Skip to content

Releases: temporalio/temporal

v1.30.5

15 Jun 20:06
@fretz12 fretz12
v1.30.5
56f9b67
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.30.5

What's Changed

  • Cherry-pick: Combine PostgreSQL Visibility schema upgrades from v1.10 through v1.13 (#10371) by @fretz12 in #10681
  • Cherry-pick: PGX SimpleProtocol test suite (#10198) by @fretz12 in #10682
  • Cherry-pick: Encode duration as bigint for pgx simple protocol (#10529) (#10647) by @simvlad
  • Bump x/crypto v0.52.0, x/net v0.55.0, Go 1.25.11, thrift v0.23.0 (security patch) by @fretz12 in #10686
  • Drop zlib filter from apk upgrade and bump default CLI to v1.7.2 (security patches) by @fretz12 in #10698
  • Bump ServerVersion to 1.30.5 by @fretz12 in #10687

Full Changelog: v1.30.4.1...v1.30.5

Contributors

fretz12 and simvlad
Loading

v1.29.7

12 Jun 16:51
@fretz12 fretz12
v1.29.7
1f74f0c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.29.7

What's Changed

  • Bump x/crypto v0.52.0, x/net v0.55.0, Go 1.25.11, thrift v0.23.0 (security patch) by @fretz12 in #10645
  • Cherry-pick: Encode duration as bigint for pgx simple protocol (#10529) by @simvlad in #10647
  • Bump ServerVersion to 1.29.7 by @fretz12 in #10648

Full Changelog: v1.29.6.1...v1.29.7

Contributors

fretz12 and simvlad
Loading

v1.31.1

10 Jun 16:46
@fretz12 fretz12
v1.31.1
e015b7a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.31.1 Latest
Latest

What's Changed

Full Changelog: v1.31.0...v1.31.1

Contributors

prathyushpv and fretz12
Assets 9
Loading

v1.30.4.1

01 May 22:37
@prathyushpv prathyushpv
v1.30.4.1
c149bdd
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.30.4.1

What's Changed

Full Changelog: v1.30.4...v1.30.4.1

Contributors

rodrigozhou
Loading

v1.31.0

29 Apr 21:09
@prathyushpv prathyushpv
v1.31.0
8388196
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.31.0

Schema changes

Warning

Before upgrading your Temporal Cluster to v1.31.0, you must upgrade core and visibility schema to the following:

  • Core:
    • MySQL schema v1.19
    • PostgreSQL schema v1.19
    • SQLite schema v1.11
  • Visibility:
    • Elasticsearch schema v14
    • MySQL schema v1.14
    • PostgreSQL schema v1.14

Please see our upgrade documentation for the necessary steps to upgrade your schemas.

Please see CHASM section below for more information about the core schema change if you have a custom persistence implementation.

Temporal database schema details

MySQL v1.19, PostgreSQL v1.19, SQLite v1.11 — adds a new current_chasm_executions table for CHASM separate archetype ID spaces:

CREATE TABLE current_chasm_executions(
  shard_id, namespace_id, business_id, archetype_id,
  run_id, create_request_id, state, status, start_version,
  start_time, last_write_version, data, data_encoding,
  PRIMARY KEY (shard_id, namespace_id, business_id, archetype_id)
);

Visibility schema details

MySQL v1.14, PostgreSQL v1.14 — adds TemporalExternalPayloadSizeBytes and TemporalExternalPayloadCount as generated columns with indexes.

Elasticsearch v14 — new index template version with TemporalExternalPayloadSizeBytes and TemporalExternalPayloadCount fields.

CHASM persistence schema change (custom persistence implementations only)

CHASM framework now supports separate businessID spaces for different archetypes and includes corresponding schema changes for SQL core databases. This is achieved by storing multiple current mutable state records in the database, one for each archetype.

If you maintain a custom persistence implementation (Cassandra-based or SQL-based), you must update it to support separate businessID spaces as well. All current mutable state related persistence requests now include a new ArchetypeID field, and your persistence implementation should read or update the current mutable state record for that archetype. Please refer to #8907 (Cassandra) or #8915 (SQL) for sample changes.

Serverless Workers (pre release)

This version of Temporal Server adds support for Serverless Workers. This feature allows Temporal Workers to run on serverless compute platforms - with AWS Lambda being the first supported platform. Temporal can automatically invoke, scale, and gracefully shut down (scaling to zero, if appropriate) Temporal Workers on your behalf based on workload volume and metrics. See the Serverless Workers documentation to get started.

Invocation is handled by a new server component, the Worker Controller Instance (WCI), which monitors Task Queues and dispatches invocations to a configured compute provider. WCI is disabled by default and must be enabled via the workercontroller.enabled dynamic config key. See Enable the Worker Controller Instance for complete configuration instructions.

Self-hosted setup requires network reachability from the Lambda execution environment to the Temporal frontend, AWS credentials for the server to assume customer IAM roles, and an IAM role in the target account granting lambda:GetFunction and lambda:InvokeFunction. See the self-hosted setup guide for full setup instructions.

Principal Attribution

Adds a server-computed, immutable Principal field to workflow history events, providing trustworthy attribution for "who did this?". Unlike the client-supplied identity field, Principal is derived from authenticated context and cannot be spoofed.

Principal has a Type / Name pair (e.g. jwt/alice@company.com, temporal/internal) and is surfaced in workflow history, CLI, Web UI, and history exports.

The default Authorizer populates Principal from the JWT sub claim. Users with custom Authorizer implementations can populate Principal by setting the new Principal field on authorization.Result.

To enable this feature, set the dynamic config system.enablePrincipalAttribution to true.

Cloud IAM auth for SQL datastores

#9879 introduced new passwordCommand config option for SQL datastores as an alternative to the static password field. When set, Temporal executes the specified command and uses its stdout as the database password, re-running the command on each new physical connection so short-lived credentials stay fresh.

This enables IAM-based auth for cloud-managed databases (e.g. AWS RDS, GCP Cloud SQL) by invoking the provider's CLI. For example, configuring the passwordCommand to:

  • aws rds generate-db-auth-token for AWS RDS
  • gcloud sql generate-login-token for GCP Cloud SQL

Supported for MySQL and PostgreSQL. Token lifetime is managed through existing config maxConnLifetime.

Nexus

💥 Overhaul Nexus error model

Complete rework of how Nexus errors are handled and converted (#9290).

This change enables Nexus handler errors and operation errors to convey their own messages as opposed to being wrappers for an underlying cause. The change was made to better support Nexus in all languages. There may be slight changes to errors / exception structures in the SDKs.

Remove Nexus feature flag and make Nexus work out of the box

Nexus is now always enabled (#9512).

Use token based routing by default with token-based callback routing (#9513).

Nexus caller timeouts

Support schedule-to-start and start-to-close timeouts for Nexus operations. SDK upgrade required.

Bug fixes

  • Fix Nexus non-retryable error when endpoint's namespace target is not found (#9407).
  • Fix Nexus forwarding criteria (#9182).
  • Forward original HTTP headers for Nexus CompleteOperation (#9053).
  • Filter internal Nexus headers from being forwarded to user handlers (#9708).
  • Do not return no-poller errors for Nexus tasks (#9307).
  • Fix data race on nexusEndpointsOwnershipLostCh (#9602).

Metrics

  • Add nexus_task_requests metric with client_name tag (#9760).

Worker Versioning

Worker Versioning GA

Worker Deployment APIs are now fully GA. The following APIs have been in Public Preview since server v1.28.0. They are now considered GA and users can rely on the signature and behavior consistency going forward.

  • DescribeWorkerDeployment
  • DeleteWorkerDeployment
  • ListWorkerDeployments
  • SetWorkerDeploymentManager
  • DescribeWorkerDeploymentVersion
  • DeleteWorkerDeploymentVersion
  • SetWorkerDeploymentCurrentVersion
  • SetWorkerDeploymentRampingVersion
  • UpdateWorkerDeploymentVersionMetadata

⚠️💥 Sunsetting Worker Versioning V1 (Version Sets) and V2 (Assignment Rules)

The following APIs which have been deprecated since v1.28.0 are now officially sunsetted and their support will be removed in the next server version (v1.32.0). Users should migrate their applications to use the Worker Deployment and Worker Deployment Version APIs instead.

APIs to be removed in v1.32.0:

  • UpdateWorkerBuildIdCompatibility
  • GetWorkerBuildIdCompatibility
  • UpdateWorkerVersioningRules
  • GetWorkerVersioningRules
  • GetWorkerTaskReachability

New Experimental APIs

The following APIs are added in this release and are in Pre-Release stage as of now. At this stage, the APIs are considered experimental and may see breaking changes in the future:

  • CreateWorkerDeployment
  • CreateWorkerDeploymentVersion
  • UpdateWorkerDeploymentVersionComputeConfig
  • ValidateWorkerDeploymentVersionComputeConfig

Other Changes

  • Add new ContinueAsNew versioning behavior that continues workflows on the ramping version.
  • Fixed bug around stuck workflow after reset when WorkflowUpdate was used.
  • Add deployment name and build ID as separate labels on backlog metrics.
  • Rate-limit worker deployment read APIs and move ListWorkerDeployments to the visibility quota.
  • Cache task queue routing info in the History service to reduce RPC fan-out.
  • Version transition from Drained/Inactive to Draining state upon workflow start/moved via Versioning Override is disabled by default until the implementation is optimized in the next release.
  • Some other minor bug fixes or improvements.

CHASM

  • CHASM framework is enabled by default in this release, but applications built on top of it are NOT enabled by default to allow safe downgrades.
  • CHASM framework now supports separate businessID spaces for different archetypes and includes corresponding schema changes for SQL core databases. See the Schema Changes section above if you maintain a custom persistence implementation.

Standalone Activities

  • Standalone Activities (in public preview) allow activities to run independently of workflows. This feature is gated by the activity.enableStandalone dynamic config flag, which is disabled by default. Set it to true to enable.
  • New APIs and capabilities: DeleteStandaloneActivity API for deleting a standalone activity execution.
  • Dur...
Read more
Loading

v1.29.6.1

06 May 20:41
@prathyushpv prathyushpv
v1.29.6.1
3cfe72c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.29.6.1

What's Changed

Full Changelog: v1.29.6...v1.29.6.1

Contributors

rodrigozhou
Loading

v1.30.4

10 Apr 21:06
@yycptt yycptt
v1.30.4
5039183

Choose a tag to compare

View all tags
v1.30.4

What's Changed

Potential Breaking Change

If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for implications of opting out.

Security

Full Changelog: v1.30.3...v1.30.4

Helpful links to get you started with Temporal

Temporal Docs
Server
Helm Chart

Docker images for this release (use the tag 1.30.4)

Server
Admin-Tools

Loading

v1.29.6

10 Apr 21:07
@yycptt yycptt
v1.29.6
9ea5181

Choose a tag to compare

View all tags
v1.29.6

What's Changed

Potential Breaking Change

If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for implications of opting out.

Security

Full Changelog: v1.29.5...v1.29.6

Helpful links to get you started with Temporal

Temporal Docs
Server
Helm Chart

Docker images for this release (use the tag 1.29.6)

Server
Server With Auto Setup (what is Auto-Setup?)
Admin-Tools

Loading

v1.28.4

10 Apr 21:07
@yycptt yycptt
v1.28.4
246f066

Choose a tag to compare

View all tags
v1.28.4

What's Changed

Potential Breaking Change

If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for implications of opting out.

Security

Full Changelog: v1.28.3...v1.28.4

Helpful links to get you started with Temporal

Temporal Docs
Server
Helm Chart

Docker images for this release (use the tag 1.28.4)

Server
Server With Auto Setup (what is Auto-Setup?)
Admin-Tools

Loading

v1.30.3

01 Apr 17:55
@carlydf carlydf
v1.30.3
3b3e501

Choose a tag to compare

View all tags
v1.30.3

What's Changed

Security

Full Changelog: v1.30.2...v1.30.3

Helpful links to get you started with Temporal

Temporal Docs
Server
Helm Chart

Docker images for this release (use the tag 1.30.3)

Server
Admin-Tools

Loading