mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-28 09:56:31 +02:00
3dadcf1825
* add v0.27.0 changelog * formatting, remove "New Contributors" section * sort lines alphabetically * accidentally deleted ':'s after category tags * rm reverted pr #5159 --------- Co-authored-by: Denis Mishin <dmishin@pomerium.com>
8.5 KiB
8.5 KiB
What's Changed
Breaking
- proxy: deprecate the /.pomerium/jwt endpoint by @kenjenkins in https://github.com/pomerium/pomerium/pull/5254
- zero/k8s: use Deployment instead of StatefulSet by @wasaga in https://github.com/pomerium/pomerium/pull/5248
New
- authorize: use uuid for jti, current time for iat and exp by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5147
- config: add
databroker_storage_connection_string_fileby @calebdoxsey in https://github.com/pomerium/pomerium/pull/5242 - config: add mTLS UserPrincipalName SAN match by @kenjenkins in https://github.com/pomerium/pomerium/pull/5177
- config: add runtime flag to allow disabling config hot-reload (#5079) by @kralicky in https://github.com/pomerium/pomerium/pull/5112
- envoy: allow TLS 1.3 for upstream connections by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5263
- envoy: log TLS connection failures in the mTLS
reject_connectionmode by @kralicky in https://github.com/pomerium/pomerium/pull/5210 - envoy: resource monitoring & overload manager configuration by @kralicky in https://github.com/pomerium/pomerium/pull/5106
- envoy: support http2 prior knowledge for insecure upstream targets (h2c://) by @kralicky in https://github.com/pomerium/pomerium/pull/5205
- ui: add "Policy ID" label to error details page by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5127
- ui: add request id to upstream error page by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5166
- ui: add user info link to error page by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5158
- ui: user info dashboard improvements by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5128
- zero/connect: add re-run health checks command by @wasaga in https://github.com/pomerium/pomerium/pull/5219
- zero/k8s: write bootstrap configuration to a secret by @kralicky in https://github.com/pomerium/pomerium/pull/5114
Fixes
- authorize: require new login when authenticate url changes by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5165
- controlplane: avoid calling Close on nil listener by @kenjenkins in https://github.com/pomerium/pomerium/pull/5156
- databroker/leaser: set timeout on ReleaseLease by @wasaga in https://github.com/pomerium/pomerium/pull/5208
- logging: add support for using the standard grpc env vars to control log severity and verbosity by @kralicky in https://github.com/pomerium/pomerium/pull/5120
- session: do not invalidate based on ID token by @kenjenkins in https://github.com/pomerium/pomerium/pull/5182
- ui: fix cycle in profile data by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5168
- ui: set Cache-Control: no-cache, tweak sign-out cancel button behavior by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5264
- zero/connect: ignore unknown message types by @wasaga in https://github.com/pomerium/pomerium/pull/5223
- zero/health-checks: fix early checks sometimes missing by @wasaga in https://github.com/pomerium/pomerium/pull/5229
- zero/health-checks: zero route availability improvements by @wasaga in https://github.com/pomerium/pomerium/pull/5111
Changed
- authenticate: rework session ID token handling by @kenjenkins in https://github.com/pomerium/pomerium/pull/5178
- authorize: add request-id to error messages by @wasaga in https://github.com/pomerium/pomerium/pull/5267
- ci: do not include timestamp into buildmeta by @wasaga in https://github.com/pomerium/pomerium/pull/5215
- config: optimize policy iterators by @kralicky in https://github.com/pomerium/pomerium/pull/5184
- config: sort runtime flags, name consistency by @kenjenkins in https://github.com/pomerium/pomerium/pull/5255
- envoy: upgrade to v1.31.0 by @kenjenkins in https://github.com/pomerium/pomerium/pull/5183
- github: update README.md by @cmo-pomerium in https://github.com/pomerium/pomerium/pull/5163
- github: update README.md by @nikhil-pomerium in https://github.com/pomerium/pomerium/pull/5253
- go: update to Go 1.23 by @kralicky in https://github.com/pomerium/pomerium/pull/5216
- logging: change log.Error function by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5251
- logging: convert warnings to info or error by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5235
- proto: update protoc dependencies by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5218
- ui: update logo by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5249
- zero: refactor controller by @wasaga in https://github.com/pomerium/pomerium/pull/5134
- zero/api: generate error methods for response types by @kralicky in https://github.com/pomerium/pomerium/pull/5252
- zero/api: reset token and url cache if 401 is received by @wasaga in https://github.com/pomerium/pomerium/pull/5256
- zero/api: switch to github.com/oapi-codegen/oapi-codegen by @calebdoxsey in https://github.com/pomerium/pomerium/pull/5226
- zero/bundle-download: update metadata by @wasaga in https://github.com/pomerium/pomerium/pull/5212
- zero/cmd: make it more evident what caused shutdown by @wasaga in https://github.com/pomerium/pomerium/pull/5209
- zero/connect: add telemetry request command by @wasaga in https://github.com/pomerium/pomerium/pull/5131
- zero/k8s: set externalTrafficPolicy: Local by @wasaga in https://github.com/pomerium/pomerium/pull/5266
- zero/telemetry: add hostname and version by @wasaga in https://github.com/pomerium/pomerium/pull/5146
- zero/telemetry: add prometheus streaming converter to OTLP by @wasaga in https://github.com/pomerium/pomerium/pull/5132
- zero/telemetry: collect limited core metrics by @wasaga in https://github.com/pomerium/pomerium/pull/5142
- zero/telemetry: internal envoy stats scraper and metrics producer by @wasaga in https://github.com/pomerium/pomerium/pull/5136
- zero/telemetry: refactor telemetry and controller by @wasaga in https://github.com/pomerium/pomerium/pull/5135
Dependency Updates
- bump the docker group in /.github with 3 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5124
- bump the github-actions group with 9 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5121
- bump the docker group with 3 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5123
- bump the go group with 27 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5122
- bump braces from 3.0.2 to 3.0.3 in /ui by @dependabot in https://github.com/pomerium/pomerium/pull/5139
- bump busybox from
5eef5edto9ae97d3in /.github in the docker group by @dependabot in https://github.com/pomerium/pomerium/pull/5161 - bump the github-actions group with 4 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5160
- bump the docker group with 2 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5159
- bump the go group with 21 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5162
- bump google.golang.org/grpc from 1.64.0 to 1.64.1 by @dependabot in https://github.com/pomerium/pomerium/pull/5169
- bump github.com/docker/docker from 27.0.3+incompatible to 27.1.0+incompatible by @dependabot in https://github.com/pomerium/pomerium/pull/5193
- bump the docker group with 3 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5201
- bump the github-actions group with 9 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5200
- bump the go group across 1 directory with 26 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5207
- bump the docker group in /.github with 2 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5202
- replace usages of x/exp/maps + bump golang.org/x/exp by @kralicky in https://github.com/pomerium/pomerium/pull/5221
- bump micromatch from 4.0.5 to 4.0.8 in /ui by @dependabot in https://github.com/pomerium/pomerium/pull/5240
- bump busybox from
9ae97d3to8274294in /.github in the docker group by @dependabot in https://github.com/pomerium/pomerium/pull/5260 - bump the github-actions group with 6 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5259
- bump the docker group with 2 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5258
- bump github.com/opencontainers/runc from 1.1.12 to 1.1.14 by @dependabot in https://github.com/pomerium/pomerium/pull/5261
- bump the go group across 1 directory with 28 updates by @dependabot in https://github.com/pomerium/pomerium/pull/5262