Fixes
- Add config to enable users to opt-in to configuring an AuthConfig to fail when
an OIDC provider returns a redirect instead of returning that redirect to the
client. When set to true, a 401 unauthorized will be returned instead of 302. (#6811) - Add helm customization (pod spec fields, resource requirements, disabling istio injection) that was missing from the
gloo-resource-rollout,gloo-resource-migration, andgloo-resource-cleanupjobs. Allow disabling the jobs (not recommended unless default Gateways/Upstreams are not needed). (#6847) - Added activeDeadlineSeconds to all k8s jobs (#6821)
- Build a kubectl image for use during install/upgrade/cleanup jobs. (#6858)
- Hosts now respect top-level healthChecks when provided (#6770)