2019-11-21 19:21:23 +00:00
|
|
|
## Unreleased
|
|
|
|
|
|
2020-04-09 13:51:37 +00:00
|
|
|
## 0.5.0 (April 9th, 2020)
|
|
|
|
|
|
2020-03-18 19:50:53 +00:00
|
|
|
Features:
|
|
|
|
|
|
|
|
|
|
* Added Raft support for HA mode [[GH-228](https://github.com/hashicorp/vault-helm/pull/229)]
|
2020-04-09 13:51:37 +00:00
|
|
|
* Now supports Vault Enterprise [[GH-250](https://github.com/hashicorp/vault-helm/pull/250)]
|
|
|
|
|
* Added K8s Service Registration for HA modes [[GH-250](https://github.com/hashicorp/vault-helm/pull/250)]
|
2020-03-03 18:37:47 +00:00
|
|
|
|
|
|
|
|
* Option to set `AGENT_INJECT_VAULT_AUTH_PATH` for the injector [[GH-185](https://github.com/hashicorp/vault-helm/pull/185)]
|
2020-03-06 20:10:41 +00:00
|
|
|
* Added environment variables for logging and revocation on Vault Agent Injector [[GH-219](https://github.com/hashicorp/vault-helm/pull/219)]
|
2020-03-19 04:32:45 +00:00
|
|
|
* Option to set environment variables for the injector deployment [[GH-232](https://github.com/hashicorp/vault-helm/pull/232)]
|
2020-03-20 05:45:58 +00:00
|
|
|
* Added affinity, tolerations, and nodeSelector options for the injector deployment [[GH-234](https://github.com/hashicorp/vault-helm/pull/234)]
|
2020-03-20 15:39:56 +00:00
|
|
|
* Made all annotations multi-line strings [[GH-227](https://github.com/hashicorp/vault-helm/pull/227)]
|
2020-03-03 18:37:47 +00:00
|
|
|
|
2020-02-21 19:56:30 +00:00
|
|
|
## 0.4.0 (February 21st, 2020)
|
|
|
|
|
|
2020-01-15 10:06:54 +00:00
|
|
|
Improvements:
|
|
|
|
|
|
2020-02-21 16:25:17 +00:00
|
|
|
* Allow process namespace sharing between Vault and sidecar containers [[GH-174](https://github.com/hashicorp/vault-helm/pull/174)]
|
|
|
|
|
* Added configurable to change updateStrategy [[GH-172](https://github.com/hashicorp/vault-helm/pull/172)]
|
2020-02-21 16:23:57 +00:00
|
|
|
* Added sleep in the preStop lifecycle step [[GH-188](https://github.com/hashicorp/vault-helm/pull/188)]
|
|
|
|
|
* Updated chart and tests to Helm 3 [[GH-195](https://github.com/hashicorp/vault-helm/pull/195)]
|
|
|
|
|
* Adds Values.injector.externalVaultAddr to use the injector with an external vault [[GH-207](https://github.com/hashicorp/vault-helm/pull/207)]
|
2020-01-15 10:06:54 +00:00
|
|
|
|
2020-01-15 15:16:28 +00:00
|
|
|
Bugs:
|
|
|
|
|
|
2020-02-21 16:23:57 +00:00
|
|
|
* Fix bug where Vault lifecycle was appended after extra containers. [[GH-179](https://github.com/hashicorp/vault-helm/pull/179)]
|
2020-01-15 15:16:28 +00:00
|
|
|
|
2020-01-14 19:14:27 +00:00
|
|
|
## 0.3.3 (January 14th, 2020)
|
2020-01-14 15:18:08 +00:00
|
|
|
|
2020-01-14 15:12:40 +00:00
|
|
|
Security:
|
|
|
|
|
|
|
|
|
|
* Added `server.extraArgs` to allow loading of additional Vault configurations containing sensitive settings [GH-175](https://github.com/hashicorp/vault-helm/issues/175)
|
|
|
|
|
|
2020-01-14 19:14:27 +00:00
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed injection bug where wrong environment variables were being used for manually mounted TLS files
|
|
|
|
|
|
2020-01-08 15:05:06 +00:00
|
|
|
## 0.3.2 (January 8th, 2020)
|
|
|
|
|
|
|
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed injection bug where TLS Skip Verify was true by default [VK8S-35]
|
|
|
|
|
|
2020-01-02 17:18:22 +00:00
|
|
|
## 0.3.1 (January 2nd, 2020)
|
|
|
|
|
|
|
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed injection bug causing kube-system pods to be rejected [VK8S-14]
|
|
|
|
|
|
2019-12-19 16:49:50 +00:00
|
|
|
## 0.3.0 (December 19th, 2019)
|
|
|
|
|
|
2019-11-21 19:21:23 +00:00
|
|
|
Features:
|
|
|
|
|
|
|
|
|
|
* Extra containers can now be added to the Vault pods
|
2019-11-29 00:09:42 +00:00
|
|
|
* Added configurability of pod probes
|
2019-12-19 15:58:28 +00:00
|
|
|
* Added Vault Agent Injector
|
2019-11-29 00:09:42 +00:00
|
|
|
|
|
|
|
|
Improvements:
|
|
|
|
|
|
|
|
|
|
* Moved `global.image` to `server.image`
|
2019-12-09 21:52:23 +00:00
|
|
|
* Changed UI service template to route pods that aren't ready via `publishNotReadyAddresses: true`
|
2019-12-19 16:49:50 +00:00
|
|
|
* Added better HTTP/HTTPS scheme support to http probes
|
|
|
|
|
* Added configurable node port for Vault service
|
|
|
|
|
* `server.authDelegator` is now enabled by default
|
2019-11-21 19:21:23 +00:00
|
|
|
|
2019-12-02 22:22:15 +00:00
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed upgrade bug by removing chart label which contained the version
|
2019-12-11 21:07:44 +00:00
|
|
|
* Fixed typo on `serviceAccount` (was `serviceaccount`)
|
2019-12-16 23:09:05 +00:00
|
|
|
* Fixed readiness/liveliness HTTP probe default to accept standbys
|
2019-12-02 22:22:15 +00:00
|
|
|
|
2019-11-13 00:55:31 +00:00
|
|
|
## 0.2.1 (November 12th, 2019)
|
|
|
|
|
|
|
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Removed `readOnlyRootFilesystem` causing issues when validating deployments
|
|
|
|
|
|
2019-11-11 15:51:00 +00:00
|
|
|
## 0.2.0 (October 29th, 2019)
|
2019-10-21 21:08:42 +00:00
|
|
|
|
|
|
|
|
Features:
|
|
|
|
|
|
|
|
|
|
* Added load balancer support
|
|
|
|
|
* Added ingress support
|
|
|
|
|
* Added configurable for service types (ClusterIP, NodePort, LoadBalancer, etc)
|
|
|
|
|
* Removed root requirements, now runs as Vault user
|
|
|
|
|
|
|
|
|
|
Improvements:
|
|
|
|
|
|
|
|
|
|
* Added namespace value to all rendered objects
|
|
|
|
|
* Made ports configurable in services
|
|
|
|
|
* Added the ability to add custom annotations to services
|
|
|
|
|
* Added docker image for running bats test in CircleCI
|
|
|
|
|
* Removed restrictions around `dev` mode such as annotations
|
2019-10-29 15:19:37 +00:00
|
|
|
* `readOnlyRootFilesystem` is now configurable
|
|
|
|
|
* Image Pull Policy is now configurable
|
2019-10-21 21:08:42 +00:00
|
|
|
|
|
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed selector bugs related to Helm label updates (services, affinities, and pod disruption)
|
|
|
|
|
* Fixed bug where audit storage was not being mounted in HA mode
|
2019-11-06 16:08:28 +00:00
|
|
|
* Fixed bug where Vault pod wasn't receiving SIGTERM signals
|
2019-10-21 21:08:42 +00:00
|
|
|
|
|
|
|
|
|
2019-08-22 14:53:22 +00:00
|
|
|
## 0.1.2 (August 22nd, 2019)
|
|
|
|
|
|
|
|
|
|
Features:
|
|
|
|
|
|
|
|
|
|
* Added `extraSecretEnvironmentVars` to allow users to mount secrets as
|
|
|
|
|
environment variables
|
|
|
|
|
* Added `tlsDisable` configurable to change HTTP protocols from HTTP/HTTPS
|
|
|
|
|
depending on the value
|
|
|
|
|
* Added `serviceNodePort` to configure a NodePort value when setting `serviceType`
|
|
|
|
|
to "NodePort"
|
|
|
|
|
|
|
|
|
|
Improvements:
|
|
|
|
|
|
|
|
|
|
* Changed UI port to 8200 for better HTTP protocol support
|
|
|
|
|
* Added `path` to `extraVolumes` to define where the volume should be
|
|
|
|
|
mounted. Defaults to `/vault/userconfig`
|
|
|
|
|
* Upgraded Vault to 1.2.2
|
|
|
|
|
|
|
|
|
|
Bugs:
|
|
|
|
|
|
|
|
|
|
* Fixed bug where upgrade would fail because immutable labels were being
|
|
|
|
|
changed (Helm Version label)
|
|
|
|
|
* Fixed bug where UI service used wrong selector after updating helm labels
|
|
|
|
|
* Added `VAULT_API_ADDR` env to Vault pod to fixed bug where Vault thinks
|
|
|
|
|
Consul is the active node
|
|
|
|
|
* Removed `step-down` preStop since it requires authentication. Shutdown signal
|
|
|
|
|
sent by Kube acts similar to `step-down`
|
|
|
|
|
|
|
|
|
|
|
2019-08-08 18:14:58 +00:00
|
|
|
## 0.1.1 (August 7th, 2019)
|
|
|
|
|
|
|
|
|
|
Features:
|
|
|
|
|
|
2019-08-22 15:05:31 +00:00
|
|
|
* Added `authDelegator` Cluster Role Binding to Vault service account for
|
2019-08-08 18:14:58 +00:00
|
|
|
bootstrapping Kube auth method
|
|
|
|
|
|
|
|
|
|
Improvements:
|
|
|
|
|
|
2019-08-22 15:05:31 +00:00
|
|
|
* Added `server.service.clusterIP` to `values.yml` so users can toggle
|
2019-08-08 18:14:58 +00:00
|
|
|
the Vault service to headless by using the value `None`.
|
|
|
|
|
* Upgraded Vault to 1.2.1
|
|
|
|
|
|
|
|
|
|
## 0.1.0 (August 6th, 2019)
|
2018-09-22 16:59:41 +00:00
|
|
|
|
|
|
|
|
Initial release
|
