🚀 Direct Cluster Endpoints
Direct Cluster Endpoints are a new feature to avoid the central Loft instance and directly connect to a connected Loft cluster. By default, all Kubernetes contexts that are created through Loft will route all Kubernetes traffic (such as kubectl get pods
etc.) through the central Loft instance to handle authentication and authorization there.
If you have multiple connected clusters in a Loft instance that are spread across the globe, the traffic redirection through the central Loft gateway can increase request delay. A solution to this are direct cluster endpoints, which are installed directly into the connected clusters and handle authentication and authorization themselves within the cluster without the need to redirect traffic to the central Loft instance first.
For more information take a look at the loft documentation
🚀 Shared Secrets Sync
You can now sync shared secrets to any connected cluster and Kubernetes secret. When a shared secret is synced, all keys and values will be copied to the target Kubernetes secret. You can enable this by giving a user or team the sync permission and then use a label on a Kubernetes secret:
apiVersion: v1
kind: Secret
metadata:
name: my-synced-shared-secret
namespace: space-owned-by-user-or-team
labels:
loft.sh/sharedsecret-name: my-shared-secret
loft.sh/sharedsecret-namespace: loft
type: Opaque
For more information take a look at the loft documentation
📦 Other Changes
- ui: If you have more than 2 connected clusters, Loft will now display a cluster selector for spaces, quotas and vclusters
- ui: Fixed an issue where logs display of pods could result in an error
- ui: Fixed an issue where tables could look broken if certain columns were too long
- api: Fixed an issue where changing the default kiosk or vcluster version would result in an error deploying kiosk or vcluster
- api: Updated internal k8s to v1.21.1
- api: Updated kiosk to v0.2.8. Spaces and accounts can now be watched which allows sync with tools like ArgoCD
- api: Updated vcluser to v0.3.0. Vcluster is now a certified kubernetes distribution and supports metrics natively