This is archived documentation for v1.4.2. Go to the latest version.

Downloads

Grafana Enterprise Metrics Downloads

Releases

v1.4.2 – July 21st 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: 69682495d5995e04616894294b5af8661a03155a01a99beff93e0ea9b36a5007
  • Deb (Linux AMD64)

    • Download
    • SHA256: f6f09f334d0b577245309af2ec3429febc11ac3d196a5f0b5f2cd391a4147cd6
  • RPM (Linux AMD64)

    • Download
    • SHA256: 04e9062bafd0298d3402d9051bafe54cb6871ab28de1df7101c505e7d631a4af
  • Docker image: run docker pull grafana/metrics-enterprise:v1.4.2 (digest: sha256:385b563669a5ba4a459f833a2c356884b757de719e43369ead0c5dc59cb11d94)

  • License: Grafana Labs license

Changelog

  • [SECURITY] Prevent path traversal attack from users able to control the HTTP header X-Scope-OrgID. (CVE-2021-36157)
    • Users only have control of the HTTP header when GEM is configured with flags -auth.type=default and -tenant-federation.enabled=false
  • [SECURITY] Update build image to use Go 1.16.6. (CVE-2021-34558) #1874
  • [BUGFIX] Ruler: Register remote write metrics correctly. #1814

Upstream Cortex details

  • Cortex Hash: 2210ebb7052a9efb99d0e4dc53043a3f5d806d00

v1.4.1 – June 29th 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: e1dd56442d1d2fd8cdf224938207fda4845eeb3f610e5e11a920e23de43adb5a
  • Deb (Linux AMD64)

    • Download
    • SHA256: 664140413d7d47e4a37d9aa435b4ebe9607ed47cdfae4e0631d02cd209f63076
  • RPM (Linux AMD64)

    • Download
    • SHA256: 4bb9c8e17819a63a7e7bc38a4366e4047f7315cfd680524524529a91fb45d9c2
  • Docker image: run docker pull grafana/metrics-enterprise:v1.4.1 (digest: sha256:d1d17bfe2ec984b093b9da1ab8cdea1f764f24f16b38557d719254c4e64c9f9a)

  • License: Grafana Labs license

Changelog

  • [BUGFIX] Update the GEM build image to use Alpine 3.14, python 3.9 and gsutil 4.52.

Upstream Cortex details

  • Cortex Hash: 98dd0c4d69576fdfaf2b9bfd7aa475e835e11429

v1.4.0 – June 28th 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: 9237645e6e2c046d46035c64c74cd5b146312b19cfc30d684b058a67d89c9f13
  • Deb (Linux AMD64)

    • Download
    • SHA256: de8e197e0ca8420cfe296fee2ba37891e72e7396afcf54a26f91cccafc146b9b
  • RPM (Linux AMD64)

    • Download
    • SHA256: a11f2eb10d5ba375a2480e85f94d1c82d63f142858349562d11b99321a40a8c6
  • Docker image: run docker pull grafana/metrics-enterprise:v1.4.0 (digest: sha256:ff38e0544d805bfd1450a1f033ed79585252a4444d247e0e4c649625619215ab)

  • License: Grafana Labs license

Changelog

  • [CHANGE] Breaking: Verify token issuer when using OIDC authentication. Includes a breaking change for users of OIDC authentication. #1571
    • Before this change the configuration of OIDC authentication required the OIDC provider’s jwks_uri to be set in the configuration flag auth.admin.oidc.url. This flag has been deprecated.
    • A new flag named auth.admin.oidc.issuer-url has been added, and it must be set to the URL of the OIDC provider. For example: -auth.admin.oidc.issuer-url=https://accounts.google.com Note: This is not simply a rename of the old flag; you also need to update the value. The defined issuer is required to provide the OIDC discovery endpoint (/.well-known/openid-configuration)
  • [CHANGE] Breaking: The GEM/GEL Ruler can now be accessed by access policies with rules read/write permissions, which are no longer metrics/logs specific #1366 & #1403
    • Before this change, there were metric rule specific permissions metrics:rules:read and metrics:rules:write.
    • The data representation for this change in object storage is backwards compatible, so no change is needed for existing access policies using the new rules.
    • The JSON representation for these rules is not backwards compatible, and so any JSON interactions with the API that specified the strings metrics:rules:read or metrics:rules:write must be updated to the strings rules:read and rules:write respectively.
    • This breaking change applies to the GEM Plugin as well, so please update to version v3.0.X.
  • [CHANGE] Remove enterprise_features config block entirely. #1453
  • [CHANGE] Alertmanager: deprecated -alertmanager.storage.* CLI flags (and their respective YAML config options) in favour of -alertmanager-storage.*. This change doesn’t apply to alertmanager.storage.path and alertmanager.storage.retention.
  • [CHANGE] Blocks storage: removed the config option -blocks-storage.bucket-store.index-cache.postings-compression-enabled, which was deprecated. Postings compression is always enabled.
  • [CHANGE] GEM now fails fast on startup if it is unable to connect to the ring backend.
  • [CHANGE] Querier / ruler: deprecated -store.query-chunk-limit CLI flag (and its respective YAML config option max_chunks_per_query) in favor of -querier.max-fetched-chunks-per-query (and its respective YAML configuration option max_fetched_chunks_per_query). The new limit specifies the maximum number of chunks that can be fetched in a single query from ingesters and long-term storage: the total number of chunks that are actually fetched, in the worst case, can be twice the limit because the limit is applied to ingesters as well as long-term storage.
  • [CHANGE] Query frontend: removed the configuration option -querier.compress-http-responses, which was deprecated. Instead, use-api.response-compression-enabled.
  • [CHANGE] Runtime-config / overrides: removed the config options -limits.per-user-override-config (use -runtime-config.file) and -limits.per-user-override-period (use -runtime-config.reload-period), both deprecated.
  • [FEATURE] Add embedded recording rules to the Enterprise Ruler to support building dashboards and alerts from internal metrics written directly to GEM itself via a distributor. #1459
    • To enable or disable the feature, use the -instrumentation.enabled flag or associated enabled setting on the instrumentation configuration block. The feature is disabled by default.
  • [FEATURE] Add the ability to write internal metrics directly to GEM itself via a distributor. #1281
    • To configure, or enabled or disabled the feature, user the -instrumentation.enabled flag and associated other flags or the instrumentation configuration block:
      instrumentation:
        enabled: false
        flush_period: 15s
        write_timeout: 10s
        distributor_client:
          address: dns:///:9095
          connect_timeout: 5s
          tls_enabled: false
          tls_cert_path:
          tls_key_path:
          tls_ca_path:
          tls_server_name:
          tls_insecure_skip_verify:
      

      The feature is disabled by default.

  • [FEATURE] Self-monitoring: expose filesystem usage metrics to source the disk utilization panel in the self-monitoring resource dashboards #1618
  • [FEATURE] Add an experimental GEM component federation-frontend, which can be used to federate queries between multiple GEM clusters. #1274
  • [FEATURE] Querier: Added new -querier.max-fetched-series-per-query flag. When GEM is running with blocks storage, the max series per query limit is enforced in the querier and applies to unique series received from ingesters and store-gateway (long-term storage).
  • [FEATURE] Querier/Ruler: Added new -querier.max-fetched-chunk-bytes-per-query flag. When GEM is running with blocks storage, the max chunk bytes limit is enforced in the querier and ruler and limits the size of all aggregated chunks returned from ingesters and storage as bytes for a query.
  • [ENHANCEMENT] Introduce configuration parameter to limit how many points we process per query. #1292
  • [ENHANCEMENT] Adding API endpoints via which a user can post / get their storage schemas / aggregations. #1389
  • [ENHANCEMENT] Admin-API: Listing mutable resources now includes a comma separated list of versions for those resources in the ETag header #1419
  • [ENHANCEMENT] Admin-API: Updating a mutable resources now allows a wildcard value ("*") to be passed as the If-Match header, which allows the updating of any current version #1449
  • [ENHANCEMENT] The /config HTTP endpoint now also returns GEM specific options alongside regular Cortex configuration. #1380
  • [BUGFIX] Fix LBAC regular expression matchers #1305
  • [BUGFIX] Validate all fields of JWT tokens used for auth, except the issuer. #1500
  • [BUGFIX] Ruler: ensure the S3 rule storage flags properly maps to the upstream flags. #1460
  • [BUGFIX] Admin-API: rejecting update requests when access policies have empty scopes or realms. #1447
  • [BUGFIX] Updated licenses are now persisted to object storage, fixing the responses from the license API which would show old license information. #1568
  • [BUGFIX] Validate all fields of JWT tokens used for auth, except the issuer. #1500
  • [BUGFIX] OAuth: Don’t use default access policy when an invalid JWT claim is provided. #1635
  • [BUGFIX] Authentiation: Invalidate cached authentication tokens when they are deleted from object storage. #1703

Upstream Cortex details

v1.3.0 – April 26th 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: 478528db0a22918eeafb1b6f93387d28d0ae6163dd592771a9e9d9f302c3a40d
  • Deb (Linux AMD64)

    • Download
    • SHA256: cfe0ebe4928a4cff007c1f8c86eebc8c73484bfa763c9679c2d3dad7a4c51388
  • RPM (Linux AMD64)

    • Download
    • SHA256: 7278036942905d3341c3e3a9aaadad30dda9fc18e5e3ad86ee092d4e03e77d72
  • Docker image: run docker pull grafana/metrics-enterprise:v1.3.0

  • License: Grafana Labs license

Changelog

  • [SECURITY] Alertmanager: Fix a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used (CVE-2021-31231):
    • The HTTP Basic auth password_file can be used as an attack vector to send any file content via a webhook.
    • The Alertmanager templates can be used as an attack vector to send any file content because the Alertmanager can load any text file specified in the templates list.
  • [CHANGE] Admin API: Concurrent requests to the same resource are no longer allowed. If two requests are issued to create, update, or delete the same resource, then the first one to achieve a lock executes and the second one returns a conflict error. This is handled per process. To enforce this behavior on multiple processes, use leader election. #1186
  • [CHANGE] Admin API: all errors encountered during the processing of HTTP requests are converted to GRPC errors in order to determine the correct HTTP status to return. This enforces consistency for leader election, because some requests are handled internally, and others are forwarded to other instances. #1217
  • [CHANGE] Admin API: all mutation operations (PUT/DELETE) now require an If-Match header to be set (an integer between "" such as "27") to verify that the correct version of the resource is being modified and prevent against race conditions. You can find the current version of a resource in the ETag header that is returned when that resource is read (via GET) or updated (via PUT).
  • [FEATURE] Admin API: you can set per-instance resource limits via the Admin API. This is enabled by default. #1173
    • You can enable or disable this feature by using the -admin-api.limits.enabled or -admin-api.limits.refresh-period flags. Also, you can configure this feature by using the admin_api configuration block:
      admin_api:
        limits:
          enabled: true
          refresh_period: 1m
      
  • [ENHANCEMENT] Upgrade build image to use Go 1.16.3. #1294
  • [ENHANCEMENT] Admin client: Add cortex_admin_client_is_leader gauge metric to determine when the client considers itself the leader. #1175
  • [ENHANCEMENT] Admin API: update an access policy via the Admin API using a PUT request. #1139
  • [ENHANCEMENT] Admin API: Update an instance via the Admin API using a PUT request. #1180
  • [ENHANCEMENT] Gateway: Forward /multitenant_alertmanager/ring and /ruler/ring routes to the alertmanager and ruler proxy backends. #1144
  • [BUGFIX] Graphite: Fix aggregation cache to generate cache keys using correct input data. #963
  • [BUGFIX] Authentication: Fix issue where all requests would trigger a panic if authentication is enabled but no admin client is configured. A error is now printed instead. #1106

Upstream Cortex details

v1.2.1 – April 27 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: c00f80ceb5994542ec0527e9d1a6a481dbb472c8fdb0318b12142a59b6b32ec4
  • Deb (Linux AMD64)

    • Download
    • SHA256: 741477bbf0d1d4191e413b4f0db96098920df37e27f9a5598b994a6791b0aef3
  • RPM (Linux AMD64)

    • Download
    • SHA256: 28ce6fe43f93bd158d415e03b2ce8bbdf01e0fde1e699f3486b359167d8efb5f
  • Docker image: run docker pull grafana/metrics-enterprise:v1.2.1

  • License: Grafana Labs license

Changelog

  • [SECURITY] Alertmanager: Fix a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used (CVE-2021-31231):
    • The HTTP Basic auth password_file can be used as an attack vector to send any file content via a webhook.
    • The Alertmanager templates can be used as an attack vector to send any file content because the Alertmanager can load any text file specified in the templates list.

v1.2.0 – March 10 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: 702208cb7b440b44a30a7ba9bbe34e7a1bbd19a632435a92cdd608cb232593c8
  • Deb (Linux AMD64)

    • Download
    • SHA256: a3e5140bf38f6479693608bbaf9bdcb7824795c1a662a70007905310cf35f862
  • RPM (Linux AMD64)

    • Download
    • SHA256: 2de19fd38ed129bc66ee4f76804bd2633c996afaa43900a306cb536d672e8909
  • Docker image: run docker pull grafana/metrics-enterprise:v1.2.0

  • License: Grafana Labs license

Changelog

  • [CHANGE] Gateway: Remove purger proxy configuration, which is not a supported target for blocks clusters.
  • [CHANGE] Auth: Override authentication flags have been renamed:
    • The auth.override-admin-token flag has been changed to auth.override.token.
    • The auth.override-admin-token-file flag has been changed to auth.override.token-file.
  • [FEATURE] Gateway: Improve the gateway target to support unique TLS configurations and write timeouts for each backend.
    • New fields have been added to allow for configuration:
      gateway:
        proxy:
          default:
            tls:
              tls_cert_path: <string>
              tls_key_path: <string>
              tls_ca_path: <string>
              tls_insecure_skip_verify: <bool>
          distributor:
            read_timeout: <duration>
            write_timeout: <duration>
            tls:
            ...
      
  • [FEATURE] Compactor: Introduced time-sharding compaction strategy.
  • [ENHANCEMENT] Distributor: Wrap remote writes in distributor to sample and log them as business intelligence events.
  • [ENHANCEMENT] Metrics emitted for TLS certificate expiration now reflect certificates being reloaded.
  • [ENHANCEMENT] Remove the Graphite Auto Complete Index and use Cortex index instead.
  • [ENHANCEMENT] Add Graphite API endpoint /metrics/index.json.
  • [ENHANCEMENT] Distributor: Wrap remote writes in distributor to sample and log them as business intelligence events.
  • [ENHANCEMENT] Call Cortex Distributor over gRPC from Graphite Write Proxy (formerly Graphite Distributor)
  • [ENHANCEMENT] Admin API: Add feature to elect and admin-api leader instance to handle all mutation requests. Requests to non-leader instances are forwarded to the leader instance.
    • New fields have been added to allow for configuration:
    admin_api:
      leader_election:
        enabled: <bool>
        ring:
          kvstore: <kv.Config>
          heartbeat_period: <duration>
          heartbeat_timeout: <duration>
          tokens_observe_period: <duration>
          instance_interface_name: <[]string>
        client_config: <grpcclient.Config>
    
  • [BUGFIX] LBAC: Fix issue where debug logs would not print the selector and instead print selector="unsupported value type".
  • [BUGFIX] Admin-Client: Warning logs are no longer created on resource creation.
  • [BUGFIX] Ruler: Fix issue where invalid remote-write URLs cause a panic.
  • [BUGFIX] Querier: Apply label access filters on multi tenant access policies.

Upstream Cortex details

v1.1.3 – April 27 2021

  • Binary (Linux AMD64)

    • Download
    • SHA256: 0c2a549552ac2cf406837df4d6823a88bb5089f84d175a5b16d2710dd0ce7f3a
  • Deb (Linux AMD64)

    • Download
    • SHA256: 1814df03f6573deaefbc87de75777873d9d6f724efce74a59e0cae06734c69fb
  • RPM (Linux AMD64)

    • Download
    • SHA256: b2a0fb67aed10a46d1e4e5f3e5db6e77b4e0cb9b167bdb15a6997ae2878d085c
  • Docker image: run docker pull grafana/metrics-enterprise:v1.1.3

  • License: Grafana Labs license

Changelog

  • [SECURITY] Alertmanager: Fix a local file disclosure vulnerability when -experimental.alertmanager.enable-api is used (CVE-2021-31231):
    • The HTTP Basic auth password_file can be used as an attack vector to send any file content via a webhook.
    • The Alertmanager templates can be used as an attack vector to send any file content because the Alertmanager can load any text file specified in the templates list.

v1.1.2 – January 20 2021

Changelog

  • [BUGFIX] Querier: fix default value incorrectly overriding -querier.frontend-address in single-binary mode.

v1.1.1 – January 14 2021

Changelog

  • [BUGFIX] Ruler: Minimize gaps on rule evaluations with stale input and enabled ruler evaluation delay.

v1.1.0 – January 12 2021

Changelog

  • [CHANGE] Admin-API: Resources must not be both prefixed and suffixed with the __ characters. If any of your existing resources exist with this naming pattern, they must be deleted and recreated with a new name before upgrading.

  • [CHANGE] Graphite: Allow storage schema and storage aggregation configs to be defined per tenant.

  • [CHANGE] Admin-Client: Instance management client calls no longer use object storage Iter calls when retrieving the latest version of a resource.

  • [CHANGE] Graphite: Add API endpoints to explore the available Graphite functions.

  • [CHANGE] Admin: The selectors for label policies are now provided as PromQL label strings instead of typed objects.

    • Deprecated:

      "label_policies": [
        {
          "selector": [
            {
              "name": "env",
              "value": "dev",
              "type": "EQ"
            }
          ]
        }
      ]
      
    • New:

      "label_policies": [
        {
          "selector": "{env=\"dev\"}"
        }
      ]
      
  • [CHANGE] Admin: Operations with an ADMIN scope are no longer restricted to operating on clusters they have as a configured realm.

  • [CHANGE] Deprecate enterprise_features config section in favor of the Cortex config extension.

    • Deprecated:

      enterprise_features:
        ruler_s3_request_headers:
          file: <string>
          poll_interval: <duration>
        ruler_remote_write:
          enabled: <bool>
          wal_dir: <string>
      
    • New:

      ruler:
        storage:
          s3:
            header_map_file_path: <string>
            header_map_poll_interval: <duration>
        remote_write:
          enabled: <bool>
          wal_dir: <string>
      
  • [FEATURE] Ruler: Alerts can now be correctly forwarded to the Alertmanager with enterprise authentication enabled by setting the basic authentication username to __alertmanager__ and the password to a API token with access to every instance.

  • [FEATURE] Queries: LBAC enforcement has been added for queries and label value requests.

    • When GEM is run using the default authentication mode, LBAC policies are specified using the X-Prom-Label-Policy HTTP header in the format: X-Prom-Label-Policy: <tenant-id>:urlEscaped(<prometheus label selector>). For example, a policy that only allows metrics with the label env equal to dev for tenant test-instance could specified with the following header: X-Prom-Label-Policy: test-instance:%7Benv=%22dev%22%7D. To specify multiple policies either set the header multiple times or set the header with a single string of multiple policies separated by an unescaped comma.
  • [FEATURE] Admin API: add label_policies field, which contains an array of label matchers to the access policy realm JSON.

    {
      "realms": [
        {
          "instance": "<string>",
          "cluster": "<string>",
          "label_policies": [
              {
                "selector": [
                  {
                      "type": "<enum: EQ | NEQ | RE | NRE>",
                        "name": "<string>",
                        "value": "<string>"
                  }
                ]
              }
          ]
        } 
      ]
    }
    
  • [FEATURE] Admin: Add target tokengen to generate tokens for the default or a custom access policy.

  • [FEATURE] Admin: Added a default __admin__ access policy that has an ADMIN scope. This policy can be disabled adding the following to the GEM configuration file.

    admin_client: 
      disable_default_admin_policy: true
    
  • [FEATURE] Querier: Queries can be federated across multiple tenants. The tenants IDs involved need to be specified separated by a | character in the X-Scope-OrgID request header.

  • [FEATURE] Add gateway target that can be configured to proxy requests to microservices and can be used to load balance remote_write requests to the distributors.

  • [ENHANCEMENT] AdminAPI: Add scope for read only admin access, admin:read.

  • [ENHANCEMENT] AdminAPI: Add separate set of scopes for alerts and rules.

    • alerts:read
    • alerts:write
    • logs:rules:read
    • logs:rules:write
    • metrics:rules:read
    • metrics:rules:write
  • [ENHANCEMENT] Reduce allocations in Graphite Ingester, when ingesting untagged Graphite metrics.

  • [ENHANCEMENT] Serve Graphite /metrics/find requests by keeping track of all recent metrics in an in-memory index on the Ingesters to reduce latency.

  • [ENHANCEMENT] Add auxiliary Graphite API endpoints to explore tags and obtain auto-complete suggestions for the Grafana query editor.

  • [ENHANCEMENT] Admin API: add ClusterKind support for Logs & Traces.

  • [ENHANCEMENT] Admin API: add scopes for Logs.

  • [ENHANCEMENT] Admin: The bootstrap target no longer needs to be run before being able to start GEM with enterprise features. Every target will now try to perform bootstrapping on startup if it has not already been done. Failure to bootstrap will not prevent GEM running, but enterprise features will not be available.

  • [ENHANCEMENT] Add grafana_labs_license_expiry_timestamp metric to expose GEM license expiration as a UNIX timestamp, in seconds.

  • [BUGFIX] Graphite: Fixing a bug in the request parsing of GET requests on the auto-complete endpoints.

  • [BUGFIX] Graphite: When ingesting datapoints resulting in out-of-order/out-of-bounds/duplicate-sample we need to return status 200 to prevent an indefinite loop.

  • [BUGFIX] Ruler: Fix issue where remote-write rule groups are created then immediately deleted when a rule group name contains the / delimiter character.

Upstream Cortex changes

v1.0.2 – October 16 2020

Changelog

  • [CHANGE] Update vendored Cortex from v1.4.0 to [v1.4.0-21bad5][21bad5]
  • [BUGFIX] Fix potential panic due to writing into a closed chan in the graphite query executor.
  • [ENHANCEMENT] Admin: Access policy create operations now enforce valid instance/cluster names for the realms configured on the access policy.
  • [ENHANCEMENT] Add -version flag to GEM.
  • [FEATURE] Add config options to rate limit the LIST methods of buckets.
  • [FEATURE] Adds the Graphite /render API endpoint, which can be used to query metrics with the Graphite query language.
  • [FEATURE] Add config options to specify and poll files to inject arbitrary HTTP headers in requests to S3 for the admin and blocks client.
      blocks_storage:
        s3:
          header_map_file_path: <path to header file>
          header_map_poll_interval: <duration string>
      admin_client:
        storage:
          s3:
            header_map_file_path: <path to header file>
            header_map_poll_interval: <duration string>
    
  • [FEATURE] Adds the Graphite /metrics/find API endpoint, which can be used to obtain lists of metrics matching a given pattern (Grafana query editor auto-complete, dashboard variable population, etc).
  • [FEATURE] Add a default access policy option for OpenID Connect tokens.

Upstream Cortex details

v1.0.1 – October 06 2020

Upstream Cortex details

  • Cortex Hash: 23554ce028c090a4a3413ac0e35e5e1dc9fa929f
  • Cortex Version: 1.4.0

Changelog

  • [CHANGE] Update vendored Cortex to v1.4.0.

v1.0.0 – September 17 2020

Upstream Cortex details

  • Cortex Hash: bb5fcc929832f7bd2a6c2df348b387abcb8b961e
  • Cortex Version: 1.4.0-rc.0

Changelog

  • [BUGFIX] Make config field names consistent.
  • [CHANGE] Use Go 1.14.9 to build the project and cut build-image@v0.1.3.

v1.0.0-rc.2 – September 15 2020

Upstream Cortex details

  • Cortex Hash: c3a344784a0c8ce70ef2521f543033dee3dce6c6
  • Cortex Version: 1.3.1

Changelog

  • [BUGFIX] Admin API: Fix panic on start up for admin-api target.

v1.0.0-rc.1 – September 04 2020

Upstream Cortex details

  • Cortex Hash: 4f6e1e5c48ccad2c1988cf1d36ca522ae0c805ed
  • Cortex Version: 1.3.1

Changelog

  • [CHANGE] Admin-Client: The storage backend for the admin client no longer defaults to s3. Instead no default is set and the admin client will not start up unless a default is set.
  • [CHANGE] The following features will no longer be active unless GEM is started with access to a valid license.
    • Admin API
    • Ruler S3 auth headers
    • Ruler API to configure remote write rule groups

v0.6.3 – August 20 2020

Upstream Cortex details

  • Cortex Hash: 2bda7b94
  • Cortex Version: 1.2.1

Changelog

  • [CHANGE] Auth: removed auth.enable flag and add auth.type flag with default and enterprise options.
  • [FEATURE] Admin API: Add list endpoint for stored licenses.

v0.6.2 – August 04 2020

Upstream Cortex details

  • Cortex Hash: 6db67a4efbbf62b1133fa037a95382a21f752bbf
  • Cortex Version: 1.2.1

Changelog

  • [CHANGE] Ruler: S3 Headers are no longer protected by a license.