Releases: Cloud-Foundations/keymaster
Releases · Cloud-Foundations/keymaster
v1.15.5
What's Changed
- Prepare fo ECDSA and Ed25519 x509 certfificates.
- simplicicaiton generation of ca, enhance test to ensure stable subject by @cviecco in #236
- keymaster: enable round-robin dialer by default. by @rgooch in #91
- Increase webauthn code coverage by @cviecco in #230
- Fix client retry on good token by @cviecco in #240
- Migrate away from square jwt to communuty jwt, including api changes by @cviecco in #243
- Fix ssh key when writing to disk by @cviecco in #246
- go depenency updates
Contributors
cviecco and rgooch
Assets 2
Minor enhancements
User facing changes:
- Change client RSA key size to 3072
developer/ deployment changes
- Version is now only specified on the makefile (specfile is a template)
- New API call for external consumption
- Test coverage enhacements
Server fix for broken packaging
- fixes package build side issue
Enhances ssh custom extensions and bugfixes
Enhancements:
- ssh attributes now can use defined using posix extensions (useful for github name transformations)
- client is more slient by default
- update jquery to latest (3.7.1)
- generic golang depenency updates
Fixes:
- Client: Fix webauthn on linux. Now works out of the box (1.15.1)
- Client: Bug on respecting $HOME environment variable directory for some operations (1.15.1)
- Client: Fix on fallback when fido2 keys not present.
- generic golang depenency updates
Minor Enhancements and fixes
New:
- Added ability to require agent confirmation, enabled by setting in config file only
Bugfixes:
- Client: Allow missing u2f devices to fallback on to other 2fa methods (broken when using new webauthn hostlib)
- Minor updates for october dependencies
Depencency updates
v1.13.4 updating deps, initialize migration our of duo-labs (#200)
Cli Webauthn (MacOS and Windows)
- Added compabilitu for webauthn for MacOS and Windows cli.
- Fixed issue with duplicate credentials registered in OKTA
Other fixes (from previous changes not released):
- Fixed JWKS ul on Ed25519 public keys
- Added Service Methods for smallstack compatibilty
Generic ssh extensions
Added the abiliity for keymasterd to add generic ssh extensions. With the primary goal to genertate github enterprise roles.
Dependency updates and minor fixes
What's Changed
- Fix missing file to rpm specfile by @erikespinoza in #182
- Update deps by @cviecco in #183
- Minor fixes 1.11.2 by @cviecco in #184
Full Changelog: v1.11.0...v1.11.2
Contributors
cviecco and erikespinoza
Assets 2
FIDOv2 at al
- Add cache control for static files.
- Add global rate limit for password attempts.
- Use Origin header in preference to Referer.
- Add FIDOv2 protocol support for token registration and web authentication.
- Refactor AWS role certificate support into a package.
- Small documentation improvements.
- Other bugfixes.