Skip to content

Latest commit

 

History

History
328 lines (212 loc) · 20.1 KB

CHANGELOG.md

File metadata and controls

328 lines (212 loc) · 20.1 KB

Changelog

All notable changes to this project will be documented in this file. Each new release typically also includes the latest modulesync defaults. These should not affect the functionality of the module.

v8.2.0 (2019-07-19)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Apparently openvpn 2.4 needs double quotes around client specific push options #329
  • Only output ldap_tls_client_cert_file and ldap_tls_client_key_file when set #341 (Bluewind)
  • Allow puppetlabs/concat 6.x, puppetlabs/stdlib 6.x #340 (dhoppe)
  • use double quotes on all push options #330 (qs5779)

Closed issues:

  • var renaming overlooked KEY_DIR => EASYRSA_PKI #336

Merged pull requests:

  • Add option to disable ordering dependencies on Openvpn::Client #344 (Bluewind)
  • Updated KEY_DIR to match new variable #337 (xepa)
  • Use stdlib functions for hash key discovery #324 (towo)

v8.1.0 (2019-02-03)

Full Changelog

Fixed bugs:

  • Allow 4 and 6 suffix inside proto to limit ip4 or ip6 connection only. #327 (jkroepke)

v8.0.0 (2019-01-29)

Full Changelog

Breaking changes:

Implemented enhancements:

Fixed bugs:

  • crl auto renewal broken with easyrsa 3.0 #318
  • consider the easyrsa version to trigger the renew crl command #321 (Dan33l)

Closed issues:

  • New release ? #323
  • Non-executable easy-rsa files cause module to fail #313
  • Do not fail fatal if OS is unsupported. #304
  • Failures after upgrade #303
  • OpenVPN is now generating blank/empty user certificates #225

Merged pull requests:

  • updated documentation to conform with REFERENCE.md standard for forge #311 (danquack)
  • add acceptance tests with real vpn client/server setup #310 (Dan33l)
  • modulesync 2.2.0 and allow puppet 6.x #299 (bastelfreak)

v7.4.0 (2018-10-16)

Full Changelog

Implemented enhancements:

  • update supported OSes in params.pp #296 (Dan33l)
  • use new fact easyrsa to configure easyrsa 2 or 3 #292 (Dan33l)

Fixed bugs:

  • Support for easy-rsa version 3 #216

Closed issues:

  • debian 7 support broken #291
  • Epel has upgraded easy-rsa to version 3.x and removed 2.x, breaking the module #269

Merged pull requests:

v7.3.0 (2018-08-18)

Full Changelog

Implemented enhancements:

  • Allow management_port to be a string; require stdlib >= 4.25.0 #275 (marieof9)

Fixed bugs:

  • Configuring management unix socket is no longer possible #274
  • openvpn::server, documentation doesn't match the code for parameter 'port' #272

Merged pull requests:

v7.2.0 (2018-03-17)

Full Changelog

Implemented enhancements:

Fixed bugs:

Closed issues:

  • Looking for Maintainers #228

v7.1.0 (2018-01-11)

Full Changelog

Implemented enhancements:

  • add openvpn::deploy::(export/client) #261 (to-kn)

Closed issues:

  • Elegant solution for renewing CRL #236

v7.0.0 (2018-01-06)

Full Changelog

Breaking changes:

Implemented enhancements:

v6.0.0 (2017-11-21)

Full Changelog

Breaking changes:

Fixed bugs:

  • Doesn't work properly with "remote" in openvpn::server #252
  • Correct 252 #253 (cjeanneret)

Merged pull requests:

v5.0.0 (2017-11-13)

Full Changelog

Breaking changes:

  • Breaking: Update puppet, stdlib, and concat requirements in prep for release #242 (wyardley)

Implemented enhancements:

  • Upped version requirement of concat and added Debian 9 (stretch) #243 (hp197)

v4.1.1 (2017-10-07)

Full Changelog

v4.1.0 (2017-10-06)

Full Changelog

Closed issues:

  • Install openvpn & certs also on client nodes #231
  • Download config has incorrect protocol #219
  • Error while evaluating a Function Call, cannot currently create client configs when corresponding openvpn::server is extca_enabled #199

Merged pull requests:

  • Fix auth tls ovpn profile and ldap auth file perms #220 (szponek)
  • Correct path of openvpn-auth-pam.so on modern Debian distros. #217 (oc243)
  • Add rhel6 support for ldap auth plugin #215 (miguelwhite)
  • fix broken namespecific rclink #209 (alxwr)

4.0.1 (2016-09-25)

  • Fix namespecific_rclink variable warning for non BSD systems (#214)

4.0.0

3.1.0

  • Support for FreeBSD (#180)
  • Support for port-share (#182/#185)
  • Support for pre-shared keys (#186)
  • Support LDAP anonymous binds (#189)
  • Fix .ovpn files generation (#190)
  • Support for external CAs (#192)
  • Small Typo fix (#192)
  • Fix support for Amazon Linux (#194)
  • Client pull option (#195)
  • Allow remote_host to be an array of servers (#195)
  • More robust Shared CA handling (#191, #196)

3.0.0

  • Support for Ubuntu 15.04 (#168)
  • Support for specifying TLS-Cipher (#169)
  • Support for specifying custom certificate expiry (#169)
  • Support for README in download configs (#169)
  • Support for Tunnelblick configurations (#169)
  • Fix certificate revocation in Ubuntu Precise (#169)
  • Use concat for ovpn generation (#176)

2.9.0

This will be the last version of version 2.x with new features.

  • Support to send ipv6 routes (#153, #154)
  • Support for nobind param for server in client mode (#156)
  • Fixing autostart_all behaviour (#163)
  • Add systemd support for Debian >= 8.0 (#161)
  • Support for Archlinux (#162)
  • Support to enable/disable service management(#158)
  • Fix installation for older Redhat based systems (#165)
  • Add ability to specify custom options for clients (#167)

2.8.0

  • Support for systems without lsb-release package (#134)
  • Support for Amazon EC2 OS (#134)
  • Move default log path for status log to /var/log/openvpn (#139)
  • Support for format parameter (#138)
  • Ability to configure autostart management on debian (#144)
  • Fix ordering in /etc/default/openvpn with puppet future parser (#142
  • Support for TLS auth when server acts as client (#147)
  • Support for customer server options (#147)
  • Allow disabling ns-cert-type server for server-clients (#147)
  • Fix pam plugin path on RedHat/CentOS (#148)

2.7.1

  • Fix server in client mode (#137)

2.7.0

  • Support for removing a client specific conf file (#115)
  • Support for rcvbuf and sndbuf (#116)
  • Fix RedHat and CentOS package selection (#97)
  • Support for TLS and x509-name verification (#118)
  • Fix unset client cipher producing invalid configs (#129)
  • Support to share a CA between multiple server instances (#112)
  • Support for systemd (#127)

2.6.0

  • Support for setting up and/or down scripts for clients (#89)
  • Fixing the permissions of the created directories and files (#90, #92, #94, #102)
  • Refactor templates to use instance variables instead of scope.lookupvar (#100)
  • Add client mode server (#100)
  • Move CA management into its own defined type (#100)
  • Fix LDAP-Support on Debian Wheezy (#103)
  • Support for status-version (#108)
  • Change layout of downloadable client config to prevent overriding other client configurations when extracting the tarball (#104)
  • Add ns-cert-type server for server-clients (#109)

2.5.0

  • Do not include deprecated concat::setup anymore (#71)
  • Only warn about pam deprecation if it's used (#72)
  • Ability to specify a down script (#75)
  • Support for client-cert-not-required in server config (#76)
  • Support for auth-retry in client config (#76)
  • Support for setenv in client config (#79)
  • Support for setenv_safe in client config (#79)
  • Support for cipher in client config (#80)
  • Support for push route in client specific config (#80)

2.4.0

Bugfixes

  • Fix Ubuntu Trusty support (#64)

New Features

  • Basic support to hand out IPv6 addresses (#66)
  • Ability to specify the common name of a server (#65)
  • Options for KEY_EXPIRE, CA_EXPIRE, KEY_NAME, KEY_OU, KEY_CN easy-rsa vars. (#58, #70)
  • Options for cipher, verb, persist-key, persist-tun server directives. (#58, #70)

Before

  • A lot of stuff I don't know anymore 😞

* This Changelog was automatically generated by github_changelog_generator