Fixed

• Fixes date and time validation when creating a new job.

Changed

• Connect to ZendHQ using ws:// or wss:// url

Fixed

• Failed connection issues

New Features

• Added LDAP authentication and authorization support to the ZendHQ daemon.

  ZendHQ daemon can now be configured to use a LDAP server, like ActiveDirectory or an OpenLDAP server, to authenticate and authorize ZendHQ users.

  LDAP authentication is performed asynchronously and JsonRpc clients cannot send other requests before authentication is finished and a response sent to the client.

• Added Z-Ray SQL queries support for the PHP sqlsrv extension.

  Support for the sqlsrv extension was already added in the previous 1.6.0 version, but now it is enabled for the public use.

Changes

• The ZendHQ PHP extension's zeromq PUB/SUB socket endpoint is now configurable

  The zendhq.daemon_pub_uri ZendHQ PHP extension's directive can now be used to set the daemon's zeromq PUB/SUB socket uri manually. The default is to leave this directive undefined and use the uri provided by the daemon.

• The Z-Ray token cookie max-age attribute is now configurable

  When Z-Ray is requested using the zraytok request parameter, then the ZendHQ PHP extension responds with the Set-Cookie: zraytok= max-age= response header. Consequent requests with the zraytok cookie will trigger additional Z-Ray requests without providing the zraytok request parameter.

  The value of the max-age attribute of the cookie is now configurable in the ini file and can be set to the number of seconds before the cookie expires.

  Setting this value to a value = 0 disables setting the zraytok cookie.

  Default value is 60 seconds.

• Optimized ZendHQ PHP extension tracing functionality

  Now the ZendHQ PHP extension becomes globally disabled if all the individual tracing functions (like Z-Ray, Monitoring and Code Tracing) are disabled.

  It is still possible to use the Job Queue PHP API.

• Optimized Code Tracing in the ZendHQ PHP extension.

  Code Tracing is now active only when requested manually or when at least one monitoring rule requires it. If Code Tracing is not requested or there are no monitoring rules with a Code Trace action, then Code Tracing stays inactive in order to improve PHP performance.

Bug Fixes

• Fixed a bug in the ZendHQ PHP extension that prevented Apache2 to reload.

  ZendHQ PHP extension has a limited number of global resources. The number of in-use resources was not reset when the PHP extension was re-initialized.

  In addition, a bug in zeromq caused worker processes to hang indefinitely in MSHUTDOWN.

Changed

• Fixes a crash when triggering a browser refresh

• Adds an MSI installer for Windows

Added

• Added support for IBM i. The ZendHQ PHP extension and the ZendHQ daemon both run natively in IBM i Series machines and OS.

• Added Windows support for the ZendHQ PHP extension.

  • Supported versions: Windows Server 2019 and Windows 10.
  • ZendHQ PHP extension's configuration cache directory is now configurable

• Added the zendhq.cache_dir directive to the ZendHQ PHP extension's configuration file with the default value ${PREFIX}/var/cache.

Changed

• Updated icon and logo.

• Updated copyright year to 2024.

• Updated WebSocket usage, closing connection before exiting.

• Updated logging so all errors and warnings are now written to a log file.

• Replaced Mac binary in the package, improved update logic.

Fixed

• crashing when exiting with the Cmd-Q shortcut on Mac.

Changed

• Implemented user permissions handling.

• Added username input field to connection page. Implemented user permissions processing for all pages.

• ZRay plugin view now can use the view templates passed as metadata from server side.

Fixed

• session restore parameters.

New features

• Added Role-Based Access Control (RBAC) support to the ZendHQ daemon and PHP extension

Implemented the local RBAC. Local RBAC uses the user.db database to store usernames, password hashes, groups (roles) and permissions.

A default user admin and default group admin are automatically created with full permissions to access all the services. The zendhqctl command-line tool can be used to manage the ZendHQ local RBAC database. The tool allows adding, removing and querying users, groups, services and permissions.

The Z-Ray activation token is now checked on the ZendHQ PHP extension for appropriate permissions before activating Z-Ray requests.

• The ZendHQ daemon application can now be started with the --init_only|-I command-line argument. The application will initialize itself and then quit immediately. This command-line argument is useful when there is a need to create or upgrade ZendHQ databases without running the daemon.

• Added Z-Ray SQL queries support for the PHP sqlsrv and oci8 modules.

• Job Queue functionality in the ZendHQ PHP extension is now enabled also in the PHP CLI mode.

Internal changes

• Implemented the IUserManager interface

The IUserManager interface is used to authenticate users and authorize their access to ZendHQ. All the ZendHQ JSON-RPC handlers now use the IUserManager interface to check that the user is authorized to use these services.

• Updated the JSON-RPC session namespace handler

The JSON-RPC session namespace handler now accepts an username when creating or restoring the session. The username field can be left empty and defaults to admin.

The JSON-RPC session.namespaces method now returns permissions for the currently logged in user to use available JSON-RPC namespaces.

The session ID value now embeds Z-Ray access information and only users with appropriate permissions receive session ID values that can be used to activate Z-Ray requests.

JSON-RPC session namespace API version is now 1.5. ZendHQ daemon extension interface API version is now 20231205.

Bug fixes

• Fixed a bug where the ZendHQ PHP extension would consume 100% of CPU

This bug happened when ZendHQ daemon and PHP extension versions did not match and daemon refused to talk to the extension or daemon was not running at all.

Added

• Added Z-Ray SQL query introspection support for the pgsql, mysqli, and sqlite3 extensions.
• The ZendHQ PHP extension is now enabled for the cgi-fcgi PHP SAPI. The cgi-fcgi SAPI is used by the Apache fcgi module on IBM i.

Changed

• Changed the way Z-Ray raw post data is collected and reported. The raw post data is now collected for any request type except GET. The data is base64-encoded in order to stringify binary data.
  • The zray.RAW_POST_DATA JSON-RPC event now contains Content-Type and Content-Length HTTP request headers. The data member is a base64-encoded string.
  • The zrayh.get_request JSON-RPC method response raw_post_data member now contains a JSON object with the same content of the zray.RAW_POST_DATA event instead of a string.
• Added status and flags to the zray.SQL_QUERIES JSON-RPC message.
  • The status member indicates the status of the SQL query and can be one of ok, error, or undef.
  • The flags member is a JSON object, which can contain the member "async": true, indicating PostgreSQL asynchronous queries.
• JSON-RPC zray namespace API version is now 1.6.
• JSON-RPC zrayh namespace API version is now 1.2.
• JSONRPC ct` namespace API version is now 1.1.
• Z-Ray database schema version is now 1.2. Existing databases are upgraded to version 1.2 without a loss of data.

Fixed

• Added missing Z-Ray database indexes. The Z-Ray database was missing indexes for stack traces, which made retrieving and deleting Z-Ray SQL queries from the database extremely slow.

• Fixed Code Trace dump file processing. Introduced the incomplete flag for checkpoints that require both the start and end (e.g. function calls). Incomplete checkpoints are output to the JSON document with the incomplete member set to the JSON true value. The CT_FULL flag is now properly set in the dump file header if the Code Trace buffer becomes full.

Changed

• Implemented manual application update. Whenever the user starts the application and a new version is available, we show a notification and offer to update the application. If users skip the notification message, they can update the application from the 'About' page.

Fixed

• When attempting to resize the drawer below its minimum width, dragging the mouse no longer selects text inside the drawer.