Skip to content

Releases: spiffe/spire-controller-manager

v0.3.0

14 Sep 17:10
@github-actions github-actions
v0.3.0
6607313
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.3.0

🚨 PLEASE READ BEFORE UPGRADING 🚨

This version contains changes in the ClusterSPIFFEID CRD. It also adds a new ClusterStaticEntry CRD. Before upgrading you MUST do the following, in order:

  • Update/install those CRDs into your cluster (see here and here).
  • Update the the manager-role ClusterRole, which includes additional permissions for the new ClusterStaticEntry CRD (see here)

Added

  • ClusterStaticEntry CRD for registering workloads that live outside the cluster (#149)
  • ClusterSPIFFEID CRD can configure JWT-SVID TTL (#189)
  • The namespaces to ignore can now be defined using a regex (#170)

Updated

  • Minor documentation changes (#213)

Changed

  • Use distroless static image as base (#198)
Loading

v0.2.3

20 Jun 15:13
@github-actions github-actions
v0.2.3
2b0ff48
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.3

Added

  • Auto-detection for the cluster domain name (#90)

Updated

  • Examples to use the downward API to locate the kubelet for Kubernetes workload attestation (#160)
  • Migrated to the latest controller runtime (#151)

Security

  • Enforce TLS1.2 as a minimum version on the webhook server (#128)
Loading

v0.2.2

28 Feb 20:48
@github-actions github-actions
v0.2.2
5255ee6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.2

Added

  • Multiarch docker images supporting both amd64 and arm64 (#51)
  • Support for registration for downstream workloads (#44)
  • Migration guide for migrating from the k8s-workload-registrer (#40)

Fixed

  • Status subresource yaml in demo preventing status from being updated (#38)

Changed

  • Waits for 5 seconds for the SPIRE Server socket to become available (#80)
  • Generated DNS Names are deduplicated before registration (#85)
Loading

v0.2.1

11 Jul 23:26
@github-actions github-actions
v0.2.1
19d3ebc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.1

Fixed

  • Bug causing entries to be recreated on every reconciliation (#32)
Loading

v0.2.0

01 Jun 16:11
@github-actions github-actions
v0.2.0
fdd0e3b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.2.0

Added

  • Ability to configure the SPIRE Server API socket path via the spireServerSocketPath value in the configuration file (#29)

Updated

  • Various documentation fixes (#18, #23, #26)

Deprecated

  • The spire-api-socket CLI flag is deprecated in favor of the spireServerSocketPath value in the configuration file (#29)
Loading

v0.1.0

16 May 18:43
@github-actions github-actions
v0.1.0
a02602b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.0

First official release! The SPIRE controller manager supports:

  • Registering workloads using the ClusterSPIFFEID custom resource
  • Establishing federation relationships with foreign trust domains using the ClusterFederatedTrustDomain resource
  • Full management of the Validating Admission Controller webhook credentials
Loading