Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update suite.yml for v18.0.0+suite1 release #250

Merged
merged 1 commit into from
Aug 24, 2022
Merged

Update suite.yml for v18.0.0+suite1 release #250

merged 1 commit into from
Aug 24, 2022

Conversation

gl-johnson
Copy link
Contributor

@gl-johnson gl-johnson commented Aug 23, 2022
edited
Loading

Release Notes

All notable changes to this project will be documented in this file.

[1.18.0] - 2022-08-24

Table of Contents

Components

These are the components that combine to create this Conjur OSS Suite release and links
to their releases:

Conjur Server

Conjur SDK

Platform Integrations

DevOps Tools

Secretless Broker

Summon

Installation Instructions for the Suite Release Version of Conjur

Installing the Suite Release Version of Conjur requires setting the container image tag. Below are more specific instructions depending on environment.

  • Docker or docker-compose

    Set the container image tag to cyberark/conjur:1.18.0.
    For example, make the following update to the conjur service in the quickstart docker-compose.yml

    image: cyberark/conjur:1.18.0

  • Conjur Open Source Helm chart

    Update the image.tag value and use the appropriate release of the helm chart:

    helm install ... \
  --set image.tag="1.18.0" \
  ...
  https://github.com/cyberark/conjur-oss-helm-chart/releases/download/v2.0.5/conjur-oss-2.0.5.tgz

Upgrade Instructions

Upgrade instructions are available for the following components:

Changes

The following are changes to the constituent components since the last Conjur
OSS Suite release:

cyberark/conjur

v1.17.7 (2022-06-29)

  • Changed
  • Fixed
    • Previously, the temporary schemas used to modify Conjur policy
      caused the Postgres database catalog cache to leak memory over time,
      leading to an eventual crash. Now, we recycle the database
      connection after modifying policy to free this cache and prevent
      the memory leak from occurring.
      cyberark/conjur#2584
  • Security

v1.18.0 (2022-08-01)

cyberark/conjur-oss-helm-chart

v2.0.5 (2022-08-17)

cyberark/conjur-cli

v6.2.6 (2022-01-31)

v6.2.7 (2022-05-09)

v6.2.8 (2022-08-16)

cyberark/conjur-api-ruby

v5.4.0 (2022-08-16)

cyberark/conjur-service-broker

v1.2.6 (2022-08-16)

cyberark/conjur-authn-k8s-client

v0.23.7 (2022-07-12)

  • Changed
    • Updated dev/Dockerfile.debug and removed bin/test-workflow/test-app-summon/Dockerfile.builder
      and bin/test-workflow/test-app-summon/Dockerfile.oc
      cyberark/conjur-authn-k8s-client#480

cyberark/secrets-provider-for-k8s

v1.4.4 (2022-07-12)

cyberark/terraform-provider-conjur

v0.6.3 (2022-08-17)

cyberark/secretless-broker

v1.7.14 (2022-08-17)

cyberark/summon

v0.9.4 (2022-08-18)

@gl-johnson gl-johnson force-pushed the suite-release-v1_18_0 branch 2 times, most recently from 376309c to 2cde7a9 Compare August 23, 2022 16:01
@gl-johnson gl-johnson marked this pull request as ready for review August 23, 2022 20:25
@gl-johnson gl-johnson requested a review from a team as a code owner August 23, 2022 20:25
@jtuttle
Copy link
Member

jtuttle commented Aug 23, 2022

What's New

This suite release aligned with Conjur Server version 1.18.0. It includes the release of label-based Kubernetes authentication, OIDC authentication in Conjur, and support for JWT authentication added to several projects. It also includes many dependency upgrades and security fixes.

Label-based K8s authentication

Conjur can now use labels applied to namespaces to determine whether to authenticate an application. This is useful for managing large numbers of applications that reside in the same namespace.

OIDC authentication

The Conjur API now supports OIDC authentication using Okta. See the documentation for more details about setting up OIDC authentication.

JWT Authentication

Support for using a JWT authentication flow has been added to the following projects:

jtuttle
jtuttle previously approved these changes Aug 23, 2022
View reviewed changes
@gl-johnson gl-johnson merged commit bcdf095 into main Aug 24, 2022
@gl-johnson gl-johnson deleted the suite-release-v1_18_0 branch August 24, 2022 14:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jtuttle jtuttle jtuttle approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@gl-johnson @jtuttle