- Blog post • 3 min read
Infisical Update December 2023
- Published on
- Authors
- Name
- Vlad Matsiiako
- @matsiiako
Our team in known to be lightning-fast! Still, even for our standards, in the last 3 months of 2023, we released an incredible amount of new features, bug fixes, performance improvements, and UX updates. Want to find out more? Read this blog till the end.
Machine Identities + Universal Auth
With Machine Identities, you are now able to create custom entities to represent a workload or an application that requires access to your Infisical instance – think of it as an IAM user in AWS or service account in Google Cloud Platform (GCP). Such identities can authenticate into your Infisical instance using Universal Auth.
For a long time, Infisical offered a possibility of creating custom roles for users within organizations and projects – these roles provided a very straightforward and highly granular way to restrict actions and resources that are available to users. With Universal Auth, it is now possible to assign the same roles to Machine Identities to programmatically interact with Infisical.
In addition, Universal Auth supports adding restrictions for frequency, amount, IP-range, and timeline over which a certain token can be used.
SDKs for Python, Node, and Java
In December, we announced our cross-language SDKs – redevelopped from scratch. It featured a completely new Java SDK. As well as significant improvements to Python and Node SDKs. You are now able to authenticate into all of these SDKs using Machine Identities.
For the curious, the base SDK is written in Rust, and you can find the repository for it here.
Infisical Agent
Infisical Agent is a client daemon that simplifies the adoption of Infisical by providing a more scalable and user-friendly approach for applications to interact with Infisical. It eliminates the need to modify application logic by enabling clients to decide how they want their secrets rendered through the use of templates.
No-code Rotation for PostgreSQL/CockroachDB, MySQL/MariaDB, and SendGrid
Infisical now offers automatic rotaion for SendGrid, PostgreSQL/CockroachDB, and MySQL/MariaDB that you can set up in the Infisical Web UI with just a few clicks. After that, your API keys and access tokens will automatically rotate on a pre-specified schedule.
Better self-hosting experience
Self-hosting experience has been made significantly better and easier. In particular, we have reduced required JWT configuration from 6 secrets to just 1, added docs with 5+ more ways of self-hosting Infisical, and more!
Secret Reminders
Every now and then, our users need to remember to either manually rotate a secret or process it in a certain way. You can now do so with recurring secret reminders.
Ansible Plugin
We now have a native Ansible plugin for interacting with Infisical (e.g., fetching secrets from your Infisical Vault into Ansible Playbooks). Our Terraform Provider has also gotten better!
GitLab SSO in FOSS
This one is very simple – you can now use authentication with GitLab in both Infisical Cloud and when Infisical On-prem – available completely free to all of our users!
Updated API and CLI
Last but not least, our API and CLI have gotten even better! You can now use Machine Identities with Infisical API (CLI coming soon!), and perform more actions with the CLI (e.g., creating folders).
We are hiring
- Full Stack Software Engineer – San Francisco
- Full Stack Software Engineer – Remote
- General Application
👋
That's it. If you have any questions, you can always ask those on Slack. If you have any features requests, you're welcome to open a GitHub issues.
Stay tuned for more awesome updates next month!
