The Apache Polaris team is pleased to announce Apache Polaris 1.2.0
-incubating.
This release includes:
*Upgrade Notes*
* Amazon RDS plugin enabled, this allows Polaris to connect to AWS Aurora
PostgreSQL using IAM authentication.
*New Features*
* Added a finer grained authorization model for UpdateTable requests.
Existing privileges continue to work for granting UpdateTable, such as
`TABLE_WRITE_PROPERTIES`.
However, you can now instead grant privileges just for specific
operations, such as `TABLE_ADD_SNAPSHOT`
* Added a Management API endpoint to reset principal credentials,
controlled by the `ENABLE_CREDENTIAL_RESET` (default: true) feature flag.
* The ENABLE_SUB_CATALOG_RBAC_FOR_FEDERATED_CATALOGS was added to support
sub-catalog (initially namespace and table) RBAC for federated catalogs.
The setting can be configured on a per-catalog basis by setting the
catalog property:
`polaris.config.enable-sub-catalog-rbac-for-federated-catalogs`.
The realm-level feature flag
ALLOW_SETTING_SUB_CATALOG_RBAC_FOR_FEDERATED_CATALOGS (default: true)
controls whether this functionality can be enabled or modified at the
catalog level.
* Added support for S3-compatible storage that does not have STS (use
`stsUavailable: true` in catalog storage configuration)
* Added a Management API endpoint to reset principal credentials,
controlled by the ENABLE_CREDENTIAL_RESET (default: true) feature flag.
* Events Persistence (Preview): Introduced new event types and added
support for persisting events to both Relational JDBC Persistence and AWS
CloudWatch.
*Note*: This is a preview feature. The persistence schema is subject to
change in future releases, and previously stored event data MAY become
unreadable (i.e., dropped) after an upgrade.
*Changes*
* The following APIs will now return the newly-created objects as part of
the successful 201 response: createCatalog, createPrincipalRole,
createCatalogRole.
*Breaking changes*
* Creating or altering a namespace with a custom location outside its
parent location is now prohibited by default. To restore the old behavior,
set the ALLOW_NAMESPACE_CUSTOM_LOCATION flag to true.
- *Deprecations*
* The property `polaris.active-roles-provider.type` is deprecated and has
no effect anymore.
* The EclipseLink Persistence implementation has been deprecated since
1.0.0 and will be completely removed
in 1.3.0 or in 2.0.0 (whichever happens earlier).
* The legacy management endpoints at `/metrics` and `/healthcheck` have
been deprecated in 1.2.0 and will be completely removed in 1.3.0 or in
2.0.0 (whichever happens earlier). Please use the standard management
endpoints at `/q/metrics` and `/q/health` instead.
This release can be downloaded:
* https://polaris.apache.org/downloads/
The artifacts are available on Maven Central:
* https://repo1.maven.org/maven2/org/apache/polaris/
The Docker images are available on Docker Hub:
* https://hub.docker.com/r/apache/polaris/tags
* https://hub.docker.com/r/apache/polaris-admin-tool/tags
Apache Polaris is an open-source, fully-featured catalog for Apache
Iceberg™. It implements Iceberg's REST API, enabling seamless
multi-engine interoperability across a wide range of platforms,
including Apache Doris™, Apache Flink®, Apache Spark™, Dremio® OSS,
StarRocks, and Trino.
Enjoy !
The Apache Polaris team.
