github kite-org/kite v0.9.0
on GitHub

11 hours ago

What's Changed

Authentication

  • Added LDAP username/password login. Admins can now configure LDAP connection settings, user/group lookup rules, and sync LDAP groups into RBAC.
  • Added advanced OAuth / OIDC settings for custom username claims, custom group claims, and allowed-group login restrictions.
  • Improved the login page for mixed authentication setups with credential-provider switching and clearer access-denied messaging when a user is outside the allowed groups.

AI And Terminal

  • Expanded AI Chat so it can inspect Kubernetes resources, read related Events, query Prometheus, and execute create, update, and delete actions with in-product confirmation.
  • When the AI needs more information, it can now request a choice or form directly in the conversation instead of asking the user to retype everything manually.
  • Improved the floating AI chat and terminal experience with more stable overlays, fullscreen/minimize controls, chat history, and session restore.

Resources And UI

  • Added a dedicated ConfigMap detail page with Overview, Data, YAML, Related, Events, and History views.
  • Improved Secret details with a dedicated data viewer that supports decoded display, per-item show/hide, and copy actions for secret values.
  • Expanded Pod / Container details with richer runtime information, including command, args, environment variables, mounts, resource limits, probes, and container state.
  • Polished mobile layouts across multiple resource pages and fixed the issue where the AI Chat send button could be pushed off-screen on mobile.
  • Fixed cases where proxy requests could lose the current cluster context.

Fixes And Hardening

  • Fixed incorrect global search cache isolation. Search results are now cached separately by cluster and query limit to avoid cross-cluster or wrong-limit results.
  • JWT signing secrets are now auto-generated on first boot when empty or still using the insecure default value. The Helm chart also no longer ships with a fixed default JWT secret.
  • Production builds no longer emit permissive CORS headers by default. Cross-origin access is only enabled for explicitly allowed development origins.
  • Added ReadHeaderTimeout and IdleTimeout to improve resilience against slow client connections.

Thanks @DioCrafts @GyroGearl00se @zxh326

New Contributors

Full Changelog: v0.8.1...v0.9.0

Check out latest releases or
releases around kite-org/kite v0.9.0

Don't miss a new kite release

NewReleases is sending notifications on new releases.

Get notifications