LDAP Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
[Unreleased]
[v2.6.7-3] - 2024-08-07
Changed
- [#45] Upgrade base-image to v3.20.2-1
Security
- this release closes CVE-2024-41110
[v2.6.7-2] - 2024-06-27
Changed
- [#42] Update Base Image to v3.20.1-2
Security
-
this release closes the following CVEs
- CVE-2024-24788
- CVE-2024-24789
- CVE-2024-24790
[v2.6.7-1] - 2024-06-26
Changed
-
update base image to 3.20.1-1 to update
doguctl
to 0.11.0 (#42)- openldap is updated to 2.6.7 due to alpine base image upgrade
[v2.6.2-7] - 2024-02-28
Changed
- Add "openldap-overlay-sssvlv" for server-side-sorting and virtual-list-views
[v2.6.2-6] - 2023-10-13
Added
- Added a configuration key to change how many users a single search operation can retrieve at once (#34)
[v2.6.2-5] - 2023-07-20
Added
cesperson
objectClass which allows an entry to have an external attribute (#35)
Changed
- Update makefiles to 7.10.0
- Update dogu-build-lib to 2.2.0
- Update ces-build-lib to 1.64.0
[v2.6.2-4] - 2023-05-26
Changed
- Upgrade base image to 3.15.8-1 to fix
curl
CVEs (#33)
[v2.6.2-3] - 2022-11-08
Fixed
- Prevent ldapsearch results from being cut after 79 characters (#31)
[v2.6.2-2] - 2022-09-08
Changed
- Make sure socket path exists and use default socket path for ldap connections at dogu startup as it was before 2.6.2-1
- Move migration logic from startup script to
post-upgrade.sh
Fixed
- Fixed hard to repair state of ldap dogu when upgrading from 2.4.48-3 => 2.4.58-3 => 2.6.2-x (#29)
- Make sure that all parts of the password policy are installed correctly at each startup (#29)
[v2.6.2-1] - 2022-08-23
THIS VERSION HAS BEEN REMOVED FROM REGISTRY. IT MAY CAUSES ERRORS THAT ARE HARD TO FIX
Changed
- Upgrade base image to 3.15.3-1
- Upgrade OpenLDAP to v2.6.2.-r0
- Added conversion database format from old hdb to mdb format
- Removed ppolicy schema due to deprecated status
- slapd socket connections corrected
[v2.4.58-4] - 2022-07-25
Fixed
- After updating from version 2.4.48-3, the Dogu ran into an error the first time it was started and then restarted (#26)
- After updating from version 2.4.48-3, the password policy was not available (#26)
[v2.4.58-3] - 2022-06-14
Added
- an e-mail notification whenever a users password has been changed by anyone (#21)
[v2.4.58-2] - 2022-04-13
Added
-
a default password policy (#14)
- This password policy is kept minimalistic. Only the setting of a flag for a mandatory resetting of the password is configured.
- By setting the attribute
PwdReset
totrue
for a user, he/she must change his/her password when logging in. - For detailed information on the password policy, see password policy documentation
Fixed
- During the first installation or during an installation after a
purge
, the Dogu did not start if no value is stored for the admin user in the etcd (key/config/ldap/admin_mail/
). (#19)
[v2.4.58-1] - 2022-04-06
Fixed
- fix service account creation and deletion with the generation of ldap and slapd config at every dogu start #17
Changed
- Upgrade to ldap 2.4.58
- Upgrade base image to 3.14.3-1
- Upgrade zlib to fix CVE-2018-25032; #15
[v2.4.48-4] - 2022-03-02
Added
- volume
/etc/openldap/slapd.d
to store slapd configuration data (#4)
[v2.4.48-3] - 2020-12-18
Fixed
- missing template information for the remove service accounts command
[v2.4.48-2] - 2020-12-16
Added
- command to remove service accounts
[v2.4.48-1] - 2020-10-06
Changed
- upgrade to OpenLDAP 2.4.48
-
change user's e-mail address to be unique in the LDAP directory (#8)
- existing user data are kept without change, even those with non-unique e-mail addresses
- updating a person's directory entry will lead to an error
some attributes not unique
if the (non-unique) e-mail address is supposed to be kept
-
Added more dogu build safety via CI/CD
- Added modular makefiles
- Added automated release
- Added upgrade dogu step in Jenkinsfile