Elgato_dark/bunkerweb
1
0
Fork 0
mirror of https://github.com/bunkerity/bunkerweb synced 2026-05-24 09:28:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update CHANGELOG.md

Browse source
This commit is contained in:
Théophile Diot 2024-08-02 09:13:33 +01:00
parent 14b5af3f27
commit 5db80a78c2
No known key found for this signature in database
GPG key ID: FA995104A0BA376A
1 changed files with 18 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
CHANGELOG.md
View file

@ -1,5 +1,23 @@
# Changelog
## v1.6.0-beta - ????/??/??
- [FEATURE] Add support for the Coreruleset plugins via the USE_MODSECURITY_CRS_PLUGINS and the MODSECURITY_CRS_PLUGIN_URLS settings (it automatically downloads and installs the plugins like with BunkerWeb's external plugins). plugins can also be added manually via custom configuration files
- [FEATURE] Add X_DNS_PREFETCH_CONTROL setting to control the DNS prefetching behavior via the X-DNS-Prefetch-Control header (default is off)
- [FEATURE] Add new `securitytxt` plugin to manage the security.txt file from settings and serve it
- [FEATURE] Add new `REVERSE_PROXY_PASS_REQUEST_BODY` setting to control if the request body should be passed to the upstream server (default is yes)
- [FEATURE] Jobs now have an history which the size can be controlled via the `DATABASE_MAX_JOBS_RUNS` setting (default is 10000) and it will be possible to see it in the web UI in a future release
- [SCHEDULER] Refactor the scheduler to use the `BUNKERWEB_INSTANCES` (previously known as `OVERRIDE_INSTANCES`) environment variable instead of an integration specific system
- [AUTOCONF] Add new `NAMESPACES` environment variable to allow setting the namespaces to watch for the autoconf feature which makes it possible to use multiple autoconf instances in the same cluster while keeping the configuration separated
- [UI] Start refactoring the UI to make it more modular and easier to maintain with migration from Jinja to Vue.js
- [UI] Add a `remember me` feature to the login page so that the user can stay logged in for a longer period of time (expires after 31 days)
- [UI] Add new `PASSWORD_SALT` setting to allow setting a custom salt for the password hashing (default is generated via bcrypt)
- [UI] Add new `TOTP_SECRETS` setting to encrypt the TOTP secrets in the database (if not set, we generate a random amount of secrets via passlib.totp) - ⚠ We highly recommend setting this setting to a custom value to prevent the secrets from being erased when the volumes are deleted
- [UI] Add new `MF_RECOVERY_CODES_KEYS` and `MF_ENCRYPT_RECOVERY_CODES` settings to allow setting the encryption keys for the recovery codes and to enable/disable the encryption of the recovery codes (default is yes and if no keys are set, we generate random keys via cryptography.fernet.Fernet) - ⚠ We highly recommend setting these settings to custom values to prevent the recovery codes from being erased when the volumes are deleted
- [UI] Start adding roles and permissions to the UI to allow different users to have different permissions in a multi-user environment for the near future
- [UI] Made 2FA feature more user-friendly and added recovery codes in case of lost access to the 2FA device
- [MISC] Review security headers in the `headers` plugin to improve security
## v1.5.9 - 2024/07/22
- [BUGFIX] Fix compatibility issues with mysql 8.4+ version and the `backup` plugin by adding the `mariadb-connector-c` dependency to the scheduler Dockerfile (on alpine)