v1.11.0-alpha.1
Pre-release
Pre-release
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
v1.11.0-alpha.1
is a pre-release alpha version intended for testing. It might not be suitable for production uses.
Changes since v1.11.0-alpha.0
Feature
- Add ability to run acmesolver pods as root if desired. The default is still to run as non-root. (#5546, @cmcga1125)
- Add support for DC and UID in
LiteralSubject
field; all mandatory OIDs are now supported for LDAP certificates (rfc4514). (#5587, @SpectralHiss) - Add support for Workload Identity to AzureDNS resolver (#5570, @weisdd)
- Breaking: updates the gateway API integration to use the more stable v1beta1 API version. Any users of the cert-manager
ExperimentalGatewayAPISupport
alpha feature must ensure thatv1beta
of Gateway API is installed in cluster. (#5583, @lvyanru8200) - Refresh certificate secrets if the keystore format changes (#5597, @sathyanarays)
- Return error when Gateway has a cross-namespace secret ref (#5613, @mmontes11)
Bug or Regression
- Bug fix: When using feature gates with the helm chart, enable feature gate flags on webhook as well as controller (#5584, @lvyanru8200)
- Fixes a bug that caused the Vault issuer to omit the Vault namespace in requests to the Vault API. (#5591, @wallrj)
- Upgrade to go 1.19.4 to fix CVE-2022-41717 (#5619, @SgtCoDFish)