Elgato_dark/bunkerweb
1
0
Fork 0
mirror of https://github.com/bunkerity/bunkerweb synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update CHANGELOG.md as we will make another 1.5 release

Browse source
This commit is contained in:
Théophile Diot 2024-08-30 11:22:49 +02:00
parent 47e76fe4cb
commit 22303d9734
No known key found for this signature in database
GPG key ID: FA995104A0BA376A
1 changed files with 1 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
CHANGELOG.md
View file

@ -2,7 +2,6 @@
## v1.6.0-beta - ????/??/??
- [BUGFIX] Add HTTP3 specific modsec rule in web UI to avoid false positives
- [FEATURE] Add support for the Coreruleset plugins via the USE_MODSECURITY_CRS_PLUGINS and the MODSECURITY_CRS_PLUGIN_URLS settings (it automatically downloads and installs the plugins like with BunkerWeb's external plugins). plugins can also be added manually via custom configuration files
- [FEATURE] Add X_DNS_PREFETCH_CONTROL setting to control the DNS prefetching behavior via the X-DNS-Prefetch-Control header (default is off)
- [FEATURE] Add new `securitytxt` plugin to manage the security.txt file from settings and serve it
@ -15,7 +14,7 @@
- [SCHEDULER] Refactor the scheduler to use the `BUNKERWEB_INSTANCES` (previously known as `OVERRIDE_INSTANCES`) environment variable instead of an integration specific system
- [AUTOCONF] Add new `NAMESPACES` environment variable to allow setting the namespaces to watch for the autoconf feature which makes it possible to use multiple autoconf instances in the same cluster while keeping the configuration separated
- [AUTOCONF] Add new `USE_KUBERNETES_FQDN` environment variable to allow using the full qualified domain name of the services in Kubernetes instead of the ip address for the hostname of instances (default is yes)
- [UI] Start refactoring the UI to make it more modular and easier to maintain with migration from Jinja to Vue.js
- [UI] Start refactoring the UI to make it more modular and easier to maintain
- [UI] Add a `remember me` feature to the login page so that the user can stay logged in for a longer period of time (expires after 31 days)
- [UI] Add new `TOTP_SECRETS` setting to encrypt the TOTP secrets in the database (if not set, we generate a random amount of secrets via passlib.totp) - ⚠ We highly recommend setting this setting to a custom value to prevent the secrets from being erased when the volumes are deleted
- [UI] Start adding roles and permissions to the UI to allow different users to have different permissions in a multi-user environment for the near future
@ -24,9 +23,6 @@
- [DOCS] Updated docs for all new features and changes
- [MISC] Review security headers in the `headers` plugin to improve security
- [MISC] Updated context of `realip`'s `USE_PROXY_PROTOCOL` setting to `global` as it was always applied globally even if set only on a service
- [DEPS] Updated NGINX version to v1.26.2
- [DEPS] Updated coreruleset-v4 version to v4.6.0
- [DEPS] Updated coreruleset-v3 version to v3.3.6
## v1.5.9 - 2024/07/22