Skip to content

Release 15.4.0#42215

Merged
r0mant merged 1 commit intobranch/v15from
release/15.4.0
May 31, 2024
Merged

Release 15.4.0#42215
r0mant merged 1 commit intobranch/v15from
release/15.4.0

Conversation

@camscale
Copy link
Copy Markdown
Contributor

@camscale camscale commented May 31, 2024

15.4.0 (05/31/24)

Access requests notification routing rules

Hosted Slack plugin users can now configure notification routing rules for
role-based access requests.

Database access for Spanner

Database access users can now connect to GCP Spanner.

Unix Workload Attestation

Delayed from Teleport 15.3.0

Teleport Workload ID now supports basic workload attestation on Unix systems,
allowing cluster administrators to restrict the issuance of SVIDs to specific
workloads based on UID/PID/GID.

Other improvements and fixes

  • Added an alternate EC2 auto discover flow using AWS Systems Manager as a more scalable method than EICE in the "Enroll New Resource" view in the web UI. #42205
  • Fixed kubectl exec functionality when Teleport is running behind L7 load balancer. #42192
  • Fixed the plugins AMR cache to be updated when Access requests are removed from the subject of an existing rule. #42186
  • Improved temporary disk space usage for session recording processing. #42174
  • Fixed a regression where Kubernetes Exec audit events were not properly populated and lacked error details. #42145
  • Fixed Azure join method when using Resource Groups in the allow section. #42141
  • Added new teleport debug set-log-level / profile commands changing instance log level without a restart and collecting pprof profiles. #42122
  • Added ability to manage access monitoring rules via tctl. #42092
  • Added access monitoring rule routing for slack access plugin. #42087
  • Extended Discovery Service to self-bootstrap necessary permissions for Kubernetes Service to interact with the Kubernetes API on behalf of users. #42075
  • Fixed resource leak in session recording cleanup. #42066
  • Reduced memory and CPU usage after control plane restarts in clusters with a high number of roles. #42062
  • Added an option to send a Ctrl+Alt+Del sequence to remote desktops. #41720
  • Added support for GCP Spanner to Teleport Database Service. #41349

Enterprise (not included in changelog):

  • Automatic updates now supports a custom teleport package repository name. #4258
  • Improve memory usage when reconciling Access Lists members to prevent Out of Memory events when reconciling a large number of Access Lists members. #4250
  • Prevent Access Monitoring reports from crashing when large datasets are returned. #4230
  • Set NEEDRESTART_SUSPEND to ensure teleport is not restarted on upgrade. #4220

@camscale camscale added the no-changelog Indicates that a PR does not require a changelog entry label May 31, 2024
@camscale camscale requested review from fheinecke and r0mant May 31, 2024 03:58
@github-actions github-actions Bot requested review from avatus and rudream May 31, 2024 03:59
@r0mant r0mant enabled auto-merge May 31, 2024 16:37
@r0mant r0mant added this pull request to the merge queue May 31, 2024
Merged via the queue into branch/v15 with commit 0da3a67 May 31, 2024
@r0mant r0mant deleted the release/15.4.0 branch May 31, 2024 17:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@r0mant r0mant r0mant approved these changes

@avatus avatus avatus approved these changes

@zmb3 zmb3 zmb3 approved these changes

Assignees

No one assigned

Labels

backport helm no-changelog Indicates that a PR does not require a changelog entry size/sm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@camscale @r0mant @avatus @zmb3