Skip to content

v0.48.0
Compare
Choose a tag to compare
@hc-github-team-es-release-engineering hc-github-team-es-release-engineering released this 01 Sep 23:21
v0.48.0
db0dce0
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

0.48.0 (September 01, 2022)

FEATURES:

  • MaxInboundConnections in service-defaults CRD
    • Add support for MaxInboundConnections on the Service Defaults CRD. [GH-1437]
  • Consul CNI Plugin
    • CNI Plugin for Consul-k8s [GH-1465]
  • Kubernetes 1.24 Support
    • Add support for Kubernetes 1.24 where ServiceAccounts no longer have long-term JWT tokens. [GH-1431]
    • Upgrade kubeVersion in helm chart to support Kubernetes 1.21+.

BREAKING CHANGES:

  • Kubernetes 1.24 Support

    • Users deploying multiple services to the same Pod (multiport) on Kubernetes 1.24 must also deploy a Kubernetes Secret for each ServiceAccount associated with the Consul service. The name of the Secret must match the ServiceAccount name and be of type kubernetes.io/service-account-token [GH-1431]
    • Kubernetes 1.19 and 1.20 are no longer supported.

    Example:

    apiVersion: v1
kind: Secret
metadata:
  name: svc1
  annotations:
    kubernetes.io/service-account.name: svc1
type: kubernetes.io/service-account-token
---
apiVersion: v1
kind: Secret
metadata:
  name: svc2
  annotations:
    kubernetes.io/service-account.name: svc2
type: kubernetes.io/service-account-token

  • Control Plane

    • Rename flag server-address to token-server-address in the inject-connect subcommand to avoid overloading the context of the server-address flag. [GH-1426]

IMPROVEMENTS:

  • CLI:
    • Display clusters by their short names rather than FQDNs for the proxy read command. [GH-1412]
    • Display a message when proxy list returns no results. [GH-1412]
    • Display a warning when a user passes a field and table filter combination to proxy read where the given field is not present in any of the output tables. [GH-1412]
    • Extend the timeout for consul-k8s proxy read to establish a connection from 5s to 10s. [GH-1442]
    • Expand the set of Envoy Listener Filters that may be parsed and output to the Listeners table. [GH-1442]
  • Helm:
    • The default Envoy proxy image is now envoyproxy/envoy:v1.23.1. [GH-1473]

BUG FIXES:

  • Helm
    • API Gateway: Configure ACL auth for controller correctly when deployed in secondary datacenter with federation enabled [GH-1462]
  • CLI
    • Fix issue where SNI filters for Terminating Gateways showed up as blank lines. [GH-1442]
    • Fix issue where Logical DNS endpoints were being displayed alongside cluster names. [GH-1452]
Assets 2
Loading