Automation Controller fixes:
When setting the use role on a credential to more than 10 users, users are no longer added on different admin roles unexpectedly
Fixed the fallback cleanup task to not delete files in-use
Updated inventory hosts to allow editing when organization is at max host limit
Enabled job slicing with fact caching now correctly saves facts for hosts from the relevant slice
No longer validating hostnames when editing the hostname on an existing host
Execution Environment fixes:
Fixed jobs stuck in running when timing out during an image pull
Automation Controller UI fixes:
Fixed list search/pagination filters in place when clicking the Back to <N> button. Applies to all top-level list pages except the Schedules page.
Updated Subscription and inventory usage details, including a status indicating whether the customer is in or out-of-compliance with their subscriptions
Survey wizard now handles multiple choice/multi-select question-answers in both array and string form (formerly only strings were supported)
Fixed error that resulted from relaunching an adhoc command with password
Updated filter websockets related to sync jobs on jobs list(s) that when refreshed, these jobs will be filtered again from the Jobs view
Added validation for same start/end day different time schedules
Automation Controller fixes:
Receptor no longer fails in FIPS mode
Added the ability to exit gracefully and recover quickly when a service in the control plane crashes
The create_partition method will skip creating a table if it already exists
Having logging enabled no longer breaks migrations if the migration sends logs to an external aggregator
Fixed the metrics endpoint (/api/v2/metrics) to no longer produce erroneous 500 errors
Execution Environment fixes:
Enhanced the execution environment copy process to reduce required space in the /tmp directory
Allowed execution environment images to be pulled from automation controller only
Added the ansible-builder-rhel8 image to the setup bundle
Modified base execution environment images so that controller backups can run in the container
Automation Controller UI fixes:
Upon saving a schedule, the date chooser no longer changes to the day before the selected date
Fixed the ability to create manual projects in Japanese and other supported non-English languages
Forks information no longer missing in running job details
Project selected for deletion is now removed as expected when running a project sync
The Admin option in the Team Permissions is now disabled so that a user cannot select it when it is not applicable to the available organization(s)
Large workflow templates no longer cause browsers to crash when linking nodes near the end of the template
References to Ansible Tower are replaced with Automation Controller throughout the UI, including tooltips where documentation is referenced
Installation fixes specific to Automation Controller:
Updated the Receptor to 1.2.3 everywhere as needed
Automation Controller fixes:
Upgraded Django version to 3.2 LTS
System (management) jobs are now able to be canceled
Rsyslog no longer needs manual intervention to send out logs after hitting a 40x error
Credential lookup plugins now respect the AWX_TASK_ENV setting
Fixed the controller to list valid subscriptions from Satellite when having multiple quantities from the same SKU
Updated Receptor version to 1.2.1, which includes several fixes
Execution Environment fixes:
The host trusted cert store is now exposed to execution environments by default. See Isolation functionality and variables for detail.
Mounting the /etc/ssh or /etc/ to isolated jobs now works in podman
User customization of execution environment mount options and mount paths are now supported
Fixed SELinux context on /var/lib/awx/.local/share/containers and ensure awx as podman storage
Fixed failures to no longer occur when the semanage fcontext has been already set for the expected directory
Automation Controller UI fixes:
Fixed the ability to create manual projects in Japanese and other suppported non-English languages
Fixed the controller UI to list the roles for organizations when using non-English web browsers
Fixed the job output to display all job type events, including source control update events over websockets
Fixed the TypeError when running a command on a host in a smart inventory
Fixed the encrypted password in surveys to no longer show up as plaintext in the Edit Order page
Installation fixes specific to Automation Controller:
Fixed duplicate Galaxy credentials with no default organization
Running the ./setup.sh -b out of the installer directory no longer fails to load group vars
The installer no longer fails when IPV6 is disabled
Fixed unnecessary become_user:root entries in the installation
Modified database backup and restore logic to compress dump data
Creating default execution environments no longer fails when password has special characters
Fixed installations of execution environments when installing without internet access
Upgrading to AAP 2.1 no longer breaks when the Django superuser is missing
Rekey now allowed with existing key
Added the ability to specify additional nginx headers
Fixed analytics gathering to collect all the data the controller needed to collect
Fixed the controller to no longer break subsequent installer runs when deleting the demo organization
導入
Connected Receptor nodes to form a control plane and execution mesh configurations
The special controlplane instance group to allow for the task manager code to target an OpenShift Controller node to run the project update
The ability to render a configured mesh topology in a graph in the installer
Controller 4.1 execution nodes can be remote
Node types for Controller 4.1 (control, hybrid, execution, hop, control, hybrid, execution, hop) installed for different sets of services and provide different capabilities, allowing for scaling nodes that provide the desired capability such as job execution or serving of web requests to the API/UI.
追加
The ability for the platform installer to allow users to install execution nodes and express receptor mesh topology in the inventory file. The platform installer will also be responsible for deprovisioning nodes.
Work signing to the receptor mesh so that control plane nodes have the exclusive authority to submit receptor work to execution nodes over the mesh
Support for pre-population of execution environment name, description, and image from query parameters when adding a new execution environment in the Controller User Interface
Ability to trigger a reload of the topology configuration in Receptor without interrupting work execution
Using Public Key Infrastructure (PKI) for securing the Receptor mesh
Added importing execution environments from Automation Hub into the controller to improve the platform experience
更新
The controller to support new controller control plane and execution mesh
Task manager will only run project updates and system jobs on nodes with node_type of "control" or "hybrid"
Task manager will only run jobs, inventory updates, and ad hoc commands on nodes with node_type of "hybrid" or "execution"
Heartbeat and capacity check to work with Receptor execution nodes
Reaper to work with the addition of execution nodes
Controller User Interface to not show control instances as an option to associate with instance groups
The Associate pop-up screen to display host names when adding an existing host to a group
Validators for editing miscellaneous authentication parameters
Advanced search key options to be grouped
SAML variables default values
Survey validation on Prompt on Launch
Login redirect
非推奨
なし
削除
The ability to delete the default instance group through the User Interface
Upgraded Django version to 3.2 LTS
Updated receptor to version 1.2.1
導入
自動化 execution environments のサポート。すべての自動化は、コンテナーを介して実行環境で実行されるようになり、OpenShift を介して直接、または podman を介してローカルに実行されます。
新しい PatternFly 4 ベースのユーザーインターフェースにより、パフォーマンス、セキュリティー、および他の Ansible Automation Platform コンポーネントとの一貫性が向上
追加
GitHub Enterprise のためのアイデンティティープロバイダーのサポートを追加
nginx 構成に対する RHEL システム暗号プロファイルのサポート
ローカルシステムユーザーを無効にし、構成済みのアイデンティティープロバイダーからのみユーザーをプルする機能
ジョブイベント処理のパフォーマンスを追跡するための追加の Prometheus メトリックス
ホストの自動情報をダンプする新しい awx-manage コマンド
インベントリソースとしての Red Hat Insights
Django の AUTH_PASSWORD_VALIDATORS の設定を利用して、サーバサイドのパスワードポリシーを設定する機能
認証情報ルックアッププラグインとしての Centrify Vault のサポート
Hashicorp Vault 認証情報プラグインでの名前空間のサポート
更新
Playbook ではなく Operator を介して行われる OpenShift デプロイメント
Python 3.8 へのアプリケーションで使用される Python
バージョン1.18 で使用される Nginx
PostgreSQL 12 に使用され、パフォーマンスのためにパーティションデータベースに移動される PostgreSQL
「コンテナーグループ」機能は、テクノロジープレビューから一般提供されます。現在、実行環境を完全に利用できるようになりました。
任意のインベントリーでスキャン Playbook を利用するのではなく、新しい Red Hat Insights インベントリソースを使用するための Insights 修復
サブスクリプションの表示で、インポートされたホストではなく、自動化されたホストがカウントされるようになりました。
インベントリのソース、認証情報、Ansible のコンテンツコレクションが、tower の代わりに controller を参照するようになりました。
非推奨
なし
削除
CentOS (任意のバージョン) および RHEL 7 でのデプロイのサポート
Mercurial プロジェクトのサポート
コントローラーに保存されているカスタムインベントリースクリプトのサポート (エクスポートには awx-manage export_custom_scripts を使用)
リソースのプロファイルコード (AWX_RESOURCE_PROFILING_*)
実行用のカスタム Python 仮想環境のサポート。移行を支援する新しい awx-manage ツールの使用します。
上位レベルの /api/v2/job_events/ API エンドポイント
ジョブの分離を無効にする機能