Release notes
- Users of the (currently alpha) coturn Helm chart must manually update
their configuration due to changes in how the chart handles authentication
secrets. Please see below for further details. (#2553)
API changes
- The response to POST /mls/messages adds a timestamp (#2560)
Features
-
charts/wire-server: default log format everywhere to StructuredJSON format (introduced in #1951 and #1959) (#2559)
-
The coturn chart now supports multiple authentication secrets, which permits
multiple backend instances to use the same TURN servers without needing to
share authentication secrets between the backend instances.Correspondingly, the
.Values.secrets.zrestSecretconfiguration option, which
took a single authentication secret as its argument, has been replaced with the
option.Values.secrets.zrestSecrets(note spelling!), which instead takes a
list of authentication secrets as its argument. (#2553) -
Add support for bare MLS proposals (#2436)
Bug fixes and other updates
-
Fix a bug in charts/cannon. It's now possible to use a custom TLS certificate when enabling cannon's nginz sidecar container. (Previously only letsencrypt certificates worked, and were tested) (#2558)
-
Minor fixes in helmcharts:
- charts/nginz: Rate limit SSO endpoints less
- charts/nginz: Ensure rate limiting isn't commented out
- charts/galley: Honour .setttings.httpPoolSize
- charts/galley: Fix typo in settings.featureFlags.validateSAMLEmails
- charts/gundeck: Remove aws.connectionLimit
- charts/brig: Fix default brandLabelUrl and remove brandLabel (#2563)