⚠️ Breaking changes
This switches the storage from in-browser cookie storage, to using a session-based storage mechanism.
If you are running multiple replicas, this will break the authentication.
This also means that when the gitops-server is restarted, the existing sessions will be lost (and will require that users can login again).
We are working to provide support for persistent session storage, and this will land in the next release.
💸 Features and improvements
With the switch to session-based storage, the issue where the ID Token was too big to be stored in a Cookie should be solved, this was commonly caused by Azure's use of UUIDs for groups in the OIDC groups claim.
Flux compatibility
Flux version | Minimum required |
---|---|
v2.0
| >= 2.0.0
|
For Flux migrations to v2.0 see flux or weave gitops documentation.
🚀 Enhancements
- PR: #3667 - Improve feedback to user when objects aren't retrieved due to RBAC
- PR: #3946 - JWT cookie fetcher converted to session storage.
- PR: #3958 - Anonymous / No-auth mode
🔥 UI
- PR: #3953 - Add Flex with breakpoint prop
- PR: #3944 - Set static height on signin footer
- PR: #3962 - Refactor specificity for new dark mode color. And CSS enhancement to Sync Btn
- PR: #3951 - add new primary color to palette
📖 Documentation
- PR: #3964 - User docs cleanup
- PR: #3965 - docs: Add SECURITY.md
- PR: #3955 - User docs changes in WGE install guide, cluster mgmt pages
- PR: #3921 - Add Azure-related pages to user docs
Uncategorized
- PR: #3948 - Add DCO
- PR: #3954 - Weave GitOps Enterprise v0.30.0 Release Notes
- PR: #3959 - dashboard helmrepository apiVersion should be v1beta2 not v1
- PR: #3903 - fix npe when inventory object is nil
- PR: #3966 - fix: Moved security policy to the right place
- PR: #3968 - fix: Bump client-go version to 0.26.8
- PR: #3969 - Bump @adobe/css-tools from 4.0.1 to 4.3.1