Release Fabric CA v1.4.7

Add release notes for v1.4.7. Signed-off-by: David Enyeart <enyeart@us.ibm.com>
hyperledger · May 14, 2020 · a1c4796 · a1c4796
1 parent c1e4403
commit a1c4796
Show file tree

Hide file tree

Showing 3 changed files with 80 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,30 @@
+## v1.4.7
+Thu May 14 12:48:59 EDT 2020
+
+* [a891700](https://github.com/hyperledger/fabric-ca/commit/a891700) Release Fabric CA v1.4.7
+* [c1e4403](https://github.com/hyperledger/fabric-ca/commit/c1e4403) [FAB-17438](https://jira.hyperledger.org/browse/FAB-17438) Fabric CA Deployment Guide
+* [287ea31](https://github.com/hyperledger/fabric-ca/commit/287ea31) Add operations guide to the toc in the release-1.4  branch
+* [0a6179f](https://github.com/hyperledger/fabric-ca/commit/0a6179f) Add support for .md files and variable replacement in /docs
+* [56e16da](https://github.com/hyperledger/fabric-ca/commit/56e16da) [FABC-904] Add Version Endpoint
+* [1dcf373](https://github.com/hyperledger/fabric-ca/commit/1dcf373) Back port Operations Guide to release-1.4 branch
+* [47c3854](https://github.com/hyperledger/fabric-ca/commit/47c3854) Move AZP file to correct place
+* [03f35b4](https://github.com/hyperledger/fabric-ca/commit/03f35b4) [FABC-907] Update Go to 1.13
+* [5c1b961](https://github.com/hyperledger/fabric-ca/commit/5c1b961) Replace LabelHelp with info in doc template
+* [15d676f](https://github.com/hyperledger/fabric-ca/commit/15d676f) Add metrics doc generation to docs make target
+* [a4e6a01](https://github.com/hyperledger/fabric-ca/commit/a4e6a01) Pin fabric dependencies to specific releases
+* [789f83c](https://github.com/hyperledger/fabric-ca/commit/789f83c) Cleanup vendor.json and bring in bccsp from 1.4
+* [5616f18](https://github.com/hyperledger/fabric-ca/commit/5616f18) Update release make targets
+* [505df12](https://github.com/hyperledger/fabric-ca/commit/505df12) Remove call to InitFactories (#108)
+* [4e2a19a](https://github.com/hyperledger/fabric-ca/commit/4e2a19a) Prepare for fabric-ca v1.4.7
+
+## v1.4.6
+Tue Feb 25 12:48:07 EST 2020
+
+* [8d3a701](https://github.com/hyperledger/fabric-ca/commit/8d3a701) Update Release notes for 1.4.6
+* [2799a7b](https://github.com/hyperledger/fabric-ca/commit/2799a7b) Update sqlite3 dependency and simplify release target
+* [ce91e5d](https://github.com/hyperledger/fabric-ca/commit/ce91e5d) Release fabric-ca v1.4.6
+* [c00700f](https://github.com/hyperledger/fabric-ca/commit/c00700f) Prepare for next fabric-ca release v1.4.6
+
 ## v1.4.5
 Wed Feb 19 13:13:12 EST 2020
 

diff --git a/Makefile b/Makefile
@@ -31,7 +31,7 @@
 PROJECT_NAME = fabric-ca
 BASE_VERSION = 1.4.7
 PREV_VERSION = 1.4.6
-IS_RELEASE = false
+IS_RELEASE = true
 
 ARCH=$(shell go env GOARCH)
 MARCH=$(shell go env GOOS)-$(shell go env GOARCH)

diff --git a/release_notes/v1.4.7.md b/release_notes/v1.4.7.md
@@ -0,0 +1,52 @@
+v1.4.7 Release Notes - May 14, 2020
+===================================
+
+Enhancements
+------------
+
+- **FABC-904: Add Version Endpoint**
+
+  Add a /version endpoint to the operations server which returns the current version of the CA.
+
+
+Dependency updates
+------------------
+  - Bump Go to 1.13.9.
+  - Bump Fabric baseimage to 0.4.20.
+  - Bump SQLite to January 2020 revision 9bdaffc12bf8be15afceb51bb60851edd4afdff5.
+  - Bump Fabric BCCSP to April 2020 revision 1f0a0dd5316310d299a02f0588db3f7ec50c965e.
+
+Changes, Known Issues, and Workarounds
+--------------------------------------
+None.
+
+Known Vulnerabilities
+---------------------
+- FABC-174 Commands can be manipulated to delete identities or affiliations
+
+  This vulnerability can be resolved in one of two ways:
+
+  1) Use HTTPS (TLS) so that the authorization header is not in clear text.
+
+  2) The token generation/authentication mechanism was improved to optionally prevent
+  token reuse. In v1.4 a more secure token can be used by setting environment variable:
+
+  FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false
+
+  However, it cannot be set to false until all clients have
+  been updated to generate the more secure token and tolerate
+  FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false.
+  The Fabric CA client has been updated in v1.4 to generate the more secure token.
+  The Fabric SDKs will be updated by v2.0 timeframe to generate the more secure token,
+  at which time the default for Fabric CA server will change to:
+  FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false
+
+Resolved Vulnerabilities
+------------------------
+None.
+
+
+Change log
+----------
+For the full list of changes, refer to the release change log:
+https://github.com/hyperledger/fabric-ca/blob/release-1.4/CHANGELOG.md#v147