//Cloudogu EcoSystem Docs

Confluence Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[v7.19.19-1] - 2024-02-21

Changed

  • Update Confluence to 7.19.19 LTS (#83)
  • Automates template generation for initial dogu set-up (see developer docs)

Security

  • Fixes CVE-2024-21674, CVE-2024-25062 (#83)

[v7.19.17-2] - 2024-02-12

Changed

  • remove confluence-local admin user for added security (#84)

    • in order to leverage CAS authentication and reduce the attack surface this release removes the local administrator
  • disable health check for the presence of a local administrator (#84)

    • this release removes the respective change that was introduced in v7.19.16-1

Fixed

  • fix HTTP post request handling and container reboot during initial setup

[v7.19.17-1] - 2023-12-13

Changed

  • Update Confluence to 7.19.17 (#81)

Security

  • This release fixes the critical CVEs CVE-2023-22522 and CVE-2023-22518

[v7.19.16-1] - 2023-11-03

Changed

  • Update Confluence to 7.19.16 (#79)

    • The urgency of the CVE fix made it necessary to upgrade asap. This release will show a notification for a missing local administrator account. This message will be suppressed in later release (as there is no need for a Confluence-local administrator account for security reasons).

Security

  • CVE-2023-22518 (#79)

[v7.19.14-1] - 2023-10-26

Changed

  • Update Confluence to 7.19.14 (#77)

[v7.19.11-2] - 2023-09-27

Changed

  • Upgrade Java to 11.0.20

Fixed

  • Fix static server ID by generating a random ID during the first Confluence start (#74)

[v7.19.11-1] - 2023-07-31

Changed

  • Update Confluence to version 7.19.11 (#72)

Fixed

  • Fixed several CVEs among those these critical vulnerabilities (#72):

    • CVE-2021-23463, CVE-2021-42392, CVE-2022-23221, CVE-2022-41853, CVE-2022-0839, CVE-2022-1471, CVE-2022-1471

[v7.19.8-3] - 2023-07-19

Changed

  • Only apply the default language on first start (#70)

[v7.19.8-2] - 2023-06-16

Changed

  • Upgrade Java to 11.0.19
  • Upgrade ces-build-lib to 1.65.0

[v7.19.8-1] - 2023-05-04

Added

  • Makedown link checker stage in Jenkinsfile
  • Trivy scan after successful Dogu build

Changed

  • Update Confluence to version 7.19.8 (#66)
  • Update postgres driver to 42.5.3
  • Update base image to 11.0.18-1
  • Update makefiles
  • Update build libs

[v7.13.8-1] - 2022-07-22

Changed

  • Update Confluence version to 7.13.8 to fix vulnerability (#64)

    • CVE-2022-26137
    • CVE-2022-26136
  • Update Makefiles version to 6.0.3
  • Update java base image to 11.0.14-3

[v7.13.7-2] - 2022-07-05

Added

  • New configuration option container_config/additional_jvm_options to pass additional jvm args (#62)
  • New configuration option container_config/reserved_code_cache_size to limit reserved space used for code caching (#62)

Changed

  • Update log4j configuration to write to console and log file (#62)

Fixed

  • Changes to jvm args do not need the container to be recreated (#62)

[v7.13.7-1] - 2022-06-08

Changed

  • Upgrade Confluence to version 7.13.7 to fix CVE-2022-26134 (#60)

[v7.13.2-3] - 2022-04-07

Changed

  • Upgrade java base image to 11.0.14-3; #58

Fixed

[v7.13.2-2] - 2022-02-07

Changed

  • Upgrade to OpenJDK 11.0.14

[v7.13.2-1] - 2021-12-06

Changed

  • Update Confluence version to 7.13.2 (#51)

[v7.4.13-1] - 2021-11-10

Changed

  • Update to Confluence version 7.4.13 (#52)

Fixed

[v7.4.11-2] - 2021-10-20

Added

  • Add support for FQDN change (#49)

Changed

[v7.4.11-1] - 2021-09-06

Changed

  • Removed the default memory limit of 1GB, #46

Changed

  • Upgrades confluence version to 7.4.11 (#44)
  • Upgrades the java base image to 11.0.11-1 (#44)

Fixed

[v7.4.1-5] - 2021-04-30

Changed

  • Update dogu-build-lib to v1.1.1
  • Update zalenium-build-lib to v2.1.0
  • toggle video recording with build parameter (#40)
  • Changed tests to cypress tests (#43)

Fixed

  • Pollution of the temp folder by cleaning it cyclic (#43)

[v7.4.1-4] - 2020-12-17

Changed

  • Upgrades the java base image to 11.0.5-4

Added

  • Ability to set memory limit via cesapp edit-config
  • Ability to configure the MaxRamPercentage and MinRamPercentage for the Confluence process inside the container via cesapp edit-config (#38)

[v7.4.1-3] - 2020-09-23

Added

  • Integration and goss tests (#31)
  • configuration key config/confluence/license_key (#36)
  • configuration key config/confluence/settings/global_language
  • configuration key config/confluence/settings/enable_mobile_plugin
  • configuration key config/confluence/settings/enable_analytics
  • configuration key config/confluence/settings/additional_shortcuts

Changed

  • use default color scheme corresponding to the CES theme

[v7.4.1-2] - 2020-07-22

Changed

  • Move license-checker into its own repository

[v7.4.1-1] - 2020-07-15

Added

  • Add confluence_users_group key to define your own Confluence users group (#14)
  • This releases configures Confluence to send emails to the CES mail transfer agent postfix. (#8)
  • Confluence restarts automatically after exchanging the invalid setup license with a valid license. (#19)

    • This feature wears off once an administrator configures Confluence with a valid license.
  • add more volumes inside the home directory to exclude caching data from backup (#23)

Changed

  • Change setup process so the backup applied on first start can be customized with template placeholders
  • Downgrade to Confluence 7.4.1 LTS (#15)
  • Update the admin group on every startup of the dogu based on the value for admin_group configured in the etcd (#11)
  • Change port used to run the setup process for confluence (#17)
  • Update Java truststore at every dogu start
  • Upgrade to cas plugin v3.6.1-1

[v7.5.0-2] - 2020-06-17

Added

  • CAS authentication; #2
  • HTTPS proxy connector
  • build pipeline integration
  • preparations for the automatic release process

Changed

This release changes the initial setup so that Confluence can be installed without having a valid license. Customers need to apply their own license due to legal reasons: (#3)

  1. Get your valid Confluence license from Atlassian.
  2. Open the Confluence dogu in your browser

    • Confluence shows a page that warns that no valid license was given
  3. Click the provided link to update the Confluence license
  4. Enter the license
  5. Restart the confluence dogu

    • f. i. on the shell with

      • cesapp stop confluence
      • cesapp start confluence