Releases: openziti/zrok
v1.1.4
v1.1.3
CHANGELOG
FEATURE: A new compatibility > version_patterns array is included in the controller configuration, allowing for dynamic adjustment of allowed client version strings (#1030)
FEATURE: A new compatibility > log_version boolean is included in the controller configuration. When this boolean is set to true, the controller will log all client versions provided for compatibility checking.
CHANGE: Update github.com/openziti/sdk-golang to v1.2.3
CHANGE: Minor vulnerability packages updated in ui and agent/agentUi
FIX: The scope field of the metrics returned from /metrics/environment/... is now properly set as environment and the from /metrics/share/... is now properly set as share (#1031)
v1.1.2
v1.1.1
v1.1.0
CHANGELOG
FEATURE: Rewritten and improved publicProxy package (zrok access public), with support for extensible OAuth-compliant identity providers. The publicProxy configuration now supports any number of configured OAuth-compliant providers (rather than just a single google provider and/or a single github provider). Also includes a new OIDC-compliant generic IDP provider integration. Improvements to authentication flows and security all around. See the updated guide on using OAuth-based identity providers with the zrok public frontend (#968)
FEATURE: Templatized and improved static pages (not found/404, unauthorized/401, health check, etc.) used by the public frontend. Consolidated variable data using golang text/template so that static proxyUi package can display additional error information and provide extension points for replacing all of the templated content with external files. See the error pages guide for more information on customizing the built-in template (#1012)
FEATURE: zrok access private now includes a --template-path allowing the embedded proxyUi template to be replaced with an external HTML file (#1012)
FIX: Invoking /agent/* endpoints to remotely manage agents with remoting was causing a new API session to be allocated in the ziti controller for each request. A slightly different strategy was employed for embedding the ziti SDK into the zrok controller that should mitigate this (#1023)
v1.0.8
CHANGELOG
FEATURE: New opt-in configuration item superNetwork which enables multiple data plane connections to the OpenZiti underlay, a separate control plane connection, enabling SDK-based flow control. To opt-in use zrok config set superNetwork true in each environment, or set the ZROK_SUPER_NETWORK environment variable to true (#1010)
CHANGE: Updated github.com/openziti/sdk-golang to v1.2.1 (#1010)
v1.0.7
CHANGELOG
FEATURE: zrok Agent now supports health checks (against the target endpoint) for proxy backend shares using the zrok agent share http-healthcheck command. The zrok API now includes an /agent/share/http-healthcheck endpoint for remotely performing these checks against remoted Agents. See the guide for using the feature at https://docs.zrok.io/docs/guides/agent/http-healthcheck/ (#1002)
FEATURE: /overview, /detail/share, /detail/environment, and /overview/{organizationToken}/{accountEmail} all adjusted to include envZId in share detail output (#998)
FEATURE: New add and delete API endpoints for frontend grants. New zrok admin create frontend-grant and zrok admin delete frontend-grant CLI for invoking these API endpoints from the command line (#992)
FEATURE: New admin endpoint for deleting accounts. New zrok admin delete account CLI for invoking the API endpoint from the command line (#993)
FEATURE: New admin endpoint for deleting identities. New zrok admin delete identity CLI for invoking the API endpoint from the command line (#800)
FEATURE: New API endpoint (/overview/public-frontends) that returns the public frontends available to authenticated account. The public frontends include those marked with the open permission mode, and those marked closed where the user has a frontend grant allowing them to access the frontend. New CLI command zrok overview public-frontends to allow end users to list the public frontends their account can use (#996)
CHANGE: Updated openapi-generator-cli from 7.12.0 to 7.14.0
v1.0.6
CHANGELOG
CHANGE: The /overview endpoint has been adjusted to include a new remoteAgent boolean on the environment instances, indicating whether or not the environment has an enrolled remote agent (#977)
CHANGE: Adjusted core framework entry points to support changing zrokdir, and host interrogation functions to better support embedded zrok functionality (#976)
v1.0.5
CHANGELOG
FEATURE: Initial support for zrok Agent remoting; new zrok agent enroll and zrok agent unenroll commands that establish opt-in remote Agent management facilities on a per-environment basis. The central API has been augmented to allow for remote control (creating shares and private access instances) of these agents; see the remoting guide for details (#967)
CHANGE: zrok share public, zrok share private, and zrok reserve all default to the "closed" permission mode (they previously defaulted to the "open" permission mode). The --closed flag has been replaced with a new --open flag. See the Permission Modes docs for details (#971)
FIX: zrok enable now handles the case where the user ID does not resolve to a username when generating the default environment description (#959)
FIX: Linux packages were optimized to avoid manage file revision conflicts (#817)
v1.0.4
CHANGELOG
FIX: zrok admin bootstrap and zrok enable functionality were broken in v1.0.3. A bad combination of dependencies caused issues with marshalling data from the associated controller endpoints
CHANGE: github.com/openziti/sdk-golang has been updated to v1.1.0, github.com/openziti/ziti has been updated to v1.6.0. Related dependencies and indirects also updated
CHANGE: Updated to golang v1.24 as the official build toolchain