Changelog and Upgrade Guide

What has changed in 0.35.0?

Feature rich release including Middleware Layer, SHDR protocol for directly talking to MTConnect Adapters and Admin UI improvements including JSON rendering in Data Explorer.


  • added MQTT Middleware Stash, Filter, Transform, Cov, Burst and Parse

  • added support for the SHDR protocol for directly talking to MTConnect Adapters

  • added the capability to change user passwords from the login screen.

  • added ‘all’ field to werma protocol to combine all updates in a single message

  • added the ability to use named wildcards in MQTT subscriptions

  • added the ability to use template variables in MQTT and HTTP mappings for dynamic fields like topic and header

  • added JSON rendering in Admin UI Data Explorer


  • changed maximum log file size for Connectware docker images to 10 megabytes


  • fixed an issue that would reject all subscriptions in a single MQTT request, if a single one was not authorized.

  • fixed an issue in which multiple OPC-UA subscriptions to the same endpoint where not resolved correctly

  • fixed an issue on the logs API which prevented filtering in the log-view

  • fixed a number of UI bugs and improved the user experience in the admin web app in general

  • fixed compatibility bugs with Internet Explorer 11



MQTT Burst Mode is now configured as a middleware. If you have used the flag burstInterval in your MQTT Device Commissioning Files before, you now need to move this into the middleware section of the target.


driver: s7 connection: …


driver: mqtt defaults:

burstInterval: 500


driver: s7 connection: …


driver: mqtt defaults:

middleware: - name: burst


burstInterval: 500

What has changed in 0.34.01?


  • improper reporting of unhealthy state in broker

What has changed in 0.34.0?

This is mainly a maintenance and cleanup release. Almost all internal dependencies have been updated to the latest versions.


  • container names in services are restricted in lengths to 63 and characters to alphanumeric and dashes

  • strack-slc4 protocol has been removed from default release


  • Security issues in CVE-2019-9900 (considered critical), CVE-2019-9901 (considered medium severity), CVE-2019-5021 (considered low severity)

  • a bug causing logs in admin web app to be tagged displayed always with current date

  • improved systemd file for self-hosted instances by removing unnecessary docker login command

  • Boosted performance of device view for large amounts of devices

  • Non system service installations of the Connectware can now be upgrade using the -oe -r options on the installer script


  • Authorization header on Service Proxy has been changed to X-Cybus-Authorization to avoid conflicts with user management inside of services

  • Heidenhain protocol has been fundamentally reworked, commissioning file structure has changed. Many new features have been added to Heidenhain TNC

What has changed in 0.33.1?


  • an issue regarding proper path rewriting for Service-Containers allowing inbound http(s) connections

  • an issue api with wildcard permissions not including the direct parent

What has changed in 0.33.0?


  • a new protocol: Heidenhain TNC, giving access to several CNC machine types

  • possibility to deploy the connectware as virtual or physical appliance

  • increased security measures by using more restrictive content security policies (CSPs)

  • moved to TLS1.2

  • dynamic configuration possibility of our ingress controller, allowing seamless integration of HTTP or even TCP based third-party applications within services

  • an easy-to-use install script available under:


  • self-signed certificates are generated automatically during connectware upstart

  • the default IP range has been moved to 172.X.X.X/24 to improve compatibility with company networks. NOTE: As a result existing .env files have to be adapted.


  • an issue with overflowing text in snackbar notifications

  • an issue of not being able to delete containers that got stuck in a restart loop

  • a sorting issue w.r.t. log message display

  • Api calls for wildcard permissions now include the direct parent


Before installing make sure:
  • possibly existing .env file is deleted in the targeted install folder

  • possibly existing docker volumes with name connectware_certs are deleted

What has changed in 0.32.0?


  • an option to handle retained messages in the DeviceMapper for MQTT connections (forwardRetained)

  • full documentation of the OPC-UA protocol (see OPC-UA)

  • possibility to install the Connectware via a single script (prerequisites are a linux based OS having docker and docker-compose installed)

  • a new User panel, allowing to manage users, set roles and access permissions (see User Management for details)

  • possibility to specify device names on individual instances (see Commissioning file structure)

  • Beta feature for client-registration (see Self Registration)


  • the authentication and authorization scheme for both - the REST-ful management API and the MQTT-based data API.

    • Authentication now supports basic (password based), token (JWT based), and client-certificate methodology.

    • Authorization, i.e. access permissions can be generically formulated for both, individual REST-ful paths and MQTT topics. A set of permissions can be combined into named roles , ready for sharing with other users (see Add role to user).

  • the output format of the OPC-UA protocol. It now provides the data in the standard format (being {"value": "<value>", "timestamp": "<msSinceEpoch>"})

  • the output format of the MODBUS protocol. It now provides the data in the standard format (being {"value": "<value>", "timestamp": "<msSinceEpoch>"}).

    • NOTE: The new format is only enabled once the additional dataType property is provided with the commissioning file (see Modbus/TCP), else the behavior is unchanged.

  • the notification snackbars in the UI, they are now color-coded, categorized and perform stacking in case they appear shortly after each other

  • the logging panel in the UI, it provides a much clearer design and an improved filtering using chips for selecting log-categories, containers, etc. (see System)

  • the rendering of tabs in the UI, they are not spanning the full-width anymore but are more browser-like in look & feel


  • the Grantee and Permissions panel in the UI (got replaced by new User panel)