0.9

BREAKING CHANGES

• Switch to AGPL
• Auth0 env variables are now

  AUTH_AUTH0_ID=your-auth0-id
  AUTH_AUTH0_SECRET=your-auth0-secret
  AUTH_AUTH0_ISSUER=your-auth0-issuer

• DOCKER_NETWORK env variable needs to be the name of a docker network
• Use firewall rules for isolating containers instead of a dedicated docker network, for example iptables
  WARNING: FAILING TO ADD IPTABLES RULES TO PROTECT CONTAINERS COULD ALLOW ATTACKERS TO HIJACK ANY SESSION
  running

docker network create stardust;
  iptables -I FORWARD -s $(docker network inspect stardust | jq -r 'map(to_entries) | map ([.[6].value.Config[0].Subnet ]) | .[] | @tsv') -d $(docker network inspect stardust | jq -r 'map(to_entries) | map ([.[6].value.Config[0].Subnet ]) | .[] | @tsv') -j DROP

and then setting DOCKER_NETWORK to stardust should work.

What's changed

• Multi domain support for OAuth, AUTH_URL env is no longer needed.
• Assign defaults for docker related environment variables
• Simplify some code

Pull Requests

• fix: used wrong username by @uhidontkno in #15
• chore(deps): bump ws from 8.17.0 to 8.17.1 by @dependabot in #17
• chore(deps): bump braces from 3.0.2 to 3.0.3 by @dependabot in #18
• BREAKING CHANGE - use iptables rules for preventing container-container communication by @IncognitoTGT in #19

New Contributors

• @uhidontkno made their first contribution in #15

Full Changelog: 0.8-rc...0.9