Releases: Azure/azure-workload-identity
Releases · Azure/azure-workload-identity
v0.4.0
v0.4.0 - 2021-08-26
Bug Fixes 🐞
- bypass cache and get from apiserver if serviceaccount not found (#140)
- update release targets to replace image in yaml (#128)
Continuous Integration 💜
- do not use
--dirtywhen generating CI image version (#136) - replace kind cluster version v1.18.19 with v1.22.0 (#134)
- add /usr/local/go/bin to PATH (#132)
- update regex in chart publish workflow (#119)
Documentation 📘
- rename to azure-workload-identity (#151)
- add docs on development and releasing (#143)
- update description for tenantID annotation and fix errors (#141)
- replace SERVICE_PRINCIPAL_* with APPLICATION_* and add steps for setting up OIDC URL (#131)
- fix typos and broken link (#129)
- add commands for setting up trust (#121)
Features 🌈
- rename module and annotations from aad-pod-managed-identity to azure-workload-identity (#150)
- implement proxy using msal-go (#142)
- rename TOKEN_FILE_PATH to AZURE_FEDERATED_TOKEN_FILE (#133)
Maintenance 🔧
- remove helm package and update promote-staging-manifest make target (#147)
- use AZURE_AUTHORITY_HOST environment variable in msal-go example (#138)
- enable additional linters (#118)
Security Fix 🛡️
- fix CVE-2021-3711, CVE-2021-3712 (#153)
Testing 💚
v0.3.0
Features 🌈
- add AZURE_AUTHORITY_HOST env var (#75)
- implement custom authorizer for msal-go example (#74)
- add
--webhook-cert-dirflag to allow overriding (#84) - add readiness and liveness probes to webhook (#95)
- add user agent to client (#99)
- use cert-controller rotator for server certs (#93)
Documentation 📘
- documentation website backbone (#82)
- publish doc site with GitHub Actions (#92)
- add content for introduction, concepts and SA labels and annotations topic (#100)
- add tenant id reference in quick start (#105)
- minor updates in concepts and quickstart (#110)
Helm 📈
- generate helm from manifest (#66)
Testing 💚
- validate token exchange (#73)
- fix job dependencies in nightly test pipeline (#81)
- add helm installation and upgrade as part of e2e (#90)
- collect pod logs after e2e test suite is finished running (#101)
- remove make install-cert-manager for verify_deployment (#102)
- add e2e tests on skip containers and token expiration (#103)
- do not taint windows nodes before upgrading the cluster (#104)
Maintenance 🔧
v0.2.0
Features 🌈
- add example with msal net and keyvault (#52)
Bug Fixes 🐞
Documentation 📘
- add EOF to pod manifest (#55)
Testing 💚
- enable binary scanning with trivy (#49)
- setup nightly test pipeline (#50)
- add upgrade test as part of nightly pipeline (#51)
- disable nightly pipeline in PR (#53)
- remove role assignment with identity ID and registry scope (#62)
- use staging-pool for CI (#67)
Code Refactoring 💎
- use camelCase for variables in msal .NET example (#54)
Maintenance 🔧
v0.1.0
Features 🌈
- implement proxy and init iptables (#12)
- implement mutating webhook (#15)
- add support for arc clusters (#25)
- add example with msal go (#33)
- make audience configurable (#35)
- add jwks generator tool (#36)
Documentation 📘
Testing 💚
- e2e test framework backbone (#18)
- enable linting and fix issues (#23)
- enable e2e on kind clusters and shellcheck (#24)
- add an e2e job for arc scenario (#34)
- add an e2e job for windows cluster (#39)
- always remove resource groups after e2e (#44)
- add an e2e job for windows containerd cluster (#46)
Code Refactoring 💎
- use pkg/errors instead of fmt (#26)
Maintenance 🔧
- Makefile improvement and add e2e test case (#19)
- use
configMapGeneratorfor creating configmap (#31) - setup image publishing pipeline & remove the use of personal registry (#30)
- bump golang.org/x/crypto to v0.0.0-20201216223049-8b5274cf687f (#37)
- upgrade kind to v0.11.0 (#38)
- change webhook controller manager image name to webhook (#41)
- generate deploy manifest and add manifest_staging (#40)
- change proxy image name to to proxy (#45)