Skip to content
This repository has been archived by the owner on Jan 8, 2024. It is now read-only.

v1.0.3
Compare
Choose a tag to compare
@nemosupremo nemosupremo released this 18 Sep 17:50
· 18 commits to master since this release
v1.0.3
6d52033

Changes

  • Token Renewal now occurs randomly within a 7 minute window if the token lease is longer than 10 minutes. This can prevent all gatekeeper instances going down simultaneously if there is an issue renewing a token.
  • Gatekeeper will now throw an error if its started with usage-store vault on the same mount point as policy-path if vault-kv-version is v1.
  • The wildcard logic was changed, and will now match partial subfields between :s. For example the rule foo:bar:baz/* will allow a task named foo:bar:baz/baq.
  • Connections weren't being closed in various places which leaked connections.

Issue Reference

  • [#63] --vault-kv-version not applied
  • [#64] Enable wildcard with prefix.
Assets 17
Loading