5.11.0

Removed

• Dropped support for Python 3.7 (#2790)

Added

• Post lifecycle event when power supplies or fans are removed (#2982)
• Post lifecycle event when a module or chassis is deleted via the status or device history tools (#2983)
• Database model for representing Organizationally Unique Identifiers (OUI) to identify vendors for MAC addresses
• Script for populating database with OUIs and corresponding vendors from IEEE (#2945)
• Module for generating JWTs (#2948)
• Documentation for configuring and using JWT tokens in NAV API (#2618)

Changed

• Upgraded dependencies after dropping support for Python 3.7 (#2790)
• Changed Sphinx version to 7.4.7 (#2826)
• Changed required PostgreSQL version to 13 (#2892)
• Moved the test suite's web crawler complexity away from the test discovery phase to the test phase itself. This reduces the number of generated test cases from N to 2 (where N is the number of reachable NAV pages) (#2966)
• Link to the doc for using docker for development from the README and mention what ports are used when using docker for development (#2978)
• Many user-facing forms of the web user interface have been refactored in order to remove a dependency that keeps NAV incompatible with Python 3.11. This should not affect looks or functionality. This work is still ongoing in the master branch and we hope it will be complete by NAV version 5.12.

Fixed

• Correctly delete an IP Device's existing function value when empty field value is submitted in the IP Device IP Device edit form (#2269)
• Fixed crash bug when reordering filters within a filter group in Alert Profiles (#2979)
• Fixed IPAM API crash bug that caused unnecessary error reports sent as e-mail to site admins (#2989)
• Fixed bad tooltip grammar in ipdevinfo "degraded aggregate link" badge
• Make the test suite easier to run under MacOS
• Skip tests when 3rd party requirements are missing, instead of outright failing

Security

• Ensure that CSRF token info is preserved when refactoring crispy forms to non-crispy equivalents. This means that flat_form.html and _form_content.html templates will include CSRF token info if form method is set to POST. (#3056)

NAV 5.10.2

Changed

• snmptrapd renamed to navtrapd to avoid naming conflicts with Net-SNMP programs (#2926)

Fixed

• Replace incorrect fix for premature ARP record closure introduced in 5.10.1 (#2910)

NAV 5.10.1

Fixed

• Fix Machine Tracker DNS search crashing from exhausting all available file descriptors (#2669)
• ARP records of unreachable devices are now closed by navclean cron job at configurable expiry intervals, rather than immediately as a response to a short ICMP packet loss (#2913)
• Palo Alto API XML responses are now parsed based on keys instead of indexes (#2924)

NAV 5.10.0

Removed

• Removed references to IRC support channel from documentation, as the channel is closing down (#2907)

Deprecated

• Support for Python versions older than 3.9 will be dropped in NAV 5.11.

Added

• New ipdevpoll plugin to fetch ARP cache data from Palo Alto firewall APIs (#2613)
• Introduced towncrier to aid in collaborative NAV changelog authoring (#2869)
• Add library utilities to produce QR codes to arbitrary URLs, for use in upcoming features (#2887)
• Added towncrier to automatically produce changelog

Changed

• Change the Docker Compose-based development environment to use more build caching and avoid running too many things as root (#2859)
• Changed required PostgreSQL version to 11

Fixed

• Avoid running command line scripts twice on every invocation (#2877, #2878)
• Fixed full-nav-restore.sh developer helper script that broke after Docker Compose development was reorganized (#2888)
• Fix missing delete icon in form selector labels (#2898)

NAV 5.9.1

[5.9.1] - 2024-03-15

Fixed

• Fixed broken navclean and navsynctypes scripts (#2875, #2874)

NAV 5.9.0

[5.9.0] - 2024-03-08

Added

• Added option to enable secure cookies in new web security section of webfront.conf (#2194, #2815)
• Made mod_auth_mellon (SAML) work for logins (#2740)
  • Also added howto for setting up mod_auth_mellon for Feide authentication.

Fixed

• Cycle session IDs on login/logout to protect against potential session fixation attacks (#2804, #2813, #2836, #2835)
• Flush sessions on logout (#2828)
• Prevent clickjacking attacks on NAV by disallowing putting NAV site in document frames (#2816, #2817)
• Cleaned up overview/intro docs (#2827)
• Various cleanups of the test suites:
  • Remove FakeSession redundancy (#2841, #2842)
  • Fixed activeipcollector get_timestamp function implementation and its broken timezone-naive test (#2831)
  • Fixed broken statemon tests (#2832)
  • Fixed warnings during integration tests (#2847, #2858)
  • Preserve 500-errors in webcrawler tests (#2861)
• Removed nonsensical pydantic requirement (#2867)
• Removed warnings when building docs (#2856)

Changed

• Modernize installation of NAV scripts/binaries using pyproject.toml (#2676, #2679)
• Changed the documentation theme from "Bootstrap" to "Read The Docs", as the Bootstrap theme was no longer being maintained. This also avoids unnecessary JavaScript libraries in the docs (#2805, #2825, #2824, #2834, #2837, #2833, #2853, #2868)
• Various changes needed to move NAV closer to being fully compatible with Python 3.11:
  • Replaced all uses of pkg_resources with importlib (#2791, #2798, #2799)
  • Upgraded Twisted to a version that supports Python 3.11 (#2792, #2796)
  • Upgraded psycopg to 2.9.9 (#2793, #2795)
  • Dropped code that was there to support Django's older than 3.2 (#2823)
  • Upgraded python-ldap from 3.4.0->3.4.4 (#2830)
  • Enabled running test suite on Python 3.10 by default (#2838)
  • Stopped running test suite on Python 3.8 by default (#2851)
  • Fixed invalid/deprecated backslash escapes in MIB dump files, as warned about in newer Python versions (#2846, #2848)
  • Fixed deprecation warning for Django 4.0 in test suite (#2844)
  • Removed an adaption to Pythons older than 3.7 (#2840)
  • Install Node/NPM in docker dev environment (#2855)
  • Vendor the PickleSerializer (#2866)

NAV 5.8.4

[5.8.4] - 2023-12-14

Fixed

• Allow admins to configure ports with invalid or unset native VLANs in PortAdmin (#2477, #2786)
• Fix bug that caused PoE config to be completely disabled for Cisco devices where at least one port did not support PoE (#2781)
• Fix PortAdmin save button moving around for ports without PoE support (#2782)
• Fix PortAdmin bug that prevented switching PoE state back and forth without reloading entire page (#2785)
• Fix regression that caused maintenance tasks to be un-editable (#2783, #2784)

NAV 5.8.3

[5.8.3] - 2023-12-01

Fixed

• Fix non-working SNMPv1 communication (#2772, #2779, #2780)

NAV 5.8.2

[5.8.2] - 2023-11-30

Fixed

• Fix broken "operate as user" function in User and API Administration tool (#2766, #2777)
• Fix crashing PDU widget (#2776)
• Fix bug that caused PortAdmin to stop working for Cisco switches (#2773, (#2774)

NAV 5.8.1

[5.8.1] - 2023-11-29

Fixed

• Constrain version of 3rd party module ciscoconfparse, in order to avoid NAV not working under Python 3.7 (#2770, #2771)
• Fix ipdevpoll crash error from using SNMP v2c profile example that came with NAV (#2767, #2768)
• Gracefully handle encoding errors in invalid sysname/IP input in SeedDB IP Device form (#2764)
• Gracefully handle errors from invalid profiles list input in SeedDB IP Device form (#2765)