Improvements
This version involves automatic migration of AUTH-related data. Relevant users are advised to review the data migration rules and upgrade at their discretion.
- Modularization of AUTH Functionality
- Supports application-level configuration to "Enable authentication for specific conditions" and custom whitelist conditions for AUTH
- Supports selection of different login methods, currently supporting Account/password and GitHub
- Supports global user management with new user authorization approval
- Enhanced AUTH logs
- No longer supports multi-factor authentication scenarios
- Data Migration Rules
- Original Custom AUTH Rules
- Rules configured with "Application" parameter will be migrated to specified applications and automatically enable AUTH for those applications
- Rules without "Application" parameter will be migrated to apply to all applications and automatically enable AUTH for all applications
- No rule migration will occur for applications with AUTH already enabled
- Original Identity Sources
- Only active identity sources will be migrated; for GitHub, only valid users will be migrated
- After migration, users will automatically be configured with application authorization based on original associations
- Original Custom AUTH Rules
- Modularization of HTTP Flood Functionality
- Changed the entry point for global Rate Limiting configuration
- Added parameter descriptions for Rate Limiting to provide intuitive understanding of current configurations
Fix
- Optimized rule compilation module to accelerate rule compilation speed
- Enhanced detection engine health check mechanism
- Improved breadcrumb structure
- Fixed issue with abnormal AUTH source IP acquisition under Proxy Protocol configuration
- Fixed problem with site logs closing unexpectedly under certain conditions
- Fixed various translation errors