/Account App logins.
3.24.0 - 2023-02-02
- List of end-devices can now be sorted by
last_seen_at
field. Unseen devices will be shown last. - End devices now contain
lora_alliance_profile_ids
field. - Add
source
config option for TLS certificates in LoRaWAN Backend Interfaces interop client and The Things Join Server device claiming configuration. This value can befile
(existing behavior) orkey-vault
.
serial_number
field is now moved to the root of the end device structure.vendor_id
andvendor_profile_id
are now moved to thelora_alliance_profile_ids
.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of added columns and views.
- This requires a database schema migration (
- Configuring certificate authorities per LoRaWAN Backend Interfaces SenderID (
interop.sender-client-ca
) is now deprecated and support will be removed in a future version of The Things Stack.
- The device version identifiers no longer have the
serial_number
,vendor_id
andvendor_profile_id
fields.
3.23.2 - 2023-01-18
- Deletion of the last admin user or removal of its admin status via an update operation now returns an error.
- Do not allow to remove the collaborator of an entity if it is the last collaborator (in the Console).
- When searching for end-devices, specifying
last_seen_at
as the field in which the devices will be sorted by no longer returns an error. - Errors during removal of collaborators the application collaborator form not being forwarded to the user in the Console.
- Importing devices via CSV no longer skips the first header column when BOM bytes are present.
3.23.1 - 2022-12-14
- List of end-devices can now be sorted by
last_seen_at
field. Unseen devices will be shown last.
- It is now allowed to set
0
for ping slot frequency and beacon frequency in the Network Layer Settings of the end device general settings in the Console. - MAC parameters that have the
desired_
will be hidden from the end device general settings for multicast end devices in the Console.
3.23.0 - 2022-11-30
- The Things Join Server 2.0 (type
ttjsv2
) for claiming with Device Claiming Server. - All Join Servers with a
/64
JoinEUI prefix are contacted concurrently with LoRaWAN Backend Interfaces interoperability. This should only be used with ambiguous JoinEUIs and when migrating Join Servers.
- Gateway EUI is no longer unset when deleting a gateway, meaning it could be recovered if no other gateway claimed it. This requires a schema migration (
ttn-lw-stack is-db migrate
) because of the change in the database'sgateway_eui_index
. - The new database driver is no longer specific to the Identity Server and is now activated using the
db.pgdriver
feature flag (instead ofis.pgdriver
).
- The Things Join Server 1.0 (type
ttjs
) for claiming with Device Claiming Server. Use The Things Join Server 2.0 (typettjsv2
) instead.
- Devices with pending session and MAC state may now successfully be imported.
- Client creation with an organization API key will no longer send an email without user information to the admins. Instead, the API key name will be used and if that is empty the API key ID will be the default.
- Allow providing DevEUI for ABP end devices with a LoRaWAN specification lower or equal to 1.0.4 in the end device onboarding screen in the Console.
- Faulty field validation for byte payloads in the uplink payload formatter panel in the Console.
serial_number
field is now properly stored.
3.22.2 - 2022-11-10
- The
is.gormstore
experimental flag has been added. Swaps the underlying Identity Server store implementation if set to true.
- Class B and C downlinks will no longer be automatically retried indefinitely if none of the gateways are available at the scheduling moment, and the downlink paths come from the last uplink.
- This was already the behavior for downlinks which had their downlink path provided explicitly using the
class_b_c.gateways
field. - The downlinks will be evicted from the downlink queue and a downlink failure event will be generated. The failure event can be observed by the application using the
downlink_failed
message, which is available in all integrations.
- This was already the behavior for downlinks which had their downlink path provided explicitly using the
- Event history and payload storage TTL has now 1% jitter.
- The underlying store implementation has been changed to be by default based on
bun
instead ofgorm
. The previous store implementation can be reactivated using theis.gormstore
experimental flag.
- The
is.bunstore
experimental flag has been removed.
- Do not require AppKey when skipping Join Server registration in end device onboarding in the Console.
- Fix auto generation of device ID when using DevEUI generator in the Console.
- Fix several device onboarding issues with ABP in the Console.
- Do not ask for a JoinEUI.
- Reinitialize form properly when switching between ABP and OTAA.
- Issue with pasting values into byte input at the wrong position in the Console.
- Issue with updating field masks in the webhook edit form in the Console.
3.22.1 - 2022-10-19
- Option to ignore logs from selected gRPC methods now supports ignoring logs for selected errors on method.
Examples:
--grpc.log-ignore-methods="/ttn.lorawan.v3.GsNs/HandleUplink"
: log is skipped when no error occurs.--grpc.log-ignore-methods="/ttn.lorawan.v3.GsNs/HandleUplink:pkg/networkserver:duplicate_uplink;pkg/networkserver:device_not_found"
: log is skipped when eitherpkg/networkserver:duplicate_uplink
orpkg/networkserver:device_not_found
error occurs (but not on success).--grpc.log-ignore-methods="/ttn.lorawan.v3.GsNs/HandleUplink:;pkg/networkserver:duplicate_uplink"
: log is skipped on success or whenpkg/networkserver:duplicate_uplink
error occurs.
- The Gateway Server now takes into consideration the extra duty cycle checks present in the LoRa Basics Station forwarder. Previously the Gateway Server may accept the scheduling of downlinks which the packet forwarder would silently drop.
- Note that in some rare cases in which the LoRa Basics Station duty cycle is stricter than the windowed approach used by The Things Stack, the scheduling will fail and this will be visible via
ns.down.data.schedule.fail
events. Note that this is actually a positive outcome - it allows the Network Server to schedule the downlink via another gateway, while previously the downlink would be scheduled but get silently dropped on the gateway.
- Note that in some rare cases in which the LoRa Basics Station duty cycle is stricter than the windowed approach used by The Things Stack, the scheduling will fail and this will be visible via
3.22.0 - 2022-10-06
- Add more specific rights for OAuth clients.
- The flow for adding end devices has been updated in the Console.
- Device QR codes can now be scanned to speed up end device onboarding.
- Claiming end devices from external Join Servers is now possible seemlessly from the same onboarding flow.
- LoRa coding rate now defined in
DataRate
instead ofBand
. - The Network Server will now schedule a potentially empty downlink in order to stop end devices from sending sticky MAC commands.
- Factory preset frequencies may now be provided for bands with fixed channel plans, such as US915 or AU915. The factory preset frequencies are interpreted as the only channels which are enabled at boot time.
TxParamSetupReq
MAC command priority has been increased.DevStatusReq
MAC command priority has been lowered.
- Removed coding rate from
TxSettings
as it is now defined inDataRate
.
--mac-settings.adr.mode.disabled
,--mac-settings.adr.mode.dynamic
and--mac-settings.adr.mode.static
flags of theend-device update
command.- Pagination in
sessions
andaccess tokens
tables in the Console. LinkADRReq
MAC command generation for LoRaWAN 1.0 and 1.0.1 end devices.LinkADRReq
no longer attempts to enable channels which have not yet been negotiated with the end device.- Downlink path selection for uplinks which are not LoRa modulated.
- Issues with byte inputs in the Console.
- Pasting values into the input leading to issues in some cases.
- Values being typed double on android phones.
- Console showing deleted collaborator after successful deletion in application collaborator list.
- Console crashing after deleting an organization.
3.21.2 - 2022-09-14
- New
ListBands
RPC on theConfiguration
service.- Added support to CLI. Available via the
end-devices list-bands
command.
- Added support to CLI. Available via the
- CLI support for listing PHY versions via the
end-devices list-phy-versions
CLI command. - New
NetID
andDeviceAddressPrefixes
RPC on theNS
service.- Added support on CLI. Available via the
end-devices get-net-id
andend-devices get-dev-addr-prefixes
commands.
- Added support on CLI. Available via the
- Support for loading end device template from Device Repository when importing devices using a CSV file.
- Experimental support for normalized payload.
- Support management of deleted users in the Console.
- Decoded payloads are now visible for downlinks in the Console.
- Support for dynamic ping slot frequencies, as used by the US915 and AU915 bands.
- Support for LoRa Basics Station beaconing.
- Deprecated
attributes
fromGatewayAntenna
definition. While it was present in the API it was never stored in the database. - Absolute time downlinks (such as class B ping slots or class C absolute time downlinks) are now using the native class B downlink API of LoRa Basics Station.
- Only gateways which are guaranteed to be GPS capable may now be used for absolute time downlinks. This ensures that gateways that have an unknown time source are not used for absolute time scheduling.
- The static ADR mode may now steer the end device to use custom data rates such as SF7BW250, FSK and LR-FHSS.
- The Console will try to resolve invalid state errors during login with an automatic refresh.
- Error details are now displayed in a modal instead of within the notification element in the Console.
- Experimental support for
LoRa Basics Station
gateway GPS timestamps which use the wrong precision (milliseconds instead of microseconds). Please ensure that your gateway has been updated to the latest firmware.
- The Gateway Server scheduler no longer considers the absolute time of a downlink to be the time of arrival.
- The Network Server now correctly handles the command that may succeed a
LinkADRAns
response. - LR-FHSS data rate matching.
- Console data rate rendering of non-LoRa modulations.
- End device network layer form crashing in some situations in the Console device general settings.
- End device overview crashing in some situations in the Console.
- Device import when using Join Server-only deployments.
- QRG can generate QR Codes without the claim authentication code.
3.21.1 - 2022-08-24
- New
SearchAccounts
RPC on theEntityRegistrySearch
service. - Prompt user to confirm navigation when changes have not been saved in the payload formatter form to prevent big change-drafts from getting lost.
- Event data pushed by webhooks can now be filtered with field masks.
- Support for the field mask setup was added for both CLI and Console.
- Gateway registration in the Console has been updated to simplify the onboarding experience.
- CLI command
end-device template create
no longer breaks when providing field mask values. - Device repository services no longer require ApplicationID in its request URL.
- Importing ABP devices via the CSV format now correctly handles the missing session key ID.
3.21.0 - 2022-08-11
- Component selector for Join Server interoperability configuration. This allows administrators to declare separate Network Server and Application Server configuration for the same JoinEUI ranges in the same interoperability configuration. See documentation.
BatchGetGatewayConnectionStats
RPC to fetch Gateway Connection Stats for a batch of gateways.- The ability to disable the downlink scheduling mechanism for individual end devices (
mac-settings.schedule-downlinks
).- This option is useful during a migration procedure in order to force the end device to join the new network. The Network Server will no longer schedule any data downlinks or MAC commands, and will stop answering potential join requests.
- A new implementation of the Identity Server storage layer. In v3.21.0 the new implementation is not yet used by default, but it can be enabled with the
is.bunstore
feature flag. A new database driver can be enabled with theis.pgdriver
feature flag.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of added columns and views.
- This requires a database schema migration (
- Support for comma-separated (
,
) values in The Things Stack CSV file format for importing end devices. - Support for the
RxParamSetup
,RxTimingSetup
,TxParamSetup
, andDlChannel
sticky answer mechanism. The commands were supported previously, but subsequent sticky responses would cause the Network Server to drop the MAC command buffer in certain situations.
- Deleted users are no longer included in primary email addresses uniqueness checks. This allows a user to create a new account which uses the email address of a deleted account.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) due to updated indices.
- This requires a database schema migration (
- The CLI settings fields
retry-config.enable_metadata
andretry-config.default_timeout
have been renamed toretry.enable-metadata
andretry.default-timeout
for consistency reasons. - Generated device ID based on a DevEUI from an imported CSV file is now prepended by
eui-
. This is consistent with generated device IDs by the Console. - The Claim Authentication Code (CAC) field is stored in the Identity Server instead of the Join Server.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns. - CAC values stored currently in the Join Server should be migrated to the Identity Server. One method is to run the following CLI commands on each device with a CAC.
- Read the current values using
ttn-lw-cli dev get <application-id> <device-id> --claim-authentication-code
. This will fetch the value stored in the Join Server as a fallback. - Write back the value read
ttn-lw-cli dev set <application-id> <device-id> --claim-authentication-code.valid_from [xxx] --claim-authentication-code.valid_to [xxx] --claim-authentication-code.value <xxx>
. This will by default write to the Identity Server. - Note that this requires a minimum CLI version of 3.21.0.
- Read the current values using
- This requires a database schema migration (
- Device Repository no longer uses the
ApplicationID
for validating requests. Authentication is still necessary, but theApplicationID
field has been deprecated in the Device Repository API.
- Console showing
404 Not Found
errors for pages containing user IDs in the path, when the user ID has a length of two. - CLI no longer panics when deleting a device without JoinEUI, this scenario only occurred when deleting a device that uses ABP.
- Console crashing when navigating to certain Packet Broker network configuration pages.
- Packet Broker network pages becoming inaccessible until refreshing after a user navigates to a non-existing network.
- The batch update query for
EndDevice.LastSeenAt
field now specifies the data type of the placeholders.- This resolves an issue in the Console where
Last activity
values were inconsistent.
- This resolves an issue in the Console where
3.20.2 - 2022-07-20
- More fields were added to the csv end-device migration procedure. The details on which fields were added can be found here.
- Authorization management in the Account app.
- Gateway remote address to gateway connection statistics.
- Encoding of DevAddr, EUI and similar fields in
text/event-stream
responses. - GPS time leap second calculations taking a new leap second into consideration for 6th of July 2022.
3.20.1 - 2022-06-29
- Support inviting users in the Console.
- In AS923 frequency plans, the Network Server will skip the RX1 window if the data rate is ambiguous.
- This change occurs in old Regional Parameters versions in which the initial downlink dwell time setting of the end device is not specified. The end device may have the downlink dwell time setting either enabled or disabled, and due to this the data rate of the RX1 window is ambiguous.
- This ambiguity exists until the Network Server is successful in negotiating the dwell time limitations using the TxParamSetupReq MAC command. This will occur automatically and does not require any external input.
- If you already know the boot dwell time settings of your end device, you may provide them via the
--mac-settings.downlink-dwell-time
and--mac-settings.uplink-dwell-time
MAC settings. This will ensure that RX1 transmissions are available from the first uplink of the session.
- Sorting on associated rights in the API keys table.
last activity
not updating when an end device joins for the first time in the Console.- A bug that would show the "Status count periodicity"-field in the Console as
200
when actually set to0
. - A bug causing map viewports to be set in odd locations when setting end device/gateway locations.
- Console crashing when sorting by associated rights in the API keys table.
3.20.0 - 2022-06-15
- OAuth client management in the account app.
- Support claim protection when claiming end devices on The Things Join Server.
- CLI commands
notifications list
andnotifications set-status
to manage user notifications. - Support for class B and C downlink transmissions through multiple gateways simultaneously.
- Entities are now fully validated when updated in the stores.
- Previously only the updated paths where validated. This lead to situations in which a partial update could cause the entity as a whole to reach an invalid state.
- Application, gateway, end device and organization-tables in the Console are now sorted by creation time by default (newest first).
- Collaborator and API Key tables can now be sorted in the Console.
- The application table in the Console now shows the amount of end devices.
- The organizations table in the Console now shows the amount of collaborators.
- Table layouts for several entities have been improved on the Console.
- End devices running on MAC versions higher or equal to 1.1 showing network downlink frame counters instead of application downlink frame counters.
- Wrong representation of time values between midnight and 1am (eg. 24:04:11) in the Console in some cases.
3.19.2 - 2022-05-25
- Allow setting an expiry date for API keys in the Console
- New event type
gs.gateway.connection.stats
with connection statistics. A new event is sent at most everygs.update-connection-stats-debounce-time
time and at least everygs.update-connection-stats-interval
time. - Button to export as JSON end device
mac-settings
andmac-state
in the Console. - Support for the
FOpts encryption, usage of FCntDwn
LoRaWAN 1.1 erratum.
- Event type for
gs.up.receive
event toGatewayUplinkMessage
. - Default debounce time for updating connection stats in de Gateway Server (configuration setting
gs.update-connection-stats-debounce-time
) is now 30 seconds. - Error code when importing CSV file with invalid LoRaWAN or Regional Parameters version.
- Emails sent by the Identity Server now also contain HTML versions.
- For the images in these emails to work, an absolute
is.email.network.assets-base-url
(and optionallyis.email.network.branding-base-url
) needs to be set in configuration.
- For the images in these emails to work, an absolute
- Notification emails are now sent through the Notification Service of the Identity Server.
- "Last activity"-information in the Console is now sourced as a single aggregate from the Identity Server.
- End device overview in the Console.
- Showing MAC/PHY versions and used frequency plan.
- Hiding the entity description if not set.
- Showing information of pending sessions.
- Automatically updating session info (no refresh necessary to schedule downlinks after a device has joined).
- Showing session start time.
- The Things Stack is now built with Go 1.18.
- Layout of webhook and Pub/Sub forms to improve UX.
- The Network Server Address used for End Device Claiming is fetched from the configuration instead of client input.
- The ability to create custom email templates.
- Support
app_eui
as alias forjoin_eui
in CSV file import, per documentation. - End devices frame counts being displayed as
n/a
when event stream contained historical data message events. - Gateway general settings (Basic settings) not saving changes in some cases.
- Contact info validation not possible when user is already logged in.
- CLI not allowing devices to be created or updated.
- End device creation no longer errors on missing application info rights.
- Missing success notification when successfully deleting an application in the Console.
- CLI create commands for applications, gateways and clients no longer have their decoded ID emptied when using the
--user-id
flag. - Metric
ttn_lw_events_channel_dropped_total
not getting updated. - Dropped events when calling the Stream RPC with a long tail.
- Security fix for an issue where the description and list of rights of arbitrary API keys could be retrieved by any logged-in user if the 24-bit random API key ID was known.
3.19.1 - 2022-05-04
- Application Server now decodes downlink if a downlink decoder is present and binary payload is scheduled.
- End devices frame counts being displayed as
n/a
when event stream contained historical data message events. - Gateway general settings (Basic settings) not saving changes in some cases.
3.19.0 - 2022-04-21
- Session management page in Account App.
- Status page references in the Console.
- Notification Service API that will allow users to receive notifications about their registered entities.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added tables.
- This requires a database schema migration (
- Add
network_server_address
,application_server_address
andjoin_server_address
to applications.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- New ADR settings API, which allows stronger control over the ADR algorithm.
- The new settings fields can be found under
mac-settings.adr
, and are mutually exclusive withuse-adr
andadr-margin
. The legacy settings need to be unset before the new API options may be used. mac-settings.adr.mode.disabled
completely disables the ADR algorithm.mac-settings.adr.mode.static.data-rate-index
,mac-settings.adr.mode.static.nb-trans
,mac-settings.adr.mode.static.tx-power-index
allow the user to provide static ADR parameters to be negotiated with the end device. These options persist over multiple sessions and do not require a session reset in order to be propagated to the current session.mac-settings.adr.mode.dynamic.min-data-rate-index
andmac-settings.adr.mode.dynamic.max-data-rate-index
control the data rate index range which the Network Server will attempt to negotiate with the end device. Note that if the provided interval is disjoint with the available data rate indices, no negotiation will take place.mac-settings.adr.mode.dynamic.min-tx-power-index
andmac-settings.adr.mode.dynamic.max-tx-power-index
have similar behavior, but for transmission power indices.mac-settings.adr.mode.dynamic.min-nb-trans
andmac-settings.adr.mode.dynamic.max-nb-trans
have similar behavior, but for NbTrans.mac-settings.adr.mode.dynamic.margin
may be used to provide the margin of the ADR algorithm. It replaces the oldadr-margin
setting.use-adr
andadr-margin
are still supported, but deprecated. Any future API usage should instead use themac-settings.adr
settings.
- The new settings fields can be found under
- Service to parse QR codes and return the data within.
- Sortable tables are now sorted by default in the Console
- Console determining gateways as "Other cluster" even though using the same host if server addresses not matching exactly (e.g. due to using different host or scheme).
- Inconsistency in setting gateway's LNS Auth key in the Console.
- CLI no longer informs the user that is using the default JoinEUI when passing its value via flags.
- Generating device ID from a DevEUI when importing a CSV file.
- The
is-db migrate
command that failed when running on databases created byv3.18
. - Some error messages being displayed as
error:undefined:undefined
in the Console, e.g. in the live data view. - Missing
query
flag on CLI search commands.
3.18.2 - 2022-03-29
- Support for importing end devices using a CSV file. See documentation for the data format.
- Support claiming end devices in an external Join Server (ex: The Things Join Server).
- Support to fetch LoRaWAN end device profiles using numeric identifiers.
- Replace
as.down.data.forward
toas.down.data.receive
in default event filter, so that decrypted and decoded dowlink payload can be examined in the Console.
- Join-accept scheduling if it took more than ~1.2 seconds to process the device activation with default configuration. These slow device activations can be observed when using external Join Servers.
- Fix issues in the webhook forms causing webhooks to be created with all message types enabled and no way of deactivating message types.
- Fix validation issue in the webhook form not detecting message type paths with more than 64 characters.
- Fix "reactivate"-webhook button in the Console.
- Port returned by the LBS LNS discovery message if standard 80/443 ports are used.
3.18.1 - 2022-03-09
- Add HTTP basic authentication configuration to the webhooks form in the Console.
- Show repository formatter code in the payload formatter form in the Console and allow pasting the application and payload formatter code when using the JavaScript option.
- gRPC service to Gateway Configuration Server so that gateway configurations can be obtained via gRPC requests.
- The option to configure the Redis idle connection pool timeout, using the
redis.idle-timeout
setting. - New RP002 regional parameters as options during device registration in the Console.
- Default gateway visibility configuration in Packet Broker agent in the Console.
- The custom webhook option is now shown at the top of the list in the Console when adding new webhooks.
- Wording around webhook statuses to
Healthy
,Requests failing
andPending
. - The uplink event preview in the Console now shows the highest SNR.
- When scheduling downlink messages with decoded payload, the downlink queued event now contains the encoded, plain binary payload.
- When Application Server forwards downlink messages to Network Server, the event payload now contains the encrypted LoRaWAN
FRMPayload
. - The Network Server will now match downlink acknowledgements on the
cache
redis cluster (previously thegeneral
cluster was used). - Gateway Connection statistics updates are now debounced. The debounce period occurs before the statistics are stored, and can be configured using the
gs.update-connection-stats-debounce-time
setting (default 5 seconds). - Payload formatter form layout in the Console.
- Event publication when the Redis backend is used may no longer block the hot path. Instead, the events are now asynchronously published, which may render their ordering to change.
- The events are queued and published using the worker pool mechanism, under the
redis_events_transactions
pool. - The length of the queue used by the pool may be configured using the
events.redis.publish.queue-size
setting. - The maximum worker count used by the pool may be configured using the
events.redis.publish.max-workers
setting.
- The events are queued and published using the worker pool mechanism, under the
- Ability to select the
Repository
payload formatter type for end devices that have no Device Repository association or have no associated repository payload formatter.
- Consistent ordering of entities with equal values for the sort field.
- Fix
xtime
sent to LBS gateways for Class C downlinks.
3.18.0 - 2022-02-23
- Retain at most 10 recent session keys in the Join Server. This avoids a slowly growing number of session keys in the Join Server's database.
- This requires a database migration (
ttn-lw-stack js-db migrate
).
- This requires a database migration (
- Add TTL for gateway connection stats. Can be configured with the option
gs.connection-stats-ttl
. - Add
query
field to search requests, allowing to search for a string in any of ID, Name, Description and EUI (for entities that have EUIs). - Added fallback values for end device import in the Console.
- The minimum required Redis version is now 6.2.
- Applications on other cluster will be hidden in Applications list in the Console.
- Gateway Server setting
gs.update-connection-stats-debounce-time
is no longer valid.
- Webhook statuses being shown as pending regardless of their actual condition.
- Device activation flow with a LoRaWAN Backend Interfaces 1.1 capable Join Server.
- Join Servers using Backend Interfaces 1.1 (protocol
BI1.1
) must be configured with asender-ns-id
containing the EUI of the Network Server.
- Join Servers using Backend Interfaces 1.1 (protocol
- Fix
time.Duration
flags in CLI. - Gateway Server will no longer leave permanent gateway connection stats data on the registry when crashing.
- Add configurable storage limit to device's DevNonce in the JoinServer. Can be configured using the option
js.dev-nonce-limit
. - Fix copy button in API key modal in the Console.
- Enable copying and format transformations of byte values in the event previews in the Console.
- Attribute
administrative_contact
on "gateway eui taken" error to help users resolve gateway EUI conflicts. - Add retry capability for cli requests. Can be configured with the options found in
retry-config
, some of the configuration options areretry-config.max
andretry-config.default-timeout
.
- Webhook maximum header value length extended to 4096 characters.
- Limited the end device event types that are included in application event streams to only application layer events, errors and warnings. Other end device events can still be received when subscribing to end device device events.
- Several small improvements to the styling, structuring and input logic of forms in the Console.
- CLI Completion and Documentation commands no longer try to make a server connection.
- When an end device has both
NwkKey
andAppKey
provisioned in the Join Server,NwkKey
is used for MIC and session key derivation when activating the device in LoRaWAN 1.0.x. This is per LoRaWAN 1.1 specification. - Gateway Server will no longer report the gateways as being both connected and disconnected at the same time.
3.17.1 - 2022-01-12
- Gateways are removed from the Packet Broker Mapper API when unsetting the location public setting. This is to remove gateways from the map. Previously, the location was still set, but it did not get updated.
- Rate limiting of cluster authenticated RPCs.
- CLI panic when setting end devices.
3.17.0 - 2022-01-07
- Support reading the Join Server's default JoinEUI and using this in the CLI for end device creation.
- The Join Server has a new API
GetDefaultJoinEUI
. - The default JoinEUI can be configured on the Join Server using the option
--js.default-join-eui
.
- The Join Server has a new API
- Filtering of end device frequency plans in end device forms based on band id in the Console.
- Showing automatically set entity locations in the Console.
- Applications, OAuth clients, gateways and organizations now have an
administrative_contact
andtechnical_contact
.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- The
contact_info
fields of applications, OAuth clients, gateways, organizations and users.
- CLI panic when getting devices.
- Application uplink processing serialization behavior in the Application Server.
3.16.2 - 2021-12-17
- User defined antenna gain for LBS gateways.
- Webhooks now have a health status associated with them. Webhooks that fail successively are now disabled for a period of time.
- Failure in this context means that the HTTP endpoint returned a non-2xx status code.
- A successful HTTP request will reset the failure counter.
- The number of allowed successive failures and cooldown period can be configured using the
--as.webhooks.unhealthy-attempts-threshold
and--as.webhooks.unhealthy-retry-interval
configuration options.
- Webhook enabled path validation in the Console.
- Increased the maximum gRPC message size to 16MB.
- Gateways which have been deleted are now automatically disconnected by the Gateway Server.
- Mark off and hide and restrict access to end devices that are registered on a different cluster in the Console.
- Show more detailed last activity information inside tooltip info in the Console.
- Add a button to allow exporting the event log in the Console.
- Access to application payload formatters for users with
RIGHT_APPLICATION_SETTINGS_BASIC
right. - End device mac settings handling in the Console.
- Uplink and downlink counters display on end device activity in the Console.
- Join settings handling in JS-only deployments in the Console.
- Configuring Packet Broker listed option when Packet Broker Agent is configured with a Packet Broker tenant API key.
- Contact info validation through the Account app.
3.16.1 - 2021-11-26
- Support for fine timestamps and frequency offsets sent by gateways with SX1303 concentrator using the legacy UDP protocol.
- Support for resetting end device session context and MAC state in the Console.
- The Content-Security-Policy header (that was previously behind the
webui.csp
feature flag) is now enabled by default. - Default
Cache-Control: no-store
headers. Cache-Control: public, max-age=604800, immutable
headers for hashed static files.- Experimental support for BasicStation GPS timestamps which use the wrong precision (milliseconds instead of microseconds).
- The Gateway Server will attempt to determine the correct GPS timestamp from the provided
gpstime
based on the time at which the upstream message has been received. - This workaround will be available until the related gateway vendors will release patches for this issue.
- The Gateway Server will attempt to determine the correct GPS timestamp from the provided
- Firmware version of The Things Kickstarter Gateway are written to the gateway attributes upon receiving a valid status message.
- Desired mac settings to end device general settings in the Console.
- Experimental support for Azure Blob Storage. Only authentication via Managed Identity is supported.
- Gateway server disconnects LoRa Basics Station gateways that stop sending pongs to server pings. This does not apply to gateways that don't support pongs.
- The new plugin for reading/writing JSON in our API (that was previously behind the
jsonpb.jsonplugin
feature flag) is now enabled by default. All API responses should be equivalent, but in some cases object fields may be in a different order.
- The reported sub-band's
downlink_utilization
in gateway connection stats now represents the utilization of the available duty-cycle time. - Missing fields when admins list non-owned entities.
- Using the correct timestamp when retreiving the "Last activity" data point for Gateways on initial page loads in the Console.
- Events reappearing in the end device data view after clearing them when navigating back and forth.
3.16.0 - 2021-11-12
ttn_lw_as_subscription_sets_publish_success_total
andttn_lw_as_subscription_sets_publish_failed_total
metrics to track the number of subscription set publish attempts.- Application Server advanced distribution settings:
as.distribution.global.individual.subscription-blocks
controls if the Application Server should block while publishing traffic to individual global subscribers (such as MQTT clients).as.distribution.global.individual.subscription-queue-size
controls how many uplinks the Application Server should buffer for an individual global subscriber. Note that when the buffer is full, the Application Server will drop the uplinks if--as.distribution.global.individual.subscription-blocks
is not enabled. Use a negative value in order to disable the queue.as.distribution.local.broadcast.subscription-blocks
controls if the Application Server should block while publishing traffic to broadcast local subscribers (such as webhooks and application packages matching).as.distribution.local.broadcast.subscription-queue-size
controls how many uplinks the Application Server should buffer for an broadcast local subscriber. Has the same semantics as--as.distribution.global.individual.subscription-queue-size
.as.distribution.local.individual.subscription-blocks
controls if the Application Server should block while publishing traffic to individual local subscribers (such as PubSub integrations).as.distribution.local.individual.subscription-queue-size
controls how many uplinks the Application Server should buffer for an individual local subscriber. Has the same semantics as--as.distribution.global.individual.subscription-queue-size
.
ttn_lw_gs_txack_received_total
,ttn_lw_gs_txack_forwarded_total
andttn_lw_gs_txack_dropped_total
metrics, which track the transmission acknowledgements from gateways.gs.txack.receive
,gs.txack.drop
andgs.txack.forward
events, which track the transmission acknowledgements from gateways.ttn-lw-stack as-db migrate
command to migrate the Application Server database. This command records the schema version and only performs migrations if on a newer version.- Use the
--force
flag to force perform migrations.
- Use the
- Server-side event filtering with the
names
field.
- Gateway Server default UDP worker count has been increased to 1024, from 16.
- Application Server webhooks and application packages default worker count has been increased to 1024, from 16.
- Application Server no longer sets the end device's
session.started_at
andpending_session.started_at
. The session start time should be retrieved from the Network Server, per API specification.- This requires an Application Server database migration (
ttn-lw-stack as-db migrate
) to clear thestarted_at
field in existing (pending) sessions.
- This requires an Application Server database migration (
- Console changing to server-side event filtering (used to be client-side).
- The
ttn_lw_gs_status_failed_total
,ttn_lw_gs_uplink_failed_total
metrics.ttn_lw_gs_status_dropped_total
andttn_lw_gs_uplink_dropped_total
should be used instead, as they contain the failure cause. - The
gs.status.fail
andgs.up.fail
events.gs.status.drop
andgs.up.drop
should be used instead, as they contain the failure cause. - The
data_rate_index
field in uplink message metadata. Observe the fully described data rate in thedata_rate
field instead. - LoRaWAN data rate index reported to LoRa Cloud DMS.
- Dockerfile doesn't define environmental variables
TTN_LW_BLOB_LOCAL_DIRECTORY
,TTN_LW_IS_DATABASE_URI
andTTN_LW_REDIS_ADDRESS
anymore. They need to be set when running the container: please refer todocker-compose.yml
for example values. CockroachDB
from development tooling as well as config option withindocker-compose.yml
.- This also changes the default value of the
--is.database-uri
option, so it can connect to the development Postgres database by default.
- This also changes the default value of the
- Handling of NaN values in our JSON API.
- Receiver metadata from more than one antenna is now available in messages received from Packet Broker.
- Unhelpful error message when aborting the OIDC Login in the Console.
- Parsing of multi-word description search queries.
- Gateway disconnection when location updates from status messages are enabled.
- Table entries not allowing to be opened in new tabs in the Console.
- Right clicking on table entries navigating to respective entity in the Console.
3.15.2 - 2021-10-22
tls.cipher-suites
config option to specify used cipher suites.- Support for enhanced security policies of Packet Broker services.
- Handling of MAC and PHY versions in end device forms based on selected frequency plan in the Console.
- Support for scheduling downlink messages as JSON in the Console.
- Support for Packet Broker authentication through LoRaWAN Backend Interfaces. This adds the following configuration options:
interop.public-tls-address
: public address of the interop server. The audience in the incoming OAuth 2.0 token from Packet Broker is verified against this address to ensure that other networks cannot impersonate as Packet Broker;interop.packet-broker.enabled
: enable Packet Broker to authenticate;interop.packet-broker.token-issuer
: the issuer of the incoming OAuth 2.0 token from Packet Broker is verified against this value.
- Support for LoRaWAN Backend Interfaces in Identity Server to obtain an end device's NetID, tenant ID and Network Server address with the use of a vendor-specifc extension (
VSExtension
). This adds the following configuration options:is.network.net-id
: the NetID of the network. When running a Network Server, make sure that this is the same value asns.net-id
.is.network.tenant-id
: the Tenant ID in the host NetID. Leave blank if the NetID that you use is dedicated for this Identity Server.
- Configuration option
experimental.features
to enable experimental features. - Tooltip descriptions for "Last activity" values (formerly "Last seen") and uplink/downlink counts in the Console.
- Status pulses being triggered by incoming data in the Console.
- Packet broker page crashing when networks with a NetID of
0
are present. - Allowing to toggle visibility of sensitive values in text inputs in the Console.
- Webhook failed event.
- Searching for entity IDs is now case insensitive.
- Renamed entitie's "Last seen" to "Last activity" in the Console.
- The database queries for determining the rights of users on entities have been rewritten to reduce the number of round-trips to the database.
- The default downlink path expiration timeout for UDP gateway connections has been increased to 90 seconds, and the default connection timeout has been increased to 3 minutes.
- The original downlink path expiration timeout was based on the fact that the default
PULL_DATA
interval is 5 seconds. In practice we have observed that most gateways actually send aPULL_DATA
message every 30 seconds instead in order to preserve data transfer costs.
- The original downlink path expiration timeout was based on the fact that the default
- The default duration for storing (sparse) entity events has been increased to 24 hours.
- Option to select targeted stack components during end device import in the Console.
- LoRaWAN Backend Interfaces 1.1 fields that were used in 1.0 (most notably
SenderNSID
andReceiverNSID
). Usage ofNSID
is now only supported with LoRaWAN Backend Interfaces 1.1 as specified. - Connection status not being shown as toast notification.
- Registering and logging in users with 2 character user IDs in the Account App.
- Frequency plan display for the gateway overview page in the Console.
- Profile settings link not being present in the mobile menu in the Console.
- Calculation of "Last activity" values not using all available data in the Console.
- Layout jumps due to length of "Last activity" text.
- Invalid
session
handling in Network Layer settings form in the Console.
- Network Servers using LoRaWAN Backend Interfaces to interact with the Join Server can now provide a single Network Server address in the X.509 Common Name of the TLS client certificate (the old behavior) or multiple Network Server addresses in the X.509 DNS Subject Alternative Names (SANs). DNS names have precedence over an address in the Common Name.
3.15.1 - 2021-10-01
- Packet Broker gateway visibility management (default settings only). See
ttn-lw-cli packetbroker home-networks gateway-visibilities --help
for more information.
- The Gateway Server worker pools may now drop workers if they are idle for too long.
- FPort = 0 uplinks are no longer decoded by the Application Server, and the Network Server no longer provides the frame payload to the Application Server for these messages.
- Emails to admins about requested OAuth clients.
session
handling for joined OTAA end devices in the Console.- Empty Join Server address handling in end device creation form in the Console.
- Data Rate to data rate index matching for uplinks and downlinks.
3.15.0 - 2021-09-17
- RPC to query supported PHY versions for a given Band ID.
- Non-TLS LNS endpoint support.
- Update to Go 1.17.
- LBS timestamp rollover threshold.
- Layout of error pages.
- The Application Server worker pools may now drop workers if they are idle for too long.
- Improved error page UX in the Console.
- Entity purge handling for non-admin users in the Console.
- URL field validation in webhook forms in the Console when value is not trimmed.
- Not rendering site header and footer for error pages in some situations.
- Not providing a copy button for error pages in some situations.
- Improved errors for invalid URLs.
- Limit length of search queries within tables in the Console to 50 to comply with API validation.
- External Join Server address handling in end device creation form in the Console.
- Updating
supports_class_b
field in the end device general settings page in the Console.
3.14.2 - 2021-08-27
- CLI warnings about insecure connections.
- CLI warnings about using the
--all
flag. - Packet Broker network listed switch in the Console.
- Improved errors for invalid command-line flags.
- Validation of entity attributes in the Console, with regards to maximum length for keys and values.
- CLI command to decode raw LoRaWAN frames (
ttn-lw-cli lorawan decode
), useful for debugging purposes. - Options to restore or purge deleted applications, gateways and organizations in the Console.
- Handling of default mac settings values when manually registering end devices in the Console.
- Add a new
class_b_c_downlink_interval
field that can be configured to set the minimum interval between a network initiated downlink (Class B & Class C) and an arbitrary downlink per device. - Retrieve count of upstream messages from the Storage Integration by end device.
- See the new
GetStoredApplicationUpCount
RPC. - See the new
ttn-lw-cli applications storage count
andttn-lw-cli end-devices storage count
CLI commands.
- See the new
- The Identity Server now returns a validation error when trying to update the EUIs of an end device.
- Network Server no longer accepts RX metadata from Packet Broker if the originating forwarder network equals the current Network Server (by NetID and cluster ID, based on
ns.net-id
andns.cluster-id
configuration). This avoids duplicate RX metadata as well as redundant downlink scheduling attempts through Packet Broker after the cluster's Gateway Server already failed to schedule. - Usability of the end device import function in the Console.
- Show a per-device report when errors occur.
- More structural changes to the process to improve UX.
- Packet Broker mutual TLS authentication; only OAuth 2.0 is supported now.
request_details
from errors in the Console.
- Generated CLI configuration for The Things Stack Community Edition.
- End device access with limited rights in the Console.
- Parsing of ID6 encoded EUIs from Basic Station gateways.
- Warnings about unknown fields when getting or searching for gateways.
- Internal Server Errors from
pkg/identityserver/store
. - Console rendering blank pages in outdated browsers due to missing or incomplete internationalization API.
- Error in edit user form (Console) when submitting without making any changes.
description
field not being fetched in edit user form (admin only) in the Console.- Ignore invalid configuration when printing configuration with
ttn-lw-cli config
orttn-lw-stack config
. - Emails about API key changes.
- Avoid rendering blank pages in the Console for certain errors.
- Blank page crashes in the Console for certain browsers that do not fully support
Intl
API. - End device session keys handling in the Console.
- Byte input width in Safari in the Console.
3.14.1 - 2021-08-06
- New config option
--as.packages.timeout
to control the message processing timeout of application packages. - Option to view and copy error details in full view errors in the Console.
- Metrics for CUPS requests.
- Language chooser in the footer in the Console.
- Japanese language support in the Console.
- Cache Root CA for client TLS configuration.
- Identity Server no longer allows removing the
_ALL
right from entity collaborators if that leaves the entity without any collaborator that has the_ALL
right. - The Network Server application uplink queue may now be skipped if the Application Server peer is available at enqueue time.
- The interval for updating gateways in Packet Broker is now 10 minutes (was 5 minutes) and the timeout is 5 seconds (was 2 seconds).
- Improved errors when ordering search requests by non-existent fields.
- LNS authentication key handling for gateways in the Console.
3.14.0 - 2021-07-23
- Gateway antenna placement; unknown, indoor or outdoor. This can now be specified with CLI, e.g. for the first antenna:
ttn-lw-cli gateways set <gateway-id> --antenna.index 0 --antenna.placement OUTDOOR
. The antenna placement will be reported to Packet Broker Mapper.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- Payload formatter length validation in the Console.
- User session management (listing and deleting) in the Identity Server and the CLI.
- Improved logging for the OAuth server.
- LR-FHSS modulation
- Additional fields for the Gateway and Rx Metadata API. This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns. - Support for LR-FHSS fields when translating uplink messages with the UDP protocol.
- Additional fields for the Gateway and Rx Metadata API. This requires a database schema migration (
- Network Server now appends network identifiers in forwarded uplink messages. These are populated from the
ns.net-id
and the newns.cluster-id
configuration option.- See the new
uplink_message.network_identifiers.net_id
,uplink_message.network_identifiers.cluster_id
anduplink_message.network_identifiers.tenant_id
fields. - This can be useful for HTTP webhooks to determine the Network Server that received and forwarded an uplink message.
- See the new
GetDefaultMACSettings
RPC for requesting the default and desired MAC settings for a Band (Frequency Plan) and LoRaWAN regional parameters version.- Error handling for missing templates in device repository form in the Console.
- Opt out of Packet Broker for individual gateways, see the new
disable_packet_broker_forwarding
gateway option.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns. - This is only relevant when Packet Broker is enabled and configured by the network operator.
- This requires a database schema migration (
- Gateways are now disconnected when settings affecting the connection with Gateway Server change. Use the
gs.fetch-gateway-interval
andgs.fetch-interval-jitter
to configure how often the gateway is fetched from the entity registry. - Small UX improvements to the LoRaCloud DAS forms in the Console.
- End device first activation timestamp in the Identity Server end device store.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
AppJs
interface for applications to get the LoRaWAN AppSKey directly from the Join Server.- Console support for DevEUI generation from the configured DevEUI address block.
- This requires
console.ui.dev-eui-issuing-enabled
andconsole.ui.dev-eui-app-limit
to be set with the same values as in the Identity Server configuration.
- This requires
- Gateway antenna placement selection in the Console.
- When a gateway uplink message contains duplicate data uplinks, only the one with the highest RSSI are forwarded.
- The HTTP port now allows HTTP/2 connections over cleartext (h2c).
ttn-lw-stack ns-db migrate
command records the schema version and only performs migrations if on a newer version.- Use the
--force
flag to force perform migrations.
- Use the
- Any authenticated user in the network can now list the collaborators of entities in the network.
- The search RPCs no longer require fields to be specified in the field mask when those fields are already specified as filters.
- When generating client configuration with the CLI
use
command, automatically set the correct Identity Server and OAuth Server addresses for The Things Stack Cloud and The Things Stack Community Edition.
- The
old
log format.
- Network Server ADR algorithm data rate adjustment behavior on negative margin.
- CLI
gateway set --antenna.remove
command failing to remove gateway antennas in some cases. - CLI
gateway set --antenna.gain <gain>
command crashing when no gateway antennas are present. - Webhook template path variable expansion of query parameters.
- LBS LNS Auth Secret displays garbage value when updated.
- Transmit confirmation messages for LoRa Basics Station gateways.
- Instability and frequent crashes when internet connection is lost in the Console.
- Panic in GCS when CUPS rotation is set without a key.
- Rate limiting for
GatewayRegistry.GetGatewayIdentifiersForEUI
is now applied per gateway EUI. - Network Server ensures that the Band ID in the end device version identifiers match the configured Frequency Plan of the device.
3.13.3 - 2021-07-02
- Email sent to admins when an OAuth client is requested by a non-admin user.
- Packet Broker UI in the Console (admin only).
- New config option
--console.oauth.cross-site-cookie
to control access to OAuth state cookie between origins.- This option needs to be set to
true
(default isfalse
) in multi-cluster deployments in order to support OAuth clients that use POST callbacks.
- This option needs to be set to
- Application Server forwards upstream messages of type
ApplicationDownlinkSent
for application downlink messages that were acknowledged with a TxAck message from the gateway.- MQTT clients can subscribe to the topic
v3/{application-id}/devices/{device-id}/down/sent
. - For HTTP webhooks, make sure that the Downlink Sent messages are enabled.
- MQTT clients can subscribe to the topic
- Query for the most recent application messages from the Storage Integration API with the new
last
parameter (for example,?last=10m
or?last=2h
). See also--last
argument for thettn-lw-cli applications storage get
andttn-lw-cli end-devices storage get
commands. - A location solved message is published automatically by Application Server when the decoded payload contains coordinates (e.g.
latitude
andlongitude
, among other combinations, as well as support for accuracy and altitude). - Configuration option to include Packet Broker metadata in uplink messages:
pba.home-network.include-hops
. By default, this is now disabled. - Update gateway identity, status, antennas, frequency plan, location and receive and transmit rates to Packet Broker Mapper. Mapping is enabled when the Forwarder role is enabled. The following new configuration options are introduced to change the default behavior:
gs.packetbroker.update-gateway-interval
: Update gateway intervalgs.packetbroker.update-gateway-jitter
: Jitter (fraction) to apply to the update interval to randomize intervalsgs.packetbroker.online-ttl-margin
: Time to extend the online status before it expirespba.mapper-address
: Address of Packet Broker Mapperpba.forwarder.gateway-online-ttl
: Time-to-live of online status reported to Packet Broker
- Low-level log messages from the
go-redis
library are printed only when the log level is set toDEBUG
. - GS will discard repeated gateway uplink messages (often received due to buggy gateway forwarder implementations). A gateway uplink is considered to be repeated when it has the same payload, frequency and antenna index as the last one.
- The new
gs_uplink_repeated_total
metric counts how many repeated uplinks have been discarded. - A
gs.up.repeat
event is emitted (once per minute maximum) for gateways that are stuck in a loop and forward the same uplink message.
- The new
- For ABP sessions, the CLI now requests a DevAddr from the Network Server instead of generating one from the testing NetID.
- Descriptions, tooltips and defaults for checkboxes for public gateway status and location in the Console.
- All HTTP requests made by The Things Stack now contain a
User-Agent
header in the form ofTheThingsStack/{version}
. - No connection to Packet Broker is being made when neither the Forwarder nor the Home Network role is enabled.
- Increase the default size limit for payload formatter scripts to 40KB (up from 4KB). The maximum size enforced at API level is 40KB (up from 16KB).
- For more context see issue #4053 and issue #4278.
- Parse error in Webhook Templates.
- Application deletion handling in the Console.
- Error when logging into the Console when using connections without TLS.
- Account for antenna gain when the gateway is not authenticated (i.e. UDP gateway).
- Preserve antenna gain when the gateway status message contains GPS coordinates.
- Location map coordinate selection in the Console.
- Rights required for reading scheduled downlinks.
3.13.2 - 2021-06-17
- Configurable log formats with the
log.format
configuration option.- The
console
format that prints logs as more human-friendly text. This is the new default. - The
json
format that prints logs as JSON. This is the recommended format for production deployments. - The
old
format (deprecated). This can be used if you need to adapt your log analysis tooling before v3.14.
- The
ttn_lw_gs_ns_uplink_latency_seconds
,ttn_lw_ns_as_uplink_latency_seconds
andttn_lw_gtw_as_uplink_latency_seconds
metrics to track latency of uplink processing.- Signing of releases.
- Hard delete option to delete applications, gateways and organizations in the Console.
- Relaxed the cookie policy for cross-origin requests from Strict to Lax.
- Changed the cookie policy for OAuth state to None.
- The
old
log format is deprecated and will be removed in v3.14.
- Permissions issue for reading and writing gateway secrets in the Console.
- Current and future rights selection for organization collaborators in the Console.
- Current and future rights selection for user api keys in the Console.
- Low or no throughput of message handling from Packet Broker when the ingress is high when Packet Broker Agent starts.
- Unset ADR bit in downlink messages to multicast devices.
3.13.1 - 2021-06-04
- More contextual tooltips to end device and gateway form fields in the Console.
- Warnings in the Console when changing or revoking your own access to an entity.
- Do not print error line logs for rate limited gRPC and HTTP API requests.
- The
ttn_lw_log_log_messages_total
metric was renamed tottn_lw_log_messages_total
and has an additionalerror_name
label. - Authenticated users now have access to gateway status and location when those are set to public.
- Cookies are no longer allowed in cross-origin requests to the HTTP API. Applications must instead use Bearer tokens in the Authorization header.
- Downlink queue eviction on FCnt mismatch.
- End device payload formatter view crashing in the Console.
- End device overview frequently crashing in the Console.
- Panic on empty downlink in zero indexed downlink token.
3.13.0 - 2021-05-20
- Searching Packet Broker networks with
--tenant-id-contains
and--name-contains
flags. - Listing all listed Packet Broker networks with
ttn-lw-cli packetbroker networks list
. - Include end device version identifiers in upstream messages (see
uplink_message.version_ids.brand_id
,uplink_message.version_ids.model_id
,uplink_message.version_ids.firmware_version
,uplink_message.version_ids.hardware_version
anduplink_message.version_ids.band_id
fields). - Reporting uplink and downlink message delivery state changes to Packet Broker. This will be used for statistical purposes (e.g. which message is processed successfully or why it errored) as well as LoRaWAN roaming (the
XmitDataAns
result code). - Setting API key expiry via
--api-key-expiry
flag using RFC3339 format.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- Events storage in the Redis events backend. This can be enabled with the new
events.redis.store.enable
option. The new optionsevents.redis.store.ttl
,events.redis.store.entity-ttl
,events.redis.store.entity-count
andevents.redis.store.correlation-id-count
can be used to configure retention. - RPC to find related events by correlation ID.
- CLI command
events find-related
. - Support for loading Device Repository profiles from different vendors if specified. This allows reusing standard end device profiles from module makers and LoRaWAN end device stack vendors.
- Filtering out verbose events in the event views in the Console.
- The
gs.up.forward
event now includes the host an uplink was forwarded to. - Previews for
*.update
events in the Console. - The Console can now show recent historical events in networks that have events storage enabled.
- Add a new
mac_settings.desired_max_eirp
field that can be configured to set the desired MaxEIRP value per device. - Support loading rate limiting profile configuration from external sources. When set, they will override embedded configuration. See
rate-limiting.config-source
,rate-limiting.directory
,rate-limiting.url
andrate-limiting.blob.*
configuration options. IssueDevEUI
RPC for requesting a DevEUI from a configured IEEE MAC block for devices per application.- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the addedeui_blocks
table anddev_eui_counter
column in applications table. - This requires a new
dev-eui-block
configuration setting.
- This requires a database schema migration (
- User IDs now have a minimum length of 2 instead of 3, so that more users coming from v2 can keep their username.
- Disabled device uplink simulation and downlink message sending when skipping payload crypto.
- The UpdateAPIKey RPCs now take a fieldmask.
- The Gateway Server no longer sends
gs.up.drop
event if the Network Server does not handle an uplink message, or if the uplink does not match the DevAddr prefix of an upstream. - Maximum size for user-defined payload formatter scripts.
- The default cap is at 4KB, see the new
as.formatters.max-parameter-length
config option. - A maximum cap of 16KB per script is set at the API level.
- This only prevents setting large payload formatter scripts for new devices and applications; it does not remove payload formatters from existing applications and devices. Scripts sourced from the Device Repository are not affected. See issue #4053 for more context on this change.
- The default cap is at 4KB, see the new
- LoRa Basics Station
router_config
message omits hardware specific fields. - Showing "Last seen" information in end device tables (replacing "Created").
- The
gs.status.forward
event.
- OAuth token exchange for OAuth clients that use Basic auth.
- The CLI now properly returns a non-zero exit status code on invalid commands.
- Gateway connection requests with zero EUI are rejected.
- End device payload formatter reset to
FORMATTER_NONE
in the Console. - Memory issues when importing end devices in the Console.
3.12.3 - 2021-05-06
- Optimized storage of recent application uplinks in Application Server.
- Validation of OAuth token exchange requests from the CLI.
- Validation of join-request types when using the Crypto Server backend.
- Application Server session recovery functionality for imported devices.
- Fetching AppSKey when the session is rebuilt but the identifier did not change.
3.12.2 - 2021-04-30
- Contextual tooltips to form fields in the Console.
- C-Style uint32_t representation for end device address field.
- Gateway Configuration Server to the cluster package.
- This introduces a new config option
cluster.gateway-configuration-server
that needs to be set in multi-instance deployments.
- This introduces a new config option
- Uplink storage for integrations in the Application Server. The number of uplinks stored per end device may be configured via the config option
as.uplink-storage.limit
. - LoRaCloud GLS multi frame request support.
- LoRaCloud GNSS request support.
- LoRaCloud WiFi request support.
- Allow the LinkADRReq commands to lower the data rate used by the end devices.
- Occasional crashes in the ratelimit middleware.
- Handling of zero EUI CUPS update-info requests.
- Backend validation messages for some forms.
- Gateway downlink message previews not displaying correctly in the event view of the Console.
- Importing end devices from the Console would occasionally ignore some device MAC settings fields.
3.12.1 - 2021-04-15
- Payload formatter testing functionality in the Console.
- Options in the Identity Server to reject passwords that contain the user ID (
is.user-registration.password-requirements.reject-user-id
) or common passwords (is.user-registration.password-requirements.reject-common
).
- Network Server now takes uplink data rate index for ADR.
- Event streams are now closed when the callers rights are revoked.
- It is no longer possible to accidentally create API keys without any rights.
- Application overview page crashing for collaborators without certain rights.
mac_settings.factory_preset_frequencies
handling in US-like bands.
- This release fixes an issue that prevented some request messages from being validated correctly, allowing invalid values in certain fields.
3.12.0 - 2021-04-06
- API and CLI commands for listing, searching for and restoring recently deleted applications, OAuth clients, gateways, organizations and users.
- State Description fields for adding context to the (rejected, flagged, suspended) state of Users and OAuth clients.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- Searching for gateways by EUI.
- Searching for users and OAuth clients by state.
- Gateway Server forwards Tx Acknowlegdment packets to the Network Server for scheduled downlinks. These can be used by the Network Server to forward
downlink_ack
upstream messages to the Application Server. - UDP connection error caching. The duration can be configured via the
gs.udp.connection-error-expires
configuration entry. - Option to require individual gateways to use authenticated connections.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- Login Tokens (magic login links) that can be used for password-less login.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns. - This feature is disabled by default; use the new
is.login-tokens.enabled
option to enable it.
- This requires a database schema migration (
- Packet Broker registration, configuration of routing policies, listing home networks and viewing routing policies set by forwarding networks. See
ttn-lw-cli packetbroker --help
for more information. - Support LoRa 2.4 GHz with Packet Broker.
- Include gateway identifiers from Packet Broker in metadata.
- Session and MAC state import functionality. This means that devices can be migrated without rejoin.
- Rate limiting for HTTP endpoints, gRPC endpoints, MQTT, UDP and WebSockets connections.
- Rate limiting is disabled by default. Refer to the
rate-limiting
configuration entry to enable.
- Rate limiting is disabled by default. Refer to the
- Profile settings link to header dropdown menu.
- Changed the pub/sub channels that the Redis backend of the Events system uses.
- Changed the encoding of events transported by the Redis backend of the Events system.
- All external HTTP calls are now using TLS client configuration. This fixes issues where HTTP calls would fail if custom (e.g. self-signed) CAs were used.
- All external HTTP calls are now using a default timeout. This fixes issues where HTTP calls would stall for a long time.
- All value wrappers now are encoded and decoded as the value being wrapped in JSON. That means, that, e.g. format of
mac_settings.rx1_delay
is changed from{"value": 2}
to just2
. - Changed the error that is returned when attempting to validate already validated contact info.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added column.
- This requires a database schema migration (
- Update Go to 1.16
- Network Server now performs more strict validation and will disallow creation and updates of invalid devices.
- DevEUI is not required for multicast devices anymore, regarding of LoRaWAN version.
- Incorrect documentation url for event details data formats.
- Search functionality for applications, gateways and organizations in the Console.
- Error handling of end device template formats for the application overview page in the Console.
- Payload size limits for AU915 data rates 8 and 9, which are now consistent with Regional Parameters RP002-1.0.2.
- Payload size limit calculation in Network Server.
- Occasional panic in Network Server on downlink with corrupted device states.
- Occasional panic in Identity Server on extracting log fields from invalid requests.
- Print an error message stating that the Storage Integration is not available in the open source edition of The Things Stack when trying to execute
ttn-lw-stack storage-db
commands.
3.11.3 - 2021-03-19
sentry.environment
configuration option to set theenvironment
tag on Sentry reports.- TR005 QR code format, with ID
tr005
. - LoRa Cloud Geolocation Services support for TOA/RSSI end device geolocation.
- Default value of
gs.udp.addr-change-block
is now 0, which disables the IP firewall for UDP traffic. Deployments that need to enforce the IP check should set a value greater than 0. Note that the new default value makes UDP connections less secure. - Prevent flooding logs with "Packet Filtered" messages when UDP gateways exceed the maximum rate limit. Only one message per minute will be printed for each gateway.
- TR005 Draft 2 and 3 QR code formats. Use the final version of the technical recommendation, with ID
tr005
.
- Downlink queue operations on ABP devices not working under specific circumstances.
- NwkKey handling for end devices in the Console.
3.11.2 - 2021-03-05
- Pagination flags for the
users oauth authorizations list
andusers oauth access-tokens list
CLI commands. - End device ID generation based on DevEUI in The LoRaWAN Device Repository creation form in the Console.
remote_ip
anduser_agent
metadata on OAuth events.created_at
andupdated_at
fields to API Keys.- Telemetry for Packet Broker Agent.
- User rights check for managing API keys in the Console.
temp
field of the UDP stats message is now typefloat32
(pointer).
- Ocassional race condition in uplink matching with replicated Network Server instances.
- Ocassional race condition when matching pending sessions.
- Conflict error when registering an end device via the wizard in the Console.
- Pagination in the
List
andListTokens
RPCs of theOAuthAuthorizationRegistry
. - Event name on user login.
- Application uplink queue handling in Network Server.
- Application Server session desynchronization with the Network Server. The Application Server will now attempt to synchronize the end device session view on downlink queue operational errors. This fixes the
f_cnt_too_low
andunknown_session
errors reported on downlink queue push and replace. - Panic while generating SX1301 config for frequency plans without radio configuration.
3.11.1 - 2021-02-18
- Profile settings view to the Account App.
- Functionality to change basic profile information, such as name, email address and profile picture.
- Functionality to update the account password.
- Functionality to delete the account.
- Improved logging.
- Synchronization in Gateway Server scheduler that caused race conditions in scheduling downlink traffic.
3.11.0 - 2021-02-10
- Reset functionality in Network Server, which resets session context and MAC state (see
ttn-lw-cli end-devices reset
command). For OTAA all data is wiped and device must rejoin, for ABP session keys, device address and downlink queue are preserved, while MAC state is reset. - Store and retrieve Gateway Claim Authentication Code from database.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added column. - This uses the same encryption key set using the
is.gateways.encryption-key-id
configuration option.
- This requires a database schema migration (
- Improved handling of connection issues in the Console, as well as automatic reconnects.
- Helpful details for synthetic meta events in the data view of the Console.
- Support field mask paths in Storage Integration API requests.
- CUPS redirection.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database schema migration (
- Configuration option (
is.user-registration.enabled
) to enable or disable user registrations. - Missing CLI commands for getting single API keys or collaborators for entities.
- New Account App for authentication, authorization and account related functionality.
- This introduces various UX improvements and new designs around e.g. user login, registration and the "forgot password" flow.
- Integrate Device Repository.
- Device Repository component to integrate Device Repository with The Things Stack. See the
dr
configuration section.- The Device Repository database is bundled automatically into Docker release images. See the
ttn-lw-stack dr-db init
command to manually fetch the latest changes.
- The Device Repository database is bundled automatically into Docker release images. See the
- Device repository service to the JavaScript SDK.
- Choosing array representation for end device session keys as well as gateway EUI.
- Network Server does not store
recent_uplinks
,recent_adr_uplinks
andrecent_downlinks
anymore. - Improved Network Server downlink task performance.
- Improved Network Server matching performance.
- Network Server matching mapping in the database.
- This requires a database migration (
ttn-lw-stack ns-db migrate
).
- This requires a database migration (
- Sending a non-empty implicitly specified field disallowed field will now cause RPCs to fail. E.g. if RPC supports paths
A
andA.B
, sending value withA.C
non-empty and field maskA
would result in an error. - Improved content of emails sent by the Identity Server.
- Stricter validation of the maximum length of string fields, binary fields, lists and maps.
- Frequency plans and webhook templates are now included in Docker images, and used by default, instead of fetching directly from GitHub.
- JavaScript entrypoints changed from
oauth.css
andoauth.js
toaccount.css
andaccount.css
. Note: For deployments using custom frontend bundles (e.g. via--is.oauth.ui.js-file
), the filenames have to be updated accordingly as well.
- Application Server linking. The Network Server now pushes data to the cluster Application Server instead.
- Applications which desire to handle payload decryption within their own domains should disable payload decryption at application or device level and decrypt the payload on their own end.
- While not backwards compatible, the decision to remove linking was heavily motivated by scalability concerns - the previous linking model scales poorly when taking high availability and load balancing concerns into account.
- The option to disable CUPS per gateway
gcs.basic-station.require-explicit-enable
.
- Network Server DevStatusReq scheduling conditions in relation to frame counter value.
- Missing
authentication
,remote_ip
anduser_agent
fields in events when using event backends other thaninternal
. - Handling of
DLChannelReq
if dependentNewChannelReq
was previously rejected. - Login after user registration leading to dead-end when originally coming from the Console.
- Frame counter display of end devices on initial page load in the Console.
- AU915-928 data rate indexes in Regional Parameter specification versions below 1.0.2b.
3.10.6 - 2021-01-12
- Configuration option
is.admin-rights.all
to grant admins all rights, including_KEYS
and_ALL
. - Configuration option
is.user-registration.contact-info-validation.token-ttl
to customize the validity of contact information validation tokens. ttn-lw-stack
CLI command for creating an API Key with full rights on a user.
- Packet Broker API version to
v3.2.0-tts
and routing API tov1.0.2-tts
. - Emails with temporary tokens now also show when these tokens expire. Custom email templates can use
{{ .TTL }}
and{{ .FormatTTL }}
to render the expiry durations.
- Packet Broker mutual TLS authentication: use OAuth 2.0 client credentials instead; set
pba.authentication-mode
tooauth2
and configurepba.oauth2
. - Packet Broker forwarder blacklist setting
pba.home-network.blacklist-forwarder
has become ineffective.
- Do not initiate new contact info validations when old validations are still pending.
3.10.5 - 2020-12-23
- Support for sending end device uplinks using the CLI (see
ttn-lw-cli simulate application-uplink
command). - Clients can now perform custom ADR by modifying ADR parameters in
mac-state.desired-parameters
of the device.
- Form field layouts in the Console (field labels are now dispayed above the field).
- Small structural changes to the custom webhook form in the Console.
- Renamed experimental command
ttn-lw-cli simulate uplink
tottn-lw-cli simulate gateway-uplink
. - Renamed experimental command
ttn-lw-cli simulate join-request
tottn-lw-cli simulate gateway-join-request
.
- Removed misleading warning message for missing package data when setting up the storage integration package association.
3.10.4 - 2020-12-08
- Configure application activation settings from the CLI (see
ttn-lw-cli application activation-settings
commands). - User API keys management to the Console.
Purge
RPC and cli command for entity purge (hard-delete) from the database.- More password validation rules in the user management form in the Console.
- Support for class B end devices in the Console.
- MAC settings configuration when creating and editing end devices in the Console.
- Support for the LR1110 LTV stream protocol.
- Branding (updated TTS Open Source logo, colors, etc).
- Simulated uplinks visibility in webhook messages.
- Retransmission handling.
- RTT recording for LBS gateways. The maximum round trip delay for RTT calculation is configurable via
--gs.basic-station.max-valid-round-trip-delay
. - Memory leak in GS scheduler.
3.10.3 - 2020-12-02
- Configure application activation settings from the CLI (see
ttn-lw-cli application activation-settings
commands).
- Fixed an issue with authentication on the
/debug/pprof
,/healthz
and/metrics
endpoints.
3.10.2 - 2020-11-27
- gRPC middleware to extract proxy headers from trusted proxies. This adds a configuration
grpc.trusted-proxies
that is similar to the existinghttp.trusted-proxies
option.
- Log field consistency for HTTP and gRPC request logs.
- Uplink frame counter reset handling.
- Uplink retransmission handling in Network Server.
- DevAddr generation for NetID Type 3 and 4, according to errata.
- HTTP header propagation (such as Request ID) to gRPC services.
3.10.1 - 2020-11-19
- More password validation rules in the user management form in the Console.
- Limitation of displayed and stored events in the Console to 2000.
- Application Server will unwrap the AppSKey if it can, even if skipping payload crypto is enabled. This is to avoid upstream applications to receive wrapped keys they cannot unwrap. For end-to-end encryption, configure Join Servers with wrap keys unknown to the Application Server.
- More precise payload labels for event previews in the Console.
- Next button title in the end device wizard in the Console.
- Navigation to the user edit page after creation in the Console.
- The port number of the
http.redirect-to-host
option was ignored whenhttp.redirect-to-tls
was used. This could lead to situations where the HTTPS server would always redirect to port 443, even if a different one was specified.- If the HTTPS server is available on
https://thethings.example.com:8443
, the following flags (or equivalent environment variables or configuration options) are required:--http.redirect-to-tls --http.redirect-to-host=thethings.example.com:8443
.
- If the HTTPS server is available on
- Status display on the error view in the Console.
- Event views in the Console freezing after receiving thousands of events.
- Wrong FPort value displayed for downlink attempt events in the Console.
- Network Server sending duplicate application downlink NACKs.
- Network Server now sends downlink NACK when it assumes confirmed downlink is lost.
- Network Server application uplink drainage.
3.10.0 - 2020-11-02
- Gateway Configuration Server endpoint to download UDP gateway configuration file.
- In the Console this requires a new
console.ui.gcs.base-url
configuration option to be set.
- In the Console this requires a new
- Support for sending end device uplinks in the Console.
- PHY version filtering based on LoRaWAN MAC in the Console.
- Meta information and status events in the event views in the Console.
- Support for setting the frame counter width of an end device in the Console.
- Include consumed airtime metadata in uplink messages and join requests (see
uplink_message.consumed_airtime
field). - Add end device location metadata on forwarded uplink messages (see
uplink_message.locations
field). - Store and retrieve LBS LNS Secrets from database.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added column. - To encrypt the secrets, set the new
is.gateways.encryption-key-id
configuration option.
- This requires a database schema migration (
- Storage Integration API.
- CLI support for Storage Integration (see
ttn-lw-cli end-devices storage
andttn-lw-cli applications storage
commands). - Network Server does not retry rejected
NewChannelReq
data rate ranges or rejectedDLChannelReq
frequencies anymore. - Functionality to allow admin users to list all organizations in the Console.
- Downlink count for end devices in the Console.
- Support for Application Activation Settings in the Join Server to configure Application Server KEK, ID and Home NetID.
- Downlink queue invalidated message sent upstream by Application Server to support applications to re-encrypt the downlink queue when Application Server skips FRMPayload crypto.
- Navigation to errored step in the end device wizard in the Console.
- Reference available glossary entries for form fields in the Console.
- Decoded downlink payloads are now published as part of downlink attempt events.
- Decoded downlink payloads are stored now by Network Server.
- Raw downlink PHY payloads are not stored anymore by Network Server.
- Move documentation to lorawan-stack-docs.
- Improve LinkADRReq scheduling condition computation and, as a consequence, downlink task efficiency.
- CUPS Server only accepts The Things Stack API Key for token auth.
- Improve MQTT Pub/Sub task restart conditions and error propagation.
- Pausing event streams is not saving up arriving events during the pause anymore.
- Gateway server can now update the gateway location only if the gateway is authenticated.
- Right to manage links on Application Server is now
RIGHT_APPLICATION_SETTINGS_BASIC
.
- Join EUI prefixes select on empty prefixes configuration in Join Server.
- Broken link to setting device location in the device map widget.
- Error events causing Console becoming unresponsive and crashing.
- Incorrect entity count in title sections in the Console.
- Incorrect event detail panel open/close behavior for some events in the Console.
- Improved error resilience and stability of the event views in the Console.
- RSSI metadata for MQTT gateways connected with The Things Network Stack V2 protocol.
- Gateway ID usage in upstream connection.
- Last seen counter for applications, end devices and gateways in the Console.
Use credentials
option being always checked in Pub/Sub edit form in the Console.- FPending being set on downlinks, when LinkADRReq is required, but all available TxPower and data rate index combinations are rejected by the device.
- Coding rate for LoRa 2.4 GHz: it's now
4/8LI
. - End device import in the Console crashing in Firefox.
- Creation of multicast end devices in the Console.
- Overwriting values in the end device wizard in the Console.
- Redirect loops when logging out of the Console if the Console OAuth client had no logout redirect URI(s) set.
- Event selection not working properly when the event stream is paused in the Console.
3.9.4 - 2020-09-23
- Detail view of events in the Console moved to the side.
- Display the full event object when expanded in the Console (used to be
event.data
only).
- Performance issues of event views in the Console (freezing after some time).
- Gateway Server panic on upstream message handling.
- Incorrect redirects for restricted routes in the Console.
- Validation of MAC settings in the Network Server.
- Network Server panic when RX2 parameters cannot be computed.
3.9.3 - 2020-09-15
- Add
the-things-stack
device template converter, enabled by default. Effectively, this allows importing end devices from the Console. - Support for binary decoding downlink messages previously encoded with Javascript or CayenneLPP.
- Common CA certificates available in documentation.
- Service data fields to pub/subs and webhooks in the Console.
- MAC commands (both requests and responses) are now only scheduled in class A downlink slots in accordance to latest revisions to LoRaWAN specification.
- Scheduling failure events are now emitted on unsuccessful scheduling attempts.
- Default Javascript function signatures to
encodeDownlink()
,decodeUplink()
anddecodeDownlink()
. - Default Class B timeout is increased from 1 minute to 10 minutes as was originally intended.
- Update Go to 1.15
- Application, gateway, organization and end device title sections in the Console.
- Network Server downlink queues now have a capacity - by default maximum application downlink queue length is 10000 elements.
- Improve ADR algorithm loss rate computation.
- Previous Javascript function signatures
Decoder()
andEncoder()
, although they remain functional until further notice.
- ISM2400 RX2, beacon and ping slot frequencies are now consistent with latest LoRaWAN specification draft.
- CLI login issues when OAuth Server Address explicitly includes the
:443
HTTPS port. - Documentation link for LoRa Cloud Device & Application Services in the Lora Cloud integration view in the Console.
- Webhooks and Pub/Subs forms in the Console will now let users choose whether they want to overwrite an existing record when the ID already exists (as opposed to overwriting by default).
- Pub/Sub integrations not backing off on internal connection failures.
- Network Server ping slot-related field validation.
- Memory usage of Network Server application uplink queues.
- Incorrect uplink FCnt display in end device title section.
- Service Data messages being routed incorrectly.
3.9.1 - 2020-08-19
- LoRaCloud DAS integration page in the Console.
- User Agent metadata on published events (when available).
- Option to override server name used in TLS handshake with cluster peers (
cluster.tls-server-name
).
- Network Server now only publishes payload-related downlink events if scheduling succeeds.
- Moved remote IP event metadata outside authentication.
- Admins can now set the expiration time of temporary passwords of users.
- Application Server links are no longer canceled prematurely for special error codes. Longer back off times are used instead.
- Authentication metadata missing from published events.
- Under some circumstances, CLI would mistakenly import ABP devices as OTAA.
- Gateway Server could include the gateway antenna location on messages forwarded to the Network Server even if the gateway location was not public.
3.9.0 - 2020-08-06
- API Authentication and authorization via session cookie.
- This requires a database schema migration (
ttn-lw-stack is-db migrate
) because of the added and modified columns. - This changes the
AuthInfo
API response.
- This requires a database schema migration (
- Skipping payload crypto on application-level via application link's
skip_payload_crypto
field. - Authentication method, ID and Remote IP in events metadata.
- Service data messages published by integrations. Can be consumed using the bundled MQTT server, Webhooks or Pub/Sub integrations.
- Application package application-wide associations support.
- LoRaCloud DAS application package server URL overrides support.
- Key vault caching mechanism (see
--key-vault.cache.size
and--key-vault.cache.ttl
options). - Generic encryption/decryption to KeyVault.
- Option to ignore log messages for selected gRPC method on success (see
grpc.log-ignore-methods
option). - CLI auto-completion support (automatically enabled for installable packages, also see
ttn-lw-cli complete
command). - Options to disable profile picture and end device picture uploads (
is.profile-picture.disable-upload
andis.end-device-picture.disable-upload
). - Options to allow/deny non-admin users to create applications, gateways, etc. (the the
is.user-rights.*
options). - Admins now receive emails about requested user accounts that need approval.
- Support for synchronizing gateway clocks via uplink tokens. UDP gateways may not connect to the same Gateway Server instance.
- Consistent command aliases for CLI commands.
- Laird gateway documentation.
- Option to allow unauthenticated Basic Station connections. Unset
gs.basic-station.allow-unauthenticated
to enforce auth check for production clusters. Please note that unauthenticated connections in existing connections will not be allowed unless this is set. - Option to require TLS on connections to Redis servers (see
redis.tls.require
and related options). - Documentation for
cache
options. - Documentation for the Gateway Server MQTT protocol.
- Add user page in console.
- Troubleshooting guide.
- API to get configuration from the Identity Server (including user registration options and password requirements).
- Synchronize gateway time by uplink token on downstream in case the Gateway Server instance is not handling the upstream gateway connection.
- Work-around for Basic Station gateways sending uplink frames with no
xtime
. - Document Network Server API Key requirement for Basic Station.
- Remove version from hosted documentation paths.
- Gateway connection stats are now stored in a single key.
- The example configuration for deployments with custom certificates now also uses a CA certificate.
- Increase Network Server application uplink buffer queue size.
ttn-lw-cli use
command no longer adds default HTTP ports (80/443) to the OAuth Server address.- Suppress the HTTP server logs from the standard library. This is intended to stop the false positive "unexpected EOF" error logs generated by health checks on the HTTPS ports (for API, BasicStation and Interop servers).
- Automatic collapse and expand of the sidebar navigation in the Console based on screen width.
- The header of the sidebar is now clickable in the Console.
- Overall layout and behavior of the sidebar in the Console improved.
- Improved layout and screen space utilization of event data views in the Console.
- Allow setting all default MAC settings of the Network Server. Support setting enum values using strings where applicable.
- End device
skip_payload_crypto
field: it gets replaced byskip_payload_crypto_override
.
- Inconsistent error message responses when retrieving connection stats from GS if the gateway is not connected.
- Empty form validation in the Console.
- CLI crash when listing application package default associations without providing an application ID.
- Decoding of uplinks with frame counters exceeding 16 bits in Application Server.
- Validation of keys for gateway metrics and version fields.
- Read only access for the gateway overview page in the Console.
- Fix an issue that frequently caused event data views crashing in the Console.
- Application Server contacting Join Server via interop for fetching the AppSKey.
- Low color contrast situations in the Console.
- Application Server pub/sub integrations race condition during shutdown.
- Console webhook templates empty headers error.
- Console MQTT URL validation.
- AFCntDown from the application-layer is respected when skipping application payload crypto.
- RTT usage for calculating downlink delta.
- Synchronize concentrator timestamp when uplink messages arrive out-of-order.
3.8.6 - 2020-07-10
- Payload formatter documentation.
- CLI support for setting message payload formatters from a local file. (see
--formatters.down-formatter-parameter-local-file
and--formatters.up-formatter-parameter-local-file
options).
- Gateway connection stats are now stored in a single key.
- Uplink frame counters being limited to 16 bits in Network Server.
3.8.5 - 2020-07-06
- Option to reset end device payload formatters in the Console.
- Service discovery using DNS SRV records for external Application Server linking.
- Functionality to set end device attributes in the Console.
- Event description tooltip to events in the Console.
- CLI support for setting and unsetting end device location (see
--location.latitude
,--location.longitude
,--location.altitude
and--location.accuracy
options). - Functionality to allow admin users to list all applications and gateways in the Console.
- Ursalink UG8X gateway documentation.
- Intercom, Google Analytics, and Emojicom feedback in documentation.
- LORIX One gateway documentation.
- Display own user name instead of ID in Console if possible.
- Option to hide rarely used fields in the Join Settings step (end device wizard) in the Console.
- JSON uplink message doc edited for clarity.
- The CLI snap version uses the
$SNAP_USER_COMMON
directory for config by default, so that it is preserved between revisions. - Defer events subscriptions until there is actual interest for events.
- End device creation form with wizard in the Console.
- Requirement to specify
frequency_plan_id
when creating gateways in the Console.
- Endless authentication refresh loop in the Console in some rare situations.
- Logout operation not working properly in the Console in some rare situations.
- Handling API key deletion event for applications, gateways, organizations and users.
- Organization API key deletion in the Console.
- CLI now only sends relevant end device fields to Identity Server on create.
- Maximum ADR data rate index used in 1.0.2a and earlier versions of AU915 band.
- End device events stream restart in the Console.
- CLI was unable to read input from pipes.
- Timezones issue in claim authentication code form, causing time to reverse on submission.
- Errors during submit of the join settings for end devices in the Console.
3.8.4 - 2020-06-12
- Metrics for log messages, counted per level and namespace.
- Allow suppressing logs on HTTP requests for user-defined paths (see
--http.log-ignore-paths
option). - Redux state and actions reporting to Sentry
- Serving frontend sourcemaps in production
- Frequency plan documentation.
- LoRa Basics Station documentation.
- Suppress a few unexpected EOF errors, in order to reduce noise in the logs for health checks.
- Packet Broker Agent cluster ID is used as subscription group.
- LinkADR handling in 72-channel bands.
- Data uplink metrics reported by Application Server.
3.8.3 - 2020-06-05
- Favicon to documentation pages.
- Draft template for documentation.
- Late scheduling algorithm; Gateway Server now takes the 90th percentile of at least the last 5 round-trip times of the last 30 minutes into account to determine whether there's enough time to send the downlink to the gateway. This was the highest round-trip time received while the gateway was connected.
- Downlink scheduling to gateways which had one observed round-trip time that was higher than the available time to schedule. In some occassions, this broke downlink at some point while the gateway was connected.
3.8.2 - 2020-06-03
- Console logout is now propagated to the OAuth provider.
- This requires a database migration (
ttn-lw-stack is-db migrate
) because of the added columns. - To set the
logout-redirect-uris
for existing clients, the CLI client can be used, e.g.:ttn-lw-cli clients update console --logout-redirect-uris "https://localhost:8885/console" --redirect-uris "http://localhost:1885/console"
.
- This requires a database migration (
- Packet Broker Agent to act as Forwarder and Home Network. See
pba
configuration section. - JavaScript style guide to our
DEVELOPMENT.md
documentation. - Schedule end device downlinks in the Console.
- Support for repeated
RekeyInd
. (happens when e.g.RekeyConf
is lost) - Validate the
DevAddr
when switching session as a result of receivingRekeyInd
. - Error details for failed events in the Console.
Unknown
andOther cluster
connection statuses to the gateways table in the Console.- LoRaWAN 2.4 GHz band
ISM2400
. - Unset end device fields using the CLI (see
--unset
option) - Join EUI and Dev EUI columns to the end device table in the Console.
- CLI creates user configuration directory if it does not exist when generating configuration file.
- Upgrading guide in docs.
- Glossary.
- Event details in the Console traffic view.
- Gateway Server events for uplink messages now contain end device identifiers.
- Setting custom gateway attributes in the Console.
- Pub/Sub documentation.
- Return informative well-known errors for standard network and context errors.
- Error notification in list views in the Console.
- Latest "last seen" info and uplink frame counts for end devices in the Console.
- Latest "last seen" info for applications in the Console.
- Conformed JavaScript to new code style guide.
- Removed login page of the Console (now redirects straight to the OAuth login).
- Network Server now records
LinkADRReq
rejections and will not retry rejected values. - Improved
NewChannelReq
,DLChannelReq
andLinkADRReq
efficiency. - For frames carrying only MAC commands, Network Server now attempts to fit them in FOpts omitting FPort, if possible, and sends them in FRMPayload with FPort 0 as usual otherwise.
- Submit buttons are now always enabled in the Console, regardless of the form's validation state.
- Disabled ADR for
ISM2400
band. - Network Server will attempt RX1 for devices with
Rx1Delay
of 1 second, if possible. - Network Server will not attempt to schedule MAC-only frames in ping slots or RXC windows.
- Network Server will only attempt to schedule in a ping slot or RXC window after RX2 has passed.
- Network Server will schedule all time-bound network-initiated downlinks at most RX1 delay ahead of time.
- Network Server now uses its own internal clock in
DeviceTimeAns
. - Troubleshooting section of
DEVELOPMENT.md
- Change console field labels from
MAC version
andPHY version
toLoRaWAN version
andRegional Parameters version
and add descriptions
- Handling of device unsetting the ADR bit in uplink, after ADR has been started.
- Invalid
oauth-server-address
in CLI config generated byuse
command when config file is already present. - Network Server now properly handles FPort 0 data uplinks carrying FOpts.
- Data rate 4 in version
1.0.2-a
of AU915. - Incorrect
TxOffset
values used by Network Server in some bands. - OAuth authorization page crashing.
- Byte input in scheduling downlink view.
- OAuth client token exchange and refresh issues when using TLS with a RootCA.
- Join Server and Application Server device registries now return an error when deleting keys on
SET
operations. The operation was never supported and caused an error onGET
instead. - Clearing end device events list in the Console.
- Some views not being accessible in the OAuth app (e.g. update password).
LinkADRReq
scheduling.- Unsetting NwkKey in Join Server.
- CSRF token validation issues preventing login and logout in some circumstances.
- Typo in Application Server configuration documentation (webhook downlink).
- Unset fields via CLI on Join Server, i.e.
--unset root-keys.nwk-key
. - Reconnecting UDP gateways that were disconnected by a new gateway connection.
- ADR in US915-like bands.
3.7.2 - 2020-04-22
- CLI can now dump JSON encoded
grpc_payload
field for unary requests (see--dump-requests
flag). - Template ID column in the webhook table in the Console.
- Select all field mask paths in CLI get, list and search commands (see
--all
option). - Create webhooks via webhook templates in the Console.
ns.up.data.receive
andns.up.join.receive
events, which are triggered when respective uplink is received and matched to a device by Network Server.ns.up.data.forward
andns.up.join.accept.forward
events, which are triggered when respective message is forwarded from Network Server to Application Server.ns.up.join.cluster.attempt
andns.up.join.interop.attempt
events, which are triggered when the join-request is sent to respective Join Server by the Network Server.ns.up.join.cluster.success
andns.up.join.interop.success
events, which are triggered when Network Server's join-request is accepted by respective Join Server.ns.up.join.cluster.fail
andns.up.join.interop.fail
events, which are triggered when Network Server's join-request to respective Join Server fails.ns.up.data.process
andns.up.join.accept.process
events, which are triggered when respective message is successfully processed by Network Server.ns.down.data.schedule.attempt
andns.down.join.schedule.attempt
events, which are triggered when Network Server attempts to schedule a respective downlink on Gateway Server.ns.down.data.schedule.success
andns.down.join.schedule.success
events, which are triggered when Network Server successfully schedules a respective downlink on Gateway Server.ns.down.data.schedule.fail
andns.down.join.schedule.fail
events, which are triggered when Network Server fails to schedule a respective downlink on Gateway Server.- Specify gRPC port and OAuth server address when generating a CLI config file with
ttn-lw-cli use
(see--grpc-port
and--oauth-server-address
options). - Guide to connect MikroTik Routerboard
- Styling improvements to webhook and pubsub table in Console.
- Gateway location is updated even if no antenna locations had been previously set.
- Renamed
ns.application.begin_link
event tons.application.link.begin
. - Renamed
ns.application.end_link
event tons.application.link.end
. ns.up.data.drop
andns.up.join.drop
events are now triggered when respective uplink duplicate is dropped by Network Server.- Network Server now drops FPort 0 data uplinks with non-empty FOpts.
- Frontend asset hashes are loaded dynamically from a manifest file instead of being built into the stack binary.
- Removed
Cache-Control
header for static files. - Sort events by
time
in the Console. - Restructure doc folder
ns.up.merge_metadata
event.ns.up.receive_duplicate
event.ns.up.receive
event.
- End device claim display bug when claim dates not set.
- DeviceModeInd handling for LoRaWAN 1.1 devices.
- Do not perform unnecessary gateway location updates.
- Error display on failed end device import in the Console.
- Update password view not being accessible
- FOpts encryption and decryption for LoRaWAN 1.1 devices.
- Application Server returns an error when trying to delete a device that does not exist.
- Network Server returns an error when trying to delete a device that does not exist.
- Retrieve LNS Trust without LNS Credentials attribute.
- Too strict webhook base URL validation in the Console.
- Webhook and PubSub total count in the Console.
- DevEUI is set when creating ABP devices via CLI.
- CLI now shows all supported enum values for LoraWAN fields.
- Application Server does not crash when retrieving a webhook template that does not exist if no template repository has been configured.
- Application Server does not crash when listing webhook templates if no template repository has been configured.
- Error display on failed end device fetching in the Console.
- Various inconsistencies with Regional Parameters specifications.
3.7.0 - 2020-04-02
- Update gateway antenna location from incoming status message (see
update_location_from_status
gateway field and--gs.update-gateway-location-debounce-time
option).- This requires a database migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database migration (
- Access Tokens are now linked to User Sessions.
- This requires a database migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database migration (
- Edit application attributes in Application General Settings in the Console
- New
use
CLI command to automatically generate CLI configuration files. - View/edit
update_location_from_status
gateway property using the Console.
- Default DevStatus periodicity is increased, which means that, by default, DevStatusReq will be scheduled less often.
- Default class B and C timeouts are increased, which means that, by default, if the Network Server expects an uplink from the device after a downlink, it will wait longer before rescheduling the downlink.
- In case downlink frame carries MAC requests, Network Server will not force the downlink to be sent confirmed in class B and C.
- Fix organization collaborator view not being accessible in the Console.
- Error display on Data pages in the Console.
- Fix too restrictive MQTT client validation in PubSub form in the Console.
- Fix faulty display of device event stream data for end devices with the same ID in different applications.
- Trailing slashes handling in webhook paths.
- End device location display bug when deleting the location entry in the Console.
- GS could panic when gateway connection stats were updated while updating the registry.
- Local CLI and stack config files now properly override global config.
- Error display on failed end device deletion in the Console.
3.6.3 - 2020-03-30
- Limited throughput in upstream handlers in Gateway Server when one gateway's upstream handler is busy.
3.6.2 - 2020-03-19
- Entity events subscription release in the Console (Firefox).
- RekeyInd handling for LoRaWAN 1.1 devices.
- Network server deduplication Redis configuration.
- Change the date format in the Console to be unambiguous (
17 Mar, 2020
). - Handling of uplink frame counters exceeding 65535.
- Gateway events subscription release in the Console.
- Panic when receiving a UDP
PUSH_DATA
frame from a gateway without payload.
- Admin users that are suspended can no longer create, view or delete other users.
3.6.1 - 2020-03-13
- New
list
andrequest-validation
subcommands for the CLI'scontact-info
commands. - Device Claim Authentication Code page in the Console.
- Gateway Server rate limiting support for the UDP frontend, see (
--gs.udp.rate-limiting
options). - Uplink deduplication via Redis in Network Server.
- Network and Application Servers now maintain application downlink queue per-session.
- Gateway Server skips setting up an upstream if the DevAddr prefixes to forward are empty.
- Gateway connection stats are now cached in Redis (see
--cache.service
and--gs.update-connections-stats-debounce-time
options).
- Telemetry and events for gateway statuses.
- Handling of downlink frame counters exceeding 65535.
- Creating 1.0.4 ABP end devices via the Console.
- ADR uplink handling.
- Uplink retransmission handling.
- Synchronizing Basic Station concentrator time after reconnect or initial connect after long inactivity.
- Changing username and password to be not required in pubsub integration.
3.6.0 - 2020-02-27
- Class B support.
- WebSocket Ping-Pong support for Basic Station frontend in the Gateway Server.
- LoRaWAN 1.0.4 support.
- Do not use
personal-files
plugin for Snap package. - Network Server will never attempt RX1 for devices with
Rx1Delay
of 1 second. - Improved efficiency of ADR MAC commands.
- Gateway Configuration Server will use the default WebSocket TLS port if none is set.
- End device events subscription release in the Console.
- Blocking UDP packet handling while the gateway was still connecting. Traffic is now dropped while the connection is in progress, so that traffic from already connected gateways keep flowing.
- Join-request transmission parameters.
- ADR in 72-channel regions.
- Payload length limits used by Network Server being too low.
- CLI ignores default config files that cannot be read.
- Device creation rollback potentially deleting existing device with same ID.
- Returned values not representing the effective state of the devices in Network Server when deprecated field paths are used.
- Downlink queue operations in Network Server for LoRaWAN 1.1 devices.
3.5.3 - 2020-02-14
- Display of error payloads in console event log.
- Zero coordinate handling in location form in the Console.
- Updating
supports_class_c
field in the Device General Settings Page in the Console. - Updating MQTT pubsub configuration in the Console
- Handling multiple consequent updates of MQTT pubsub/webhook integrations in the Console.
- Displaying total device count in application overview section when using device search in the Console
- FQDN used for Backend Interfaces interoperability requests.
- Exposing device sensitive fields to unrelated stack components in the Console.
- CLI trying to read input while none available.
- Reconnections of gateways whose previous connection was not cleaned up properly. New connections from the same gateway now actively disconnects existing connections.
ttn-lw-stack
andttn-lw-cli
file permission errors when installed using snap.- You may need to run
sudo snap connect ttn-lw-stack:personal-files
- You may need to run
- Changing username and password to be not required in pubsub integration
3.5.2 - 2020-02-06
- Channel mask encoding in LinkADR MAC command.
- Frequency plan validation in Network Server on device update.
- Authentication of Basic Station gateways.
3.5.1 - 2020-01-29
- Responsive side navigation (inside entity views) to the Console.
- Overall responsiveness of the Console.
- Support for configuring Redis connection pool sizes with
redis.pool-size
options.
- Crashes on Gateway Server start when traffic flow started while The Things Stack was still starting.
- Not detecting session change in Application Server when interop Join Server did not provide a
SessionKeyID
.
3.5.0 - 2020-01-24
- Support for releasing gateway EUI after deletion.
- Support in the Application Server for the
X-Downlink-Apikey
,X-Downlink-Push
andX-Downlink-Replace
webhook headers. They allow webhook integrations to determine which endpoints to use for downlink queue operations. as.webhooks.downlinks.public-address
andas.webhooks.downlinks.public-tls-address
configuration options to the Application Server.- Support for adjusting the time that the Gateway Server schedules class C messages in advance per gateway.
- This requires a database migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database migration (
end-devices use-external-join-server
CLI subcommand, which disassociates and deletes the device from Join Server.mac_settings.beacon_frequency
end device field, which defines the default frequency of class B beacon in Hz.mac_settings.desired_beacon_frequency
end device field, which defines the desired frequency of class B beacon in Hz that will be configured via MAC commands.mac_settings.desired_ping_slot_data_rate_index
end device field, which defines the desired data rate index of the class B ping slot that will be configured via MAC commands.mac_settings.desired_ping_slot_frequency
end device field, which defines the desired frequency of the class B ping slot that will be configured via MAC commands.- Mobile navigation menu to the Console.
- View and edit all Gateway settings from the Console.
skip_payload_crypto
end device field, which makes the Application Server skip decryption of uplink payloads and encryption of downlink payloads.app_s_key
andlast_a_f_cnt_down
uplink message fields, which are set if theskip_payload_crypto
end device field is true.- Support multiple frequency plans for a Gateway.
- Entity search by ID in the Console.
resets_join_nonces
now applies to pre-1.1 devices as well as 1.1+ devices.- Empty (
0x0000000000000000
) JoinEUIs are now allowed.
- Respect stack components on different hosts when connected to event sources in the Console.
- Pagination of search results.
- Handling OTAA devices registered on an external Join Server in the Console.
- RxMetadata Location field from Gateway Server.
- Channel mask encoding in LinkADR MAC command.
- Device location and payload formatter form submits in the Console.
- Events processing in the JS SDK.
- Application Server frontends getting stuck after their associated link is closed.
3.4.2 - 2020-01-08
- Forwarding of backend warnings to the Console.
- Auth Info service to the JavaScript SDK.
- Subscribable events to the JavaScript SDK.
- Include
gateway_ID
field in Semtech UDP configuration response from Gateway Configuration Server. - Sorting feature to entity tables in the Console.
- Increase time that class C messages are scheduled in advance from 300 to 500 ms to support higher latency gateway backhauls.
- Fix selection of pseudo wildcard rights being possible (leading to crash) in the Console even when such right cannot be granted.
- Fix loading spinner being stuck infinitely in gateway / application / organization overview when some rights aren't granted to the collaborator.
- Fix deadlock of application add form in the Console when the submit results in an error.
- Fix ttn-lw-cli sometimes refusing to update Gateway EUI.
3.4.1 - 2019-12-30
- Support for ordering in
List
RPCs. - Detect existing Basic Station time epoch when the gateway was already running long before it (re)connected to the Gateway Server.
- Reduce the downlink path expiry window to 15 seconds, i.e. typically missing three
PULL_DATA
frames. - Reduce the connection expiry window to 1 minute.
- Reduce default UDP address block time from 5 minutes to 1 minute. This allows for faster reconnecting if the gateway changes IP address. The downlink path and connection now expire before the UDP source address is released.
- Fix class A downlink scheduling when an uplink message has been received between the triggering uplink message.
3.4.0 - 2019-12-24
- Downlink queue operation topics in the PubSub integrations can now be configured using the Console.
List
RPC in the user registry and related messages.- User management for admins in the Console.
users list
command in the CLI.- Support for getting Kerlink CPF configurations from Gateway Configuration Server.
- Support for Microchip ATECC608A-TNGLORA-C manifest files in device template conversion.
- Fix the PubSub integration edit page in the Console.
- Fix updating and setting of webhook headers in the Console.
- Fix DevNonce checks for LoRaWAN 1.0.3.
3.3.2 - 2019-12-04
- Support for selecting gateways when queueing downlinks via CLI (see
class-b-c.gateways
option). - Options
is.oauth.ui.branding-base-url
andconsole.ui.branding-base-url
that can be used to customize the branding (logos) of the web UI. - Email templates can now also be loaded from blob buckets.
- Support for pagination in search APIs.
- Search is now also available to non-admin users.
- Support for searching end devices within an application.
- Notification during login informing users of unapproved user accounts.
- Support maximum EIRP value from frequency plans sub-bands.
- Support duty-cycle value from frequency plans sub-bands.
- Allow enqueuing class B/C downlinks regardless of active device class.
- Fix crashing of organization collaborator edit page.
- Avoid validating existing queue on application downlink pushes.
- Correct
AU_915_928
maximum EIRP value to 30 dBm in 915.0 – 928.0 MHz (was 16.15 dBm). - Correct
US_902_928
maximum EIRP value to 23.15 dBm in 902.3 – 914.9 MHz (was 32.15 dBm) and 28.15 dBm in 923.3 – 927.5 MHz (was 32.15 dBm). This aligns with US915 Hybrid Mode. - Correct
AS_923
maximum EIRP value to 16 dBm in 923.0 – 923.5 MHz (was 16.15 dBm).
- Keep session keys separate by
JoinEUI
to avoid conditions where session keys are retrieved only byDevEUI
and the session key identifier. This breaks retrieving session keys of devices that have been activated on a deployment running a previous version. Since the Application Server instances are currently in-cluster, there is no need for an Application Server to retrieve theAppSKey
from the Join Server, making this breaking change ineffective.
3.3.1 - 2019-11-26
- Add support for Redis Sentinel (see
redis.failover.enable
,redis.failover.master-name
,redis.failover.addresses
options).
- Fix
AppKey
decryption in Join Server.
3.3.0 - 2019-11-25
- Add support for encrypting device keys at rest (see
as.device-kek-label
,js.device-kek-label
andns.device-kek-label
options). - The Network Server now provides the timestamp at which it received join-accept or data uplink messages.
- Add more details to logs that contain errors.
- Support for end device pictures in the Identity Server.
- This requires a database migration (
ttn-lw-stack is-db migrate
) because of the added columns.
- This requires a database migration (
- Support for end device pictures in the CLI.
- Fix an issue causing unexpected behavior surrounding login, logout and token management in the Console.
- Fix an issue causing the application link page of the Console to load infinitely.
3.2.6 - 2019-11-18
- Fix active application link count being limited to 10 per CPU.
- The Application Server now fills the timestamp at which it has received uplinks from the Network Server.
3.2.5 - 2019-11-15
- Support for creating applications and gateway with an organization as the initial owner in the Console.
- Hide views and features in the Console that the user and stack configuration does not meet the necessary requirements for.
- Full range of Join EUI prefixes in the Console.
- Support specifying the source of interoperability server client CA configuration (see
interop.sender-client-ca.source
and related fields).
- Reading and writing of session keys in Application and Network server registries now require device key read and write rights respectively.
- Implement redesign of entity overview title sections to improve visual consistency.
--interop.sender-client-cas
in favor of--interop.sender-client-ca
sub-fields in the stack.
- Fix gateway API key forms being broken in the Console.
- Fix MAC command handling in retransmissions.
- Fix multicast device creation issues.
- Fix device key unwrapping.
- Fix setting gateway locations in the Console.
3.2.4 - 2019-11-04
- Support LoRa Alliance TR005 Draft 3 QR code format.
- Connection indicators in Console's gateway list.
- TLS support for application link in the Console.
- Embedded documentation served at
/assets/doc
.
- Fix device creation rollback potentially deleting existing device with same ID.
- Fix missing transport credentials when using external NS linking.
3.2.3 - 2019-10-24
- Emails when the state of a user or OAuth client changes.
- Option to generate claim authentication codes for devices automatically.
- User invitations can now be sent and redeemed.
- Support for creating organization API keys in the Console.
- Support for deleting organization API keys in the Console.
- Support for editing organization API keys in the Console.
- Support for listing organization API keys in the Console.
- Support for managing organization API keys and rights in the JS SDK.
- Support for removing organization collaborators in the Console.
- Support for editing organization collaborators in the Console.
- Support for listing organization collaborators in the Console.
- Support for managing organization collaborators and rights in the JS SDK.
- MQTT integrations page in the Console.
- Rename "bulk device creation" to "import devices".
- Move device import button to the end device tables (and adapt routing accordingly).
- Improve downlink performance.
- Fix issues with device bulk creation in Join Server.
- Fix device import not setting component hosts automatically.
- Fix NewChannelReq scheduling condition.
- Fix publishing events for generated MAC commands.
- Fix saving changes to device general settings in the Console.
3.2.2 - 2019-10-14
- Initial API and CLI support for LoRaWAN application packages and application package associations.
- New documentation design.
- Support for ACME v2.
- Deprecate the
tls.acme.enable
setting. To use ACME, settls.source
toacme
.
- Fix giving priority to ACME settings to remain backward compatible with configuration for
v3.2.0
and older.
3.2.1 - 2019-10-11
support-link
URI config to the Console to show a "Get Support" button.- Option to explicitly enable TLS for linking of an Application Server on an external Network Server.
- Service to list QR code formats and generate QR codes in PNG format.
- Status message forwarding functions to upstream host/s.
- Support for authorizing device claiming on application level through CLI. See
ttn-lw-cli application claim authorize --help
for more information. - Support for claiming end devices through CLI. See
ttn-lw-cli end-device claim --help
for more information. - Support for converting Microchip ATECC608A-TNGLORA manifest files to device templates.
- Support for Crypto Servers that do not expose device root keys.
- Support for generating QR codes for claiming. See
ttn-lw-cli end-device generate-qr --help
for more information. - Support for storage of frequency plans, device repository and interoperability configurations in AWS S3 buckets or GCP blobs.
- Enable the V2 MQTT gateway listener by default on ports 1881/8881.
- Improve handling of API-Key and Collaborator rights in the console.
- Fix bug with logout sometimes not working in the console.
- Fix not respecting
RootCA
andInsecureSkipVerify
TLS settings when ACME was configured for requesting TLS certificates. - Fix reading configuration from current, home and XDG directories.
3.2.0 - 2019-09-30
- A map to the overview pages of end devices and gateways.
- API to retrieve MQTT configurations for applications and gateways.
- Application Server PubSub integrations events.
mac_settings.desired_max_duty_cycle
,mac_settings.desired_adr_ack_delay_exponent
andmac_settings.desired_adr_ack_limit_exponent
device flags.- PubSub integrations to the console.
- PubSub service to JavaScript SDK.
- Support for updating
mac_state.desired_parameters
. --tls.insecure-skip-verify
to skip certificate chain verification (insecure; for development only).
- Change the way API key rights are handled in the
UpdateAPIKey
rpc for Applications, Gateways, Users and Organizations. Users can revoke or add rights to api keys as long as they have these rights. - Change the way collaborator rights are handled in the
SetCollaborator
rpc for Applications, Gateways, Clients and Organizations. Collaborators can revoke or add rights to other collaborators as long as they have these rights. - Extend device form in the Console to allow creating OTAA devices without root keys.
- Improve confirmed downlink operation.
- Improve gateway connection status indicators in Console.
- Upgrade Gateway Configuration Server to a first-class cluster role.
- Fix downlink length computation in the Network Server.
- Fix implementation of CUPS update-info endpoint.
- Fix missing CLI in
deb
,rpm
and Snapcraft packages.
3.1.2 - 2019-09-05
http.redirect-to-host
config to redirect all HTTP(S) requests to the same host.http.redirect-to-tls
config to redirect HTTP requests to HTTPS.- Organization Create page in the Console.
- Organization Data page to the console.
- Organization General Settings page to the console.
- Organization List page.
- Organization Overview page to the console.
- Organizations service to the JS SDK.
create
method in the Organization service in the JS SDK.deleteById
method to the Organization service in the JS SDK.getAll
method to the Organizations service.getAll
method to the Organization service in the JS SDK.getById
method to the Organization service in the JS SDK.openStream
method to the Organization service in the JS SDK.updateById
method to the Organization service in the JS SDK.
- Improve compatibility with various Class C devices.
- Fix root-relative OAuth flows for the console.
3.1.1 - 2019-08-30
--tls.acme.default-host
flag to set a default (fallback) host for connecting clients that do not use TLS-SNI.- AS-ID to validate the Application Server with through the Common Name of the X.509 Distinguished Name of the TLS client certificate. If unspecified, the Join Server uses the host name from the address.
- Defaults to
ttn-lw-cli clients create
andttn-lw-cli users create
. - KEK labels for Network Server and Application Server to use to wrap session keys by the Join Server. If unspecified, the Join Server uses a KEK label from the address, if present in the key vault.
- MQTT PubSub support in the Application Server. See
ttn-lw-cli app pubsub set --help
for more details. - Support for external email templates in the Identity Server.
- Support for Join-Server interoperability via Backend Interfaces specification protocol.
- The
generateDevAddress
method in theNs
service. - The
Js
service to the JS SDK. - The
listJoinEUIPrefixes
method in theJs
service. - The
Ns
service to the JS SDK. - The new The Things Stack branding.
- Web interface for changing password.
- Web interface for requesting temporary password.
- Allow admins to create temporary passwords for users.
- CLI-only brew tap formula is now available as
TheThingsNetwork/lorawan-stack/ttn-lw-cli
. - Improve error handling in OAuth flow.
- Improve getting started guide for a deployment of The Things Stack.
- Optimize the way the Identity Server determines memberships and rights.
--nats-server-url
in favor of--nats.server-url
in the PubSub CLI support.
ids.dev_addr
from allowed field masks for/ttn.lorawan.v3.NsEndDeviceRegistry/Set
.- Auth from CLI's
forgot-password
command and made it optional onupdate-password
command. - Breadcrumbs from Overview, Application and Gateway top-level views.
- Fix
grants
andrights
flags ofttn-lw-cli clients create
. - Fix a bug that resulted in events streams crashing in the console.
- Fix a bug where uplinks from some Basic Station gateways resulted in the connection to break.
- Fix a security issue where non-admin users could edit admin-only fields of OAuth clients.
- Fix an issue resulting in errors being unnecessarily logged in the console.
- Fix an issue with the
config
command rendering some flags and environment variables incorrectly. - Fix API endpoints that allowed HTTP methods that are not part of our API specification.
- Fix console handling of configured mount paths other than
/console
. - Fix handling of
ns.dev-addr-prefixes
. - Fix incorrect error message in
ttn-lw-cli users oauth
commands. - Fix propagation of warning headers in API responses.
- Fix relative time display in the Console.
- Fix relative time display in the Console for IE11, Edge and Safari.
- Fix unable to change LoRaWAN MAC and PHY version.
- Resolve flickering display issue in the overview pages of entities in the console.
3.1.0 - 2019-07-26
--headers
flag tottn-lw-cli applications webhooks set
allowing users to set HTTP headers to add to webhook requests.getByOrganizationId
andgetByUserId
methods to the JS SDK.- A new documentation system.
- A newline between list items returned from the CLI when using a custom
--output-format
template. - An
--api-key
flag tottn-lw-cli login
that allows users to configure the CLI with a more restricted (Application, Gateway, ...) API key instead of the usual "all rights" OAuth access token. - API for getting the rights of a single collaborator on (member of) an entity.
- Application Payload Formatters Page in the console.
- Class C and Multicast guide.
- CLI support for enabling/disabling JS, GS, NS and AS through configuration.
- Components overview in documentation.
- Device Templates to create, convert and map templates and assign EUIs to create large amounts of devices.
- Downlink Queue Operations guide.
- End device level payload formatters to console.
- Event streaming views for end devices.
- Events to device registries in the Network Server, Application Server and Join Server.
- Functionality to delete end devices in the console.
- Gateway General Settings Page to the console.
- Getting Started guide for command-line utility (CLI).
- Initial overview page to console.
- Native support to the Basic Station LNS protocol in the Gateway Server.
- NS-JS and AS-JS Backend Interfaces 1.0 and 1.1 draft 3 support.
- Option to revoke user sessions and access tokens on password change.
- Support for NS-JS and AS-JS Backend Interfaces.
- Support for URL templates inside the Webhook paths ! The currently supported fields are
appID
,appEUI
,joinEUI
,devID
,devEUI
anddevAddr
. They can be used using RFC 6570. - The
go-cloud
integration to the Application Server. Seettn-lw-cli applications pubsubs --help
for more details. - The
go-cloud
integration to the Application Server. This integration enables downlink and uplink messaging using the cloud pub-sub by setting up the--as.pubsub.publish-urls
and--as.pubsub.subscribe-urls
parameters. You can specify multiple publish endpoints or subscribe endpoints by repeating the parameter (i.e.--as.pubsub.publish-urls url1 --as.pubsub.publish-urls url2 --as.pubsub.subscribe-urls url3
). - The Gateway Data Page to the console.
- View to update the antenna location information of gateways.
- View to update the location information of end devices.
- Views to handle integrations (webhooks) to the console.
- Working with Events guide.
- Change database index names for invitation and OAuth models. Existing databases are migrated automatically.
- Change HTTP API for managing webhooks to avoid conflicts with downlink webhook paths.
- Change interpretation of frequency plan's maximum EIRP from a ceiling to a overriding value of any band (PHY) settings.
- Change the prefix of Prometheus metrics from
ttn_
tottn_lw_
. - Rename the label
server_address
of Prometheus metricsgrpc_client_conns_{opened,closed}_total
toremote_address
- Resolve an issue where the stack complained about sending credentials on insecure connections.
- The Events endpoint no longer requires the
_ALL
right on requested entities. All events now have explicit visibility rules.
JsEndDeviceRegistry.Provision()
rpc. Please useEndDeviceTemplateConverter.Convert()
instead.
- Remove the address label from Prometheus metric
grpc_server_conns_{opened,closed}_total
.
- Fix Basic Station CUPS LNS credentials blob.
- Fix a leak of entity information in List RPCs.
- Fix an issue that resulted in some event errors not being shown in the console.
- Fix an issue where incorrect error codes were returned from the console's OAuth flow.
- Fix clearing component addresses on updating end devices through CLI.
- Fix CLI panic for invalid attributes.
- Fix crash when running some
ttn-lw-cli organizations
commands without--user-id
flag. - Fix dwell-time issues in AS923 and AU915 bands.
- Fix occasional issues with downlink payload length.
- Fix the
x-total-count
header value for API Keys and collaborators. - Fix the error that is returned when deleting a collaborator fails.
- Update node packages to fix known vulnerabilities.
3.0.4 - 2019-07-10
- Fix rights caching across multiple request contexts.
3.0.3 - 2019-05-10
- Support for getting automatic Let's Encrypt certificates. Add the new config flags
--tls.acme.enable
,--tls.acme.dir=/path/to/storage
,--tls.acme.hosts=example.com
,--tls.acme.email=you@example.com
flags (or their env/config equivalent) to make it work. The/path/to/storage
dir needs to bechown
ed to886:886
. See alsodocker-compose.yml
. GetApplicationAPIKey
,GetGatewayAPIKey
,GetOrganizationAPIKey
,GetUserAPIKey
RPCs and related messages.- "General Settings" view for end devices.
--credentials-id
flag to CLI that allows users to be logged in with mulitple credentials and switch between them.- A check to the Identity Server that prevents users from deleting applications that still contain end devices.
- Application Collaborators management to the console.
- Checking maximum round-trip time for late-detection in downlink scheduling.
- Configuration service to JS SDK.
- Device list page to applications in console.
- Events to the application management pages.
- Round-trip times to Gateway Server connection statistics.
- Support for the value
cloud
for the--events.backend
flag. When this flag is set, the--events.cloud.publish-url
and--events.cloud.subscribe-url
are used to set up a cloud pub-sub for events. - Support for uplink retransmissions.
- Using median round-trip time value for absolute time scheduling if the gateway does not have GPS time.
- Change encoding of keys to hex in device key generation (JS SDK).
- Change interpretation of absolute time in downlink messages from time of transmission to time of arrival.
- Improve ADR algorithm performance.
- Improve ADR performance.
- Make late scheduling default for gateways connected over UDP to avoid overwriting queued downlink.
- Make sure that non-user definable fields of downlink messages get discarded across all Application Server frontends.
- Prevent rpc calls to JS when the device has
supports_join
set tofalse
(JS SDK). - Update the development tooling. If you are a developer, make sure to check the changes in CONTRIBUTING.md and DEVELOPMENT.md.
- Fix
AppAs
not registered for HTTP interfacing while it is documented in the API. - Fix absolute time scheduling with UDP connected gateways
- Fix authentication of MQTT and gRPC connected gateways
- Fix connecting MQTT V2 gateways
- Fix faulty composition of default values with provided values during device creation (JS SDK)
- Fix preserving user defined priority for application downlink
- Fix UDP downlink format for older forwarders
- Fix usage of
URL
class in browsers (JS SDK)
3.0.2 - 2019-04-12
- Upgrade Go to 1.12
- Fix streaming events over HTTP with Gzip enabled.
- Fix resetting downlink channels for US, AU and CN end devices.
- Fix rendering of enums in JSON.
- Fix the permissions of our Snap package.
3.0.1 - 2019-04-10
dev_addr
to device fetched from the Network Server.received_at
toApplicationUp
messages.ttn-lw-cli users oauth
commands.- Event payload to
as.up.forward
,as.up.drop
,as.down.receive
,as.down.forward
andas.down.drop
events. - Event payload to
gs.status.receive
,gs.up.receive
andgs.down.send
events. - OAuth management in the Identity Server.
- Document places in the CLI where users can use arguments instead of flags.
- In JSON, LoRaWAN AES keys are now formatted as Hex instead of Base64.
- Make device's
dev_addr
update when the session'sdev_addr
is updated.
- Remove end device identifiers from
DownlinkMessage
sent from the Network Server to the Gateway Server.
- Fix
dev_addr
not being present in upstream messages.