v0.8.0
Notes about upgrading from v0.7
- The RBAC model has been improved to support explicit denies. What this means is that any previous
RBAC policy rules, need to be rewritten to include one extra column with the effect:
allow
ordeny
. For example, if a rule was written like this:It should be rewritten to look like this:p, my-org:my-team, applications, get, */*
p, my-org:my-team, applications, get, */*, allow
Changes since v0.7:
- Support kustomize as an application source (issue #510)
- Introduce project tokens for automation access (issue #498)
- Add ability to delete a single application resource to support immutable updates (issue #262)
- Update RBAC model to support explicit denies (issue #497)
- Ability to view Kubernetes events related to application projects for auditing
- Add PVC healthcheck to controller (issue #501)
- Run all containers as an unprivileged user (issue #528)