the Blocklist (v0.22.0)
As we are working on a full overhaul of the permission system in Lagoon (is there a version 1.0.0 on it's way??) we have some Lagoon installations that need to protect some users from themselves and we implement a blacklist env variable which allows to disable some GraphQL Mutations from regular users to be used.
As soon as we have the RBAC based system running, this will be obsolete and removed again.
Features:
- Add environment variable to restrict API operations to admins only (#977)
- Python 2.7 and 3.7 Base Images (#897) - thanks @SRowlands
- CKAN Base Images (#897) - thanks @SRowlands
Changes:
- UI has clean URLs (#960)
Bugfixes:
- UI project page now returns 404 when no project is returned (#931)
- UI stuck in infinite loop when any runtime error is thrown in production mode
Improvements:
- API no longer allows adding duplicate ssh keys (#577) - IMPORTANT for Lagoon Admins: Make sure that you run
/rerun_initdb.sh
within theapi-db
container after release. This will generate the necessary ssh fingerprints in the api databases. Also if there are already existing duplicated keys, you need to fix them (the script warns you) - Broker (RabbitMQ Cluster) is now having a separate headless service for cluster discovery (
broker-headless
) and a regular service for accessing the rabbitmq directly (broker
). Before it was just a headless service which caused all kind of issues of connecting to the rabbitmq. - IMPORTANT for Lagoon Admins: you should delete thebroker
service and statefulset in your installation before deploying this version of Lagoon, as the deployment will fail otherwise. (#984)
Documentation: