janusec

v1.5.0:

• Upgrade Dingtalk OAuth2 to new SDK version.
• Optimize offline detection.
• Adjust default max_count threshold for CC detection, from 6 to 15.

Notice: If you have previously enabled Dingtalk OAuth2 authentication, the following changes need to be made when upgrading to this version：

• In the global settings interface of the gateway, configure the CorpId parameter, which can be obtained from the Dingtalk development platform.
• In Dingtalk development platform, upgrade the application and release a version of it.
• Under privilege management of Dingtalk development platform, grant all users the privilege of reading the personal information address book (通讯录个人信息读权限).

v1.4.2 with fix4

1. add custom headers for web applications, and let custom 5-second shields and WAF templates instantly effective.
2. fix creation of new web applicaiton.
3. fix duplicate destinations for application.
4. fix save passwd for new user and clickable area for menu.
5. fix language switch under settings and add WAF/CC logs for all applicaitons.

v1.4.2 with fix3

1. add custom headers for web applications, and let custom 5-second shields and WAF templates instantly effective.
2. fix creation of new web applicaiton.
3. fix duplicate destinations for application.
4. fix save passwd for new user and clickable area for menu.

1. add custom headers for web applications, and let custom 5-second shields and WAF templates instantly effective.
2. fix creation of new web applicaiton.
3. fix duplicate destinations for application.

1. add custom headers for web applications, and let custom 5-second shields and WAF templates instantly effective.
2. fix creation of new web applicaiton.

add custom 5-shield html in settings

v1.4.0:
Add SQLite support, now it support PostgreSQL 10/11/12/13+ and SQLite3.
Add API Interface and introduction for external control panels.
Add custom block html for WAF.
Add tenant id to data discovery.
Fix WAF/CC logs, CC update, certificate expire time, domain name in upper case, captcha confirm id escape and OAuth user privileges for v1.4.0.

v1.4.0:
Add SQLite support, now it support PostgreSQL 10/11/12/13+ and SQLite3.
Add API Interface and introduction for external control panels.
Add custom block html for WAF.
Add tenant id to data discovery.
Fix WAF/CC logs, CC update, certificate expire time, domain name in upper case and captcha confirm id escape for v1.4.0.

Add JSON data discovery function to integrate with the data privacy governance system JANUCAT （Compliance, Accountability and Transparency.

Optimized thread lock Mutex for CC statistics and K8S pods list
优化用于CC统计和K8S后端Pod列表的线程锁Mutex

Add K8S Ingress support, include web applications and TCP/UDP layer-4 forwarding
增加K8S Ingress支持，含Web应用以及TCP/UDP四层转发。

Add export and import for WAF rules

Add highly available configuration keepalived.conf (optional), which can be edited /usr/local/janusec/keepalived.conf . If needed, copy it to /etc/keepalived/ , for forming a group of JANUSEC nodes into a highly available virtual node (automatic migration).
增加高可用配置keepalived.conf（可选功能），可编辑 /usr/local/janusec/keepalived.conf 并复制到 /etc/keepalived/启用，用于将一组JANUSEC节点构成一个高可用虚拟节点（自动迁移）。

Fix a bug related to check offline IP:Port .

Add SMTP port 465 support, optimize sidenav menu.

Add /usr/local/janusec/log/error.log for janusec.service .

Fix a bug of HSTS Enabled, add redirect automatically when request is HTTP.

add BindDN for LDAP, change UI from list to table, and add filter.

Enable or disable static files cache, add brotli/gzip compression.

change http 301 to 308, fix HeaderValue regex match for WAF, UI optimization for access statistics.