v0.0.27

Changelog

• f372e3b deps: bump webmesh core

v0.0.26

Changelog

• 25dbbf4 ci: tidy
• 15e07f7 deps: bump webmesh version
• 8ebb11d deps: pull in latest webmesh packages

v0.0.25

Changelog

• a1b7256 ci: bump lint version
• 99dd56c ci: bump lint version
• 5416829 docs: add badges to README
• 4922b98 tidy: update deps and add version flags

v0.0.24

Changelog

• baafa17 deps: bump webmesh for rbac fixes
• a7842fb deps: update to latest webmesh
• 1346deb deps: update to latest webmesh
• f003950 deps: update to latest webmesh and storage provider
• 036959e feat: include id in token issue requests
• 62cfc58 feat: make disabling webmesh rbac configurable
• 2dac90b fix: add CORS headers to all requests

v0.0.23

Changelog

• 8f39aff ci: bump lint version
• 7f8b6ac ci: run lint in parallel with tests
• 31f48ae deps: pin to latest webmesh release
• ddca082 docs: update links in README
• 68451b7 draft: a more lightweight ID token impl
• e517f4b draft: id token issue
• 7878ec0 draft: idtoken validate method
• a8712d0 draft: more oidc type scaffolding
• fc467fb draft: oauth server embedded in metadata server
• dd86b58 draft: scaffold a full oidc storage
• 74c46f6 draft: scaffold resource locking and debug logs for oidc
• a4fe8ee draft: serve wellknown openid configuration from metadata server
• e9edc09 draft: start building desktops example
• 27772ed examples: update desktop example with manifests
• 224a42b feat: allow metadata server to resolve public information about remote peers
• 9541835 feat: allow metadata server to validate tokens signed by other cni nodes
• be7a19b feat: allow to specify entire node config in configmap
• 470ac7f feat: allows CORS requests on ID token server
• fc431d9 feat: expose metadata oauth server to configuration
• 48eb5fe feat: implement oauth2 client store from mesh storage
• 5269f62 fix: check expected values in token
• 0d8d1c6 fix: dont display private key as an option in metadata when we dont know it
• 0cf17b9 fix: dont omit empty fields in token
• 3b1a25e fix: dont use cache for configmap provider
• b44cc03 fix: return not found on invalid metadata keys
• 8386f5c fix: support getting by ID or pubkey in GetByID method
• df02300 logs: more metadata logging
• 7141439 manifests: update rbac manifests
• 6fb2cc0 tests: more tests for draft configmap provider
• 5caa87e tidy
• 7c4f99a tidy and scaffolding
• e935a25 tidy: cleanup draft code in metadata server
• 44e8d1a tidy: cleanup oauth handlers
• 4adc890 tidy: cleanup oauth metadata logging
• b6c9100 tidy: cleanup oidc drafts
• aa3ba89 tidy: cleanup oidc storage scaffoldin
• 294345c tidy: cleanup validate method
• d8051bd tidy: clenaup id-token server mux
• a6cea23 tidy: dont double encode peer ID in tokens if same as key ID
• 37f636e tidy: include key id in tokens
• 21c75af tidy: make even smaller
• 9bde5d2 tidy: pull in latest webmesh and use new peer helpers

v0.0.22

Changelog

• b51a9d3 deps: bump webmesh for non-generated resolveconf fixes
• eae4614 deps: pin to webmesh release
• 269504e docs: fill out README for id-auth example
• efd3789 docs: update multi-cluster docs
• 8159536 fix: dont include prefix in local dns addr
• 8e25877 fix: ignore cluster dns servers when editing host resolv conf

v0.0.21

Changelog

• f458c16 tidy: return wireguard address for local meshdns addr

v0.0.20

Changelog

• b2b2dfb add to examples
• e243f12 create resolv conf in container namespace when extra dns servers are configured
• 4adac55 deps: pin to latest webmesh release
• 7e84443 docs: scaffold more READMEs
• fb26497 docs: update READMEs
• 83499bd feat: allow to configure host system DNS, update docs more
• b225cd1 fix: append custom DNS to top of list
• 6ef1f97 fix: dont set port in DNS responses to CNI plugin

v0.0.19

Changelog

• 8dd8ec6 fix: prefer IPv4 for cluster DNS, add README to single-cluster example

v0.0.18

Changelog

• 002adf3 deps: bump webmesh
• 0eb6bc6 deps: pin latest webmesh
• 4308b51 deps: pin to latest webmesh
• 9beecf6 deps: pull in latest webmesh and ignore routes for metadata servers on bridges
• c1f5f57 deps: pull in more meshdns fixes
• 4031d18 deps: pull in observing storage provider panic fix
• cf4c54d deps: pull in webmesh dns improvements
• 9a486df deps: update storage provider
• 05a0cfa docs: start building out multi-cluster example
• 1e4c5f7 docs: tidy
• 1368daf docs: tidy
• 89ad57c docs: update examples
• ecb8cbf docs: update remote network field descriptions
• 49f35d4 docs: update service subnets in examples
• 37e91f6 draft: add optional DNS servers to peer container status
• f2c125f draft: dns forwarding for multi-cluster
• 941bd43 draft: more multi-cluster DNS work
• f86de03 feat: finish draft for multi-cluster forward dns
• 8ad99e6 feat: finish first draft of multi-cluster with kubernetes auth
• a92a385 feat: make check interval configurable on remote networks
• bac8755 fix: add forward dns feature to core dns pods
• b8aa3ab fix: add local routes to remote network
• 039622b fix: assume credentials in object namespace of remote network
• d1cf8bb fix: broadcast endpoints to remote network
• f14e473 fix: broadcast routes to remote network
• 6958ec6 fix: check that the ipam allocator has everything it needs at initialization
• 81d5df9 fix: determine interface name from remote network name
• 96dbbe0 fix: double check there is no overlapping address space in bridge networks
• 56804ea fix: ensure proper cleanup on any connection failures
• a525645 fix: ignore all local cidrs on remote network for good measure
• 8d4ede9 fix: ignore full tunnel routes from a remote cluster
• c6f62dc fix: pass db to ipam plugin
• 2dbcc96 fix: pass wireguard port in from configuration to bridge nodes
• ed9df5f fix: search for all routes on the remote network and ignore link-local unicast/multicast addresses
• 235b832 fix: service cidrs were incorrect in example manifests
• 28839bb fix: typos
• 9e0d23c fix: wait for cache sync when connecting to remote networks over kubernetes
• 341177c fix: wait for cache sync when connecting to remote networks over kubernetes
• 17e1bf2 pin to stable webmesh dns
• 9fc4041 pull in more webmesh dns fixes
• ca33f65 pull in more webmesh updates
• 49ef352 tidy: append custom DNS servers to the end of cluster configured ones, cleanup examples
• c8bdbe8 tidy: assign appropriate weights to edges
• 1008806 tidy: change method names
• c41992b tidy: cleanup multi-cluster example
• eb91a48 tidy: cleanup remote network reconcile loop
• bec48d6 tidy: cleanup remote network reconciler drafts
• f49d553 tidy: comments
• 8742b81 tidy: dedup destination routes in remote network
• 3c2c998 tidy: examples and makefile cleanup
• 6e2776f tidy: examples and makefile cleanup
• c96f161 tidy: logging
• ef6dc2b tidy: use endpoints types for convenience methods
• ae06536 tidy: use helper functions for consistent route names on the remote and local network
• 08f94ce tidy: use unique domains in multi-cluster example