github pomerium/ingress-controller v0.29.0

latest releases: v0.29.2, v0.29.1
7 days ago

New

  • Support OpenTelemetry Tracing via settings in the Pomerium CRD. @wasaga in #1127
  • Implement support for UDP routes in the ingress controller, allowing configuration of routes using the "udp" protocol. (@calebdoxsey in #1079 (ENG-1740))
  • Introduce the codec_type setting to the ingress controller, enabling configuration of codec types including support for http3 with necessary updates to Kubernetes manifests for UDP 443 routing. (@calebdoxsey in #1085 (ENG-1788))
  • Rename the codec_type option to codecType for consistency with other configuration options. (@calebdoxsey in #1087)
  • Implement fields description and logo_url for routes and source_ppl for policies. (@calebdoxsey in #1089 (ENG-1876))
  • Implement a mechanism to terminate the process gracefully when bootstrap secrets are detected, preventing potential conflicts or errors. (@wrmedford in #1091)
  • Implement a more flexible regular expression for version branches in the continuous integration pipeline to accommodate a wider range of versioning schemes. (@wasaga in #1092)
  • Reconfigure the Pomerium container to use ports 8443/8080 and advertise the HTTP/3 port as 443, addressing compatibility issues with certain Kubernetes environments. (@wasaga in #1101)
  • Introduce bearer_token_format and idp_access_token_allowed_audiences as configurable global and route-level options in the ingress controller to support new IdP token configurations. (@calebdoxsey in #1103 (ENG-2020, ENG-2020))
  • Integrate support for new IdP token options in the ingress controller by adding BearerTokenFormat and idp_access_token_allowed_audiences fields to the Route and Settings messages. (@calebdoxsey in #1106 (ENG-2020, ENG-2020))
  • Upgrade the core component to incorporate bug fixes for identity provider (IDP) token handling. (@calebdoxsey in #1108)

Changes

  • Correct the regular expression used for matching release branch names to ensure proper branch identification. (@calebdoxsey in #1111)
  • Unset the GOOS variable in the Makefile for the 'envoy' target to ensure the get-envoy command is built for the host OS instead of the target OS. (@kenjenkins in #1088)
  • Update the open-docs-pull-request.sh script to reflect the new destination path for the k8s/reference.md file. (@kenjenkins in #990)
  • Revert externalTrafficPolicy to default (cluster) by @wasaga in #1129

Testing & CI

  • Update the Pomerium Core to the latest commit in the main branch to incorporate recent changes and improvements. (@apparitor in #1070)
  • Update the Pomerium Core to the latest commit in the main branch to incorporate recent changes and improvements. (@apparitor in #1072)
  • Update the Pomerium Core to the latest commit in the main branch to incorporate recent changes and improvements. (@apparitor in #1073)
  • Update the Pomerium Core to the latest commit on the main branch to incorporate recent code changes and improvements. (@apparitor in #1078)
  • Update the Pomerium Core dependency to the latest commit from the main branch. (@apparitor in #1080)
  • Update the Pomerium Core to the latest commit from the main branch, ensuring compatibility with the most recent codebase changes. (@apparitor in #1081)
  • Update the Pomerium Core to the latest commit from the main branch, ensuring integration with the most recent code changes. (@apparitor in #1086)
  • Update the Pomerium Core to the latest commit from the main branch, ensuring alignment with the current codebase. (@apparitor in #1090)
  • Update the Pomerium Core to the latest commit on the main branch to ensure compatibility and integration with recent changes. (@apparitor in #1093)

Dependencies

  • Update docker/metadata-action and docker/build-push-action. (@dependabot[bot] in #1074)
  • Update distroless/base-debian12 package in the docker group. (@dependabot[bot] in #1075)
  • Update github.com/go-playground/validator/v10. (@dependabot[bot] in #1076)
  • Update the k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/apiserver, k8s.io/client-go, `sigs.k (@dependabot[bot] in #1077)
  • Update actions/setup-go, docker/setup-buildx-action, actions/cache, and peter-evans/create-pull-request. (@dependabot[bot] in #1082)
  • Update github.com/envoyproxy/go-control-plane, github.com/gosimple/slug, and google.golang.org/protobuf. (@dependabot[bot] in #1083)
  • Update k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/apiserver, k8s.io/client-go, sigs.k8s.io/controller-runtime, and ` (@dependabot[bot] in #1084)
  • Update distroless/base-debian12 package in the docker group. (@dependabot[bot] in #1095)
  • Update github.com/go-playground/validator/v10. (@dependabot[bot] in #1096)
  • Update the k8s group packages: k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/apiserver, `k8s.io/client (@dependabot[bot] in #1097)
  • Update actions/setup-go, docker/build-push-action, docker/setup-qemu-action, golangci/golangci-lint-action, and actions/setup-python. (@dependabot[bot] in #1098)
  • Update github.com/go-jose/go-jose/v4 package. (@dependabot[bot] in #1107)
  • Update github.com/go-jose/go-jose/v3 package. (@dependabot[bot] in #1110)
  • Update the following packages: github.com/envoyproxy/go-control-plane/envoy, github.com/go-playground/validator/v10, github.com/google/go-cmp, github.com/open-policy-agent/opa, `github.com/spf (@dependabot[bot] in #1113)
  • Update the Kubernetes-related packages: k8s.io/api, k8s.io/apiextensions-apiserver, k8s.io/apimachinery, k8s.io/apiserver, k8s.io/client-go, (@dependabot[bot] in #1114)
  • Update the github-actions group with changes to the following packages: docker/metadata-action, docker/setup-buildx-action, docker/build-push-action, docker/setup-qemu-action, `golangci/golangci-lint (@dependabot[bot] in #1115)

Don't miss a new ingress-controller release

NewReleases is sending notifications on new releases.