Skip to content

0.10.1
Compare
Choose a tag to compare
@thibaultcha thibaultcha released this 27 Mar 22:53
· 7876 commits to master since this release
0.10.1
This tag was signed with the committer’s verified signature.
thibaultcha Thibault Charbonnier
GPG key ID: E1D41D2DDFA3B99D
Learn about vigilant mode.
522dea9

Changed

  • ⚠️ Serf has been downgraded to version 0.7 in our distributions,
    although versions up to 0.8.1 are still supported. This fixes a problem when
    automatically detecting the first non-loopback private IP address, which was
    defaulted to 127.0.0.1 in Kong 0.10.0. Greater versions of Serf can still
    be used, but the IP address needs to be manually specified in the
    cluster_advertise configuration property.
  • Admin API:
    • Disable support for TLS/1.0.
      #2212

Added

  • Admin API:
    • Active targets can be pulled with GET /upstreams/{name}/targets/active.
      #2230
    • Provide a convenience endpoint to disable targets at:
      DELETE /upstreams/{name}/targets/{target}.
      Under the hood, this creates a new target with weigth = 0 (the
      correct way of disabling targets, which used to cause confusion).
      #2256
  • Plugins:
    • cors: Support for configuring multiple Origin domains.
      #2203

Fixed

  • Use an LRU cache for Lua-land entities caching to avoid exhausting the Lua
    VM memory in long-running instances.
    #2246
  • Avoid potential deadlocks upon callback errors in the caching module for
    database entities.
    #2197
  • Relax multipart MIME type parsing. A space is allowed in between values
    of the Content-Type header.
    #2215
  • Admin API:
    • Better handling of non-supported HTTP methods on endpoints of the Admin
      API. In some cases this used to throw an internal error. Calling any
      endpoint with a non-supported HTTP method now always returns 405 Method Not Allowed as expected.
      #2213
  • CLI:
    • Better error handling when missing Serf executable.
      #2218
    • Fix a bug in the kong migrations command that would prevent it to run
      correctly.
      #2238
    • Trim list values specified in the configuration file.
      #2206
    • Align the default configuration file's values to the actual, hard-coded
      default values to avoid confusion.
      #2254
  • Plugins:
    • hmac: Generate an HMAC secret value if none is provided.
      #2158
    • oauth2: Don't try to remove credential values from request bodies if the
      MIME type is multipart, since such attemps would result in an error.
      #2176
    • ldap: This plugin should not be applied to a single Consumer, however, this
      was not properly enforced. It is now impossible to apply this plugin to a
      single Consumer (as per all authentication plugin).
      #2237
    • aws-lambda: Support for us-west-2 region in schema.
      #2257
Assets 12
Loading