lza_menace
/
wg-access-server
mirror of https://github.com/Place1/wg-access-server
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
dependabot/npm_and_yarn/website/json5-1.0.2
dependabot/npm_and_yarn/website/async-2.6.4
dependabot/npm_and_yarn/website/url-parse-1.5.10
dependabot/npm_and_yarn/website/minimist-1.2.6
dependabot/npm_and_yarn/website/follow-redirects-1.14.8
dependabot/npm_and_yarn/website/tmpl-1.0.5
dependabot/npm_and_yarn/website/path-parse-1.0.7
dependabot/npm_and_yarn/website/lodash-4.17.21
dependabot/npm_and_yarn/website/ssri-6.0.2
dependabot/npm_and_yarn/website/y18n-4.0.1
master
gh-pages
remove-file-storage-backend
postgresql-ha
login-page-style-update
50-fix-oidc-email-domain-validation
48-fix-client-status-indicator
44-fix-routing-rules
config-options-for-ports
client-network-config
show-owner-name-in-ui
administration
big-refactor
embedded-dns
dns-support
add-license-1
auth
v0.4.6
v0.4.5
v0.4.4
v0.4.3
v0.4.2
v0.4.1
v0.4.0
v0.3.0
v0.3.0-rc2
v0.3.0-rc1
0.2.5
0.2.5-rc3
0.2.5-rc2
0.2.5-rc1
0.2.4
0.2.4-rc1
0.2.3
0.2.2
0.2.1
0.2.0
0.2.0-rc8
0.2.0-rc7
0.2.0-rc6
0.2.0-rc5
0.2.0-rc4
0.2.0-rc3
0.1.1
0.1.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
wg-access-server/CHANGELOG.md

6.5 KiB
Raw Permalink Blame History

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[v0.4.6]

  • The docker compose file now works without a config file (it's optional)

[v0.4.5]

  • Fixed a bug that caused devices to not correctly sync when using mysql or sqlite3

[v0.4.4]

Changed

  • The default AllowedIPs setting was changed from "0.0.0.0/1, 128.0.0.0/1" to "0.0.0.0/0".

[v0.4.3]

Changed

  • The device list on the website now updates a little less frequently.
  • The device list now always shows the "last seen" field to hopefully better reflect what the "connected" status means.
  • The metadata scraping loop has been updated to be more efficient when there are many disconnected peers compared to connected peers.
  • The metadata scraping algorithm is now more friendly for HA deployments.

[v0.4.2]

Bug Fixes

  • The vpn Allowed IPs setting is now correctly enforced.

[v0.4.1]

Bug Fixes

  • Fixed a bug that caused devices to get disconnected intermittently
  • The helm template now respects the "replicas" value

[v0.4.0]

Added

  • High availability (HA) is now supported when using the postgresql:// storage backend. You can now deploy multiple replicas of wg-access-server pointing to the same Postgres DB.
  • The wireguard service can now be disabled via the config file. Helpful for developing on Mac and Windows.

Removed

  • The file:// storage backend was deprecated in v0.3.0 and has now been removed. See the v0.3.0 changelog entry for more information about migrating your data.

[v0.3.0]

Added

  • arm64 and arm/v7 docker image support + github actions thanks to @timtorChen

Changed

  • the wireguard private key is now required when the storage backend is persistent (i.e. not memory://)
  • configuration flags, environment variables and file properties have been refactored for consistency
    • all configuration file properties (excluding auth providers) can now be set via flags and environment variables
    • all environment variables are prefixed with WG_ to avoid collisions in hosted environments like Kubernetes
    • all flags & environment variables are named consistently
    • breaking: no functionality has been removed but you'll need to update any flags/envvars that you're using

Deprecations

  • deprecated support for having no admin account
    • a config error will be thrown in v0.4.0 if an admin account is not configured
    • see the README.md for examples on setting the admin account
  • deprecated file:// storage in favour of sqlite3://

[0.2.5]

Added

  • Admin users can now delete devices from the "all devices" page (issue #57)

Bug Fixes

  • Fixes website routing to solve 404s (issue #56)

[0.2.4]

Bug Fixes

  • Improved config validation and error reporting (issue #58 #61)

[0.2.3]

Added

  • Helm chart now supports configuring a LoadBalancer service for the web ui (@nqngo)

[0.2.2]

Changed

  • Changed the default "AllowedIPs" to 0.0.0.0/0

[0.2.1]

Changed

  • The "is connected" now shows devices as connected if they've been active within the last 3 minutes
  • Improved handling of oidc/gitlab authentication with domain verification when a user hasn't set their email

[0.2.0]

Added

  • New SQL storage backend supporting SQLite, MySQL and PostgreSQL (@halkeye)
  • Support for mapping claims from an OIDC auth backend to wg-access-server claims using a simple rule syntax (@halkeye). You can use this feature to decide which user has the 'admin' claim based on your own OIDC claims.
  • The VPN DNS proxy feature can now be disabled using config: dns.enabled = false
    • When disabled the DNS wireguard config value will be omitted from client wg config files
    • When disabled the DNSasd proxy will not be started server-side (i.e. port 53 won't be used)
  • Config options to change the web, wireguard and dns ports.
  • Better instructions for connecting a linux device (@nfg)
  • More helm chart flexibility (@halkeye)

Changes

  • The admin UI will now show the device owner's name or email if available.
  • The admin UI will now show the auth provider for a given device if more than 1 auth provider is in use.
  • Bug fix: upstream dns now correctly configured using resolvconf if not set in config file, flag or envvar.

Removed

  • dns port configuration was removed because wireguard client's only support port 53 for dns

How to upgrade

  • If you've been using the storage.directory="/some/path" config value then you'll need to update it to storage=file:///some/path
  • If you've been using the --storage-directory=/some/path cli flag then you'll need to update it to --storage="file:///some/path"
  • If you've been using the STORAGE_DIRECTORY=/some/path environment variable then you'll need to update it to STORAGE="file:///some/path"

[0.1.1]

Changes

  • Helm chart bug fixes and improvements

[0.1.0]

Added

  • Added support for an admin account. An admin can see all devices registered with the server.
  • Added support for configuring "AllowedIPs"
  • New docker compose example (@antoniebou13)
  • Added a helm chart
  • Added a basic kubernetes quickstart.yaml manifest (based on helm template)
  • Added a documentation site based on mkdocs. Hosted on github pages (still a wip!)

[0.0.9]

Changed

  • Some UI/UX improvements

[0.0.8]

Added

  • Added an embedded DNS proxy

Changed

  • Completely re-implemented the auth subsystem to avoid trying to integrate with Dex. OIDC, Gitlab and Basic auth are supported.

[0.0.0] -> [0.0.7]

MVP :)