spire-0.8.1

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Parametrize probes by @mrsabath in spiffe/helm-charts#310
• Allow for having no registry specified by @faisal-memon in spiffe/helm-charts#312
• Removed pull_request edited event from ci workflow by @marcofranssen in spiffe/helm-charts#318
• Bump k8s versions to latest patches by @marcofranssen in spiffe/helm-charts#317
• Emergency patch for Tornjak Frontend by @mrsabath in spiffe/helm-charts#319
• Bump spire Helm Chart version from 0.8.0 to 0.8.1 by @marcofranssen in spiffe/helm-charts#323
• Bump python + helm in CI workflow by @marcofranssen in spiffe/helm-charts#325

Full Changelog: spiffe/helm-charts@spire-0.8.0...spire-0.8.1

spire-0.8.0

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

Warning: The support for Tornjak is still considered experimental.

What's Changed

• Switch the spire tests to always run by @kfox1111 in spiffe/helm-charts#250
• Add json to test path by @faisal-memon in spiffe/helm-charts#280
• Bump test chart dependencies by @github-actions in spiffe/helm-charts#279
• Skip tests for docs folders by @faisal-memon in spiffe/helm-charts#281
• Add maintainer's handbook. by @edwbuck in spiffe/helm-charts#265
• Add Tornjak by @mrsabath in spiffe/helm-charts#234
• Add nodeSelector for tornjak by @marcofranssen in spiffe/helm-charts#282
• Use the correct kubectl for the cluster by @kfox1111 in spiffe/helm-charts#248
• Add additional k8s native features to Tornjak frontend by @marcofranssen in spiffe/helm-charts#283
• Bump sigstore/cosign-installer from 3.0.3 to 3.0.4 by @dependabot in spiffe/helm-charts#286
• Bump helm/kind-action from 1.5.0 to 1.6.0 by @dependabot in spiffe/helm-charts#285
• Remove manual dispatch from dummy workflow by @marcofranssen in spiffe/helm-charts#288
• Cleanup maintainer handbook by @faisal-memon in spiffe/helm-charts#287
• Tornjak reuse spire-lib.cluster-domain macro by @marcofranssen in spiffe/helm-charts#292
• Fix Tornjak persistence issue by @kfox1111 in spiffe/helm-charts#294
• Switch image.version to image.tag by @kfox1111 in spiffe/helm-charts#245
• Bump sigstore/cosign-installer from 3.0.4 to 3.0.5 by @dependabot in spiffe/helm-charts#295
• Bump helm/kind-action from 1.6.0 to 1.7.0 by @dependabot in spiffe/helm-charts#296
• Updated Tornjak documenation with Not-for-production labels by @mrsabath in spiffe/helm-charts#297
• Update images for cve's found by the cronjob by @kfox1111 in spiffe/helm-charts#290
• Fix the generated pr so that it runs jobs too by @kfox1111 in spiffe/helm-charts#303
• Bump test chart dependencies by @github-actions in spiffe/helm-charts#301
• Add support for spire-server ingress by @kfox1111 in spiffe/helm-charts#68
• Allow to use spire-server as an upstream authority by @kfox1111 in spiffe/helm-charts#304
• Fix hooks for K3s by @faisal-memon in spiffe/helm-charts#305
• Upgrade Tornjak to new image v1.2.1 by @mrsabath in spiffe/helm-charts#299
• Upgrade to spire 1.6.4 by @kfox1111 in spiffe/helm-charts#308
• Remove 1.21.x testing by @kfox1111 in spiffe/helm-charts#306
• Bump spire Helm Chart version from 0.7.0 to 0.8.0 by @marcofranssen in spiffe/helm-charts#313

Full Changelog: spiffe/helm-charts@spire-0.7.0...spire-0.8.0

spire-0.7.0

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Remove dead code by @kfox1111 in spiffe/helm-charts#217
• Change spire configmaps to yaml, rendered as json by @marcofranssen in spiffe/helm-charts#113
• Add k8s 1.27 to CI + bump other versions to latest patches by @marcofranssen in spiffe/helm-charts#219
• Move reusable macros to root chart by @kfox1111 in spiffe/helm-charts#218
• Add global for image registry by @kfox1111 in spiffe/helm-charts#201
• Add an action to find new versions of helm charts by @kfox1111 in spiffe/helm-charts#184
• Bump sigstore/cosign-installer from 3.0.2 to 3.0.3 by @dependabot in spiffe/helm-charts#241
• Add workflow with shellcheck to do some sanity checks on shell scripts by @marcofranssen in spiffe/helm-charts#242
• Add post-install scripts to all tests to capture failure details in GitHub workflow summary by @marcofranssen in spiffe/helm-charts#88
• Move check versions script + fix a bug by @marcofranssen in spiffe/helm-charts#237
• Add skipKubeletVerification configurable by @faisal-memon in spiffe/helm-charts#243
• Fix example production typos by @kfox1111 in spiffe/helm-charts#244
• Bump test chart dependencies by @github-actions in spiffe/helm-charts#252
• Bump peter-evans/create-pull-request from 5.0.0 to 5.0.1 by @dependabot in spiffe/helm-charts#253
• Allow trust bundle url to be set along with format by @kfox1111 in spiffe/helm-charts#256
• Add project overview. by @edwbuck in spiffe/helm-charts#258
• Bump test chart dependencies by @github-actions in spiffe/helm-charts#264
• Add Edwin Buck as a maintainer. by @edwbuck in spiffe/helm-charts#267
• External database configuration by @kfox1111 in spiffe/helm-charts#225
• Replicas > 1 is not allowed with sqlite driver by @kfox1111 in spiffe/helm-charts#269
• Add project glossary. by @edwbuck in spiffe/helm-charts#262
• Fix spacing for spire server service annotation by @faisal-memon in spiffe/helm-charts#273
• Allow for ConfigMaps to be annotated by @faisal-memon in spiffe/helm-charts#272
• Remove persistence.enabled flag by @faisal-memon in spiffe/helm-charts#274
• Include dependency values in documentation by @marcofranssen in spiffe/helm-charts#275
• Bump spire Helm Chart version from 0.6.3 to 0.7.0 by @marcofranssen in spiffe/helm-charts#278

New Contributors

• @github-actions made their first contribution in spiffe/helm-charts#252
• @edwbuck made their first contribution in spiffe/helm-charts#258

Full Changelog: spiffe/helm-charts@spire-0.6.3...spire-0.7.0

spire-0.6.3

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Update to the 1.6.3 spire release by @kfox1111 in spiffe/helm-charts#214
• Bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in spiffe/helm-charts#215
• Bump spire Helm Chart version from 0.6.2 to 0.6.3 by @marcofranssen in spiffe/helm-charts#216

Full Changelog: spiffe/helm-charts@spire-0.6.2...spire-0.6.3

spire-0.6.2

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Add before-hook-creation delete policy by @faisal-memon in spiffe/helm-charts#202
• Bump spire Helm Chart version from 0.6.1 to 0.6.2 by @marcofranssen in spiffe/helm-charts#205
• Bump sigstore/cosign-installer from 3.0.1 to 3.0.2 by @dependabot in spiffe/helm-charts#204
• Add Faisal Memon as maintainer to spire chart by @faisal-memon in spiffe/helm-charts#208

Full Changelog: spiffe/helm-charts@spire-0.6.1...spire-0.6.2

spire-0.6.1

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Fix trustDomain global for oidc discovery provider by @marcofranssen in spiffe/helm-charts#193
• Bump spire Helm Chart version from 0.6.0 to 0.6.1 by @marcofranssen in spiffe/helm-charts#194

Full Changelog: spiffe/helm-charts@spire-0.6.0...spire-0.6.1

spire-0.6.0

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Add option to enable federation on spire-server by @petercable in spiffe/helm-charts#97
• Remove @dennisgove from CODEOWNERS by @dennisgove in spiffe/helm-charts#140
• Resolve issue in prod example on volume mount by @marcofranssen in spiffe/helm-charts#143
• Fork the lockdown test to two tests as it is doing the work of 2 by @kfox1111 in spiffe/helm-charts#134
• Replace lockdown test with production-example test by @marcofranssen in spiffe/helm-charts#127
• Extract the namespace override test out of the old lockdown test. by @kfox1111 in spiffe/helm-charts#145
• Add maturity tag by @faisal-memon in spiffe/helm-charts#138
• Test fixing the tests by @kfox1111 in spiffe/helm-charts#148
• Add Artifact Hub badge to README.md by @marcofranssen in spiffe/helm-charts#159
• Bump spire version to 1.6.1 by @marcofranssen in spiffe/helm-charts#160
• Bump helm/chart-testing-action from 2.3.1 to 2.4.0 by @dependabot in spiffe/helm-charts#168
• Bump actions/checkout from 3.4.0 to 3.5.0 by @dependabot in spiffe/helm-charts#167
• Improve Spire Chart documentation by @marcofranssen in spiffe/helm-charts#161
• Fix formatting issues introduced with #152 by @marcofranssen in spiffe/helm-charts#169
• Add a test to ensure the chart versions match by @kfox1111 in spiffe/helm-charts#163
• Enhance the production example by @marcofranssen in spiffe/helm-charts#130
• Enable global config for clusterName, trustDomain, and bundleConfigMap by @kfox1111 in spiffe/helm-charts#156
• Switch test images to cgr.dev/chainguard images by @marcofranssen in spiffe/helm-charts#175
• Cleanup old leftover to k8s-workload-registrar by @marcofranssen in spiffe/helm-charts#185
• Switch tests to curl by @kfox1111 in spiffe/helm-charts#178
• Fix namespace-override github test summary by @kfox1111 in spiffe/helm-charts#154
• Test for configurable images by @kfox1111 in spiffe/helm-charts#182
• Make service dns domain configurable by @kfox1111 in spiffe/helm-charts#164
• Fix production example test by @kfox1111 in spiffe/helm-charts#183
• Add hooks to set failurepolicy to ignore on webhook by @faisal-memon in spiffe/helm-charts#128
• Add podmonitors by @kfox1111 in spiffe/helm-charts#165
• Bump spire Helm Chart version from 0.5.1 to 0.6.0 by @marcofranssen in spiffe/helm-charts#190

New Contributors

• @petercable made their first contribution in spiffe/helm-charts#97

Full Changelog: spiffe/helm-charts@spire-0.5.1...spire-0.6.0

spire-0.5.1: Merge pull request #176 from spiffe/release-patch

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Bump Spire to 1.6.1 @marcofranssen in spiffe/helm-charts#160
• Improve Chart documentation @marcofranssen in spiffe/helm-charts#161
• Bump spire Helm Chart version from 0.5.0 to 0.5.1 @marcofranssen in spiffe/helm-charts#173

Full Changelog: spiffe/helm-charts@spire-0.5.0...spire-0.5.1

spire-0.5.0: Bump spire Helm Chart version from 0.4.0 to 0.5.0

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Ensure CI also runs when test scripts are changed by @marcofranssen in spiffe/helm-charts#102
• Add kfox as a maintainer by @kfox1111 in spiffe/helm-charts#107
• Remove dead role code by @kfox1111 in spiffe/helm-charts#104
• Add tmp mount so that server can run locked down by @kfox1111 in spiffe/helm-charts#105
• Remove some duplication on chart-testing CI by @marcofranssen in spiffe/helm-charts#101
• Make the namespace the bundle is dropped into configurable by @kfox1111 in spiffe/helm-charts#93
• Enhance the test workflow scripts by @kfox1111 in spiffe/helm-charts#108
• Fix cluster role name uniqueness by @kfox1111 in spiffe/helm-charts#110
• Test that it is possible to lock down security of pods by @kfox1111 in spiffe/helm-charts#84
• Fix the gate by @kfox1111 in spiffe/helm-charts#112
• Fix the tests so they can run locked down. by @kfox1111 in spiffe/helm-charts#111
• Make csi driver configurable to be able to run multiple instances by @kfox1111 in spiffe/helm-charts#115
• Make the agent socket configurable by @kfox1111 in spiffe/helm-charts#114
• Namespace override by @kfox1111 in spiffe/helm-charts#99
• Improve Chart API by @marcofranssen in spiffe/helm-charts#119
• Fix the driver not coming up on overloaded nodes by @kfox1111 in spiffe/helm-charts#122
• Add documentation how to use Spire in own workloads by @marcofranssen in spiffe/helm-charts#120
• Remove dead file from failed rebase. by @kfox1111 in spiffe/helm-charts#121
• Make kubelet path configurable by @kfox1111 in spiffe/helm-charts#123
• Make webhook fail policy configurable by @kfox1111 in spiffe/helm-charts#124
• Bump actions/checkout from 3.3.0 to 3.4.0 by @dependabot in spiffe/helm-charts#129
• Add support for oidc-discovery-provider ingress by @kfox1111 in spiffe/helm-charts#60
• Bump spire Helm Chart version from 0.4.0 to 0.5.0 by @marcofranssen in spiffe/helm-charts#131

Full Changelog: spiffe/helm-charts@spire-0.4.0...spire-0.5.0

spire-0.4.0: Bump spire Helm Chart version from 0.3.0 to 0.4.0

A Helm chart for deploying the complete Spire stack including: spire-server, spire-agent, spiffe-csi-driver, spiffe-oidc-discovery-provider and spire-controller-manager.

What's Changed

• Better spire-server entry commands by @kfox1111 in spiffe/helm-charts#59
• Add beta note to readme by @faisal-memon in spiffe/helm-charts#62
• Use quote function instead of actual quotes by @faisal-memon in spiffe/helm-charts#71
• Fix sigstore/cosign-installer usage in release workflow by @marcofranssen in spiffe/helm-charts#73
• Add arm64 support to Helm chart by @marcofranssen in spiffe/helm-charts#74
• Bump sigstore/cosign-installer from 2.8.1 to 3.0.1 by @dependabot in spiffe/helm-charts#76
• Add k8s 1.26.0 (Kind) to the test matrix by @marcofranssen in spiffe/helm-charts#77
• Add extra initContainers, containers, volumes to agent and server by @kfox1111 in spiffe/helm-charts#67
• Make sure all configmap changes rollout by @kfox1111 in spiffe/helm-charts#81
• UpstreamAuthority cert-manager support by @kfox1111 in spiffe/helm-charts#82
• Fix sources in Chart.yaml by @kfox1111 in spiffe/helm-charts#85
• Fix Homepage URL by @marcofranssen in spiffe/helm-charts#87
• Switch to non root nginx by @kfox1111 in spiffe/helm-charts#89
• Allow all subchart to conditionally disable by @kfox1111 in spiffe/helm-charts#90
• Make spire agent server address configurable by @kfox1111 in spiffe/helm-charts#91
• Make server service account allow list configurable by @kfox1111 in spiffe/helm-charts#92
• Add a flag to configure the Kubernetes NodeAttestor by @kfox1111 in spiffe/helm-charts#83
• Add values for server TTL configurables by @marcofranssen in spiffe/helm-charts#94
• Allow to configure spire-server CA key type by @marcofranssen in spiffe/helm-charts#95
• Add script to automate cutting a release by @marcofranssen in spiffe/helm-charts#98

New Contributors

• @faisal-memon made their first contribution in spiffe/helm-charts#62

Full Changelog: spiffe/helm-charts@spire-0.3.0...spire-0.4.0