Skip to content
This repository has been archived by the owner on Jun 19, 2022. It is now read-only.

Knative-GCP release v0.14.0

Pre-release
Pre-release
Compare
Choose a tag to compare
@knative-prow-releaser-robot knative-prow-releaser-robot released this 15 Apr 17:39
v0.14.0
99f53c2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Artifact Description
cloud-run-events-core.yaml All of the knative-gcp components bundled together: Channel, PullSubscription, Topic, CloudPubSubSource, CloudStorageSource, CloudSchedulerSource, CloudAuditLogsSource, and CloudBuildSource.
cloud-run-events.yaml Identical to cloud-run-events-core.yaml.

Action Required

  • spec.serviceAccount has been renamed to spec.googleServiceAccount for all sources. (#736, @grac3gao)

    • This is to emphasize that the field represents a Service Account in GCP, not a Kubernetes Service Account.
    • This is a breaking change. All old sources using spec.serviceAccount must be deleted and new sources using spec.googleServiceAccount must be created to replace them.

  • Knative has updated the way Brokers determine which default Channel to use. Adding a ConfigMap that includes PubSub as the default.
    Follow updated instructions to patch Knative's ConfigMap to point use this configuration. (#608, @zargarpur)

New Features

Workload Identity

  • Workload identity can be used instead of a Kubernetes secret
    containing a GCP Service Account's downloaded key. (#625, @grac3gao)
  • Workload identity can be activated for Topics and PullSubscriptions independently of sources. (#728, @grac3gao)

Policy

  • Added initial Istio policy binding implementation.
    It requires Istio release >= 1.5.
    Documentation: /docs/security/README.md (TODO now) (#656, @yolocs)
  • Added controller for EventPolicyBinding which leverages HTTPPolicy and HTTPPolicyBinding. (#696, @yolocs)
  • Add mains and yamls for security apis and controllers (#711, @yolocs)
  • Rename security.knative.dev -> policy.run.google.cloud.com (#732, @yolocs)
    1. Add operation to EventPolicy
    2. Add issuer field to JWTSpec
    3. Make it more clear in the comment that request principal should be in the format of "iss/sub" (#689, @yolocs)

Other new features

  • CloudBuildSource can be used to get events about Cloud Build builds. (#755, @capri-xiyue)
  • HTTP Trace propagation using W3C tracecontext headers is now supported. In order to take advantage of trace propagation either use a cloudevents client with support for trace propagation or enable handling of W3C tracecontext headers in the cloudevents HTTP transport. (#734, @ian-mi)
  • PullSubscriptions and Topics now exist in both v1alpha1 and v1beta1 versions. The versions are almost identical. All existing objects will continue to work. All valid configurations for the objects will continue to be valid. (#784, @Harwayne)
    • If you wish, you may start using the v1beta1 API surface. If you choose not to, then everything will continue to work as-is.
  • CloudEvents PubSub binding spec is now available (#633, @nachocano)

Other Changes

  • Topic and PullSubscription will aggressively remove unknown fields. (#794, @Harwayne)
  • Add a lib to label/delabel events as cloudevents extensions (#700, @yolocs)
Assets 4
Loading