Teleport 15.4.10
Description
- Improved stability of very large teleport clusters during temporary backend disruption/degradation. #44695
- Resolved compatibility issue with Paramiko and Machine ID's SSH multiplexer SSH agent. #44672
- Fixed a fatal error in
tbot
when unable to lookup the user from a given UID in containerized environments for checking ACL configuration. #44646 - Fixed Application Access regression where an HTTP header wasn't set in forwarded requests. #44629
- Use the registered port of the target host when
tsh puttyconfig
is invoked without--port
. #44573 - Added more icons for guessing application icon by name or by label
teleport.icon
in the web UI. #44568 - Removed deprecated S3 bucket option when creating or editing AWS OIDC integration in the web UI. #44487
- Fixed terminal sessions with a database CLI client in Teleport Connect hanging indefinitely if the client cannot be found. #44466
- Added application-tunnel service to Machine ID for establishing a long-lived tunnel to a HTTP or TCP application for Machine to Machine access. #44446
- Fixed a low-probability panic in audit event upload logic. #44424
- Fixed Teleport Connect binaries not being signed correctly. #44420
- Prevented DoSing the cluster during a mass failed join event by agents. #44415
- Added audit events for AWS and Azure integration resource actions. #44404
- Fixed automatic updates with previous versions of the
teleport.yaml
config. #44378 - Added support for Rocky and AlmaLinux when enrolling a new server from the UI. #44331
- Fixed Teleport access plugin tarballs containing a
build
directory, which was accidentally added upon v15.4.5 release. #44301 - Prevented an infinite loop in DynamoDB event querying by advancing the cursor to the next day when the limit is reached at the end of a day with an empty iterator. This ensures the cursor does not reset to the beginning of the day. #44274
- The clipboard sharing tooltip for desktop sessions now indicates why clipboard sharing is disabled. #44238
- Fixed a
kube-agent-updater
bug affecting resolutions of private images. #44192 - Prevented redirects to arbitrary URLs when launching an app. #44189
- Added audit event field describing if the "MFA for admin actions" requirement changed. #44185
- The
teleport-cluster
chart can now use existing ingresses instead of creating its own. #44147 - Ensured that
tsh login
outputs accurate status information for the new session. #44144 - Fixed "device trust mode x requires Teleport Enterprise" errors on
tctl
. #44134 - Added a
--skip-idle-time
flag totsh play
. #44095 - Added the
tbot install systemd
command for installing tbot as a service on Linux systems. #44082 - Added ability to list access list members in json format in
tctl
cli tool. #44072 - Made
tbot
compilable on Windows. #44070 - For slack integration, Access List reminders are batched into 1 message and provides link out to the web UI. #44035
- Fixed denying access despite access being configured for Notification Routing Rules in the web UI. #44028
- Fixed eBPF error occurring during startup on Linux RHEL 9. #44024
- Lowered latency of detecting Kubernetes cluster becoming online. #43971
- Enabled Access Monitoring Rules routing with Mattermost plugin. #43600
Enterprise:
- Fixed an Access List permission bug where an access list owner, who is also a member, was not able to add/rm access list member.
- Fixed an issue with incorrect yum/zypper updater packages being installed.
- Fixed empty condition from unquoted string with yaml editor for Notification Routing Rules in the Web UI.
Download
Download the current and previous releases of Teleport at https://goteleport.com/download.
Download the current release of Teleport plugins from the links below.
- Slack (Linux amd64)
- Mattermost (Linux amd64)
- Discord (Linux amd64)
- Terraform Provider (Linux amd64 | Linux arm64 | macOS amd64 | macOS arm64 | macOS universal)
- Event Handler (Linux amd64 | macOS amd64)
- PagerDuty (Linux amd64)
- Jira (Linux amd64)
- Email (Linux amd64)
- Microsoft Teams (Linux amd64)