Skip to content

Release 9.0.36.1

This is the Rolling Release Notes for the Release 9.0.36.1. These release notes are applicable only to Privacera's Self Managed version.

Breaking Changes

SSL/TLS Support for Grafana and OTEL-Receiver Services

Load Balancer Based Setups

In this release, we have enabled SSL/TLS support for Grafana and OTEL-Receiver services in the Privacera Monitoring stack. If you are using a Load Balancer Based Setup, you must provide the hostnames for Grafana and OTEL-Receiver in your existing custom-vars/vars.hostnames.yaml file.

YAML
1
2
3
4
5
# Example: Grafana hostname
#GRAFANA_EXTERNAL_HOST_NAME: "grafana.example.com"

# Example: OTEL-Receiver hostname
#OTEL_COLLECTOR_HOST_NAME: "otel-receiver.example.com"

Ingress Based Setups

For Ingress Based Setups, if you are managing DNS manually rather than through privacera-manager, you must also provide the hostnames for Grafana and OTEL-Receiver in your existing custom-vars/vars.hostnames.yaml file.

YAML
1
2
3
4
5
# Example: Grafana hostname
#GRAFANA_EXTERNAL_HOST_NAME: "grafana.example.com"

# Example: OTEL-Receiver hostname
#OTEL_COLLECTOR_HOST_NAME: "otel-receiver.example.com"

Note

This will not break any functionality of your Privacera Application. This configuration is required to ensure the proper functioning of the Monitoring Features.

For more details on configuring TLS support, refer to Configure TLS.

Apache Ranger

Enhanced Ranger Solr Audit Sharding Mechanism

Enhanced Ranger Solr Audit Sharding Mechanism

Added intelligent wait mechanism for Solr cluster nodes during startup to ensure proper cluster initialization before proceeding with collection operations.

Privacera Manager

Enhanced Ranger Solr Audit Configuration

Enhanced Ranger Solr Audit Configuration

Added configurable Solr audit store parameters for Solr cluster size and replica count for improved Kubernetes deployment flexibility and high availability support.

Privacera Discovery

Updated Application Dependencies

Updated Application Dependencies

Upgraded application dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

PolicySync Connector

Enhanced Backpressure Support for On-Demand Task Sync in Databricks-SQL Connector

Enhanced Backpressure Support for On-Demand Task Sync in Databricks-SQL Connector

The On-Demand task listener's backpressure mechanism has been enhanced to monitor both the changelog and resource queues using a shared threshold configuration. This improvement ensures better load management and prevents connector overload during task synchronization.

For more details, refer to On-Demand Sync Backpressure Control.

Enhanced Databricks-SQL Connector to Manage Groups Respecting Configuration Flags

Enhanced Databricks-SQL Connector to Manage Groups Respecting Configuration Flags

Improved group handling now supports the creation, deletion, and updating of user-to-group memberships based on connector configuration flags. This provides more flexible control over group provisioning and membership management.

For more details, refer to Creating and Managing Principals in Databricks SQL

Fixed Resource Sync Issue for Table Policies With Column Loading Enabled in Databricks-SQL Connector

Fixed Resource Sync Issue for Table Policies With Column Loading Enabled in Databricks-SQL Connector

Resolved an issue where the Databricks SQL connector incorrectly identified resources as out of sync when column loading was enabled and a policy with "Select" permission was created on a table.

Fixed Resource Sync Issue for Policies With Unsupported Permissions in Databricks-SQL Connector

Fixed Resource Sync Issue for Policies With Unsupported Permissions in Databricks-SQL Connector

Resolved an issue where the Databricks SQL connector incorrectly marked resources as out of sync when a policy included unsupported or invalid permissions for a given resource. The connector now properly handles such cases without false sync discrepancies.

Resolved Missing Metrics Issue in OPS Server Dashboard

Resolved Missing Metrics Issue in OPS Server Dashboard

Fixed an issue where metrics data was not being populated correctly in the OPS Server dashboard.

Enhanced Unity Catalog Connector to Fix Function Drop Error for New Columns with SELECT Permission

Enhanced Unity Catalog Connector to Fix Function Drop Error for New Columns with SELECT Permission

Fixed an issue where the connector attempted to drop a non-existent function after adding a new column to a table with SELECT permission. The error is now properly suppressed.

Spark Plugin

Resolved NullPointerException (NPE) for Join Queries

Resolved NullPointerException (NPE) for Join Queries

Resolved a NullPointerException (NPE) that occurred during SELECT queries involving JOIN conditions with null-safe operators. This enhancement broadens the fix to support additional operator types in JOIN conditions, improving the stability and reliability of SELECT query execution across diverse JOIN scenarios.

Privacera Portal

Security Vulnerability Fixes

Security Vulnerability Fixes

Addressed known CVEs by updating vulnerable dependencies.

Enhanced Tag Attributes Validations

Enhanced Tag Attributes Validations

The Portal now performs additional validations on Tag Attribute names and values.

Security Zones List Now Displays Correctly After Navigation or Zone Changes

Security Zones List Now Displays Correctly After Navigation or Zone Changes

Fixed an issue where the Security Zones list in the Portal was not displayed after navigating to the Security Zones page or performing create, edit, or delete actions. Previously, the page incorrectly showed a “No Security Zone” message. The list now refreshes and displays correctly in all scenarios.