Skip to content

v0.5.3

Latest
Latest

Choose a tag to compare

View all tags
@javuto javuto released this 12 Jun 21:09
v0.5.3
a1a2857
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🔖 Release 0.5.3

What's New

  • docker-compose standalone is not the standard way to trigger docker c… by @ITJamie in #824
  • osctrl: defensive hardening round — login timing, rate-limit XFF bypass, JWT rotation, info-disclosure closes by @alvarofraguas in #826
  • Fix for goreleaser error when tagging a new release by @javuto in #827
  • release: fix multi-arch Docker builds (manifest list export error) by @alvarofraguas in #828
  • make: actionable errors for docker_dev + add docker_dev_certs target by @alvarofraguas in #834
  • provision: fix yq and Go installer arch detection on x86_64 by @alvarofraguas in #838
  • release: pass GOARCH build-arg to arm64 docker builds by @alvarofraguas in #839
  • provision: auto-detect repo root instead of assuming ~/osctrl by @alvarofraguas in #835
  • api: fine-grained permission control for service account creation by @alvarofraguas in #837
  • auth: lift OIDC into reusable pkg/auth provider package by @alvarofraguas in #829
  • auth: OIDC support for osctrl-api + React SPA by @alvarofraguas in #830
  • auth: SAML 2.0 support for osctrl-api + React SPA by @alvarofraguas in #831
  • frontend: SPA Users page — Add/Delete/Reset Password parity with legacy admin by @alvarofraguas in #832
  • frontend: SPA UX polish — TargetSelector, audit fix, CSRF priming by @alvarofraguas in #833
  • frontend: bump Node from 20 to 22 in Docker builds by @alvarofraguas in #840
  • fix: OIDC/SAML logout, empty-target queries/carves, carve bulk actions, envless login by @alvarofraguas in #842
  • security: fix 13 findings from security audit by @alvarofraguas in #843
  • Adapt CI pipelines to have develop as default branch by @javuto in #844
  • Annotations in osctrl-api to keep API documented by @javuto in #845
  • Generator of swagger YAML and JSON using Makefile by @javuto in #846
  • Up to date OpenAPI 3 YAML and tool to convert generated swagger by @javuto in #847
  • Exposing frontend via nginx for TLS termination in docker dev environment by @javuto in #848
  • Enrollment & config parity: per-OS flags, cert upload, assembled config + SPA tabs/sliders/forms/docs links by @alvarofraguas in #849
  • Fix merge against main and update develop by @javuto in #850
  • frontend: responsive sidenav — mobile drawer + desktop icon-rail collapse by @alvarofraguas in #851
  • Banner to warn users about upcoming deprecation of osctrl-admin by @javuto in #852
  • Updated README with notice about deprecation of osctrl-admin by @javuto in #853
  • Removed legacy port from dev env by @javuto in #854
  • Show permissions in profile page by @javuto in #855
  • Reload frontend build when changes to code by @javuto in #856
  • Prepare release 0.5.3 by @javuto in #857
  • Makefile job to merge develop into main by @javuto in #858
  • Fixed to error in release cicd pipeline by @javuto in #859

New Contributors

Full Changelog: v0.5.2...v0.5.3

Contributors

javuto, ITJamie, and alvarofraguas
Assets 17
Loading