Skip to content

Releases: MAIF/otoroshi

16.5.0

30 Jun 06:29
Compare
Choose a tag to compare

Otoroshi version 16.5.0

https://github.com/MAIF/otoroshi/milestone/66?closed=1
v16.4.0...v16.5.0
https://github.com/MAIF/otoroshi/releases/tag/v16.5.0

Major features announcements in this release are

  • plugins can now ship their own UI
  • you can add entity validators on users based on Json Path expressions
  • new grpc plugins available

Added

  • support plugins thats ships their own custom UI (#1300)
  • Externals vault - Support getting certificates (#1364)
  • support entity validators per admin api consumer (user or apikey) (#1617)

Changed

  • upgrade netty dependencies (#1620)
  • update coraza version (#1622)

Fixed

  • user rights check is broken on the admin api (#1618)
  • add more validation to avoid data override in the admin api (#1619)
  • fix opa execution crash on second invocation (#1623)
  • play framework add default content-type on response with no content-type (#1624)
  • otoroshi does not support application/json mediatype with open charset (#1625)

Contributors

16.4.0

25 May 15:37
Compare
Choose a tag to compare

Otoroshi version 16.4.0

https://github.com/MAIF/otoroshi/milestone/63?closed=1
v16.3.2...v16.4.0
https://github.com/MAIF/otoroshi/releases/tag/v16.4.0

Major features announcements in this release are

  • a brand new WAF plugin based on OWASP Coraza
  • a brand new Brotli compression plugin
  • now authentication modules are pluggable and can be deployed as third party plugins
  • now you can write data exporter in WASM
  • now you can write authentication modules in WASM

Added

  • provide a Brotli compression plugin (#1289)
  • support OWASP Coraza WAF (#1497)
  • support wasm data exporters (#1565)
  • support wasm auth. modules (#1598)
  • handle ctrl+s shortcut to save route (#1594)
  • enable anonymous reporting (#1595)
  • make authentication modules pluggable (#1285)

Fixed

  • add the ability to extract informations from apikeys as jwt tokens (#1584)
  • avoid creating linear memory instance when non OPA plugin (#1586)
  • discard invitation link expired (#1587)
  • config. validation happens before configuration merge (#1588)
  • better concurrency handling when fetching wasm sources (#1589)
  • better handling of wasm resources to enhance performances at scale (#1590)
  • route events view does not allow filtering (#1591)
  • prohibit creation of new User with empty informations (#1596)
  • Content-Length missing due to akka-http-client model (#1597)
  • bad conversion of service descriptor to route for info. token (#1600)
  • host functions around attributes does not work when lifetime is forever (#1604)
  • data exporter duplication (#1610)
  • regex routing is broken (#1611)
  • handle target from service name and port in kubernetes crds for a route (#1612)
  • add otoroshi.mesh domains on route in kubernetes crds (#1613)

Contributors

16.3.2

26 Apr 13:06
Compare
Choose a tag to compare

Otoroshi version 16.3.2

https://github.com/MAIF/otoroshi/milestone/65?closed=1
v16.3.1...v16.3.2
https://github.com/MAIF/otoroshi/releases/tag/v16.3.2

Fixed

  • wasm plugin can be an OPA policy (#1579)
  • add query params in plugin http request json representation (#1580)
  • wasm request transformer is never called (#1581)
  • handle left case or request/response transformers when using wasm (#1582)

Contributors

16.3.1

26 Apr 07:01
Compare
Choose a tag to compare

Otoroshi version 16.3.1

https://github.com/MAIF/otoroshi/milestone/64?closed=1
v16.3.0...v16.3.1
https://github.com/MAIF/otoroshi/releases/tag/v16.3.1

Fixed

  • rust plugin does not produce version in wasm manager (#1574)
  • opa wasm plugin should produce a nice error page when forbidden (#1575)
  • wasm-plugin template has a static id (#1576)
  • rust wasm plugin template has bad path to lib.rs file (#1577)
  • go wasm plugin template is not right by default (#1578)

Contributors

16.3.0

25 Apr 13:09
Compare
Choose a tag to compare

Otoroshi version 16.3.0

https://github.com/MAIF/otoroshi/milestone/61?closed=1
v16.2.1...v16.3.0
https://github.com/MAIF/otoroshi/releases/tag/v16.3.0

Major features announcements in this release are
  • all legacy plugins have been migrated to the new plugin model
  • a new kind of plugin has been introduced to extend otoroshi api easily
  • new spring cloud config. vault backend
  • new http vault backend
  • new local vault backend where secrets are stored in the otoroshi global config.

Added

  • add the ability to run jobs/data-exporters only on specific network zones with specific configuration per zone (#1472)
  • add a new kind of vault that stores values in otoroshi (#1522)
  • support vaults in EL (#1523)
  • support spring cloud config as a vault backend (#1527)
  • support http as a vault backend (#1528)
  • support memberUid based ldap groups (#1560)
  • provide an admin. extension api to make core contributions easier#1510

Changed

  • enhance the health check possibilities (#1372)
  • remember sidebar state (#1524)

Fixed

  • cannot instantly add and modify an old plugin on a route (#1511)
  • fix synchronous plugins step merge (#1260)
  • some service-descriptor -> route conversions does not work (#1521)
  • wasmManager : give plugin name as package.json name (#1529)
  • JWT claim extraction may not work (#1564)
  • can't create a route with multi instance plugins more than one (#1566)
  • prevent chunking response when content length is equal to zero (#1571)
  • can't find my route's apikey in route/apikeys tab (#1570)
  • fix CRDs v1alpha1 served (#1512)
  • rewrite legacy plugins as ng plugins (#1148)
  • rewrite legacy HMAC validator as ng plugins (#1513)
  • rewrite legacy HMAC Caller plugin (#1514)
  • rewrite legacy Basic Auth Caller plugin (#1515)
  • rewrite legacy OAuth 1 Caller plugin (#1516)
  • rewrite legacy OAuth 2 Caller plugin (#1517)
  • rewrite legacy response cache plugin (#1518)
  • rewrite legacy OIDC plugins (#1520)
  • rewrite ClientCertChainHeader (#1531)
  • rewrite HasClientCertMatchingValidator (#1532)
  • rewrite HasClientCertMatchingApikeyValidator (#1533)
  • rewrite HasClientCertValidator (#1534)
  • rewrite CertificateAsApikey (#1535)
  • rewrite BiscuitExtractor (#1536)
  • rewrite BiscuitValidator (#1537)
  • rewrite HasClientCertMatchingHttpValidator (#1538)
  • rewrite HasAllowedUsersValidator (#1539)
  • rewrite UserAgentExtractor (#1540)
  • rewrite UserAgentInfoEndpoint (#1541)
  • rewrite UserAgentInfoHeader (#1542)
  • rewrite SecurityTxt (#1543)
  • rewrite ServiceQuotas (#1544)
  • rewrite MirroringPlugin (#1545)
  • rewrite Log4ShellFilter (#1546)
  • rewrite JwtUserExtractor (#1547)
  • rewrite IzanamiProxy (#1548)
  • rewrite IzanamiCanary (#1549)
  • rewrite HMACValidator (#1550)
  • rewrite MaxMindGeolocationInfoExtractor (#1551)
  • rewrite IpStackGeolocationInfoExtractor (#1552)
  • rewrite GeolocationInfoHeader (#1553)
  • rewrite GeolocationInfoEndpoint (#1554)
  • rewrite DiscoverySelfRegistrationSink (#1555)
  • rewrite DiscoverySelfRegistrationTransformer (#1556)
  • rewrite DiscoveryTargetsSelector (#1557)
  • rewrite DeferPlugin (#1558)
  • rewrite ClientCredentialService (#1559)

Contributors

16.2.1

03 Apr 12:39
Compare
Choose a tag to compare

Otoroshi version 16.2.1

https://github.com/MAIF/otoroshi/milestone/62?closed=1
v16.2.0...v16.2.1
https://github.com/MAIF/otoroshi/releases/tag/v16.2.1

  • fix release java version
  • creation of wizard route failed (#1505)
  • clean array of string in a plugin form doesn't work (#1506)
  • bad header names in otoroshi challenge and info. plugins (#1507)

Contributors

16.2.0

31 Mar 13:57
Compare
Choose a tag to compare

https://github.com/MAIF/otoroshi/milestone/60?closed=1
v16.1.0...v16.2.0
https://github.com/MAIF/otoroshi/releases/tag/v16.2.0

Major features announcements in this release are
  • new plugin kind to handle routing decisions
  • WASM host functions
  • new WASM plugin entities
  • New wasm plugin kind supported (request handlers, jobs, ...)
  • Lots of improvements on the WASM manager
  • New backup feature to improve resilience of otoroshi workers
  • JDK20 docker images

Added

  • add an anonymous telemetry agent to gather usage statistics (#1305)
  • research around open policy agent integration (#1315)
  • support file versioning through git integration (#1453)
  • support versioned binary releases (#1454)
  • support selecting a binary release from the wasm manager (#1455)
  • add otoroshi integration through host functions (#1456)
  • add graphql directive to handle wasm targets (#1457)
  • support github repo as sources of the wasm manager (#1460)
  • implement host functions and flags to enable special access for wasm plugins (#1464)
  • ensure wasm execution happens in a dedicated execution context outside of main one (#1478)
  • support S3 import during first leader sync if leader down (#1479)
  • support wasm jobs (#1480)
  • support wasm RequestHandlers (#1481)
  • support fetching wapm artifacts (#1482)
  • new kind of plugin that can take routing decisions (#1483)
  • refactor wasm related plugin stuff to have a common infrastructure (#1484)
  • let wasm vm run during the whole request lifecycle to speed up reuse (#1485)
  • add a new kind of entity to handle wasm scripts at one place (#1486)
  • support WASI allowed paths for wasm (#1488)
  • provide host function wrappers (#1491)
  • add documentations for wasm plugins (#1492)
  • support call to "native" WASM functions (#1494)
  • upload/donwload plugin sources (zip) (#1498)
  • Support JDK20 (#1500)
  • rewrite wasm plugins creation process in wasm manager (#1503)
  • support request attributes access from wasm (#1504)

Fixed

  • fix openapi generator to handle generic apis (#1487)
  • potential memory leak caused by big timeouts in kubernetes client (#1489)
  • fix otoroshi exchange protocol form (#1495)
  • bad cors translation to ng plugins (#1496)
  • Prevent multiples plugins with same name (#1499)
  • function name override does not seems to work (#1502)

Contributors

16.1.0

28 Feb 15:09
Compare
Choose a tag to compare

Otoroshi version 16.1.0

https://github.com/MAIF/otoroshi/milestone/59?closed=1
v16.0.5...v16.1.0
https://github.com/MAIF/otoroshi/releases/tag/v16.1.0

Added

  • tailscale cert job wants to get cert not handled by tailscale (#1451)
  • add documentation for tailscale documentation (#1462)
  • tailscale TLS integration (#1448)
  • tailscale machines integrations (#1449)
  • http cache plugin (#1423)
  • error response rewrite plugin (#1424)
  • missing request body plugin (#1425)
  • full state exporter for disaster recovery (#1426)
  • support .pfx files import (#1427)

Changed

  • elastic export improvments (#1466)
  • ability to use tls settings in the SOAPAction plugin (#1469)
  • upgrade to Play framework version 2.8.19 (#1447)
  • enhance vault mechanism (#1296)

Fixed

  • http3 request failure (#1468)
  • do not show save button on jwt verifiers page when path contains 'edit' (#1465)
  • proxy settings in route backend parsing fails (#1450)
  • plain text h2c calls failing (#1446)
  • netty native transport fails on linux (#1428)
  • fix missing resources in documentation (#1429)
  • fix errors in kubernetes documentation (#1430)
  • jobs cannot be added in danger zone plugins, only in scripts (#1431)
  • fix coredns integration on azure (#1432)
  • fix coredns integration on kubernetes (#1433)

16.0.5

26 Jan 09:04
Compare
Choose a tag to compare

Otoroshi version 16.0.5

https://github.com/MAIF/otoroshi/milestone/58?closed=1
v16.0.4...v16.0.5
https://github.com/MAIF/otoroshi/releases/tag/v16.0.5

  • resources loader - Certificate (#1420)
  • handle coredns integration on AKS (#1421)
  • bad query string forward (#1422)

16.0.4

24 Jan 07:45
Compare
Choose a tag to compare