Changelog and Upgrade Guide

What has changed in 0.35.1?


  • fixed an issue that would not enable the login button if the login form is being auto-filled

What has changed in 0.35.0?


  • added the capability to change user passwords from the login screen.

  • added MQTT Middleware Stash, Filter, Transform, Cov, Burst and Parse

  • added ‘all’ field to werma protocol to combine all updates in a single message

  • added the ability to use named wildcards in MQTT subscriptions

  • added the ability to use template variables in MQTT and HTTP mappings for dynamic fields like topic and header

  • added support for the SHDR protocol for directly talking to MTConnect Adapters

  • added JSON rendering in Admin UI Data Explorer


  • changed maximum log file size for Connectware docker images to 10 megabytes

  • changed log behavior of service containers so they can now be overwritten by docker daemon config

  • changed tabs in Admin UI to drop down menus

  • changed documentation with updated screenshots of Admin UI

  • updated documentation for Heidenhain Protocol

​ Fixed =====

  • fixed an issue that would reject all subscriptions in a single MQTT request, if a single one was not authorized.

  • fixed an issue in which multiple OPC-UA subscriptions to the same endpoint where not resolved correctly

  • fixed an issue on the logs API which prevented filtering in the log-view

  • fixed a number of UI bugs and improved the user experience in the admin web app in general

  • fixed compatibility bugs with Internet Explorer 11

​ BREAKING CHANGES ================


MQTT Burst Mode is now configured as a middleware. If you have used the flag burstInterval in your MQTT Device Commissioning Files before, you now need to move this into the middleware section of the target.


driver: s7 connection: …


driver: mqtt defaults:

burstInterval: 500


driver: s7 connection: …


driver: mqtt defaults:

middleware: - name: burst


burstInterval: 500

What has changed in 0.34.01?


  • improper reporting of unhealthy state in broker

What has changed in 0.34.0?

This is mainly a maintenance and cleanup release. Almost all internal dependencies have been updated to the latest versions.


  • container names in services are restricted in lengths to 63 and characters to alphanumeric and dashes

  • strack-slc4 protocol has been removed from default release


  • Security issues in CVE-2019-9900 (considered critical), CVE-2019-9901 (considered medium severity), CVE-2019-5021 (considered low severity)

  • a bug causing logs in admin web app to be tagged displayed always with current date

  • improved systemd file for self-hosted instances by removing unnecessary docker login command

  • Boosted performance of device view for large amounts of devices

  • Non system service installations of the Connectware can now be upgrade using the -oe -r options on the installer script


  • Authorization header on Service Proxy has been changed to X-Cybus-Authorization to avoid conflicts with user management inside of services

  • Heidenhain protocol has been fundamentally reworked, commissioning file structure has changed. Many new features have been added to Heidenhain TNC

What has changed in 0.33.1?


  • an issue regarding proper path rewriting for Service-Containers allowing inbound http(s) connections

  • an issue api with wildcard permissions not including the direct parent

What has changed in 0.33.0?


  • a new protocol: Heidenhain TNC, giving access to several CNC machine types

  • possibility to deploy the connectware as virtual or physical appliance

  • increased security measures by using more restrictive content security policies (CSPs)

  • moved to TLS1.2

  • dynamic configuration possibility of our ingress controller, allowing seamless integration of HTTP or even TCP based third-party applications within services

  • an easy-to-use install script available under:


  • self-signed certificates are generated automatically during connectware upstart

  • the default IP range has been moved to 172.X.X.X/24 to improve compatibility with company networks. NOTE: As a result existing .env files have to be adapted.


  • an issue with overflowing text in snackbar notifications

  • an issue of not being able to delete containers that got stuck in a restart loop

  • a sorting issue w.r.t. log message display

  • Api calls for wildcard permissions now include the direct parent


Before installing make sure:
  • possibly existing .env file is deleted in the targeted install folder

  • possibly existing docker volumes with name connectware_certs are deleted

What has changed in 0.32.0?


  • an option to handle retained messages in the DeviceMapper for MQTT connections (forwardRetained)

  • full documentation of the OPC-UA protocol (see OPC-UA)

  • possibility to install the Connectware via a single script (prerequisites are a linux based OS having docker and docker-compose installed)

  • a new User panel, allowing to manage users, set roles and access permissions (see User Management for details)

  • possibility to specify device names on individual instances (see Commissioning file structure)

  • Beta feature for client-registration (see Self Registration)


  • the authentication and authorization scheme for both - the REST-ful management API and the MQTT-based data API.

    • Authentication now supports basic (password based), token (JWT based), and client-certificate methodology.

    • Authorization, i.e. access permissions can be generically formulated for both, individual REST-ful paths and MQTT topics. A set of permissions can be combined into named roles , ready for sharing with other users (see Add role to user).

  • the output format of the OPC-UA protocol. It now provides the data in the standard format (being {"value": "<value>", "timestamp": "<msSinceEpoch>"})

  • the output format of the MODBUS protocol. It now provides the data in the standard format (being {"value": "<value>", "timestamp": "<msSinceEpoch>"}).

    • NOTE: The new format is only enabled once the additional dataType property is provided with the commissioning file (see Modbus/TCP), else the behavior is unchanged.

  • the notification snackbars in the UI, they are now color-coded, categorized and perform stacking in case they appear shortly after each other

  • the logging panel in the UI, it provides a much clearer design and an improved filtering using chips for selecting log-categories, containers, etc. (see System)

  • the rendering of tabs in the UI, they are not spanning the full-width anymore but are more browser-like in look & feel


  • the Grantee and Permissions panel in the UI (got replaced by new User panel)