Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release 14.3.17 #41081

Merged
merged 2 commits into from
May 1, 2024
Merged

Release 14.3.17 #41081

merged 2 commits into from
May 1, 2024

Conversation

camscale
Copy link
Contributor

@camscale camscale commented May 1, 2024
edited

  • Fixed user SSO bypass by performing a local passwordless login. #41071
  • Enforce allow_passwordless server-side. #41058
  • Fixed a memory leak caused by incorrectly passing the offset when paginating all Access Lists' members when there are more than the default pagesize (200) Access Lists. #41044
  • Fixed a regression causing roles filtering to not work. #41000
  • Allow AWS integration to be used for global services without specifying a valid region. #40990
  • Fixed access requests lingering in the UI and tctl after expiry. #40965
  • Made podSecurityContext configurable in the teleport-cluster Helm chart. #40950
  • Allow mounting extra volumes in the updater pod deployed by the teleport-kube-agentchart. #40949
  • Improved error message when performing an SSO login with a hardware key. #40924
  • Fixed a bug in the teleport-cluster Helm chart that happened when sessionRecording was off. #40920
  • Allows setting additional Kubernetes labels on resources created by the teleport-cluster Helm chart. #40916
  • Fixed audit event failures when using DynamoDB event storage. #40912
  • Properly enforce session moderation requirements when starting Kubernetes ephemeral containers. #40907
  • Introduced the tpm join method, which allows for secure joining in on-prem environments without the need for a shared secret. #40875
  • Issue cert.create events during device authentication. #40873
  • Add the ability to control ssh_config generation in Machine ID's Identity Outputs. This allows the generation of the ssh_config to be disabled if unnecessary, improving performance and removing the dependency on the Proxy being online. #40862
  • Prevented deleting AWS OIDC integration used by External Audit Storage. #40853
  • Reduced parallelism when polling AWS resources to prevent API throttling when exporting them to Teleport Access Graph. #40812

Enterprise (not listed in CHANGELOG.md):

  • Record more accurate grpc_code on device trust metrics. #4036

@camscale camscale added the no-changelog Indicates that a PR does not require a changelog entry label May 1, 2024
@camscale camscale requested review from fheinecke and r0mant May 1, 2024 01:38
@camscale camscale added this pull request to the merge queue May 1, 2024
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks May 1, 2024
@camscale camscale added this pull request to the merge queue May 1, 2024
Merged via the queue into branch/v14 with commit f499cea May 1, 2024
38 checks passed
@camscale camscale deleted the release/14.3.17 branch May 1, 2024 02:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@r0mant r0mant r0mant approved these changes

@fheinecke fheinecke fheinecke approved these changes

Assignees
No one assigned
Labels
backport helm no-changelog Indicates that a PR does not require a changelog entry size/sm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@camscale @r0mant @fheinecke