Release v0.30.0
Release Image
Image | Registry |
---|---|
ghcr.io/vmware-tanzu/pinniped/pinniped-server:v0.30.0
| GitHub Container Registry |
docker.io/getpinniped/pinniped-server:v0.30.0
| DockerHub |
These images can also be referenced by their digest: sha256:3955ac6e04db6b87fb992e08302ca9080f1dcfc340deacc82f0f0f4687d535b6
.
Changes
This release includes several new features and upgrades also upgrades all project dependencies.
Minor Changes
- Added new option to
OIDCClient
resource to allow configuration of ID token lifetime for tokens issued by authcode flows and refresh flows. SeeOIDCClient.spec.tokenLifetimes.idTokenSeconds
in the API docs. (#1914) - Setting the new env var
PINNIPED_SKIP_PRINT_LOGIN_URL=true
will cause the Pinniped CLI to skip printing the login URL when a browser has launched, which can be useful when using console UIs like k9s. (#1938, #1897) WebhookAuthenticator
resources will have detailedstatus
written to them automatically, to aid in debugging. (#1894)WebhookAuthenticators
now honor Pinniped's preferred client TLS configuration, including its preferred allowed TLS v1.2 ciphers. This could be a breaking change if your webhook server is serving requests using only TLS v1.2 (not allowing TLS v1.3) and does not allow any of Pinniped's preferred TLS v1.2 ciphers. Note that Pinniped's preferred TLS v1.2 cipher list is different depending on if it was compiled in FIPS compatibility mode or not. (#1917)- Removed all deprecated deployment options from ytt templates. (#1926)
- Clarified the text in some error messages. (#1932, #1922)
- Added documentation to provide some debugging tips. (#1936, #1904, #1824)
- Updates Go to v1.22.3, updates the Kubernetes libraries to v0.30.0, and updates all other project dependencies. (#1940, #1937, #1935, #1934, #1933, #1931, #1921, #1916, #1913, #1911, #1902, #1899)
Diffs
A complete list of changes (101 commits, 768 changed files with 33,015 additions and 64,816 deletions) can be found here.