kubectl gs
Added
- Add support for device authentication flow in the
login command and a new --device-auth flag to activate it.
Changed
- Increase the cluster name length to 20 characters.
- Change how
login works to use our DNS record for the k8s API when using non-vintage providers, rather than the value found in the CAPI CRs. - Defaults for
cluster template --provider vsphere since it was migrated to flatcar os.
Changed
- Change default volume Docker size to 10Gb on AWS vintage NodePools.
Added
- Add CAPA cluster templating parameter
--control-plane-load-balancer-ingress-allow-cidr-block which automatically adds NAT Gateway IPs of the MC to the allowlist
Added
- Added a bash script to generate self-contained kubeconfig files with client certificate for workload clusters in Vintage installations using device auth flow in Dex
Changed
- Upgrade K8s dependencies (#1149).
- Upgrade giantswarm/k8sclient to 7.1.0.
- Upgrade sigs.k8s.io/cluster-api to v1.5.2.
- Migrate sigs.k8s.io/cluster-api-provider-aws to v2 (2.2.4).
- Upgrade sigs.k8s.io/cluster-api-provider-azure to v1.11.4.
- Upgrade sigs.k8s.io/controller-runtime to v0.16.3.
- Upgrade github.com/coreos/go-oidc/v3 to v3.6.0.
- Upgrade other dependencies.
- Replace capi.ClusterLabelName with capi.ClusterNameLabel.
Added
cluster template for up-to-date vsphere cluster app.
Changed
- Make the
--organization flag visible when templating App CR.
Fixed
kubectl-gs login: listen only on localhost for callbacks
