Releases: traefik/traefik
Releases Β· traefik/traefik
v3.0.0-rc2
Enhancements:
- [consul] ConsulCatalog StrictChecks (#10388 by djenriquez)
- [metrics,tracing] Upgrade opentelemetry dependencies (#10472 by mmatur)
- [middleware,authentication,tracing] Add captured headers options for tracing (#10457 by rtribotte)
- [middleware,metrics] Semconv OTLP stable HTTP metrics (#10421 by mmatur)
- [plugins] Upgrade http-wasm host to v0.6.0 to support clients using v0.4.0 (#10475 by jcchavezs)
- [tracing] Support OTEL_PROPAGATORS to configure tracing propagation (#10465 by youkoulayley)
Bug fixes:
Documentation:
- [k8s,k8s/gatewayapi] Add ReferenceGrants to Gateway API Traefik controller RBAC (#10462 by rtribotte)
- [k8s] Fix invalid version in docs about Gateway API on Traefik v3 (#10474 by mloiseleur)
- [rules] Improve ruleSyntax option documentation (#10441 by rtribotte)
- Fix typo in migration docs (#10478 by Eisberge)
Misc:
v3.0.0-rc1
Enhancements:
- [docker,service] Adds weight on ServersLoadBalancer (#10372 by juliens)
- [file] Reload provider file configuration on SIGHUP (#9993 by sokoide)
- [k8s,k8s/gatewayapi] Upgrade gateway api to v1.0.0 (#10205 by mmatur)
- [k8s,k8s/gatewayapi] Support for cross-namespace references / GatewayAPI ReferenceGrants (#10346 by pascal-hofmann)
- [logs] Introduce static config hints (#10351 by rtribotte)
- [metrics,tracing,accesslogs] Remove observability for internal resources (#9633 by rtribotte)
- [metrics] Add support for sending DogStatsD metrics over Unix Socket (#10199 by liamvdv)
- [middleware,authentication] Add forwardAuth.addAuthCookiesToResponse (#8924 by tgunsch)
- [middleware] Implements the includedContentTypes option for the compress middleware (#10207 by rjsocha)
- [middleware] Feat re introduce IpWhitelist middleware as deprecated (#10341 by mmatur)
- [middleware] Add ResponseCode to CircuitBreaker (#10147 by fahhem)
- [middleware] Add
rejectStatusCode
option toIPAllowList
middleware (#10130 by jfly) - [plugins] Add http-wasm plugin support to Traefik (#10189 by zetaab)
- [rules] Bring back v2 rule matchers (#10339 by rtribotte)
- [server] Add SO_REUSEPORT support for EntryPoints (#9834 by aofei)
- [sticky-session] Support setting sticky cookie max age (#10176 by Patrick0308)
- [tracing,otel] Migrate to opentelemetry (#10223 by zetaab)
- Reintroduce dropped v2 dynamic config (#10355 by rtribotte)
Bug fixes:
- [k8s/crd,k8s] Delete warning in Kubernetes CRD provider about the supported version (#10414 by nmengin)
- [metrics] Fix OpenTelemetry unit tests (#10380 by mmatur)
- [middleware,authentication,metrics,tracing] Align OpenTelemetry tracing and metrics configurations (#10404 by rtribotte)
- [middleware] Fix brotli response status code when compression is disabled (#10396 by rtribotte)
- [tls,server] Compute priority for https forwarder TLS routes (#10288 by rtribotte)
Documentation:
- Update version comment in quick-start.md (#10383 by matthieuwerner)
- Improve migration guide (#10319 by rtribotte)
Misc:
- [k8s/crd,k8s] Support file path as input param for Kubernetes token value (#10232 by sssash18)
- [middleware] Disable br compression when no Accept-Encoding header is present (#10178 by robin-moser)
- Merge current v2.11 into v3.0 (#10382 by mmatur)
- Merge back v2.11 into v3.0 (#10377 by mmatur)
- Merge back v2.11 into v3.0 (#10353 by youkoulayley)
- Merge current v2.11 into v3.0 (#10328 by mmatur)
- Merge v2.11 into v3.0 (#10417 by mmatur)
v2.11.0
Enhancements:
- [middleware] Deprecate IPWhiteList middleware in favor of IPAllowList (#10249 by lbenguigui)
- [redis] Add Redis Sentinel support (#10245 by youkoulayley)
- [server] Add KeepAliveMaxTime and KeepAliveMaxRequests features to entrypoints (#10247 by juliens)
- [sticky-session] Hash WRR sticky cookies (#10243 by youkoulayley)
Bug fixes:
- [acme] Update go-acme/lego to v4.15.0 (#10392 by ldez)
- [authentication] Fix NTLM and Kerberos (#10405 by juliens)
- [file] Fix file watcher (#10420 by juliens)
- [file] Update github.com/fsnotify/fsnotify to v1.7.0 (#10313 by ldez)
- [http3] Update quic-go to v0.40.1 (#10296 by ldez)
- [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
- [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)
- [server] Fix ReadHeaderTimeout for PROXY protocol (#10320 by juliens)
- [webui] Fixes the Header Button (#10395 by mdeliatf)
- [webui] Fix URL encode resource's id before calling API endpoints (#10292 by andsarr)
Documentation:
- [acme] Fix TLS challenge explanation (#10293 by cavokz)
- [docker] Update wording of compose example (#10276 by svx)
- [docker,acme] Fix typo (#10294 by youpsla)
- [ecs] Mention ECS as supported backend (#10393 by aleyrizvi)
- [k8s/crd] Adjust deprecation notice for Kubernetes CRD provider (#10317 by rtribotte)
- [middleware] Update the documentation for RateLimit to provide a better example (#10298 by rmburton)
- [server] Fix the keepAlive options for the CLI examples (#10398 by immanuelfodor)
- Prepare release v2.11.0-rc2 (#10384 by rtribotte)
- Improve Concepts documentation page (#10315 by oliver-dvorski)
- Prepare release v2.11.0-rc1 (#10326 by mmatur)
- Fix description for anonymous usage statistics references (#10287 by ariyonaty)
- Documentation enhancements (#10261 by svx)
v2.11.0-rc2
Bug fixes:
- [middleware,tcp] Add missing TCP IPAllowList middleware constructor (#10331 by youkoulayley)
- [nomad] Update the Nomad API dependency to v1.7.2 (#10327 by jrasell)
Documentation:
- Improve Concepts documentation page (#10315 by oliver-dvorski)
v2.11.0-rc1
Enhancements:
- [middleware] Deprecate IPWhiteList middleware in favor of IPAllowList (#10249 by lbenguigui)
- [redis] Add Redis Sentinel support (#10245 by youkoulayley)
- [server] Add KeepAliveMaxTime and KeepAliveMaxRequests features to entrypoints (#10247 by juliens)
- [sticky-session] Hash WRR sticky cookies (#10243 by youkoulayley)
Bug fixes:
- [file] Update github.com/fsnotify/fsnotify to v1.7.0 (#10313 by ldez)
- [http3] Update quic-go to v0.40.1 (#10296 by ldez)
- [server] Fix ReadHeaderTimeout for PROXY protocol (#10320 by juliens)
Documentation:
- [acme] Fix TLS challenge explanation (#10293 by cavokz)
- [docker,acme] Fix typo (#10294 by youpsla)
- [docker] Update wording of compose example (#10276 by svx)
- [k8s/crd] Adjust deprecation notice for Kubernetes CRD provider (#10317 by rtribotte)
- Fix description for anonymous usage statistics references (#10287 by ariyonaty)
- Documentation enhancements (#10261 by svx)
v2.10.7
v3.0.0-beta5
CVEs:
Enhancements:
Misc:
v2.10.6
Go CVEs:
Bug fixes:
- [acme] Remove backoff for http challenge (CVE-2023-47124) (#10224 by youkoulayley)
- [consul,consulcatalog] Update github.com/hashicorp/consul/api (#10220 by kevinpollet)
- [http3] Update quic-go to v0.39.1 (#10171 by tomMoulard)
- [middleware] Fix stripPrefix middleware is not applied to retried attempts (#10255 by niki-timofe)
- [provider] Refuse recursive requests (CVE-2023-47633) (#10242 by rtribotte)
- [server] Deny request with fragment in URL path (CVE-2023-47106) (#10229 by lbenguigui)
- [tracing] Remove deprecated code usage for datadog tracer (#10196 by mmatur)
Documentation:
- [governance] Update the review process and maintainers team documentation (#10230 by geraldcroes)
- [governance] Guidelines Update (#10197 by geraldcroes)
- [metrics] Add a mention for the host header in metrics headers labels doc (#10172 by rtribotte)
- [middleware] Rephrase BasicAuth and DigestAuth docs (#10226 by sssash18)
- [middleware] Improve ErrorPages examples (#10209 by arendhummeling)
- Add @lbenguigui to maintainers (#10222 by kevinpollet)
v3.0.0-beta4
Github Advisory GHSA-7v4p-328v-8v5g
Related to CVE-2023-39325
Bug fixes:
- [consul,tls] Enable TLS for Consul Connect TCP services (#10140 by rtribotte)
- [middleware] Allow short healthcheck interval with long timeout (#9832 by kevinmcconnell)
- [middleware] Fix GrpcWeb middleware to clear ContentLength after translating to normal gRPC message (#9782 by CleverUnderDog)
- [sticky-session,server] Set sameSite field for wrr load balancer sticky cookie (#10066 by sunyakun)
Documentation:
- [docker/swarm] Fix minor typo in swarm example (#10071 by kaznovac)
- [docker/swarm] Remove documentation of old swarm options (#10001 by ldez)
- Fix bad anchor on documentation (#10041 by mmatur)
- Fix migration guide heading (#9989 by ldez)
Misc:
v2.10.5
Github Advisory GHSA-7v4p-328v-8v5g
Related to CVE-2023-39325
Bug fixes:
- [accesslogs] Move origin fields capture to service level (#10126 by rtribotte)
- [accesslogs] Fix preflight response status in access logs (#10142 by rtribotte)
- [acme] Update go-acme/lego to v4.14.0 (#10087 by ldez)
- [acme] Update go-acme/lego to v4.13.3 (#10077 by ldez)
- [http3] Update quic-go to v0.37.5 (#10083 by ldez)
- [http3] Update quic-go to v0.39.0 (#10137 by ldez)
- [http3] Update quic-go to v0.37.6 (#10085 by ldez)
- [http3] Update quic-go to v0.38.0 (#10086 by ldez)
- [http3] Update quic-go to v0.38.1 (#10090 by ldez)
- [kv] Ignore ErrKeyNotFound error for the KV provider (#10082 by sunyakun)
- [middleware,authentication] Adjust forward auth to avoid connection leak (#10096 by wdhongtw)
- [middleware,server] Improve CNAME flattening to avoid unnecessary error logging (#10128 by niallnsec)
- [middleware] Allow X-Forwarded-For delete operation (#10132 by rtribotte)
- [server] Update x/net and grpc/grpc-go (#10161 by rtribotte)
- [webui] Add missing accessControlAllowOriginListRegex to middleware view (#10157 by DBendit)
- Fix false positive in url anonymization (#10138 by jspdown)
Documentation:
- [acme] Change Arvancloud URL (#10115 by sajjadjafaribojd)
- [acme] Correct minor typo in crd-acme docs (#10067 by ayyron-lmao)
- [healthcheck] Remove healthcheck interval configuration warning (#10068 by rtribotte)
- [kv,redis] Docs describe the missing db parameter in redis provider (#10052 by tokers)
- [middleware] Doc fix accessControlAllowHeaders examples (#10121 by ebuildy)
- Updates business callout in the documentation (#10122 by tomatokoolaid)