This is a patch for the major 2.0 release. It introduces:
- SMTP OAuth configuration for Microsoft and Google
- Bulk user actions
- Synchronization of disabled Active Directory users
- LDAP integration improvements
- Synchronization of users only from specified groups in Microsoft directory synchronization
- Security improvements to the Forward Auth functionality
- Bug fixes and UX improvements
The 2.0 was a significant step up from version 1.x, featuring:
🎨 a completely redesigned UI,
📦 a new and easy deployment approach (and component communication security),
🛠️ and some other major architectural changes.
More details with videos in this blogpost.
⬆︎ If you will be upgrading from 1.x - here you can find relevant documentation about the upgrade.
🚅 If you would like to test Defguard - we offer a quick and easy One-line install script.
⚠️ Business features require free registration.
Previously, these features were available without registration (within certain limits).
Starting from 2.0, a free Business license registration is required to use them.
👉 https://defguard.net/get-free-business/
Once registered, simply apply your license to your instance and enjoy access to Business functionality.
We want to get as much feedback as possible, so we encourage you to:
💬 open a GitHub discussion
🪲 report any missing features or bugs as issues
Other Changes
- Build debs for debian 12/ubuntu 22.04 by @jakub-tldr in #2961
- add group filter for list_users endpoint by @wojcik91 in #2987
- Bulk user actions by @t-aleksander in #2995
- Add no groups filter to users overview table by @filipslezaklab in #3001
- Fix EU Jumpcloud OIDC provider by @jakub-tldr in #2990
- update ui module by @filipslezaklab in #3013
- Fix e2e tests by @t-aleksander in #3015
- Support synchronizing disabled AD users status by @t-aleksander in #3018
- adjust no_group user filter semantics by @wojcik91 in #3023
- Fix selecting predefined destinations by @t-aleksander in #3022
- Synchronize enrollment pending users from LDAP by @t-aleksander in #3024
- user table fixes by @filipslezaklab in #3029
- Change ldap authority wording, fix LDAP integration crashes on references, support nested groups for limiting synchronization by @t-aleksander in #3028
- Updated README file by @kchudy in #3032
- show enrollment modal after group assignment by @jakub-tldr in #3049
- SMTP with XOAuth2 by @moubctez in #3051
- bump version & fix CI for 2.0.2 alpha release by @wojcik91 in #3066
- Fix re-enrollment if user has password by @t-aleksander in #3065
- Add "Synchronize users only from specified groups" field to Microsoft directory synchronization options by @jakub-tldr in #3037
- Adjust APT repo testing pipeline to our new release model, other enhancements by @t-aleksander in #3069
- Xoauth2 stable web by @moubctez in #3057
- update ui by @filipslezaklab in #3091
- Fix ldap tests by @t-aleksander in #3093
- Xoauth2 exchange by @moubctez in #3095
- Improve error handling during OIDC enrollment flow (#3098) by @j-chmielewski in #3104
- Xoauth2 refine by @moubctez in #3105
- Update end-to-end tests by @moubctez in #3107
- Prepare release 2.0.2 by @moubctez in #3109
- Fix path in ova example by @t-aleksander in #3119
- split migration to avoid changing existing one by @wojcik91 in #3136
- fix MFA session validation in forward_auth by @wojcik91 in #3149
- Prepare 2.0.2 release by @moubctez in #3174
- Ignore draft releases in APT tests by @t-aleksander in #3178
- setup Renovate by @wojcik91 in #3190
- Fix m$ token expiration check by @moubctez in #3395
- Remove OpenID app scopes placeholder by @jakub-tldr in #3397
Full Changelog: v2.0.1...v2.0.2