diff options
author | Vladimir Shushlin <vshushlin@gitlab.com> | 2021-03-12 12:50:39 +0300 |
---|---|---|
committer | Vladimir Shushlin <vshushlin@gitlab.com> | 2021-03-12 12:50:39 +0300 |
commit | 3d68f89c6ef3c7d3cd13838e4ab521301ac5754e (patch) | |
tree | 0072a6481bbab4170f164fae0e7054c91e0004c5 | |
parent | 98c64e9552bdf27118b82bce664706af93b32b59 (diff) | |
parent | c10bc660a7e2b2e358d906d6009e666866c77f8c (diff) |
Merge branch 'update-changelog-new-format' into 'master'v1.36.0
Prepare CHANGELOG.md with new format
See merge request gitlab-org/gitlab-pages!449
l---------[-rw-r--r--] | CHANGELOG | 347 | ||||
-rw-r--r-- | CHANGELOG.md | 368 | ||||
-rw-r--r-- | Makefile.util.mk | 2 | ||||
-rw-r--r-- | VERSION | 2 |
4 files changed, 371 insertions, 348 deletions
diff --git a/CHANGELOG b/CHANGELOG index 7bd0f8b1..83b69470 100644..120000 --- a/CHANGELOG +++ b/CHANGELOG @@ -1,346 +1 @@ -v 1.35.0 - -- Fix for query strings being stripped !398 -- Do not accept client-supplied X-Forwarded-For header for logs without proxy !415 -- Include /etc/hosts in chroot jail !124 -- Render 500 error if API is unavailable and domain info is unavailable !393 -- Allow passing multiple values in `-header` with separator via config file !417 -- Fix `auto` config source !424 -- Allow to serve `zip` from a disk `/pages` !429 - -v 1.34.0 - -- Allow DELETE HTTP method - -v 1.33.0 - -- Reject requests with unknown HTTP methods -- Encrypt OAuth code during auth flow - -v 1.32.0 - -- Try to automatically use gitlab API as a source for domain information !402 -- Fix https redirect loop for PROXYv2 protocol !405 - -v 1.31.0 - -- Support for HTTPS over PROXYv2 protocol !278 -- Update LabKit library to v1.0.0 !397 -- Add zip serving configuration flags !392 -- Disable deprecated serverless serving and proxy !400 - -v 1.30.2 - -- Allow DELETE HTTP method - -v 1.30.1 - -- Reject requests with unknown HTTP methods -- Encrypt OAuth code during auth flow - -v 1.30.0 - -- Allow to refresh an existing cached archive when accessed !375 - -v 1.29.0 - -- Fix LRU cache metrics !379 -- Upgrade go-mimedb to support new types including avif images !353 -- Return 5xx instead of 404 if pages zip serving is unavailable !381 -- Make timeouts for ZIP VFS configurable !385 -- Improve httprange timeouts !382 -- Fix caching for errored ZIP VFS archives !384 - -v 1.28.2 - -- Allow DELETE HTTP method - -v 1.28.1 - -- Reject requests with unknown HTTP methods -- Encrypt OAuth code during auth flow - -v 1.28.0 - -- Implement basic redirects via _redirects text file !367 -- Add support for pre-compressed brotly files !359 -- Add serving type to log !369 -- Improve performance of ZIP serving !364 -- Fix support for archives without directory structure !373 - -v 1.27.0 - -- Add more metrics for zip serving !363 !338 - -v 1.26.0 - -- Add the ability to serve web-sites from the zip archive stored in object storage !351 - -v 1.25.0 - -- No user-facing changes - -v 1.24.0 - -- Unshare mount namespaces when creating jail !342 - -v 1.23.0 - -- Add VFS for local disk !324 -- Fully support `domain-config-source=gitlab` !332 - -v 1.22.0 - -- Serve custom 404.html file for namespace domains !263 -- Poll internal status API !304 !306 -- Enable `domain-config-source=disk` by default Use domain config source disk !305 -- Set Content-Length when Content-Encoding is set !227 - -v 1.21.0 - -- Copy certs from SSL_CERT_DIR into chroot jail !291 - -v 1.20.0 - -- Enable continuous profiling !297 - -v 1.19.0 - -- Add file size metric for disk serving !294 -- Add pprof to metrics endpoint !271 - -v 1.18.0 - -- Fix proxying artifacts with escaped characters !255 -- Introduce internal-gitlab-server flag to allow using the internal network for communicating to the GitLab server !276 -- Increase maximum idle connections pool size from 2 to 100 !274 -- Disable passing auth-related secret parameters as command line flags !269 -- Fix unused idle API connection bug !275 - -v 1.17.0 - -- Extract health check in its own middleware !247 -- Increase GitLab internal API response timeout !253 -- Add support for proxying GitLab serverless requests !232 - -v 1.16.0 - -- Add metrics for GitLab API calls !229 -- Change the way proxy headers like `X-Forwarded-For` are handled !225 - -v 1.15.0 - -- Implement support for incremental rollout of the new API based configuration source -- Add domain configuration duration (from disk) to the exported Prometheus metrics -- Make GitLab API client timeout and JWT expiry configurable - -v 1.14.0 - -- Rollback godirwalk to v1.10.12 due to significant performance degradation - -v 1.13.0 - -- Implement API based configuration source (not yet used) -- Update godirwalk to v1.14.0 - -v 1.12.0 - -- Add minimal support for the api-secret-key config flag (not yet used) -- Add warnings about secrets given through command-line flags -- Remove Admin gRPC api (was never used) - -v 1.11.0 - -- Refactor domain package and extract disk serving !189 -- Separate domain config source !188 - -v 1.10.0 - -- Add support for previewing artifacts that are not public !134 - -v 1.9.0 - -- Add full HTTP metrics and logging to GitLab pages using LabKit - -v 1.8.1 - -- Limit auth cookie max-age to 10 minutes -- Use secure cookies for auth session - -v 1.8.0 - -- Fix https downgrade in auth process -- Fix build under go-pie environment -- Change Prometheus metrics names -- Require minimum golang version 1.11 to build -- Add the ability to define custom HTTP headers for all served sites - -v 1.7.2 - -- Fix https to http downgrade for auth process -- Limit auth cookie max-age to 10 minutes -- Use secure cookies for auth session - -v 1.7.1 - -- Security fix for recovering gitlab access token from cookies - -v 1.7.0 - -- Add support for Sentry error reporting - -v 1.6.3 - -- Fix https to http downgrade for auth process -- Limit auth cookie max-age to 10 minutes -- Use secure cookies for auth session - -v 1.6.2 - -- Security fix for recovering gitlab access token from cookies - -v 1.6.1 - -- Fix serving acme challenges with index.html - -v 1.6.0 - -- Use proxy from environment for http request !131 -- Use STDOUT for flag outputs !132 -- Prepare pages auth logs for production rollout !138 -- Redirect unknown ACME challenges to the GitLab instance !141 -- Disable 3DES and other insecure cipher suites !145 -- Provide ability to disable old TLS versions !146 - -v 1.5.1 - -- Security fix for recovering gitlab access token from cookies - -v 1.5.0 - -- Make extensionless URLs work !112 - -v 1.4.0 -- Prevent wrong mimetype being set for GZipped files with unknown file extension !122 -- Pages for subgroups !123 -- Make content-type detection consistent between file types !126 - -v 1.3.1 -- Fix TOCTOU race condition when serving files - -v 1.3.0 -- Allow the maximum connection concurrency to be set !117 -- Update Prometheus vendoring to v0.9 !116 -- Fix version string not showing properly !115 - -v 1.2.1 -- Fix 404 for project with capital letters !114 - -v 1.2.0 -- Stop serving shadowed namespace project files !111 -- Make GitLab pages support access control !94 - -v 1.1.0 -- Fix HTTP to HTTPS redirection not working for default domains !106 -- Log duplicate domain names !107 -- Abort domain scan if a failure is encountered !102 -- Update Prometheus vendoring !105 - -v 1.0.0 -- Use permissive unix socket permissions !95 -- Fix logic for output of domains in debug mode !98 -- Add support for reverse proxy header X-Forwarded-Host !99 - -v 0.9.1 -- Clean up the created jail directory if building the jail doesn't work !90 -- Restore the old in-place chroot behaviour as a command-line option !92 -- Create /dev/random and /dev/urandom when daemonizing and jailing !93 - -v 0.9.0 -- Add gRPC admin health check !85 - -v 0.8.0 -- Add /etc/resolv.conf and /etc/ssl/certs to pages chroot !51 -- Avoid unnecessary stat calls when building domain maps !60 -- Parallelize IO during the big project scan !61 -- Add more logging to gitlab pages daemon !62 -- Remove noisy debug logs !65 -- Don't log request or referer query strings !77 -- Make certificate parsing thread-safe !79 - -v 0.7.1 -- Fix nil reference error when project is not in config.json !70 - -v 0.7.0 -- HTTPS-only pages !50 -- Switch to govendor !54 -- Add logrus !55 -- Structured logging !56 -- Use https://github.com/jshttp/mime-db to populate the mimedb !57 - -v 0.6.1 -- Sanitize redirects by issuing a complete URI - -v 0.6.0 -- Use namsral/flag to support environment vars for config !40 -- Cleanup the README file !41 -- Add an artifacts proxy to GitLab Pages !44 !46 -- Resolve "'cannot find package' when running make" !45 - -v 0.5.1 -- Don't serve statically-compiled `.gz` files that are symlinks - -v 0.5.0 -- Don't try to update domains if reading the update file fails !32 -- Add CORS support to GET requests !33 -- Add CONTRIBUTING.md !34 -- Add basic cache directives to gitlab-pages !35 -- Go 1.8 is the minimum supported version !36 -- Fix HTTP/2 ALPN negotiation !37 -- Add disabled-by-default status check endpoint !39 - -v 0.4.3 -- Fix domain lookups when Pages is exposed on non-default ports - -v 0.4.2 -- Support for statically compressed gzip content-encoding - -v 0.4.1 -- Fix reading configuration for multiple custom domains - -v 0.4.0 -- Fix the `-redirect-http` option so it redirects from HTTP to HTTPS when enabled !21 - -v 0.3.2 -- Only pass a metrics fd to the daemon child if a metrics address was specified - -v 0.3.1 -- Pass the metrics address fd to the child process - -v 0.3.0 -- Prometheus metrics support with `metrics-address` - -v 0.2.5 -- Allow listen-http, listen-https and listen-proxy to be specified multiple times - -v 0.2.4 -- Fix predefined 404 page content-type - -v 0.2.3 -- Add `-version` to command line - -v 0.2.2 -- Fix predefined 404 page content-type - -v 0.2.1 -- Serve nice GitLab branded 404 page -- Present user's error page for 404: put the 404.html in root of your pages - -v 0.2.0 -- Execute the unprivileged pages daemon in chroot - -v 0.1.0 -- Allow to run the pages daemon unprivileged (-daemon-uid, -daemon-gid) - -v 0.0.0 -- Initial release +CHANGELOG.md
\ No newline at end of file diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 00000000..2b455343 --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,368 @@ +## 1.36.0 (2021-03-12) + +### Added (3 changes) + +- [Add GitLab cache config flags](gitlab-org/gitlab-pages@93c7957b8a2673c418f3e9620d99a5206a02adcc) ([merge request](gitlab-org/gitlab-pages!442)) +- [Add use-legacy-storage flag](gitlab-org/gitlab-pages@258be795aa78afe2252e630508fa049a596251fc) ([merge request](gitlab-org/gitlab-pages!439)) +- [fix(auth): make authentication scope for Pages configurable](gitlab-org/gitlab-pages@b41995a13969b2926ad265bcc769f473e48166cb) + +### Fixed (1 change) + +- [fix: use correlationID middleware](gitlab-org/gitlab-pages@ae9a8fb5304fca0a1dc0441cb991227320033bca) ([merge request](gitlab-org/gitlab-pages!438)) + +### Changed (3 changes) + +- [Move config validations to separate file](gitlab-org/gitlab-pages@23ac0e80a47e578fd17cee491e8ad0af13e67d37) ([merge request](gitlab-org/gitlab-pages!440)) +- [Add Cache to config pkg](gitlab-org/gitlab-pages@bc93c23e1b5ffd4acb99935c2a77966322112c50) ([merge request](gitlab-org/gitlab-pages!434)) +- [Move configuration parsing to Config package](gitlab-org/gitlab-pages@b7e2085b76c11212ac41f80672d5c5f9b0287fee) ([merge request](gitlab-org/gitlab-pages!431)) + +### Other (1 change) + +- [Add changelog generation script](gitlab-org/gitlab-pages@789cbeca36efcd135ec9ccb134d91d9487eeb034) ([merge request](gitlab-org/gitlab-pages!447)) + +## 1.35.0 + +- Fix for query strings being stripped !398 +- Do not accept client-supplied X-Forwarded-For header for logs without proxy !415 +- Include /etc/hosts in chroot jail !124 +- Render 500 error if API is unavailable and domain info is unavailable !393 +- Allow passing multiple values in `-header` with separator via config file !417 +- Fix `auto` config source !424 +- Allow to serve `zip` from a disk `/pages` !429 + +## 1.34.0 + +- Allow DELETE HTTP method + +## 1.33.0 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.32.0 + +- Try to automatically use gitlab API as a source for domain information !402 +- Fix https redirect loop for PROXYv2 protocol !405 + +## 1.31.0 + +- Support for HTTPS over PROXYv2 protocol !278 +- Update LabKit library to v1.0.0 !397 +- Add zip serving configuration flags !392 +- Disable deprecated serverless serving and proxy !400 + +## 1.30.2 + +- Allow DELETE HTTP method + +## 1.30.1 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.30.0 + +- Allow to refresh an existing cached archive when accessed !375 + +## 1.29.0 + +- Fix LRU cache metrics !379 +- Upgrade go-mimedb to support new types including avif images !353 +- Return 5xx instead of 404 if pages zip serving is unavailable !381 +- Make timeouts for ZIP VFS configurable !385 +- Improve httprange timeouts !382 +- Fix caching for errored ZIP VFS archives !384 + +## 1.28.2 + +- Allow DELETE HTTP method + +## 1.28.1 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.28.0 + +- Implement basic redirects via _redirects text file !367 +- Add support for pre-compressed brotly files !359 +- Add serving type to log !369 +- Improve performance of ZIP serving !364 +- Fix support for archives without directory structure !373 + +## 1.27.0 + +- Add more metrics for zip serving !363 !338 + +## 1.26.0 + +- Add the ability to serve web-sites from the zip archive stored in object storage !351 + +## 1.25.0 + +- No user-facing changes + +## 1.24.0 + +- Unshare mount namespaces when creating jail !342 + +## 1.23.0 + +- Add VFS for local disk !324 +- Fully support `domain-config-source=gitlab` !332 + +## 1.22.0 + +- Serve custom 404.html file for namespace domains !263 +- Poll internal status API !304 !306 +- Enable `domain-config-source=disk` by default Use domain config source disk !305 +- Set Content-Length when Content-Encoding is set !227 + +## 1.21.0 + +- Copy certs from SSL_CERT_DIR into chroot jail !291 + +## 1.20.0 + +- Enable continuous profiling !297 + +## 1.19.0 + +- Add file size metric for disk serving !294 +- Add pprof to metrics endpoint !271 + +## 1.18.0 + +- Fix proxying artifacts with escaped characters !255 +- Introduce internal-gitlab-server flag to allow using the internal network for communicating to the GitLab server !276 +- Increase maximum idle connections pool size from 2 to 100 !274 +- Disable passing auth-related secret parameters as command line flags !269 +- Fix unused idle API connection bug !275 + +## 1.17.0 + +- Extract health check in its own middleware !247 +- Increase GitLab internal API response timeout !253 +- Add support for proxying GitLab serverless requests !232 + +## 1.16.0 + +- Add metrics for GitLab API calls !229 +- Change the way proxy headers like `X-Forwarded-For` are handled !225 + +## 1.15.0 + +- Implement support for incremental rollout of the new API based configuration source +- Add domain configuration duration (from disk) to the exported Prometheus metrics +- Make GitLab API client timeout and JWT expiry configurable + +## 1.14.0 + +- Rollback godirwalk to v1.10.12 due to significant performance degradation + +## 1.13.0 + +- Implement API based configuration source (not yet used) +- Update godirwalk to v1.14.0 + +## 1.12.0 + +- Add minimal support for the api-secret-key config flag (not yet used) +- Add warnings about secrets given through command-line flags +- Remove Admin gRPC api (was never used) + +## 1.11.0 + +- Refactor domain package and extract disk serving !189 +- Separate domain config source !188 + +## 1.10.0 + +- Add support for previewing artifacts that are not public !134 + +## 1.9.0 + +- Add full HTTP metrics and logging to GitLab pages using LabKit + +## 1.8.1 + +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.8.0 + +- Fix https downgrade in auth process +- Fix build under go-pie environment +- Change Prometheus metrics names +- Require minimum golang version 1.11 to build +- Add the ability to define custom HTTP headers for all served sites + +## 1.7.2 + +- Fix https to http downgrade for auth process +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.7.1 + +- Security fix for recovering gitlab access token from cookies + +## 1.7.0 + +- Add support for Sentry error reporting + +## 1.6.3 + +- Fix https to http downgrade for auth process +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.6.2 + +- Security fix for recovering gitlab access token from cookies + +## 1.6.1 + +- Fix serving acme challenges with index.html + +## 1.6.0 + +- Use proxy from environment for http request !131 +- Use STDOUT for flag outputs !132 +- Prepare pages auth logs for production rollout !138 +- Redirect unknown ACME challenges to the GitLab instance !141 +- Disable 3DES and other insecure cipher suites !145 +- Provide ability to disable old TLS versions !146 + +## 1.5.1 + +- Security fix for recovering gitlab access token from cookies + +## 1.5.0 + +- Make extensionless URLs work !112 + +## 1.4.0 +- Prevent wrong mimetype being set for GZipped files with unknown file extension !122 +- Pages for subgroups !123 +- Make content-type detection consistent between file types !126 + +## 1.3.1 +- Fix TOCTOU race condition when serving files + +## 1.3.0 +- Allow the maximum connection concurrency to be set !117 +- Update Prometheus vendoring to v0.9 !116 +- Fix version string not showing properly !115 + +## 1.2.1 +- Fix 404 for project with capital letters !114 + +## 1.2.0 +- Stop serving shadowed namespace project files !111 +- Make GitLab pages support access control !94 + +## 1.1.0 +- Fix HTTP to HTTPS redirection not working for default domains !106 +- Log duplicate domain names !107 +- Abort domain scan if a failure is encountered !102 +- Update Prometheus vendoring !105 + +## 1.0.0 +- Use permissive unix socket permissions !95 +- Fix logic for output of domains in debug mode !98 +- Add support for reverse proxy header X-Forwarded-Host !99 + +## 0.9.1 +- Clean up the created jail directory if building the jail doesn't work !90 +- Restore the old in-place chroot behaviour as a command-line option !92 +- Create /dev/random and /dev/urandom when daemonizing and jailing !93 + +## 0.9.0 +- Add gRPC admin health check !85 + +## 0.8.0 +- Add /etc/resolv.conf and /etc/ssl/certs to pages chroot !51 +- Avoid unnecessary stat calls when building domain maps !60 +- Parallelize IO during the big project scan !61 +- Add more logging to gitlab pages daemon !62 +- Remove noisy debug logs !65 +- Don't log request or referer query strings !77 +- Make certificate parsing thread-safe !79 + +## 0.7.1 +- Fix nil reference error when project is not in config.json !70 + +## 0.7.0 +- HTTPS-only pages !50 +- Switch to govendor !54 +- Add logrus !55 +- Structured logging !56 +- Use https://github.com/jshttp/mime-db to populate the mimedb !57 + +## 0.6.1 +- Sanitize redirects by issuing a complete URI + +## 0.6.0 +- Use namsral/flag to support environment vars for config !40 +- Cleanup the README file !41 +- Add an artifacts proxy to GitLab Pages !44 !46 +- Resolve "'cannot find package' when running make" !45 + +## 0.5.1 +- Don't serve statically-compiled `.gz` files that are symlinks + +## 0.5.0 +- Don't try to update domains if reading the update file fails !32 +- Add CORS support to GET requests !33 +- Add CONTRIBUTING.md !34 +- Add basic cache directives to gitlab-pages !35 +- Go 1.8 is the minimum supported version !36 +- Fix HTTP/2 ALPN negotiation !37 +- Add disabled-by-default status check endpoint !39 + +## 0.4.3 +- Fix domain lookups when Pages is exposed on non-default ports + +## 0.4.2 +- Support for statically compressed gzip content-encoding + +## 0.4.1 +- Fix reading configuration for multiple custom domains + +## 0.4.0 +- Fix the `-redirect-http` option so it redirects from HTTP to HTTPS when enabled !21 + +## 0.3.2 +- Only pass a metrics fd to the daemon child if a metrics address was specified + +## 0.3.1 +- Pass the metrics address fd to the child process + +## 0.3.0 +- Prometheus metrics support with `metrics-address` + +## 0.2.5 +- Allow listen-http, listen-https and listen-proxy to be specified multiple times + +## 0.2.4 +- Fix predefined 404 page content-type + +## 0.2.3 +- Add `-version` to command line + +## 0.2.2 +- Fix predefined 404 page content-type + +## 0.2.1 +- Serve nice GitLab branded 404 page +- Present user's error page for 404: put the 404.html in root of your pages + +## 0.2.0 +- Execute the unprivileged pages daemon in chroot + +## 0.1.0 +- Allow to run the pages daemon unprivileged (-daemon-uid, -daemon-gid) + +## 0.0.0 +- Initial release diff --git a/Makefile.util.mk b/Makefile.util.mk index 91fa7ea5..5d5355e4 100644 --- a/Makefile.util.mk +++ b/Makefile.util.mk @@ -61,7 +61,7 @@ junit-report: .GOPATH/.ok bin/go-junit-report cat tests.out | ./bin/go-junit-report -set-exit-code > junit-test-report.xml changelog: - TOKEN='$(GITLAB_PRIVATE_TOKEN)' VERSION='$(VERSION)' BRANCH='$(BRANCH)' bash ./.gitlab/scripts/changelog.sh + TOKEN='$(GITLAB_PRIVATE_TOKEN)' VERSION='$(shell cat VERSION)' BRANCH='$(BRANCH)' bash ./.gitlab/scripts/changelog.sh ifndef GITLAB_PRIVATE_TOKEN $(error GITLAB_PRIVATE_TOKEN is undefined) endif @@ -1 +1 @@ -1.35.0 +1.36.0 |