Releases: line/centraldogma
Releases · line/centraldogma
centraldogma-0.66.0
New features
- You can now clone your repositories via Git clone over HTTP. #954
git clone -c http.extraHeader="Authorization: Bearer your-token" \ https://your-dogma.com/foo/bar.git
Bug fixes
Dependencies
- Armeria 1.28.4 -> 1.29.0
- Control Plane 1.0.44 -> 1.0.45
- Jackson 2.17.0 -> 2.17.1
- Micrometer 1.12.4 -> 1.13.0
- SLF4J 2.0.7 -> 2.0.12
- Spring Boot 3.2.4 -> 3.3.0
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:
centraldogma-0.65.1
Bug fixes
CentralDogmaConfig
will no longer fail due to configuration values with colons. #952- Revert "Add project and repository tags to api metrics (#943)" #950
- The commit increases in CPU and memory usage significantly.
Dependencies
- Armeria 1.28.2 -> 1.28.4
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:
centraldogma-0.65.0
New features
- You can update the status of all servers equally using the Administrative REST API. #912 #921
- You can now start Central Dogma servers in read-only mode.
- You can now add an ANONYMOUS permission, allowing files to be retrieved without the need for an access token. #917
Improvements
- Central Dogma metrics for REST API now provide project and repository information as tags. #943
- Central Dogma server now takes a little extra time to close after setting the server status to unhealthy. #928 #938 #947
- This delay allows clients to redirect to another replica.
- Central Dogma server responds 304 status for watch requests when the server is shutting down. #928 #929
Bug fixes
- Central Dogma does not enter read-only mode unexpectedly under load. #941
- Korean text is now correctly inserted into a file through the UI. #915 #916
- You no longer see an excessive CPU usage by a single thread. #946
Dependencies
- Armeria 1.27.2 -> 1.28.2
- Bouncy Castle 1.77 -> 1.78.1
- Control plane 1.0.39 -> 1.0.44
- Guava 33.0.0-jre -> 33.1.0-jre
- Jackson 2.16.1 -> 2.17.0
- JGit6 6.8.0.202311291450-r -> 6.9.0.202403050737-r
- Micrometer 1.12.2 -> 1.12.4
- Mina SSHD 2.12.0 -> 2.12.1
- Spring Boot 3.2.2 -> 3.2.4
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:
centraldogma-0.64.3
Dependencies
- Armeria 1.27.1 -> 1.27.2
centraldogma-0.64.2
Dependencies
- Armeria 1.27.0 -> 1.27.1
centraldogma-0.64.1
Bug fixes
- XSS attacks through SAML
RelayState
are not possible now. (CVE-2024-1143)
centraldogma-0.64.0
New features
- You can now use Central Dogma as a control plane for xDS service discovery. #904
- You can now update the Central Dogma cluster status with
UpdateServerStatusCommand
. #899 - You can now execute
ForcePushCommand
to forcibly push commits in the read-only mode. #899
Improvements
- Administrators can now access the internal dogma project through both REST API and the web UI. #907
Bug fixes
- XSS attacks through SAML
RelayState
are not possible now. (CVE-2024-1143) - The project creator is now correctly retrieved based on the information stored in the metadata.json file. #909
- You no longer see 503 Service Unavailable errors with
RequestTimeoutException
when an access token is being removed. #797 #812 - The server now correctly converts JSON requests even if
jackson-module-scale
exists in the classpath. #910 - Error messages resulting from Zookeeper replication failures now include reply logs to facilitate the identification of the underlying causes. #900
Dependencies
- Armeria 1.26.4 -> 1.27.0
- Bouncy Castle 1.76 -> 1.77
- Curator 5.5.0 -> 5.6.0
- futures-completable 0.3.5 -> 0.3.6
- Guava 32.1.3 -> 33.0.0
- Jackson 2.15.3 -> 2.16.1
- Javassist 3.29.2 -> 3.30.2
- JGit 5.13.2 -> 5.13.3, 6.7.0 -> 6.8.0
- JUnit 5.10.0 -> 5.10.1
- Logback 1.2.12 -> 1.2.13
- Micrometer 1.11.5 -> 1.12.2
- Mina SSHD 2.11.0 -> 2.12.0
- Snappy 1.1.10.1 -> 1.1.10.4
- Spring Boot 2.7.16 -> 2.7.18, 3.1.4 -> 3.2.2
- Zookeeper 3.7.1 -> 3.7.2
centraldogma-0.63.3
🛠️ Bug fixes
- You can now have the capability to modify the permission settings for internal repositories, excluding the guest role. #898 #901
⛓️ Dependencies
- Armeria 1.26.3 → 1.26.4
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:
centraldogma-0.63.2
📈 Improvements
- You can now hide sensitive information in mirroring configuration using
ConfigValueConverter
. #895
⛓️ Dependencies
- Armeria 1.26.2 → 1.26.3
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests:
centraldogma-0.63.1
⭐️ New features
- You can now define confidential properties using variables in the configuration file, seamlessly converted through
ConfigValueConverter
.
This bolsters the security of Central Dogma configuration, mitigating the potential risk of exposing sensitive information. #890- For example:
- The configuration file (
dogma.json
):{ ... tls: { "password": "encryption:./path/to/encrypted/file" ... }, ... }
- The converter loaded via SPI:
public class MyConfigValueConverter extends ConfigValueConverter { public List<String> supportedPrefixes() { return List.of("encryption"); } public String convert(String prefix, String value) { if ("./path/to/encrypted/file".equals(value)) { // load the file and decrypt the content. } ... } }
- The configuration file (
- Here is the list of confidential properties that the converter supports:
replication.secret
tls.keyCertChain
tls.key
authentication.properties.keyStore.password
(when SAML is used)authentication.properties.keyStore.keyPasswords
(when SAML is used)
- For example:
⛓️ Dependencies
- Armeria 1.26.1 → 1.26.2
Thank you
This release was possible thanks to the following contributors who shared their brilliant ideas and awesome pull requests: