diff options
author | Jaime Martinez <jmartinez@gitlab.com> | 2021-03-12 07:18:48 +0300 |
---|---|---|
committer | Jaime Martinez <jmartinez@gitlab.com> | 2021-03-12 07:50:27 +0300 |
commit | c2111bdc6e8ccb45d0b8c95f73d24e84eff891fb (patch) | |
tree | 4f0a70def586894d475cec6d875ae98c497cd26b /CHANGELOG.md | |
parent | 98c64e9552bdf27118b82bce664706af93b32b59 (diff) |
Prepare CHANGELOG.md with new format
Changelog: changed
Diffstat (limited to 'CHANGELOG.md')
-rw-r--r-- | CHANGELOG.md | 346 |
1 files changed, 346 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 00000000..9c6da713 --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,346 @@ +## 1.35.0 + +- Fix for query strings being stripped !398 +- Do not accept client-supplied X-Forwarded-For header for logs without proxy !415 +- Include /etc/hosts in chroot jail !124 +- Render 500 error if API is unavailable and domain info is unavailable !393 +- Allow passing multiple values in `-header` with separator via config file !417 +- Fix `auto` config source !424 +- Allow to serve `zip` from a disk `/pages` !429 + +## 1.34.0 + +- Allow DELETE HTTP method + +## 1.33.0 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.32.0 + +- Try to automatically use gitlab API as a source for domain information !402 +- Fix https redirect loop for PROXYv2 protocol !405 + +## 1.31.0 + +- Support for HTTPS over PROXYv2 protocol !278 +- Update LabKit library to v1.0.0 !397 +- Add zip serving configuration flags !392 +- Disable deprecated serverless serving and proxy !400 + +## 1.30.2 + +- Allow DELETE HTTP method + +## 1.30.1 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.30.0 + +- Allow to refresh an existing cached archive when accessed !375 + +## 1.29.0 + +- Fix LRU cache metrics !379 +- Upgrade go-mimedb to support new types including avif images !353 +- Return 5xx instead of 404 if pages zip serving is unavailable !381 +- Make timeouts for ZIP VFS configurable !385 +- Improve httprange timeouts !382 +- Fix caching for errored ZIP VFS archives !384 + +## 1.28.2 + +- Allow DELETE HTTP method + +## 1.28.1 + +- Reject requests with unknown HTTP methods +- Encrypt OAuth code during auth flow + +## 1.28.0 + +- Implement basic redirects via _redirects text file !367 +- Add support for pre-compressed brotly files !359 +- Add serving type to log !369 +- Improve performance of ZIP serving !364 +- Fix support for archives without directory structure !373 + +## 1.27.0 + +- Add more metrics for zip serving !363 !338 + +## 1.26.0 + +- Add the ability to serve web-sites from the zip archive stored in object storage !351 + +## 1.25.0 + +- No user-facing changes + +## 1.24.0 + +- Unshare mount namespaces when creating jail !342 + +## 1.23.0 + +- Add VFS for local disk !324 +- Fully support `domain-config-source=gitlab` !332 + +## 1.22.0 + +- Serve custom 404.html file for namespace domains !263 +- Poll internal status API !304 !306 +- Enable `domain-config-source=disk` by default Use domain config source disk !305 +- Set Content-Length when Content-Encoding is set !227 + +## 1.21.0 + +- Copy certs from SSL_CERT_DIR into chroot jail !291 + +## 1.20.0 + +- Enable continuous profiling !297 + +## 1.19.0 + +- Add file size metric for disk serving !294 +- Add pprof to metrics endpoint !271 + +## 1.18.0 + +- Fix proxying artifacts with escaped characters !255 +- Introduce internal-gitlab-server flag to allow using the internal network for communicating to the GitLab server !276 +- Increase maximum idle connections pool size from 2 to 100 !274 +- Disable passing auth-related secret parameters as command line flags !269 +- Fix unused idle API connection bug !275 + +## 1.17.0 + +- Extract health check in its own middleware !247 +- Increase GitLab internal API response timeout !253 +- Add support for proxying GitLab serverless requests !232 + +## 1.16.0 + +- Add metrics for GitLab API calls !229 +- Change the way proxy headers like `X-Forwarded-For` are handled !225 + +## 1.15.0 + +- Implement support for incremental rollout of the new API based configuration source +- Add domain configuration duration (from disk) to the exported Prometheus metrics +- Make GitLab API client timeout and JWT expiry configurable + +## 1.14.0 + +- Rollback godirwalk to v1.10.12 due to significant performance degradation + +## 1.13.0 + +- Implement API based configuration source (not yet used) +- Update godirwalk to v1.14.0 + +## 1.12.0 + +- Add minimal support for the api-secret-key config flag (not yet used) +- Add warnings about secrets given through command-line flags +- Remove Admin gRPC api (was never used) + +## 1.11.0 + +- Refactor domain package and extract disk serving !189 +- Separate domain config source !188 + +## 1.10.0 + +- Add support for previewing artifacts that are not public !134 + +## 1.9.0 + +- Add full HTTP metrics and logging to GitLab pages using LabKit + +## 1.8.1 + +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.8.0 + +- Fix https downgrade in auth process +- Fix build under go-pie environment +- Change Prometheus metrics names +- Require minimum golang version 1.11 to build +- Add the ability to define custom HTTP headers for all served sites + +## 1.7.2 + +- Fix https to http downgrade for auth process +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.7.1 + +- Security fix for recovering gitlab access token from cookies + +## 1.7.0 + +- Add support for Sentry error reporting + +## 1.6.3 + +- Fix https to http downgrade for auth process +- Limit auth cookie max-age to 10 minutes +- Use secure cookies for auth session + +## 1.6.2 + +- Security fix for recovering gitlab access token from cookies + +## 1.6.1 + +- Fix serving acme challenges with index.html + +## 1.6.0 + +- Use proxy from environment for http request !131 +- Use STDOUT for flag outputs !132 +- Prepare pages auth logs for production rollout !138 +- Redirect unknown ACME challenges to the GitLab instance !141 +- Disable 3DES and other insecure cipher suites !145 +- Provide ability to disable old TLS versions !146 + +## 1.5.1 + +- Security fix for recovering gitlab access token from cookies + +## 1.5.0 + +- Make extensionless URLs work !112 + +## 1.4.0 +- Prevent wrong mimetype being set for GZipped files with unknown file extension !122 +- Pages for subgroups !123 +- Make content-type detection consistent between file types !126 + +## 1.3.1 +- Fix TOCTOU race condition when serving files + +## 1.3.0 +- Allow the maximum connection concurrency to be set !117 +- Update Prometheus vendoring to v0.9 !116 +- Fix version string not showing properly !115 + +## 1.2.1 +- Fix 404 for project with capital letters !114 + +## 1.2.0 +- Stop serving shadowed namespace project files !111 +- Make GitLab pages support access control !94 + +## 1.1.0 +- Fix HTTP to HTTPS redirection not working for default domains !106 +- Log duplicate domain names !107 +- Abort domain scan if a failure is encountered !102 +- Update Prometheus vendoring !105 + +## 1.0.0 +- Use permissive unix socket permissions !95 +- Fix logic for output of domains in debug mode !98 +- Add support for reverse proxy header X-Forwarded-Host !99 + +## 0.9.1 +- Clean up the created jail directory if building the jail doesn't work !90 +- Restore the old in-place chroot behaviour as a command-line option !92 +- Create /dev/random and /dev/urandom when daemonizing and jailing !93 + +## 0.9.0 +- Add gRPC admin health check !85 + +## 0.8.0 +- Add /etc/resolv.conf and /etc/ssl/certs to pages chroot !51 +- Avoid unnecessary stat calls when building domain maps !60 +- Parallelize IO during the big project scan !61 +- Add more logging to gitlab pages daemon !62 +- Remove noisy debug logs !65 +- Don't log request or referer query strings !77 +- Make certificate parsing thread-safe !79 + +## 0.7.1 +- Fix nil reference error when project is not in config.json !70 + +## 0.7.0 +- HTTPS-only pages !50 +- Switch to govendor !54 +- Add logrus !55 +- Structured logging !56 +- Use https://github.com/jshttp/mime-db to populate the mimedb !57 + +## 0.6.1 +- Sanitize redirects by issuing a complete URI + +## 0.6.0 +- Use namsral/flag to support environment vars for config !40 +- Cleanup the README file !41 +- Add an artifacts proxy to GitLab Pages !44 !46 +- Resolve "'cannot find package' when running make" !45 + +## 0.5.1 +- Don't serve statically-compiled `.gz` files that are symlinks + +## 0.5.0 +- Don't try to update domains if reading the update file fails !32 +- Add CORS support to GET requests !33 +- Add CONTRIBUTING.md !34 +- Add basic cache directives to gitlab-pages !35 +- Go 1.8 is the minimum supported version !36 +- Fix HTTP/2 ALPN negotiation !37 +- Add disabled-by-default status check endpoint !39 + +## 0.4.3 +- Fix domain lookups when Pages is exposed on non-default ports + +## 0.4.2 +- Support for statically compressed gzip content-encoding + +## 0.4.1 +- Fix reading configuration for multiple custom domains + +## 0.4.0 +- Fix the `-redirect-http` option so it redirects from HTTP to HTTPS when enabled !21 + +## 0.3.2 +- Only pass a metrics fd to the daemon child if a metrics address was specified + +## 0.3.1 +- Pass the metrics address fd to the child process + +## 0.3.0 +- Prometheus metrics support with `metrics-address` + +## 0.2.5 +- Allow listen-http, listen-https and listen-proxy to be specified multiple times + +## 0.2.4 +- Fix predefined 404 page content-type + +## 0.2.3 +- Add `-version` to command line + +## 0.2.2 +- Fix predefined 404 page content-type + +## 0.2.1 +- Serve nice GitLab branded 404 page +- Present user's error page for 404: put the 404.html in root of your pages + +## 0.2.0 +- Execute the unprivileged pages daemon in chroot + +## 0.1.0 +- Allow to run the pages daemon unprivileged (-daemon-uid, -daemon-gid) + +## 0.0.0 +- Initial release |