This repository has been archived by the owner on Oct 12, 2023. It is now read-only.
Releases: Azure/aad-pod-identity
Releases · Azure/aad-pod-identity
v1.8.7
Details about the changes which went into the v1.8.7 release can be found here: https://azure.github.io/aad-pod-identity/changelog/#v187
Note The images are now hosted in mcr.microsoft.com/oss/azure/aad-pod-identity
Installation/Upgrade for RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.7/deploy/infra/deployment-rbac.yaml
For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.7/deploy/infra/mic-exception.yamlFor non-RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.7/deploy/infra/deployment.yaml
# For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.7/deploy/infra/mic-exception.yamlUsing Helm:
helm repo update
helm install aad-pod-identity aad-pod-identity/aad-pod-identityv1.8.7-rc.0
What's Changed
- security: fix CVE-2021-43618 by @chewong in #1224
- security: enable readOnlyRootFilesystem for MIC by @chewong in #1225
- docs: add disclaimer for current project status by @chewong in #1231
- fix: make metadata header required configurable in helm by @aramase in #1240
- security: fix CVE-2021-3995, CVE-2021-3996 by @aramase in #1241
- fix: delete conntrack entries after adding iptables rules on initialization by @nikhil-bhat in #1243
New Contributors
- @nikhil-bhat made their first contribution in #1243
Full Changelog: v1.8.6...v1.8.7-rc.0
Contributors
nikhil-bhat, chewong, and aramase
Assets 2
v1.8.6
Details about the changes which went into the v1.8.6 release can be found here: https://azure.github.io/aad-pod-identity/changelog/#v186
Note The images are now hosted in mcr.microsoft.com/oss/azure/aad-pod-identity
Installation/Upgrade for RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.6/deploy/infra/deployment-rbac.yaml
For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.6/deploy/infra/mic-exception.yamlFor non-RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.6/deploy/infra/deployment.yaml
# For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.6/deploy/infra/mic-exception.yamlUsing Helm:
helm repo update
helm install aad-pod-identity aad-pod-identity/aad-pod-identityv1.8.6-rc.0
feat: return http 503 when IMDS healthcheck fails (#1206) * feat: return http 503 when IMDS healthcheck fails Signed-off-by: Anish Ramasekar <[email protected]> * chore: update token request calls in demo and identityvalidator Signed-off-by: Anish Ramasekar <[email protected]> * Review feedback Signed-off-by: Anish Ramasekar <[email protected]>
v1.8.5
Details about the changes which went into the v1.8.5 release can be found here: https://azure.github.io/aad-pod-identity/changelog/#v185
Note The images are now hosted in mcr.microsoft.com/oss/azure/aad-pod-identity
Installation/Upgrade for RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.5/deploy/infra/deployment-rbac.yaml
For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.5/deploy/infra/mic-exception.yamlFor non-RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.5/deploy/infra/deployment.yaml
# For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.5/deploy/infra/mic-exception.yamlUsing Helm:
helm repo update
helm install aad-pod-identity aad-pod-identity/aad-pod-identityv1.8.4
Details about the changes which went into the v1.8.4 release can be found here: https://azure.github.io/aad-pod-identity/changelog/#v184
Note The images are now hosted in mcr.microsoft.com/oss/azure/aad-pod-identity
Installation/Upgrade for RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.4/deploy/infra/deployment-rbac.yaml
For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.4/deploy/infra/mic-exception.yamlFor non-RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.4/deploy/infra/deployment.yaml
# For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.4/deploy/infra/mic-exception.yamlUsing Helm:
helm repo update
helm install aad-pod-identity aad-pod-identity/aad-pod-identityv1.8.4-rc.0
fix: update the node name label as part of AzureAssignedIdentity upda…
v1.8.3
Warning ⚠️
- v1.8.x contains breaking changes: https://azure.github.io/aad-pod-identity/docs/#v18x-breaking-change
Details about the changes which went into the v1.8.0 release can be found here: https://azure.github.io/aad-pod-identity/changelog/#v183
Note The images are now hosted in mcr.microsoft.com/oss/azure/aad-pod-identity
Installation/Upgrade for RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.3/deploy/infra/deployment-rbac.yaml
For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.3/deploy/infra/mic-exception.yamlFor non-RBAC clusters:
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.3/deploy/infra/deployment.yaml
# For AKS clusters, deploy the MIC and AKS add-on exception by running -
kubectl apply -f https://raw.githubusercontent.com/Azure/aad-pod-identity/v1.8.3/deploy/infra/mic-exception.yamlUsing Helm:
helm repo update
helm install aad-pod-identity aad-pod-identity/aad-pod-identityv1.8.3-rc.1
security: fix CVE-2021-33910, CVE-2021-3712 (#1144) Signed-off-by: Anish Ramasekar <[email protected]>
v1.8.3-rc.0
chore: add redacted client ID in the error log (#1141) Signed-off-by: Ernest Wong <[email protected]>