Overview
Request 1151460 superseded
- configuration changes:
* Enhanced default configuration file, including configs for http3 support.
* Docker configuration has been disabled per default, file provider has been enabled
* Prepared directories for logging and for dynamic configuration
- frontend packaging:
* Changed packaging of webui: Invoke `prepare-sources.sh` to creaet a package
of node_modules used to build the webui during packaging.
* The frontend will now be packaged on OBS. The negative side-effect is, that
the package can not be built on the ppc64le platform as well as for Leap 15.5 and 15.4,
because some packages are not available there.
- Go packaging:
* Added upstream patch traefik-fix-int-overflow-with-go-generate-10452.patch to
allow packaging on 32bit architectures gh#traefik/traefik#10451
* Enabled CGO because there is no cross compilation needed in OSB (we build
packages for every distribution/architecture seperately). PIE can not be used
with CGO enabled for most architectures and is reported as failure sinc go 1.22.
See https://github.com/golang/go/issues/64875
- Update to version 2.11.0:
* Enhancements:
* [middleware] Deprecate IPWhiteList middleware in favor of IPAllowList
* [redis] Add Redis Sentinel support
* [server] Add KeepAliveMaxTime and KeepAliveMaxRequests features to entrypoints
* [sticky-session] Hash WRR sticky cookies
* Bug fixes:
* [acme] Update go-acme/lego to v4.15.0
* [authentication] Fix NTLM and Kerberos
* [file] Fix file watcher
* [file] Update github.com/fsnotify/fsnotify to v1.7.0
* [http3] Update quic-go to v0.40.1
* [middleware,tcp] Add missing TCP IPAllowList middleware constructor
* [nomad] Update the Nomad API dependency to v1.7.2
* [server] Fix ReadHeaderTimeout for PROXY protocol
* [webui] Fixes the Header Button
* [webui] Fix URL encode resource's id before calling API endpoints
- Created by weberho
- In state superseded
-
Package maintainers:
avicenzi,
pgeorgiadis, and
weberho
- Superseded by 1153513
Request History
weberho created request
- configuration changes:
* Enhanced default configuration file, including configs for http3 support.
* Docker configuration has been disabled per default, file provider has been enabled
* Prepared directories for logging and for dynamic configuration
- frontend packaging:
* Changed packaging of webui: Invoke `prepare-sources.sh` to creaet a package
of node_modules used to build the webui during packaging.
* The frontend will now be packaged on OBS. The negative side-effect is, that
the package can not be built on the ppc64le platform as well as for Leap 15.5 and 15.4,
because some packages are not available there.
- Go packaging:
* Added upstream patch traefik-fix-int-overflow-with-go-generate-10452.patch to
allow packaging on 32bit architectures gh#traefik/traefik#10451
* Enabled CGO because there is no cross compilation needed in OSB (we build
packages for every distribution/architecture seperately). PIE can not be used
with CGO enabled for most architectures and is reported as failure sinc go 1.22.
See https://github.com/golang/go/issues/64875
- Update to version 2.11.0:
* Enhancements:
* [middleware] Deprecate IPWhiteList middleware in favor of IPAllowList
* [redis] Add Redis Sentinel support
* [server] Add KeepAliveMaxTime and KeepAliveMaxRequests features to entrypoints
* [sticky-session] Hash WRR sticky cookies
* Bug fixes:
* [acme] Update go-acme/lego to v4.15.0
* [authentication] Fix NTLM and Kerberos
* [file] Fix file watcher
* [file] Update github.com/fsnotify/fsnotify to v1.7.0
* [http3] Update quic-go to v0.40.1
* [middleware,tcp] Add missing TCP IPAllowList middleware constructor
* [nomad] Update the Nomad API dependency to v1.7.2
* [server] Fix ReadHeaderTimeout for PROXY protocol
* [webui] Fixes the Header Button
* [webui] Fix URL encode resource's id before calling API endpoints
I have added the packaging of the front-end into the spec file. Works nicely, but isn't supported by Leap. Therefore it could be easier to leave the packaging of the front-end for the packager. The "new" way is recommended, but I'm not sure if it's the best.
The node packaging is nice, but I believe that we should stop using git-scm and instead fetch the released tarball. The tarball will include the compiled html/css, reducing the work required on the package side. This will also work on all architecture and versions.
PIE does not work on PPC, we can disable PIE on PPC, if RISC-V is also an issue, I would disable it there as well.
HTTP3 is experimental, I would leave it disabled by default, but not a major issue.
I would not redirect all traffic to HTTPS, there's no certificate, a self-signed one will be used.
The config should be the bare minimum for the service to start, like NGINX, but the users still need to setup their preferences.
Thanks, @avicenzi for reviewing! I'll prepare a new package. I'll soon submit a new package and will add a longer comment there.
@avicenzi, @pgeorgiadis: review reminder