This release adds automation webhooks, and cleans up a bunch of old and deprecated features.
Additionally there has been a closer focus on testing and correctness to ensure safety. As such there are now more unit tests and the wag unix API has been expanded.
Features
Wireguard.LogLevelcan now be used to enable debug mode for wireguard since we've moved from using the kernel version to using the wireguard-go project.- Webhook automation #178 , it is now possible for wag to ingest webhooks to automate the creation of registration tokens and the deletion of users and devices
- Wag can now use an external ETCd cluster #116
Removals:
MFATemplatesDirectoryconfiguration option is no longer valid. This has not been replaced now that there is a dedicated wag webappDatabaseLocationhas been superseeded byClustering.DatabaseLocationas sqlite3 migration has now been dropped.Proxiedhas been replaced byNumberOfProxiesas a single boolean isnt enough information to parseX-Forwarded-Forwag cleanuphas been removed as it is no longer required
Fixes:
- Fixes race condition in shutdown process which could cause dangling firewall rules
- Firewall rules are now inserted as their own chain for better management
Security fixes:
- Registration tokens can no longer be used more than their number of uses