Release Notes for 4.1.1

KubeSphere

Features

  • Refactor based on the new microkernel architecture of KubeSphere LuBan.
  • Introduce the KubeSphere Marketplace as a built-in feature.
  • Support for managing extensions through the Extensions Center.
  • UI and API can be extended.
  • Support for one-click import of member clusters via kubeconfig.
  • Support for KubeSphere Service Accounts.
  • Support for dynamic extension of the Resource API.
  • Support for adding clusters, workspaces, and projects to quick access.
  • Enabled file upload and download via container terminal.
  • Adapted to cloud-native gateways (Kubernetes Ingress API) from different vendors.
  • Support API rate limiting.
  • Support creating persistent volumes on the page.

Enhancements

  • Support for selecting all clusters when creating a workspace.
  • Optimization of web kubectl, supporting dynamic recycling of pods and fuzzy search when switching clusters.
  • Optimization of node list, changing the default sorting to ascending order.
  • Only allow trusted OAuth clients to verify user identity directly using username and password.
  • Streamline the Agent components deployed in member clusters.
  • Split some configurations in KubeSphere Config as independent configuration items.
  • Adjust the search result of container images to sort in reverse chronological order.
  • Support for editing user aliases.
  • Display scheduling status in the cluster list.
  • Support binaryData data display in ConfigMap details.
  • Refactor the Workbench page.
  • Remove unnecessary extensions.
  • Support fast deployment and uninstallation via helm.
  • Simplify the deployment of agents in member clusters.
  • Support for disabling terminal for control plane nodes.
  • Support triggering cluster resource synchronization proactively.
  • User experience improvements on the workload pages under clusters.
  • User experience improvements on the application list page.
  • User experience improvements on the persistent volume claim and storage class list pages.
  • Optimize the display of excessively long resource names.
  • Support globally enabling fieldValidation.
  • Support horizontal movement on the cluster nodes list page.

Bug Fixes

  • Fix the issue of the node terminal displaying “connecting” indefinitely.
  • Fix the potential issue of unauthorized access to resources in the workspace.
  • Fix the potential issue of unauthorized access to cluster authorization APIs in the workspace.
  • Fix the issue of abnormal session logout due to incorrect configuration.
  • Fix the issue of exceptions when adding image service information to pull images from a specified repository.
  • Fix the issue of missing ownerReferences when editing Secrets.
  • Fix the issue of white screen and incorrect page redirection during the initial login.
  • Fix the scrolling issue with checkboxes in Windows environment.
  • Fix the problem where the cluster management entry couldn’t be found when logged in as cluster-admin.
  • Fix the issue where closing the kubectl container terminal did not terminate the corresponding pod.
  • Fix the issue where the cluster cannot be selected when downloading kubeconfig.
  • Fix the issue where resource names were not fully displayed in some lists due to excessive length.
  • Fix the missing translations in some pages.
  • Fix the blank display issue on container details page.
  • Fix the default skip certificate verification issue when selecting HTTPS for image registry addresses when creating secrets.
  • Fix inability to edit project roles for service accounts of member clusters.
  • Fix inability to edit settings for configmaps without key-value pairs.
  • Fix inability to edit or delete key-value pair data for configmaps of member clusters.
  • Fix the display issue with pop-up dialog when removing unready clusters on the cluster management page.
  • Fix the progress bar display issue when removing clusters on cluster management page.
  • Fix disappearance of the selection status of previously selected clusters after searching for clusters in pop-up dialog for “Add tags to clusters”.
  • Fix pagination issue for pods on workload details page.
  • Fix display of HTML comments in changelogs on extension details page.
  • Fix incomplete display of floating elements on list pages under certain circumstances.
  • Fix abnormal display of error messages in the top right corner.
  • Fix display issue with pop-up dialog for creating workspaces.
  • Fix inability to search for Harbor (version 2.8.0 and later) images.
  • Fix slow loading of console under HTTPS protocol.
  • Specify cluster creator as cluster administrator by default.
  • Fix exception when deleting labels from nodes.
  • Fix the issue where page does not refresh in real time when adding member clusters.
  • Add prompt message when uploading files in containers.
  • Fix the issue where clusters are not filtered based on user permissions when selecting clusters.
  • Fix potential permission escalation and authorization risks in helm application deployment.
  • Fix the issue where file upload freezes when creating application templates.
  • Fix the issue where applications created in one project are visible in other projects.
  • Fix the issue where bitnami source in application repository cannot be synchronized.
  • Fix the issue where application template displays no data.
  • Fix the issue where unauthorized users encounter a blank page when deploying applications from the app store.
  • Fix incorrect display of types of secrets.
  • Fix display issue with workspace list.
  • Fix incorrect status in persistent volume list.
  • Fix failure to create PVC based on snapshots.
  • Remove unnecessary prompt for persistent volume expansion.
  • Fix incorrect display of type dropdown when creating secrets.
  • Fix data filling error when creating secrets with the “Image registry information” type.
  • Fix the issue where workload list cannot retrieve all projects.
  • Fix abnormal display of prompt information for pods in workloads.
  • Fix the issue where versions displayed in CRDs page is not the latest.
  • Fix display issue when searching for clusters in cluster list.
  • Fix the issue where web kubectl terminal is unusable in EKS environment.

API Updates

API Removal

The following APIs will be removed in v4.1:

Multi-cluster

The multi-cluster proxy request API /API_PREFIX/clusters/{cluster}/API_GROUP/API_VERSION/... has been removed. Please use the new multi-cluster proxy request path rule /clusters/{cluster}/API_PREFIX/API_GROUP/API_VERSION/... instead.

Access Control

  • The iam.kubesphere.io/v1alpha2 API version has been removed. Please use the iam.kubesphere.io/v1beta1 API version instead.

  • Significant changes in iam.kubesphere.io/v1beta1: The API Group for Role, RoleBinding, ClusterRole, and ClusterRoleBinding resources has changed from rbac.authorization.k8s.io to iam.kubesphere.io.

Multi-tenancy

  • Partial APIs in tenant.kubesphere.io/v1alpha1 and tenant.kubesphere.io/v1alpha2 API versions have been removed. Please use the tenant.kubesphere.io/v1beta1 API version instead.

  • Significant changes in tenant.kubesphere.io/v1beta1: spec.networkIsolation in Workspace has been removed.

kubectl

  • The /resources.kubesphere.io/v1alpha2/users/{user}/kubectl interface has been removed. Terminal-related operations no longer need to call this interface.
  • The API path for the user web kubectl terminal has been adjust from /kapis/terminal.kubesphere.io/v1alpha2/namespaces/{namespace}/pods/{pod}/exec to /kapis/terminal.kubesphere.io/v1alpha2/users/{user}/kubectl.

Gateway

The gateway.kubesphere.io/v1alpha1 API version has been removed.

  • The API for querying related gateways of the Ingress configuration has been adjust to /kapis/gateway.kubesphere.io/v1alpha2/namespaces/{namespace}/availableingressclassscopes.

API Deprecations

The following APIs have been marked as deprecated and will be removed in future versions:

  • Cluster validation API
  • Config configz API
  • OAuth token review API
  • Operations job rerun API
  • Resources v1alpha2 API
  • Resources v1alpha3 API
  • Tenant v1alpha3 API
  • Legacy version API

Known Issues

  • Upgrade from version 3.x to 4.x is not supported at present, but will be supported in subsequent releases.

  • The following functions are temporarily unavailable and will be offered by extensions later:

    • Monitoring
    • Alerting
    • Notifications
    • Istio
    • DevOps
    • Project gateway and cluster gateway
    • Storage volume snapshot
    • Network isolation
    • OpenPitrix for app management

  • The following features are currently unavailable and will be supported in subsequent versions:

    • Department management in workspaces

Misc

  • Remove all language options except English and Simplified Chinese by default.
  • Remove content related to system components.