v1.3.0-rc.2

Changelog

99beb28 update deps for release (#114)
cca4b42 make internalProxyURL static (#113)
4b1a5af Consistent JWTProviderKey support in provision and samples create commands (#111)
dbea0ba add sample flag defaults (#109)
2c8c82e Updated the cluster definition of the adapter in the native envoy template config (#107)

v1.3.0-rc.1

Changelog

408f75b update deps for v1.3.0-rc.1 (#104)
5f2df32 always include k8s sa during provisioning (#103)
11511b9 fix serviceaccount crd (#101)
9a61d86 Adding k8s service account into provisioned config (#100)
dbd2586 updated deps and addressed config loading (#97)
56472f7 removed fluentd endpoint and warning for lack of analytics SA during provisioning (#93)
4900fbb update deps (#90)
de8fae8 product callout support for operations (#89)
2b6a657 update bindings commands for operations (#88)
3fb6db8 product.GetBoundTargets() returns empty array instead of null (#87)
0668b0a token response follows OAuth2 spec (#82)
ab2c1a8 removed dynamic forward proxy config and filter (#79)

v1.2.0

Release Notes

Changelog

49b6126 updated golib and envoy deps (#77)
000278b fixed the proxies to bring back support for http2 client (#76)
123ddc2 prerelease for 1.2.0 and one more unit test (#74)
92d203d In Solidarity (#72)
9d5467f samples create supports analytics sa (#71)
84c85f1 move prometheus annotations to podspec (#70)
50f9095 Unit tests in all packages (#68)
591756b Utilizing propertyset for NG SaaS provisioning (#41)
6919656 given oauth or saml token get priotized (#66)
7ed88c6 Added analytics service account support (#65)
c7bc1fa output error (#63)

v1.2.0-rc.1

Changelog

b74f4ce prerelease for 1.2.0 and one more unit test
92d203d In Solidarity (#72)
9d5467f samples create supports analytics sa (#71)
84c85f1 move prometheus annotations to podspec (#70)
50f9095 Unit tests in all packages (#68)
591756b Utilizing propertyset for NG SaaS provisioning (#41)
6919656 given oauth or saml token get priotized (#66)
7ed88c6 Added analytics service account support (#65)
c7bc1fa output error (#63)

v1.1.0

New CLI Command:

$ apigee-remote-service-cli bindings verify -h
Verify the bound Apigee product (check all bound products if unspecified) and the associated Apps also have remote-service product associated.

Usage:
  apigee-remote-service-cli bindings verify [product name (optional)] [flags]

Flags:
  -h, --help   help for verify

Global Flags:
  -c, --config string         path to Apigee Remote Service config file
  -e, --environment string    Apigee environment name
      --insecure              Allow insecure server connections when using SSL
      --legacy                Apigee SaaS (sets management and runtime URL)
  -m, --management string     Apigee management base URL
      --mfa string            Apigee multi-factor authorization token (legacy only)
      --opdk                  Apigee opdk
  -o, --organization string   Apigee organization name
  -p, --password string       Apigee password (legacy or OPDK only)
  -r, --runtime string        Apigee runtime base URL (required for hybrid or opdk)
  -t, --token string          Apigee OAuth or SAML token (hybrid only)
  -u, --username string       Apigee username (legacy or OPDK only)
  -v, --verbose               verbose output

New CLI Command:

$ apigee-remote-service-cli samples create -h
Create sample configuration files for native envoy or istio. A valid config
yaml file generated through provisioning is required via --config/-c. Files will be in
the directory specified via --out (default ./samples).
In the case of native envoy, it takes the target service host and the desired name for
its cluster. It also sets custom SSL connection from the envoy to the remote-service
cluster if a folder containing tls.key and tls.crt is provided via --tls.
In the case of istio where envoy proxy acts as sidecars, if the target is unspecified,
the httpbin example will be generated. Otherwise, users are responsible for preparing
files related to deployment of their target services.

Usage:
  apigee-remote-service-cli samples create [flags]

Flags:
  -c, --config string     path to Apigee Remote Service config file
  -f, --force             force overwriting existing directory
  -h, --help              help for create
      --host string       target service host (default "httpbin.org")
  -n, --name string       target service name (default "httpbin")
      --out string        directory to create config files within (default "./samples")
  -t, --template string   template name (options are istio-1.6, istio-1.7, native) (default "istio-1.6")
      --tls string        directory for tls key and crt

• CLI: now uses OAuth2 authentication for CG SaaS (required when MFA is enabled on Apigee)

• CLI: Fix for bindings commands in OPDK (#29)

• Quota could become stuck when connection lost (apigee/apigee-remote-service-envoy#31)

• Docker images are now built with non-root user (999)

• Kubernetes samples enforce the user must not be root

• Now use Google's distroless (gcr.io/distroless/base) image instead of scratch for base of default image

• --http1.1 no longer needed for curl commands against proxy endpoints

Changelog

01a5244 typo in istio-1.7 template (#61)
1afa6ea update deps (#60)
368cda5 fixed indentation error in the native template (#59)
f73a28b supporting saas without tls and secret (#58)
eecbfe7 Update deps and fixed lint errors (#57)
4f1bdb3 Injecting version into proxies during provision (#56)
5a90a97 fix typo
d8a94e8 support --tag flag in samples create for image version tag (#55)
785c64c emits warning for hybrid (#53)
0293fca changed --mfa description; ignoring --mfa for hyrbid and opdk (#52)
26376ec changed all descriptions of flags to start with lowercase, except for Apigee (#51)
9dd1e39 Fixed MFA not reading error; hiding oauth url containing credentials (#49)
a0d08ef supporting MFA and fixed some misc issues (#48)
5bd533d Sample config file generation (#43)
6bd6728 Switched to OAuth2 for CG SaaS (#45)
82fbf00 App bindings linter (#38)
ec6088a added --management, -m flag for bindings service (#37)
58d4b59 Set createNew to true in AssignMessage policies used for response (#35)
cd52b83 updated deps (#36)
77bcc16 removed unsued Send-Runtime-Env.xml policy (#30)

v1.1.0-rc.1

New CLI Command:

$ apigee-remote-service-cli bindings verify -h
Verify the bound Apigee product (check all bound products if unspecified) and the associated Apps also have remote-service product associated.

Usage:
  apigee-remote-service-cli bindings verify [product name (optional)] [flags]

Flags:
  -h, --help   help for verify

Global Flags:
  -c, --config string         path to Apigee Remote Service config file
  -e, --environment string    Apigee environment name
      --insecure              Allow insecure server connections when using SSL
      --legacy                Apigee SaaS (sets management and runtime URL)
  -m, --management string     Apigee management base URL
      --mfa string            Apigee multi-factor authorization token (legacy only)
      --opdk                  Apigee opdk
  -o, --organization string   Apigee organization name
  -p, --password string       Apigee password (legacy or OPDK only)
  -r, --runtime string        Apigee runtime base URL (required for hybrid or opdk)
  -t, --token string          Apigee OAuth or SAML token (hybrid only)
  -u, --username string       Apigee username (legacy or OPDK only)
  -v, --verbose               verbose output

New CLI Command:

$ apigee-remote-service-cli samples create -h
Create sample configuration files for native envoy or istio. A valid config
yaml file generated through provisioning is required via --config/-c. Files will be in
the directory specified via --out (default ./samples).
In the case of native envoy, it takes the target service host and the desired name for
its cluster. It also sets custom SSL connection from the envoy to the remote-service
cluster if a folder containing tls.key and tls.crt is provided via --tls.
In the case of istio where envoy proxy acts as sidecars, if the target is unspecified,
the httpbin example will be generated. Otherwise, users are responsible for preparing
files related to deployment of their target services.

Usage:
  apigee-remote-service-cli samples create [flags]

Flags:
  -c, --config string     path to Apigee Remote Service config file
  -f, --force             force overwriting existing directory
  -h, --help              help for create
      --host string       target service host (default "httpbin.org")
  -n, --name string       target service name (default "httpbin")
      --out string        directory to create config files within (default "./samples")
  -t, --template string   template name (options are istio-1.6, istio-1.7, native) (default "istio-1.6")
      --tls string        directory for tls key and crt

• CLI: now uses OAuth2 authentication for CG SaaS (required when MFA is enabled on Apigee)

• CLI: Fix for bindings commands in OPDK (#29)

• Quota could become stuck when connection lost (apigee/apigee-remote-service-envoy#31)

• Docker images are now built with non-root user (999)

• Kubernetes samples enforce the user must not be root

• Now use Google's distroless (gcr.io/distroless/base) image instead of scratch for base of default image

• --http1.1 no longer needed for curl commands against proxy endpoints

Changelog

f73a28b supporting saas without tls and secret (#58)
eecbfe7 Update deps and fixed lint errors (#57)
4f1bdb3 Injecting version into proxies during provision (#56)
5a90a97 fix typo
d8a94e8 support --tag flag in samples create for image version tag (#55)
785c64c emits warning for hybrid (#53)
0293fca changed --mfa description; ignoring --mfa for hyrbid and opdk (#52)
26376ec changed all descriptions of flags to start with lowercase, except for Apigee (#51)
9dd1e39 Fixed MFA not reading error; hiding oauth url containing credentials (#49)
a0d08ef supporting MFA and fixed some misc issues (#48)
5bd533d Sample config file generation (#43)
6bd6728 Switched to OAuth2 for CG SaaS (#45)
82fbf00 App bindings linter (#38)
ec6088a added --management, -m flag for bindings service (#37)
58d4b59 Set createNew to true in AssignMessage policies used for response (#35)
cd52b83 updated deps (#36)
77bcc16 removed unsued Send-Runtime-Env.xml policy (#30)

v1.0.0

Changelog

ccec218 v1.0.0 (#32)

v1.0.0-pre.3

No new docker images: use v1.0.0-pre.2

Changelog

43033db perform rotate when specified (#28)

v1.0.0-pre.2

Changelog

d45e0f8 v1.0.0-pre.2 (#26)
eecb6ab Create the token internal command to generate internal JWT for debug purpose (#25)
c386d94 changed the retry timeout to 180 seconds; improved the stderr output when retrying (#23)

v1.0.0-pre.1

Changelog

ba2e1aa update deps (#21)
dd9706d not returning error on 'unknown' runtime version anymore (#20)
e5056b6 Encoding UDCA endpoint for hybrid 1.3+ (#19)
343f54e simplify releaser
d8fbed6 Merge pull request #17 from apigee/issue-16
1e2b9f8 add goboring build to release
bf62748 Unit tests (#15)
1c90b0f Issue 12-13 (#14)
368f1a5 fixed linting reported from glangci-lint (#11)
5ac3d02 Merge pull request #10 from apigee/dep-update
8679d5e update internal deps to latest
0f3837a Merge pull request #8 from apigee/github-actions
0392845 github actions
3f704c6 Merge pull request #7 from apigee/issue-5
513e867 remove extraneous decode basic auth
3e16624 Provision apiproduct (#6)