All Versions
64
Latest Version
Avg Release Cycle
101 days
Latest Release
8 days ago

Changelog History
Page 7

  • v0.3.1 Changes

    September 26, 2019

    ๐Ÿ”’ Security

    • ๐Ÿ›  Fixes vulnerabilities fixed in Go 1.13.1 including CVE-2019-16276.

  • v0.3.0 Changes

    September 01, 2019

    v0.3.0

    ๐Ÿ†• New

    GRPC Improvements. [GH-261] / [GH-69]

    • Enable WaitForReady to allow background retries through transient failures
    • Expose a configurable timeout for backend requests to Authorize and Authenticate

    - Enable DNS round_robin load balancing to Authorize and Authenticate services by default

    โž• Add ability to set client certificates for downstream connections. [GH-259]

    ๐Ÿ›  Fixed

    • ๐Ÿ›  Fixed non-amd64 based docker images.[GH-284]
    • ๐Ÿ›  Fixed an issue where stripped cookie headers would result in a cookie full of semi-colons (Cookie: ;;;). [GH-285]
    • ๐ŸŒ HTTP status codes now better adhere to RFC7235. In particular, authentication failures reply with 401 Unauthorized while authorization failures reply with 403 Forbidden. [GH-272]

    ๐Ÿ”„ Changed

    Pomerium will now strip _csrf cookies in addition to session cookies. [GG-285]

    Disabled gRPC service config. [GH-280]

    A policy's custom certificate authority can set as a file or a base64 encoded blob(tls_custom_ca/tls_custom_ca_file). [GH-259]

    โœ‚ Remove references to service named ports and instead use their numeric equivalent. [GH-266]

  • v0.2.1 Changes

    August 14, 2019

    v0.2.1

    ๐Ÿ”’ SECURITY

    • ๐Ÿ›  Fixes vulnerabilities fixed in Go 1.12.8 including CVE-2019-9512, CVE-2019-9514 and CVE-2019-14809.

  • v0.2.0 Changes

    August 04, 2019

    ๐Ÿ†• New

    Telemetry [GH-35]

    Tracing [GH-230] aka distributed tracing, provides insight into the full lifecycles, aka traces, of requests to the system, allowing you to pinpoint failures and performance issues.

    - Add Jaeger support. [GH-230]

    Metrics provide quantitative information about processes running inside the system, including counters, gauges, and histograms.

    โž• Add informational metrics. [GH-227]

    GRPC Metrics Implementation. [GH-218]

    - Additional GRPC server metrics and request sizes
- Improved GRPC metrics implementation internals
- The GRPC method label is now 'grpc\_method' and GRPC status is now `grpc_client_status` and `grpc_server_status`

    HTTP Metrics Implementation. [GH-220]

    - Support HTTP request sizes on client and server side of proxy
- Improved HTTP metrics implementation internals
- The HTTP method label is now `http_method`, and HTTP status label is now `http_status`

    ๐Ÿ”„ Changed

    • โฌ†๏ธ GRPC version upgraded to v1.22 [GH-219]
    • โž• Add support for large cookie sessions by chunking. [GH-211]
    • Prefer curve X25519 to P256 for TLS connections. [GH-233]
    • ๐Ÿง Pomerium and its services will gracefully shutdown on interrupt signal. [GH-230]
    • Google now prompts the user to select a user account (by adding select_account to the sign in url). This allows a user who has multiple accounts at the authorization server to select amongst the multiple accounts that they may have current sessions for.

    ๐Ÿ›  FIXED

    • ๐Ÿ›  Fixed potential race condition when signing requests. [GH-240]