All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Supports
/cloud-init[-secure]/{user,meta,vendor}-dataendpoints, which auto-detect the querying node's IP address and look up the corresponding xname in SMD- This is in contrast to the existing MAC-based endpoints, which remain functional
- Added an additional URL endpoint (
/cloud-init-secure) which requires JWT authentication for access- At the Docker level, if the
JWKS_URLenv var is set, this server will attempt to load the corresponding JSON Web Key Set at startup. If this succeeds, the secure route will be enabled, with tokens validated against the JWKS keyset.
- At the Docker level, if the
- During a query, if no xnames are found for the given input name (usually a MAC address), the input name is used directly. This enables users to query an xname (i.e. without needing to look up its MAC first and query using that), or a group name.
- Switched from Gin HTTP router to Chi
- When adding entries to the internal datastore, names are no longer "slug-ified" (via the
gosimple/slugpackage). This means that when a user requests data for a node, the name they query should be a standard colon-separated MAC address, as opposed to using dashes. - Rather than requiring a single static JWT on launch, we now accept an OIDC token endpoint. New JWTs are requested from the endpoint as necessary, allowing us to run for longer than the lifetime of a single token.
- Initial release
- Created SMD client
- Added memory-based store
- Able to provide cloud-init payloads that work with newly booted nodes
- Build and release with goreleaser