Changelog since v1.3.0-alpha.0
Changes by Kind
Feature
- Allows disabling enabled cert-manager-controller controller, for example '--controllers=*,-foo' (#3791, @JoshVanL)
- Enforce CertificateRequest approvers have the permissions: verb="approve" resource="signers" group="cert-manager.io" name=./[*|[.]] at the Cluster level. (#3785, @JoshVanL)
Bug or Regression
- Fixed approle login when namespaces were used in HashiCorp Vault
Fixed incorrectly failing health check that was caused when the Vault token did not have sufficient permission to call /sys/- endpoints (#3582, @lalitadithya) - Selfsigned issuer: warn when certs have empty issuer DNs, in violation of TLS RFC 5280 (#3760, @SgtCoDFish)
Other (Cleanup or Flake)
- The Venafi issuer in cert-manager is now compatible with Venafi Cloud OutagePREDICT. (#3831, @wallrj)
Dependencies
Added
- github.com/pavel-v-chernykh/keystore-go/v4: v4.1.0
Changed
- github.com/Venafi/vcert/v4: v4.11.0 → v4.13.1