1.61.3

[dashboard]

🐛 Bug Fixes

• [USER] Fixed DNS Provider List not visible for regular users (non-operators) (gardener/dashboard#1337, @grolu)

1.61.2

[dashboard]

⚠️ Breaking Changes

• [OPERATOR] This Dashboard version is not compatible with Gardener versions prior v1.54.x (gardener/dashboard#1323, @grolu)

🐛 Bug Fixes

• [USER] Fixed: The Dashboard displayed false expiration warnings for worker groups when additional machine image providerConfig values are configured (gardener/dashboard#1322, @grolu)
• [USER] Fixed: Empty DNSProvider list for Gardener versions > 1.54.0 (gardener/dashboard#1323, @grolu)

1.61.1

[dashboard]

🐛 Bug Fixes

• [USER] Removed loadBalancerProvider property from hcloud controlPlaneConfig (gardener/dashboard#1310, @JensAc)

1.61.0

[dashboard]

✨ New Features

• [USER] Static token kubeconfig cluster access can be disabled for new and existing clusters (gardener/dashboard#1249, @grolu)
• [USER] Projects are now also visible if the phase is not Ready. In this case the project has a warning icon next to the name (gardener/dashboard#1252, @grolu)
• [USER] Added architecture selection to worker group configuration (gardener/dashboard#1261, @grolu)
• [OPERATOR] Operators can now trigger control plane migration via a configuration dialog. The configuration button is hidden for regular users, unless they have been granted permission to trigger a control plane migration for their shoots (gardener/dashboard#1262, @grolu)
• [OPERATOR] Automatically reload referenced data of the dashboards kubeconfig. This is necessary for the Service Account Token Volume Projection feature (gardener/dashboard#1232, @holgerkoser)
• [OPERATOR] Clusters that have the dashboard.gardener.cloud/ignore-issues annotation are filtered on the All Projects page in case the Hide no operator action required issues filter is checked (gardener/dashboard#1271, @petersutter)

🐛 Bug Fixes

• [USER] Fixed the broken theming of logos and icons. (gardener/dashboard#1266, @holgerkoser)
• [OPERATOR] Fixed an issue where the OIDC login was not hidden on the login screen if it was not configured by the gardener dashboard administrator (gardener/dashboard#1263, @petersutter)

🏃 Others

• [OPERATOR] Identity chart: bumped version of dex to v2.33.0-distroless (gardener/dashboard#1272, @petersutter)
• [DEVELOPER] The frontend config is now split into an authenticated (/api/config) and unauthenticated endpoint (/login-config.json) (gardener/dashboard#1267, @petersutter)

1.60.0

[dashboard]

🐛 Bug Fixes

• [USER] Fixed an issue where the webterminal feature did not work if .spec.kubernetes.enableStaticTokenKubeconfig is set to false on the Shoot (gardener/dashboard#1222, @petersutter)
• [USER] Use scratch as base image (gardener/dashboard#1254, @holgerkoser)
• [USER] The table menu is now scrollable in case the content does not fit on the window (gardener/dashboard#1258, @petersutter)

🏃 Others

• [OPERATOR] The Azure secret dialog hints now to use more fine-grained Azure permissions for Shoots on Azure. (gardener/dashboard#1255, @dkistner)

1.59.0

[dashboard]

⚠️ Breaking Changes

• [USER] The feature to rotate the service account secrets was removed. Instead you now have to delete the service account if you want to invalidate all tokens that were issued for your service account (gardener/dashboard#1234, @petersutter)
• [USER] Downloaded kubeconfigs for service accounts on the project Members page now have tokens that will expire by default in 90 days, except if the kube-apiserver is configured with a shorter maximum validity duration or the dashboard's default was changed by your landscape administrator (gardener/dashboard#1234, @petersutter)
• [OPERATOR] This Dashboard version is not compatible with Gardener versions prior v1.48.x (gardener/dashboard#1216, @petersutter)
• [OPERATOR] Downloaded kubeconfigs for service accounts on the project Members page have tokens that will expire by default in 90 days, except the kube-apiserver is configured with a shorter maximum validity duration (--service-account-max-token-expiration). (gardener/dashboard#1234, @petersutter)
  • You can change the default token expiration with .frontendConfig.serviceAccountDefaultTokenExpiration in the values.yaml file of the gardener-dashboard chart
  • You can change the list of the intended audiences of the service account token with .tokenRequestAudiences in the values.yaml file of the gardener-dashboard chart

✨ New Features

• [USER] You can now assign the Service Account Manager role to project members. (gardener/dashboard#1216, @petersutter)
• [USER] Added support to enter application credentials for OpenStack as an alternative for the use of a technical user with password (gardener/dashboard#1230, @NotTheEvilOne)
• [USER] Sort supported versions up within same patch group, use colors to highlight supported / deprecated versions (gardener/dashboard#1238, @grolu)
• [OPERATOR] Garden cluster with kubernetes version v1.24 are now supported (gardener/dashboard#1234, @petersutter)
  • Tokens for service accounts are now fetched using the TokenRequest API
• [OPERATOR] Added dedicated icon for user errors in shoot status so that the underlying shoot status is still visible (gardener/dashboard#1239, @grolu)

🐛 Bug Fixes

• [OPERATOR] Fixed a bug that caused seeds with empty label section not to be mapped to cloud profiles with empty matchLabels (gardener/dashboard#1236, @grolu)

🏃 Others

• [OPERATOR] Identity chart: bumped version of dex to v2.32.0-distroless (gardener/dashboard#1245, @petersutter)

1.58.0

[dashboard]

🐛 Bug Fixes

• [USER] Improved the startup time of the dashboard especially in environments with slow network connection (gardener/dashboard#1215, @holgerkoser)

1.57.0

[dashboard]

⚠️ Breaking Changes

• [OPERATOR] This dashboard version requires terminal-controller-manager v0.19.0 or higher, in case the terminal feature is enabled (gardener/dashboard#1207, @petersutter)

✨ New Features

• [USER] The cluster status now shows if a cluster has been marked for deletion (gardener/dashboard#1206, @grolu)

🐛 Bug Fixes

• [OPERATOR] Terminal: Fixed issue Unable to connect to the server: x509: certificate signed by unknown authority when running a kubectl command within the terminal pod (gardener/dashboard#1207, @petersutter)

🏃 Others

• [OPERATOR] Updated dexipd image tag to v2.31.1 (gardener/dashboard#1214, @petersutter)

1.56.0

[dashboard]

⚠️ Breaking Changes

• [OPERATOR] The gardenctl-v2 commands that can be copied from the cluster details page to target the "Cluster" or the "Control Plane" will not include the command to set the KUBECONFIG environment variable anymore (e.g. eval $(gardenctl kubectl-env bash) in case of bash) (gardener/dashboard#1158, @petersutter)
  • A warning message is displayed when running the target command in case the KUBECONFIG environment variable does not point to the current target
  • The rc command startup script sets the KUBECONFIG variable when evaluating the command output, usually as part of the shell profile, e.g. source <(gardenctl rc bash) in case of bash. Requires gardenctl v2.1.0
  • If you do not load the gardenctl rc command in your shell profile or do not have the gk or, with bash as an example, eval "$(gardenctl kubectl-env bash)" in your bash profile, you will have to run it manually in order to have the KUBECONFIG point to the kubeconfig of the current target

✨ New Features

• [USER] Added a warning to configure workers dialog in case additional zones require additional network configuration (gardener/dashboard#1194, @grolu)
• [USER] Added support for Azure Private DNS (gardener/dashboard#1191, @grolu)
• [USER] Several improvements for the readiness chips (gardener/dashboard#1190, @grolu)
  • Sort readiness chips by name
  • Left align readiness tags, this improves overview if additional chips are present for only some of the clusters
  • Fill chips that have an error state (to make them more prominent)
  • Added icons for readiness chips that have a state other than success
• [USER] Improved worker CIDR generation for new clusters when using non default node networks (gardener/dashboard#1182, @grolu)
• [OPERATOR] Improved visibility of user errors (gardener/dashboard#1193, @grolu)
• [OPERATOR] Default node CIDR can be overwritten by setting the new frontend.defaultNodesCIDR value in the Dashboard configuration (gardener/dashboard#1182, @grolu)

🐛 Bug Fixes

• [USER] When selecting a machine image that does not support the currently selected container runtime, the Dashboard does no longer implicitly set the container runtime to something else (gardener/dashboard#1199, @grolu)
• [USER] Fixed an issue caused by wildcard Floating IP names not mapped correctly, therefore available load balancer classes were not shown on shoot details page. Also the UI did not flag the default load balancer class (gardener/dashboard#1198, @grolu)
• [USER] Service Accounts with more than one secret are now handled correctly (gardener/dashboard#1195, @grolu)

📖 Documentation

• [DEPENDENCY] Updated docforge version and simplified path transformations in docforge manifest (gardener/dashboard#1169, @Kostov6)

1.55.1

[dashboard]

🐛 Bug Fixes

• [OPERATOR] Fixed the identity-ingress backend name (gardener/dashboard#1189, @petersutter)