Releases - Oct 2023¶
v2.0 - SaaS¶
13 Oct, 2023
Important
v2.0 release adds a new service (Environment Manager), and includes significant enhancements to capabilities such as Fleet Operations and Cost Explorer.
The section below provides a brief description of the new functionality and enhancements in this release.
Environment Manager¶
Full-stack environment provisioning through templates¶
Typical operating environment for an application includes a mix of K8s and non-K8s infrastructure resources. Environment manager allows platform teams to stitch these resources together into full-stack environment templates that contain all necessary dependencies, policies and configuration.
Self-service for application teams¶
Platform teams can expose the environment templates and enable a one-click workflow for application teams to provision environments required for their applications. This accelerates developer productivity/agility while also ensuring that the necessary guardrails are in place.
Flexible framework to build templates¶
Through a combination of platform constructs such as contexts, static resources, resource templates and environment templates, Environment Manager provides a very flexible framework for platform teams to build "ready to use templates" for environments.
Leverage existing Terraform IaC Templates¶
Environment Manager supports TF as the provider. Any existing TF IaC artefacts can be easily leveraged to build resource/environment templates.
Environment provisioning in private data centers¶
The solution also supports scenarios where TF artefacts are in private repositories and the environments need to be provisioned in a private data center.
Info
Learn more about this new service here.
Important
Limited Access - This capability is enabled selectively for customers and is not available to all organizations.
Amazon EKS¶
Role ARN based cloud credentials¶
To make it easier to identify role ARN-based cloud credentials, UI has been enhanced to display the account ID within the role ARN. By default, the account ID is masked. Users can see the details by clicking "Show ARN."
Amazon EKS and Azure AKS¶
Fleet Operations¶
Several improvements have been added to the Fleet Operations feature with this release including support for SystemSync, Terraform, and Audit logs.
Info
Learn more about this capability here.
Important
Limited Access - This capability is enabled selectively for customers and is not available to all organizations.
Cluster Upgrade to Kubernetes 1.27¶
This release adds support for upgrading existing EKS and AKS clusters to Kubernetes version 1.27. Previous releases only supported the provisioning of new EKS and AKS clusters on Kubernetes version 1.27.
Amazon EKS Anywhere on Bare Metal¶
Day-2 Operations¶
This release adds support for Day-2 operations for the EKSA Bare Metal Cluster type using RCTL.
Google GKE¶
Kubernetes v1.27¶
New GKE clusters can now be provisioned based on Kubernetes v1.27.
Important
Only new cluster provisioning is supported for Kubernetes v1.27.x. Support for upgrading existing clusters managed by the controller "in-place" to Kubernetes v1.27 will be available with an upcoming release
Auto upgrade of nodes¶
In this release, we have added an option for the automatic upgrade of nodes as part of the node pool configuration. This feature will help you keep the nodes in your cluster up-to-date with the cluster control plane version. This release offers support through the UI and RCTL only.
Terraform Support¶
Terraform support has been added with this release for GKE.
Upstream Kubernetes for Bare Metal and VMs¶
Kubernetes v1.28¶
New upstream clusters can be provisioned based on Kubernetes v1.28.x. Existing upstream Kubernetes clusters managed by the controller can be upgraded in-place to Kubernetes v1.28.
CNCF Conformance¶
Upstream Kubernetes clusters based on Kubernetes v1.28 (and prior Kubernetes versions) are fully CNCF conformant.
Node labels and Node taints¶
A previous release included the ability to add and delete node labels and node taints (includes Day 2 support) using RCTL. This release extends the ability to do so via the UI.
Upgrade plan optimization improvements¶
A previous release added an option for users to orchestrate node upgrades in parallel. This release includes several UX improvements to this feature and adds the ability to orchestrate node groups concurrently via RCTL.
VMware vSphere¶
Machine Health checks (MHC)¶
Ability to configure Machine health checks have been added for vSphere clusters with this release. Users can set conditions for identifying unhealthy machines in the cluster and trigger automatic remediation to enhance cluster health and reliability.
Backup and Restore¶
Swagger APIs¶
It is now possible to automate the workflow for backup/restore operations (e.g. data backup location, policies) via Swagger APIs.
GitOps¶
Lineage of resources¶
Support has been added to track the lineage information for resources during the initial Git-to-system sync. This is to ensure that resources aren't created/deleted inadvertently by the user.
Example scenarios include:
-
User creates a duplicate manifest file in the Git Repo. System Sync pipeline will now show an appropriate error message
-
User edits the object name in the resource manifest. System Sync pipeline will prevent a new resource from being created and deny action on the affected resource
Blueprints¶
Drift Webhook¶
There are certain scenarios where the webhook that is deployed to the clusters to prevent drift in configuration for add-ons and workloads needs to be disabled. This release provides the ability to do so as an Org/Project level configuration or granularly as part of the Blueprint configuration. By default, the drift webhook is enabled.
User Management¶
IDP integration¶
It is now possible to delete IDP users from the "controller application". This enables platform admins to clean up IDP users who no longer exist and also ensures that if the user is recreated in the IDP portal and assigned a new group, the user does not have access to resources associated with any previous group associations.
Cost Management¶
Explorer¶
Several improvements have been implemented with this release to aid customers with 'cluster right-sizing' and 'application right-sizing' optimization exercises.
- Inclusion of additional columns around CPU and Memory utilization metrics
- Trend for efficiency scores around Cost, CPU and Memory
Important
Limited Access - This capability is enabled selectively for customers and is not available to all organizations.
Catalog¶
Additions to System Catalog¶
The System Catalog has been updated to add support for the following repositories.
| Category | Description |
|---|---|
| Databases | EDB Operator |
| Secrets Management | Infisical |
v2.0 Bug Fixes¶
| Bug ID | Description |
|---|---|
| RC-27250 | Unable to create a Cloud Credential for 'Data Backup' of type 'Role' via RCTL v3 or TF |
| RC-22284 | Pod status in UI take does not take the pod state into consideration |
| RC-29846 | EKS: Version mismatch for control plane when the cluster is upgraded from the EKS console |
| RC-27783 | Storage requests quotas for Namespace and Project is being incorrectly sent from UI to backend |
| RC-27253 | Creating cloud credentials using RCTL or TF without the project sharing field configured throws an error |
| RC-22348 | When namespaces are implicitly created through add-ons, they are not synced back to the controller with namespace sync configuration enabled |
| RC-22330 | Rctl apply using v3 spec does not upload artifacts for helm3 add-ons |
| RC-21551 | Added validation for the configuration of 'cluster_placement' as part of cluster overrides |
| RC-18635 | Error when setting the “Cluster Endpoint Access” to “Allowed” in the EKS cluster template |