luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity

changelog: add entries for 1.9.0-beta2 (#9129)

This commit is contained in:
Mike Morris 2020-11-06 17:18:47 -05:00 committed by GitHub
parent 1757ed6326
commit 2317a471b3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
7 changed files with 45 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.changelog/9002.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:improvement
ui: add dashboard_url_template config option for external dashboard links
```

3
.changelog/9008.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:bug
ui: only show topology tab for services that exist
```

3
.changelog/9059.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:improvement
agent: add path_allowlist config option to restrict metrics proxy queries
```

4
.changelog/9081.txt Normal file
View File

@ -0,0 +1,4 @@
```release-note:bug
ui: hide metrics for ingress gateways until full support can be implemented
```

3
.changelog/9088.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:feature
telemetry: add initialization and definition for non-expiring key metrics in Prometheus
```

3
.changelog/9099.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:improvement
agent: protect the metrics proxy behind ACLs
```

26
CHANGELOG.md
View File

@ -1,5 +1,31 @@
## UNRELEASED
BREAKING CHANGES:
* sentinel: **(Consul Enterprise only)** update to v0.16.0, which replaces `whitelist` and `blacklist` with `allowlist` and `denylist`
SECURITY:
* Fix Consul Enterprise Namespace Config Entry Replication DoS. Previously an operator with service:write ACL permissions in a Consul Enterprise cluster could write a malicious config entry that caused infinite raft writes due to issues with the namespace replication logic. [[CVE-2020-25201](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25201)] [[GH-9024](https://github.com/hashicorp/consul/issues/9024)]
FEATURES:
* agent: Add a new RPC endpoint for streaming cluster state change events to clients.
* telemetry: add initialization and definition for non-expiring key metrics in Prometheus [[GH-9088](https://github.com/hashicorp/consul/issues/9088)]
IMPROVEMENTS:
* agent: add path_allowlist config option to restrict metrics proxy queries [[GH-9059](https://github.com/hashicorp/consul/issues/9059)]
* agent: protect the metrics proxy behind ACLs [[GH-9099](https://github.com/hashicorp/consul/issues/9099)]
* ui: add dashboard_url_template config option for external dashboard links [[GH-9002](https://github.com/hashicorp/consul/issues/9002)]
BUG FIXES:
* api: Fixed a bug where the Check.GRPCUseTLS field could not be set using snake case. [[GH-8771](https://github.com/hashicorp/consul/issues/8771)]
* connect: fix connect sidecars registered via the API not being automatically deregistered with their parent service after an agent restart by persisting the LocallyRegisteredAsSidecar property. [[GH-8924](https://github.com/hashicorp/consul/issues/8924)]
* ui: hide metrics for ingress gateways until full support can be implemented [[GH-9081](https://github.com/hashicorp/consul/issues/9081)]
* ui: only show topology tab for services that exist [[GH-9008](https://github.com/hashicorp/consul/issues/9008)]
## 1.9.0-beta1 (October 12, 2020)
BREAKING CHANGES: