Nautobot v1.6¶
This document describes all new features and changes in Nautobot 1.6.
Release Overview¶
Added¶
Custom Field "Markdown" Type (#4006)¶
A new Custom Field type, "Markdown", has been added. Custom fields of this type can store Markdown-formatted text which will be rendered in the web UI.
Caching of Dynamic Groups and Content Types (#4092)¶
APIs have been added to allow for caching of the results of looking up an object's content-type or Dynamic Group memberships, as well as for looking up the members of a Dynamic Group itself. These caches are disabled by default but can be enabled by configuring the DYNAMIC_GROUPS_MEMBER_CACHE_TIMEOUT
and CONTENT_TYPE_CACHE_TIMEOUT
settings respectively. Apps (plugins) that make use of dynamic groups should review the documentation for the APIs to determine how and when to make use of the cache for improved performance.
Interface Redundancy Group (#2825)¶
Interface Redundancy Group model and related views have been added to allow logical grouping of multiple interfaces under a specific interface redundancy protocol (HSRP, VRRP, CARP, and etc).
Installation Metrics (#4047)¶
A new setting, INSTALLATION_METRICS_ENABLED
, has been added to allow Nautobot to send anonymous installation metrics to the Nautobot maintainers. This setting is True
by default but can be changed in nautobot_config.py
or the NAUTOBOT_INSTALLATION_METRICS_ENABLED
environment variable.
If the INSTALLATION_METRICS_ENABLED
setting is True
, running the post_upgrade
or send_installation_metrics
management commands will send a list of all installed apps and their versions, as well as the currently installed Nautobot and Python versions, to the Nautobot maintainers. A randomized UUID will be generated and saved in the DEPLOYMENT_ID
setting to anonymously and uniquely identify each installation. The plugin names will be one-way hashed with SHA256 to further anonymize the data sent. This enables tracking the installation metrics of publicly released apps without disclosing the names of any private apps.
The following is an example of the data that is sent:
{
"deployment_id": "1de3dacf-f046-4a98-8d4a-17419080db79",
"nautobot_version": "1.6.0b1",
"python_version": "3.10.12",
"installed_apps": {
# "example_plugin" hashed by sha256
"3ffee4622af3aad6f78257e3ae12da99ca21d71d099f67f4a2e19e464453bee7": "1.0.0"
},
"debug": true
}
Platform.network_driver
and related fields (4136)¶
The Platform model has been enhanced to include a network_driver
database field and a network_driver_mappings
derived property based on the netutils
library. For example, if you set a Platform to have a network_driver
value of "cisco_ios"
, the platform.network_driver_mappings
property will return a dictionary containing ansible
, hier_config
, napalm
, netmiko
, ntc_templates
, pyats
, pyntc
, and scrapli
keys corresponding to this entry. These properties can be referenced via the REST API and GraphQL to assist in developing and maintaining Apps, Jobs, or third-party code that interact with devices by using any of these libraries.
If the default derivations provided by netutils
are not suitable for your purposes, you can extend or override them by configuring the NETWORK_DRIVERS
system setting.
Python 3.11 Support (#3561)¶
Nautobot 1.6.0 formally adds support for installation and operation under Python 3.11.
Changed¶
Additional HIDE_RESTRICTED_UI
Effects for Unauthenticated Users (#3646)¶
When HIDE_RESTRICTED_UI
is enabled, unauthenticated users are no longer able to view the OpenAPI (Swagger) UI, the GraphiQL UI, or any configured top/bottom banners. Additionally, the page footer on the login page will not display the Nautobot server hostname in this case.
Increased Device.asset_tag
maximum length (#3693)¶
The maximum length of the Device.asset_tag
field has been increased from 50 to 100 characters.
Changed Default Python Version for Docker Images (#4029)¶
The default Python version for Nautobot Docker images has been changed from 3.7 to 3.11.
Removed¶
Removed Python 3.7 Support (#3561)¶
As Python 3.7 has reached end-of-life, Nautobot 1.6 and later do not support installation or operation under Python 3.7.
v1.6.29 (2024-12-09)¶
Security in v1.6.29¶
- #5911 - Updated
zipp
to3.19.2
to addressCVE-2024-5569
. This is not a direct dependency so it will not auto-update when upgrading. Please be sure to upgrade your local environment. - #6625 - Patched
set_values()
method of Query class from django.db.models.sql.query to addressCVE-2024-42005
.
Fixed in v1.6.29¶
- #5924 - Fixed the redirect URL for the Device Bay Populate/Depopulate view to take the user back to the Device Bays tab on the Device page.
- #6502 - Fixed a bug in the Dockerfile that prevented
docker build
from working on some platforms. - #6502 - Fixed Docker builds failing in Gitlab CI.
v1.6.28 (2024-09-24)¶
Fixed in v1.6.28¶
- #6152 - Fixed table column ordering.
- #6237 - Corrected presentation of rendered Markdown content in Notes table.
- #6262 - Fixed invalid installation of
xmlsec
library in the Nautobot Docker images.
Housekeeping in v1.6.28¶
- #5637 - Removed "version" from development
docker-compose.yml
files as newer versions of Docker complain about it being obsolete. - #5637 - Fixed behavior of
invoke stop
so that it also stops the optionalmkdocs
container if present. - #6262 - Brought
.gitignore
up to date with latest to aid in branch switching.
v1.6.27 (2024-09-03)¶
Security in v1.6.27¶
- #6182 - Updated
cryptography
to43.0.1
to addressGHSA-h4gh-qq45-vh27
. This is not a direct dependency so will not auto-update when upgrading. Please be sure to upgrade your local environment.
Fixed in v1.6.27¶
- #6081 - Fixed AttributeError during
pre_migrate
when permission constraints are applied to custom fields.
v1.6.26 (2024-07-22)¶
Fixed in v1.6.26¶
- #5935 - Fixed issue in which a save() could be called unnecessarily on child devices.
v1.6.25 (2024-07-09)¶
Security in v1.6.25¶
- #5891 - Updated
certifi
to2024.7.4
to addressCVE-2024-39689
. This is not a direct dependency so it will not auto-update when upgrading. Please be sure to upgrade your local environment.
Dependencies in v1.6.25¶
- #5897 - Pinned dev dependency
faker
to>=0.7.0,<26.0.0
to work around breaking change in v26.0.0 (faker/#2070).
v1.6.24 (2024-06-24)¶
Security in v1.6.24¶
- #5821 - Updated
urllib3
to 2.2.2 due to CVE-2024-37891. This is not a direct dependency so it will not auto-update when upgrading. Please be sure to upgrade your local environment.
Housekeeping in v1.6.24¶
- #5754 - Updated development dependency
requests
to~2.32.2
.
v1.6.23 (2024-05-28)¶
Security in v1.6.23¶
- #5762 - Fixed missing member object permission enforcement (e.g., enforce Device permissions for a Dynamic Group containing Devices) when viewing Dynamic Group member objects in the UI or REST API (GHSA-qmjf-wc2h-6x3q).
- #5740 - Updated
requests
to2.32.1
to address GHSA-9wx4-h78v-vm56. This is not a direct dependency so it will not auto-update when upgrading Nautobot. Please be sure to update your local environment.
Housekeeping in v1.6.23¶
- #5740 - Updated test dependency
requests
to~2.32.1
.
v1.6.22 (2024-05-13)¶
Security in v1.6.22¶
- #1858 - Added sanitization of HTML tags in the content of
BANNER_TOP
,BANNER_BOTTOM
, andBANNER_LOGIN
configuration to prevent against potential injection of malicious scripts (stored XSS) via these features (GHSA-r2hr-4v48-fjv3).
Added in v1.6.22¶
- #1858 - Added support in
BRANDING_FILEPATHS
configuration to specify a customcss
and/orjavascript
file to be added to Nautobot page content. - #1858 - Added Markdown support to the
BANNER_TOP
,BANNER_BOTTOM
, andBANNER_LOGIN
configuration settings.
Fixed in v1.6.22¶
- #2974 - Fixed an error when deleting and then recreating a GitRepository that provides Jobs.
v1.6.21 (2024-05-07)¶
Security in v1.6.21¶
- #5521 - Updated
Pillow
dependency to~10.3.0
to addressCVE-2024-28219
. - #5561 - Updated
idna
to3.7
due toCVE-2024-3651
. This is not a direct dependency so will not auto-update when upgrading. Please be sure to upgrade your local environment. - #5624 - Updated
social-auth-app-django
dependency to~5.4.1
to addressCVE-2024-32879
. - #5675 - Updated
Jinja2
dependency to3.1.4
to addressCVE-2024-34064
.
v1.6.20 (2024-04-30)¶
Security in v1.6.20¶
- #5647 - Fixed a reflected-XSS vulnerability (GHSA-jxgr-gcj5-cqqg) in object-list view rendering of user-provided query parameters.
Fixed in v1.6.20¶
- #5626 - Increased performance of
brief=true
in API endpoints by eliminating unnecessary database joins.
v1.6.19 (2024-04-23)¶
Security in v1.6.19¶
- #5579 - Updated
sqlparse
to0.5.0
to fix GHSA-2m57-hf25-phgg. This is not a direct dependency so it will not auto-update when upgrading Nautobot. Please be sure to update your local environment.
Fixed in v1.6.19¶
- #5610 - Fixed static media failure on
/graphql/
and/admin/
pages.
v1.6.18 (2024-04-15)¶
Security in v1.6.18¶
- #5543 - Updated
jquery-ui
to version1.13.2
due toCVE-2022-31160
.
Dependencies in v1.6.18¶
- #5543 - Updated
jquery
to version3.7.1
.
v1.6.17 (2024-04-01)¶
Dependencies in v1.6.17¶
- #4583 - Updated pinned version of
social-auth-core
to remove dependency onpython-jose
& its dependency onecdsa
. - #5495 - Changed
jsonschema
version constraint from>=4.7.0,<4.18.0
to^4.7.0
.
v1.6.16 (2024-03-25)¶
Security in v1.6.16¶
- #5450 - Updated
django
to~3.2.25
due toCVE-2024-27351
. - #5465 - Added requirement for user authentication to access the endpoint
/extras/job-results/<uuid:pk>/log-table/
; furthermore it will not allow an authenticated user to view log entries for a JobResult they don't otherwise have permission to view. (GHSA-m732-wvh2-7cq4) - #5465 - Added narrower permissions enforcement on the endpoints
/extras/git-repositories/<str:slug>/sync/
and/extras/git-repositories/<str:slug>/dry-run/
; a user who haschange
permissions for a subset of Git repositories is no longer permitted to sync or dry-run other repositories for which they lack the appropriate permissions. (GHSA-m732-wvh2-7cq4) - #5465 - Added narrower permissions enforcement on the
/api/dcim/connected-device/?peer_device=...&?peer_interface=...
REST API endpoint; a user who hasview
permissions for a subset of interfaces is no longer permitted to query other interfaces for which they lack permissions. (GHSA-m732-wvh2-7cq4) - #5465 - Added narrower permissions enforcement on all
<app>/<model>/<lookup>/notes/
UI endpoints; a user must now have the appropriateextras.view_note
permissions to view existing notes. (GHSA-m732-wvh2-7cq4) - #5465 - Added requirement for user authentication to access the REST API endpoints
/api/redoc/
,/api/swagger/
,/api/swagger.json
, and/api/swagger.yaml
. (GHSA-m732-wvh2-7cq4) - #5465 - Added requirement for user authentication to access the
/api/graphql
REST API endpoint, even whenEXEMPT_VIEW_PERMISSIONS
is configured. (GHSA-m732-wvh2-7cq4) - #5465 - Added requirement for user authentication to access the endpoints
/dcim/racks/<uuid>/dynamic-groups/
,/dcim/devices/<uuid>/dynamic-groups/
,/ipam/prefixes/<uuid>/dynamic-groups/
,/ipam/ip-addresses/<uuid>/dynamic-groups/
,/virtualization/clusters/<uuid>/dynamic-groups/
, and/virtualization/virtual-machines/<uuid>/dynamic-groups/
, even whenEXEMPT_VIEW_PERMISSIONS
is configured. (GHSA-m732-wvh2-7cq4) - #5465 - Added requirement for user authentication to access the endpoint
/extras/secrets/provider/<str:provider_slug>/form/
. (GHSA-m732-wvh2-7cq4)
Added in v1.6.16¶
- #5465 - Added
nautobot.apps.utils.get_url_for_url_pattern
andnautobot.apps.utils.get_url_patterns
lookup functions. - #5465 - Added
nautobot.apps.views.GenericView
base class.
Changed in v1.6.16¶
- #5465 - Added support for
view_name
andview_description
optional parameters when instantiating anautobot.apps.api.OrderedDefaultRouter
. Specifying these parameters is to be preferred over defining a customAPIRootView
subclass when defining App API URLs. - #5465 - Added requirement for user authentication by default on the
nautobot.core.api.AuthenticatedAPIRootView
class. As a consequence, viewing the browsable REST API root endpoints (e.g./api/
,/api/circuits/
,/api/dcim/
, etc.) now requires user authentication. - #5465 - Added requirement for user authentication to access
/api/docs/
and/graphql/
even whenHIDE_RESTRICTED_UI
is False.
Fixed in v1.6.16¶
- #5465 - Fixed a 500 error when accessing any of the
/dcim/<port-type>/<uuid>/connect/<termination_b_type>/
view endpoints with an invalid/nonexistenttermination_b_type
string.
Documentation in v1.6.16¶
- #5465 - Updated example views in the App developer documentation to include
ObjectPermissionRequiredMixin
orLoginRequiredMixin
as appropriate best practices.
Housekeeping in v1.6.16¶
- #5465 - Updated custom views in the
example_plugin
to use the newGenericView
base class as a best practice.
v1.6.15 (2024-03-18)¶
Added in v1.6.15¶
- #1102 - Added
CELERY_BEAT_HEARTBEAT_FILE
settings variable. - #5424 - Added
TemplateExtension.list_buttons()
API, allowing apps to register button content to be injected into object list views.
Fixed in v1.6.15¶
- #5247 - Fixed Job buttons do not respect the
task_queues
of the job class. - #5354 - Fixed Configuration Context not applied based on nested Tenant Groups.
Housekeeping in v1.6.15¶
- #1102 - Added health check for Celery Beat based on it touching a file (by default
/tmp/nautobot_celery_beat_heartbeat
) each time its scheduler wakes up. - #5434 - Fixed health check for beat container in
docker-compose.yml
underdocker-compose
v1.x.
v1.6.14 (2024-03-05)¶
Fixed in v1.6.14¶
- #5387 - Fixed an error in the Dockerfile that resulted in
pyuwsgi
being installed without SSL support.
v1.6.13 (2024-03-04)¶
Added in v1.6.13¶
- #4247 - Added a check to the
nautobot-server pre_migrate
command to identify Interfaces and VMInterfaces with multiple VRFs through IPAddress relationships.
Fixed in v1.6.13¶
- #5307 - Fixed Custom Field form field(s) missing from git repository edit form.
- #5336 - Fixed 'docker-compose: command not found' error when running invoke commands.
- #5345 - Fixed intermittent 405 errors when using the Docker image with SAML authentication.
Documentation in v1.6.13¶
- #5345 - Added a note to the Nautobot installation documentation about the need to do
pip3 install --no-binary=pyuwsgi
in order to have SSL support inpyuwsgi
. - #5345 - Added a note to the SSO documentation about the need to do
pip3 install --no-binary=lxml
to avoid incompatibilities betweenlxml
andxmlsec
packages.
v1.6.12 (2024-02-20)¶
Security in v1.6.12¶
- #5251 - Updated
Django
dependency to 3.2.24 due to CVE-2024-24680.
Added in v1.6.12¶
- #5104 - Added User Token as permission constraints.
Changed in v1.6.12¶
- #5254 - Changed
TreeQuerySet.ancestors
implementation to a more efficient approach for shallow trees. - #5254 - Changed the location detail view not to annotate tree fields on its queries.
Fixed in v1.6.12¶
- #5253 - Fixed issue with Job Button Groups displaying when Conditional Rendering should remove the button.
- #5261 - Fixed a regression introduced in v1.6.8 where Job Buttons would always run with
commit=False
.
v1.6.11 (2024-02-05)¶
Security in v1.6.11¶
- #5151 - Updated
pillow
dependency to 10.2.0 due to CVE-2023-50447.
Added in v1.6.11¶
- #5169 - Added support for user session profiling via django-silk.
Fixed in v1.6.11¶
- #3664 - Fixed AssertionError when querying Date type custom fields in GraphQL.
- #5162 - Fixed incorrect rack group variable in device template.
v1.6.10 (2024-01-22)¶
Security in v1.6.10¶
- #5109 - Removed
/files/get/
URL endpoint (for viewing FileAttachment files in the browser), as it was unused and could potentially pose security issues. - #5134 - Fixed an XSS vulnerability (GHSA-v4xv-795h-rv4h) in the
render_markdown()
utility function used to render comments, notes, job log entries, etc.
Added in v1.6.10¶
- #5134 - Enhanced Markdown-supporting fields (
comments
,description
, Notes, Job log entries, etc.) to also permit the use of a limited subset of "safe" HTML tags and attributes.
Changed in v1.6.10¶
- #5132 - Updated poetry version for development Docker image to match 2.0.
Dependencies in v1.6.10¶
- #5087 - Updated GitPython to version 3.1.41 to address Windows security vulnerability GHSA-2mqj-m65w-jghx.
- #5087 - Updated Jinja2 to version 3.1.3 to address to address XSS security vulnerability GHSA-h5c8-rqwp-cp95.
- #5134 - Added
nh3
HTML sanitization library as a dependency.
v1.6.9 (2024-01-08)¶
Fixed in v1.6.9¶
- #5042 - Fixed early return conditional in
ensure_git_repository
.
v1.6.8 (2023-12-21)¶
Security in v1.6.8¶
- #4876 - Updated
cryptography
to41.0.7
due to CVE-2023-49083. As this is not a direct dependency of Nautobot, it will not auto-update when upgrading. Please be sure to upgrade your local environment. - #4988 - Fixed missing object-level permissions enforcement when running a JobButton (GHSA-vf5m-xrhm-v999).
- #4988 - Removed the requirement for users to have both
extras.run_job
andextras.run_jobbutton
permissions to run a Job via a Job Button. Onlyextras.run_job
permission is now required. - #5002 - Updated
paramiko
to3.4.0
due to CVE-2023-48795. As this is not a direct dependency of Nautobot, it will not auto-update when upgrading. Please be sure to upgrade your local environment.
Added in v1.6.8¶
- #4965 - Added MMF OM5 cable type to cable type choices.
Removed in v1.6.8¶
- #4988 - Removed redundant
/extras/job-button/<uuid>/run/
URL endpoint; Job Buttons now use/extras/jobs/<uuid>/run/
endpoint like any other job.
Fixed in v1.6.8¶
- #4977 - Fixed early return conditional in
ensure_git_repository
.
Housekeeping in v1.6.8¶
- #4988 - Fixed some bugs in
example_plugin.jobs.ExampleComplexJobButtonReceiver
.
v1.6.7 (2023-12-12)¶
Security in v1.6.7¶
- #4959 - Enforce authentication and object permissions on DB file storage views (GHSA-75mc-3pjc-727q).
Added in v1.6.7¶
- #4873 - Added QSFP112 interface type to interface type choices.
Removed in v1.6.7¶
- #4797 - Removed erroneous
custom_fields
decorator from InterfaceRedundancyGroupAssociation as it's not a supported feature for this model. - #4857 - Removed Jathan McCollum as a point of contact in
SECURITY.md
.
Fixed in v1.6.7¶
- #4142 - Fixed unnecessary git operations when calling
ensure_git_repository
while the desired commit is already checked out. - #4917 - Fixed slow performance on location hierarchy html template.
- #4921 - Fixed inefficient queries in
Location.base_site
.
v1.6.6 (2023-11-21)¶
Security in v1.6.6¶
- #4833 - Fixed cross-site-scripting (XSS) potential with maliciously crafted Custom Links, Computed Fields, and Job Buttons (GHSA-cf9f-wmhp-v4pr).
Changed in v1.6.6¶
- #4833 - Changed the
render_jinja2()
API to no longer automatically callmark_safe()
on the output.
Fixed in v1.6.6¶
- #3179 - Fixed the error that occurred when fetching the API response for CircuitTermination with a cable connected to CircuitTermination, FrontPort, or RearPort.
- #4799 - Reduced size of Nautobot
sdist
andwheel
packages from 69 MB to 29 MB.
Dependencies in v1.6.6¶
- #4799 - Updated
mkdocs
development dependency to1.5.3
.
Housekeeping in v1.6.6¶
- #4799 - Updated docs configuration for
examples/example_plugin
. - #4833 - Added
ruff
to invoke tasks and CI.
v1.6.5 (2023-11-13)¶
Security in v1.6.5¶
- #4671 - Updated
urllib3
to 2.0.7 due to CVE-2023-45803. This is not a direct dependency so it will not auto-update when upgrading. Please be sure to upgrade your local environment. - #4748 - Updated
Django
minimum version to 3.2.23 to protect against CVE-2023-46695.
Added in v1.6.5¶
- #4649 - Added
device_redundancy_groups
field toConfigContextSerializer
.
Fixed in v1.6.5¶
- #4645 - Fixed a bug where the
failover-strategy
field was required for the device redundancy group API. - #4686 - Fixed incorrect tagging of 1.6.x Docker
nautobot-dev
images aslatest
. - #4718 - Fixed bug in which a device's device redundancy group priority was not being set to
None
when the device redundancy group was deleted. - #4728 - Fixed bug with JobResultFilterSet and ScheduledJobFilterSet using
django_filters.DateTimeFilter
for only exact date matches. - #4733 - Fixed the bug that prevents retrieval of IPAddress using its address args if it was created using
host
andprefix_length
.
Documentation in v1.6.5¶
- #4700 - Removed incorrect
NAUTOBOT_DYNAMIC_GROUPS_MEMBER_CACHE_TIMEOUT
environment variable reference from settings documentation.
Housekeeping in v1.6.5¶
- #4638 - Renamed
ltm/1.6
branch toltm-1.6
.
v1.6.4 (2023-10-17)¶
Added in v1.6.4¶
- #4361 - Added
SUPPORT_MESSAGE
configuration setting. - #4573 - Added caching for
display
property ofLocation
andLocationType
, mitigating duplicated SQL queries in the related API views.
Changed in v1.6.4¶
- #4313 - Updated device search to include manufacturer name.
Removed in v1.6.4¶
- #4595 - Removed
stable
tagging for container builds in LTM release workflow.
Housekeeping in v1.6.4¶
- #4619 - Fixed broken links in Nautobot README.md.
v1.6.3 (2023-10-03)¶
Security in v1.6.3¶
- #4446 - Updated
GitPython
to3.1.36
to addressCVE-2023-41040
.
Added in v1.6.3¶
- #3372 - Added ObjectPermission constraints check to
pre_migrate
management command.
Fixed in v1.6.3¶
- #4396 - Fixed rack form silently dropping custom field values.
Housekeeping in v1.6.3¶
- #4587 - Fixed
release.yml
andpre-release.yml
workflow files to targetci_integration.yml
in its own branch. - #4587 - Enforced changelog requirement in
ci_pullrequest.yml
forltm/1.6
.
v1.6.2 (2023-09-01)¶
Added in v1.6.2¶
- #3913 - Added
url
field to GraphQL objects. - #4316 - Added management command
nautobot-server populate_platform_network_driver
to help update thePlatform.network_driver
field in bulk.
Changed in v1.6.2¶
- #3212 - Updated Dynamic Group field filter/child group exclusivity error to be more noticeable.
- #3949 - Moved DynamicGroup
clean_filter()
call fromclean()
toclean_fields()
, which has the impact that it will still be called byfull_clean()
andvalidated_save()
but no longer called on a simpleclean()
. - #4216 - Changed the rendering of
TagFilterField
to prevent very slow rendering of pages when large numbers of tags are defined. - #4217 - Added a restriction that two Git repositories with the same
remote_url
cannot overlap in theirprovided_contents
, as such cases are highly likely to introduce data conflicts.
Fixed in v1.6.2¶
- #3949 - Fixed a ValueError when editing an existing DynamicGroup that has invalid
filter
data. - #3949 - Fixed
DynamicGroup.clean_fields()
so that it will respect anexclude=["filter"]
kwarg by not validating thefilter
field. - #4262 - Fixed warning message when trying to use bulk edit with no items selected.
Documentation in v1.6.2¶
- #3289 - Added documentation on factory data caching.
- #4201 - Added docs for
InterfaceRedundancyGroup
.
Housekeeping in v1.6.2¶
- #4317 - Added tests for GraphQL url field.
- #4331 - Added a "housekeeping" subsection to the release-notes via
towncrier
.
v1.6.1 (2023-08-21)¶
Changed in v1.6.1¶
- #4242 - Changed behavior of
dev
andfinal-dev
Docker images to disable installation metrics by default.
Fixed in v1.6.1¶
- #4093 - Fixed dependencies required for saml support missing in final docker image.
- #4149 - Fixed a bug that prevented renaming a
Rack
if it contained any devices whose names were not globally unique. - #4241 - Added a timeout and exception handling to the
nautobot-server send_installation_metrics
command.
Documentation in v1.6.1¶
- #4256 - Introduced new
mkdocs
setting oftabbed
. - #4256 - Updated docs at
nautobot/docs/installation/nautobot.md
andnautobot/docs/installation/http-server.md
to adopt tabbed interfaces. - #4258 - Re-enabled copy-to-clipboard button in mkdocs theme.
Housekeeping in v1.6.1¶
- #4028 - Fixed CI integration workflow to publish 'final-dev', and build only
final
images. - #4028 - Fixed CI integration workflow
set-output
warnings. - #4242 - Changed
development/nautobot_config.py
to disable installation metrics for developer environments by default.
v1.6.0 (2023-08-08)¶
Added in v1.6.0¶
- #4169 - Added environment variable
NAUTOBOT_SESSION_EXPIRE_AT_BROWSER_CLOSE
to set theSESSION_EXPIRE_AT_BROWSER_CLOSE
Django setting which expires session cookies when the user closes their browser.
Fixed in v1.6.0¶
- #3985 - Added error handling in
JobResult.log()
for the case where an object'sget_absolute_url()
raises an exception. - #3985 - Added missing
get_absolute_url()
implementation onCustomFieldChoice
model. - #4175 - Changed custom field clean to not populate null default values.
- #4204 - Fixed failing Apps CI by downgrading
jsonschema<4.18
. - #4205 - Fixed failing Apps CI due to missing dependency of
toml
. - #4222 - Fixed a bug in which
Job
ChoiceVars
could sometimes get rendered incorrectly in the UI as multiple-choice fields.
Dependencies in v1.6.0¶
- #4208 - Updated django-rq to 2.8.1.
- #4209 - Relaxed constraint on prometheus-client minimum version to
0.14.1
. - #4173 - Updated
drf-spectacular
to0.26.4
. - #4199 - Updated
cryptography
to~41.0.3
. As this is not a direct dependency of Nautobot, it will not auto-update when upgrading. Please be sure to upgrade your local environment. - #4215 - Broadened the range of acceptable
packaging
dependency versions.
Documentation in v1.6.0¶
- #4184 - Added documentation detailing rack power utilization calculation.
v1.6.0-rc.1 (2023-08-02)¶
Added in v1.6.0-rc.1¶
- #2825 - Added InterfaceRedundancyGroup and related views, forms, filtersets and table.
- #3269 - Added ability to cache
DynamicGroup
memberships in Redis to improve reverse lookup performance. - #3269 - Added ability to cache
ContentType
lookups in Redis to improve performance. - #3561 - Added support for Python 3.11.
- #4006 - Added Markdown custom field type.
- #4044 - Added ability to use
@action(detail=True)
decorator for registering additional non-standardGET
views to aNautobotUIViewSet
. - #4047 - Added ability for Nautobot to send installation metrics.
- #4136 - Added
network_driver
database field to thePlatform
model. - #4136 - Added
network_driver_mappings
derived attribute on thePlatform
model. - #4136 - Added
CONSTANCE_DATABASE_CACHE_BACKEND = 'default'
tosettings.py
, which should improve performance a bit. - #4136 - Added support for
NETWORK_DRIVERS
config setting to override or extend default network driver mappings fromnetutils
library. - #4161 - Enhanced
NautobotUIViewSet
to allow Create and Update methods to have their own form classes.
Changed in v1.6.0-rc.1¶
- #3646 - Redirect unauthenticated users on all views to login page if
HIDE_RESTRICTED_UI
is True. - #3646 - Only time is shown on the footer if a user is unauthenticated and
HIDE_RESTRICTED_UI
is True. - #3693 - Increased Device model's
asset_tag
size limit to 100. - #4029 - Changed default Python version for Docker images from 3.7 to 3.11.
Removed in v1.6.0-rc.1¶
- #3561 - Dropped support for Python 3.7. Python 3.8 is now the minimum version required by Nautobot.
- #3561 - Removed direct dependency on
importlib-metadata
. - #3561 - Removed direct dependency on
pycryptodome
as Nautobot does not currently use this library and hasn't for some time.
Fixed in v1.6.0-rc.1¶
- #4178 - Fixed JSON serialization of overloaded/non-default FilterForm fields on Dynamic Groups.
Dependencies in v1.6.0-rc.1¶
- #3561 - Updated
celery
dependency to~5.3.1
. - #3561 - Updated
django-auth-ldap
optional dependency to~4.3.0
. - #3561 - Updated
django-cacheops
dependency to~6.2
. - #3561 - Updated
django-celery-beat
dependency to~2.5.0
. - #3561 - Updated
django-constance
dependency to~2.9.1
. - #3561 - Updated
django-cors-headers
dependency to~4.2.0
. - #3561 - Updated
django-cryptography
dependency to~1.1
. Note that this dependency will be removed in Nautobot 2.0. - #3561 - Updated
django-extensions
dependency to~3.2.3
. - #3561 - Updated
django-filter
dependency to~23.1
. - #3561 - Updated
django-health-check
dependency to~3.17.0
- #3561 - Updated
django-prometheus
dependency to~2.3.1
. - #3561 - Updated
django-redis
dependency to~5.3.0
. - #3561 - Updated
django-storages
optional dependency to~1.13.2
. - #3561 - Updated
django-tables2
dependency to~2.6.0
. - #3561 - Updated
django-taggit
dependency to~4.0.0
. - #3561 - Updated
django-timezone-field
dependency to~5.1
. - #3561 - Updated
django-tree-queries
dependency to~0.15.0
. - #3561 - Updated
drf-spectacular
dependency to~0.26.3
. - #3561 - Updated
graphene-django
dependency to~2.16.0
. - #3561 - Updated
Jinja2
dependency to~3.1.2
. - #3561 - Updated
jsonschema
dependency to permit versions up to 4.18.x. Note that versions back to 4.7.0 are still permitted, so this dependency may not necessarily auto-upgrade when updating Nautobot. - #3561 - Updated
MarkupSafe
dependency to~2.1.3
. - #3561 - Updated
mysqlclient
optional dependency to~2.2.0
. - #3561 - Updated
napalm
optional dependency to~4.1.0
. Note that as a result of this update, the following indirect package dependencies are no longer included by default when installing Nautobot with NAPALM:ciscoconfparse
,dnspython
,loguru
,passlib
,tenacity
,toml
,win32-setctime
. - #3561 - Updated
packaging
dependency to~23.1
. - #3561 - Updated
Pillow
dependency to~10.0.0
. - #3561 - Updated
prometheus-client
dependency to~0.17.1
. - #3561 - Updated
social-auth-core
optional dependency to~4.4.2
. - #3561 - Updated
social-auth-app-django
dependency to~5.2.0
. - #3561 - Updated various development-only dependencies to the latest available versions.
Documentation in v1.6.0-rc.1¶
- #4118 - Added documentation for troubleshooting integration test failures via VNC.