Skip to main content

Release Notes for Styra DAS

This page describes the release notes for Styra DAS delivered in April 2021.

Release Summary

Styra is built on the Open Policy Agent (OPA), a popular and widely deployed open source project developed by the founders of Styra. With primary credibility for the underlying technology, the Styra team and technology are both proven in production across verticals. Styra enables enterprises to define, enforce, validate, and continually monitor security, compliance and operational policies across the cloud-native application stack. Styra has reinvented the authorization solutions to mitigate customer risk, and reinforce commitment to trust and transparency in safeguarding customers’ data. Styra’s Declarative Authorization Service (DAS) is a sophisticated management plane that provides context-based guardrail, built from a graphical policy library to mitigate risk, reduce human error and accelerate development. Styra makes it possible for enterprises to implement policy-as-code controls and to prove their effectiveness to both internal and external security and compliance audiences.

April 27, 2021

This Styra DAS 20210427 release delivers the new enhancement and the list of fixed issues.

New Features and Enhancements

This section describes the new enhancement in Styra DAS 20210427.

Systems

  • This release constructs optimizations to improve the performance of the compliance API. This API now takes 50%-75% more time than the previous API.

Issues Fixed

This section describes an issue fixed in Styra DAS 20210427.

GUI

  • Fixed an issue where users were unable to create a root level data source on a Multi-File Policy Authoring system.

April 20, 2021

This Styra DAS 20210420 release delivers the new enhancements and the list of fixed issues.

New Features and Enhancements

This section describes the new enhancements in Styra DAS 20210420.

GUI

  • Starting with this release, Styra DAS supports Security Assertion Markup Language (SAML) for Single Sign On (SSO).

Security

  • Styra DAS now returns additional security headers Content-Security-Policy and Referrer-Policy in the response headers.

Systems

  • Partial Evaluation is now available as an option for bundle download requests. Requests to v1/bundles API can specify an eval_path parameter to trigger partial evaluation of the provided path in the policy. If an error occurs during partial evaluation, v1/bundles API aborts the partial evaluation and returns the original bundle. Envoy systems will use this feature by default, and should see a performance improvement due to the policy library’s stack resolution logic being pre-evaluated.

Issues Fixed

This section describes an issue fixed in Styra DAS 20210420.

GUI

  • Expressions in rule head was parsed correctly. Prior to this release, a rule head that assigned the result of an expression to the rule such as rule = set1 | set2 { generated a client-side parser error. The client-side parser was fixed to handle this pattern, and expression values in rule heads will no longer generate errors.

  • Each module was based on its draft and branch versions (if configured), with draft being the priority if both existed. If the draft versions were incomplete, then an error was generated in the output of Preview. The following modules were considered when a policy was previewed:

    • All modules in the current package.
    • All modules from imported packages.

April 13, 2021

This Styra DAS 20210413 release delivers the new enhancements.

New Features and Enhancements

This section describes the new enhancements in Styra DAS 20210413.

GUI

  • When editing a Rego policy in code view, autocomplete now provides suggestions for constants, functions, rules, and local variables.

  • Styra DAS now offers the best out-of-the-box rule set to address Center for Internet Security (CIS) benchmarks applicable to Kubernetes Admission Controller.

April 6, 2021

This Styra DAS 20210406 release delivers the new enhancements.

New Features and Enhancements

This section describes the new enhancements in Styra DAS 20210406.

GUI

  • This release provides support to configure Git repository per stack.

  • Policy code editor is now able to autocomplete input. For the following JSON input, when you type input. the autocomplete feature will list message as one of the suggestions to autocomplete.

{
  "message": "world"
}

Platform

  • This release deprecates browsers using TLS 1.0 or 1.1, only allowing connections that utilize TLS 1.2+. This will ensure secure data transfer between the browser and the Styra DAS. For a full list of supported TLS ciphers, see the compatibility matrix for TLS-1-2-Ext-2018-06.