v1.26.1

What's Changed

• Don't fail on missing principal info when proxying identities by @stvnrhodes in #385

Full Changelog: v1.26.0...v1.26.1

v1.26.0

What's Changed

• Fix journalctl response output for multiple targets by @sfc-gh-elinardi in #381
• Remove the special-case for the final batch when batching calls by @stvnrhodes in #372
• Pass over caller identity information through the sansshell proxy by @stvnrhodes in #359
• Implement proxied MPA support by @stvnrhodes in #374

Full Changelog: v1.25.1...v1.26.0

v1.25.1

This release fixes an issue around peer info in context introduced in v1.25.0

What's Changed

• Check that cached peer info matches grpc peer info by @sfc-gh-srhodes in #375

Full Changelog: v1.25.0...v1.25.1

v1.25.0

Initial MPA support is in this release! Only direct sanssh->server is supported for now and proxy support will come in a future release.

What's Changed

• Bump golang.org/x/sys from 0.13.0 to 0.14.0 by @dependabot in #368
• Bump golang.org/x/sync from 0.4.0 to 0.5.0 by @dependabot in #369
• Add server and client implementations for MPA. by @stvnrhodes in #364
• Add an optional TargetConn to RPCAuthInput by @stvnrhodes in #361
• Use a 16MB recv buffer in proxy/sanssh instead of the default 4MB. by @stvnrhodes in #373

Full Changelog: v1.24.8...v1.25.0

v1.24.8

What's Changed

• Bump github.com/open-policy-agent/opa from 0.57.0 to 0.57.1 by @dependabot in #363
• Bump google.golang.org/grpc from 1.58.3 to 1.59.0 by @dependabot in #362
• Add a MPA design and proto definition. by @stvnrhodes in #350
• Add a hook for populating the principal in rpcauth input by @stvnrhodes in #351
• Use local time when constructing journalctl command by @stvnrhodes in #360
• Add interceptors to the proxy connection by @stvnrhodes in #358
• Bump github.com/go-logr/logr from 1.2.4 to 1.3.0 by @dependabot in #366
• Bump github.com/open-policy-agent/opa from 0.57.1 to 0.58.0 by @dependabot in #365
• Fix redact logic when recuring into list/map fields by @sfc-gh-bxin in #367

New Contributors

• @sfc-gh-bxin made their first contribution in #367

Full Changelog: v1.24.7...v1.24.8

v1.24.7

What's Changed

• Revert "Use go 1.21 (#344)" by @sfc-gh-elinardi in #357

Full Changelog: v1.24.6...v1.24.7

v1.24.6

What's Changed

• Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by @dependabot in #353
• Add an option to skip tls verification in HTTPOverRPC action by @sfc-gh-elinardi in #356

Full Changelog: v1.24.5...v1.24.6

v1.24.5

What's Changed

• Delete devcontainer config by @sfc-gh-srhodes in #349
• Bump google.golang.org/grpc from 1.58.2 to 1.58.3 by @dependabot in #354
• Bump golang.org/x/sync from 0.3.0 to 0.4.0 by @dependabot in #352
• Redact sensitive values in stream_data rpcauth logs by @sfc-gh-elinardi in #355

Full Changelog: v1.24.4...v1.24.5

v1.24.4

What's Changed

• Change dependabot to weekly and group otel by @sfc-gh-srhodes in #342
• Bump the otel group with 2 updates by @dependabot in #345
• Use go 1.21 by @sfc-gh-srhodes in #344
• Redact http header values in logs by @sfc-gh-elinardi in #343
• Bump golang.org/x/net from 0.15.0 to 0.17.0 by @dependabot in #348
• Close stream when there's an error from target by @sfc-gh-elinardi in #347

Full Changelog: v1.24.3...v1.24.4

v1.24.3

What's Changed

• Bump google.golang.org/grpc from 1.58.0 to 1.58.2 by @dependabot in #329
• Improve some handling around packages by @stvnrhodes in #323
• Always logs authz policy eval result by @sfc-gh-elinardi in #331
• Add a proto incompatibility check by @sfc-gh-srhodes in #328
• Fix some readme typos and remove an unnecessary line by @sfc-gh-srhodes in #330
• Bump github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus from 1.0.0-rc.0 to 1.0.0 by @dependabot in #335
• Bump github.com/prometheus/client_golang from 1.16.0 to 1.17.0 by @dependabot in #334
• Bump github.com/open-policy-agent/opa from 0.56.0 to 0.57.0 by @dependabot in #336
• Add healthcheck utils and fix exec utils by @sfc-gh-elinardi in #333

Full Changelog: v1.24.2...v1.24.3