Skip to content

Release Notes v2.1.0

Jump to bottom
NeySlim edited this page Feb 15, 2026 · 6 revisions

Release Notes - v2.1.0

Release Date: February 2026
Type: Feature Release
Current Pre-release: v2.1.0-beta3

Highlights

Architecture Refactor

  • Consolidated API routes: removed features/ module, all routes under api/v2/ (34 blueprints)
  • Consolidated models: removed models/features/, moved to models/
  • Removed Pro/Community distinction: all features are core
  • JWT removal: session cookies + API keys only (reduced attack surface)

PKI Chain Intelligence

  • AKI/SKI Chain Matching - Cryptographic chain validation replacing DN-based matching
  • Chain Repair Scheduler - Hourly backfill, re-chain, and deduplication task
  • Chain Repair Widget - Visual progress on CAs page with manual run
  • Smart Import Dedup - Prevent duplicate CAs via SKI matching

Floating Detail Windows

  • Click any table row to open a draggable, resizable detail window
  • Embedded content with action bar: Export (PEM, DER, PKCS#12, chain), Renew, Revoke, Delete
  • Window manager in footer: stack/tile, same-window, close-on-navigate
  • Deep-link support for certificates, CAs, and trust store items

Trust Store Enhancements

  • Chain validation with visual status (complete/partial/incomplete)
  • Export bundle (PEM), expiration alerts widget
  • Add certificates from managed CAs (backend + UI)
  • Auto-add issuer to trust store from certificate details

Operations Center

  • Unified Import, Export, and Bulk Actions under a single sidebar page
  • Smart Import with automatic format detection + OPNsense sync
  • Export action cards per resource type with PEM and P7B download
  • Bulk Actions with resource type chips, inline search, status/CA filters

Service Reconnection

  • 30s countdown before reconnection attempts
  • Health endpoint includes WebSocket readiness status (/api/v2/health)
  • Automatic redirect to login page after service restart
  • Browser cache invalidation on reconnect

In-App Help System

  • Floating contextual help panel on every page
  • Draggable, resizable, with mobile bottom-sheet mode
  • Tips, warnings, and related page links

UI/UX Redesign

  • Dashboard: redesigned header with logo, diversified widget colors, donut chart with gradient/shadow effects
  • Dashboard mobile: compact header with watermark logo, no redundancy with navbar
  • New logo: shield outline, larger on dashboard, smaller in sidebar
  • Themes simplified: 3 themes (Gray, Purple, Sunset)
  • Tables: proportional column sizing, actions moved to detail windows
  • Status footer bar with window management controls
  • Mobile navbar: user dropdown menu with account, settings, language selector, logout
  • Mobile nav grid: short i18n labels for compact 5-column layout
  • Reconnect overlay with circular countdown ring

Internationalization

  • 9 languages: EN, FR, DE, ES, IT, PT, UK, ZH, JA
  • 1930+ translation keys per language, 0 missing
  • Short mobile labels: 16 *Short keys per language for compact navigation
  • New namespaces: reconnect.*, table.*, windows.*

Security

  • Default password changeme123 with force change on first login
  • cryptography upgraded to 46.0.5 (CVE-2026-26007)
  • Auto-update DEB postinst fix: updater systemd units

Other Features

  • Backup v2.0 - Complete backup/restore for all database tables
  • File Regeneration - Startup service regenerates missing cert/key files from database
  • Human-Readable File Names - {cn-slug}-{refid}.ext instead of UUID-only
  • SoftHSM Integration - Automatic SoftHSM2 setup across DEB, RPM, Docker
  • Webhooks - Management in Settings for CRUD, test, and event filtering
  • ACME Multi-CA - Let's Encrypt, ZeroSSL, Buypass, custom ACME servers
  • Template Duplication - Clone endpoint: POST /templates/{id}/duplicate
  • Settings About - Version, system info, uptime, memory, links

Bug Fixes

  • Health endpoint consolidated under /api/v2/health (backward-compatible)
  • ACME account delete: cascade cleanup (challenges→authorizations→orders)
  • FloatingHelpPanel: missing SOFT_MAX_W constant
  • Dashboard charts: fixed width/height(-1) errors with absolute positioning
  • Dashboard donut: fixed gradient IDs using translated names (SVG invalid refs)
  • Dashboard: react-grid-layout v2.2.2 API compatibility
  • OPNsense: wrapped password inputs in form element (DOM warning)
  • Toast notifications: stack vertically
  • Radix Select: filter empty value options
  • Truststore delete: returns 200 instead of broken 204
  • CRL: returns null data instead of 404 when not yet generated
  • UTC timezone handling: API timestamps include 'Z' suffix

Breaking Changes

  • Default admin password is now changeme123 (was randomly generated)
  • Operations page replaces the old Import/Export page
  • Themes reduced from 6 to 3 color schemes
  • JWT authentication removed (session cookies + API keys only)

Upgrade Notes

  • Existing installations: database migrations run automatically at startup
  • The default password change only affects new installations
  • All existing user passwords remain unchanged
  • Health endpoint available at both /api/v2/health and /api/health

Clone this wiki locally