Release Notes
The following release notes are for the Business Edition of Portainer. For Community Edition release notes, refer to the GitHub releases page.
Release 2.27.9 LTS
July 2, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Added the
--trusted-originsCLI option andTRUSTED_ORIGINSenvironment variable to specify (in a comma-separated list) the domain(s) used to access Portainer when it is behind a reverse proxy. Use this option if Portainer is behind a reverse proxy and you are getting "Origin invalid" errors.
Release 2.27.8
June 25, 2025
Known issues
Users with Portainer deployed behind a reverse proxy may encounter "Origin invalid" issues under some configurations. We recommend updating to 2.27.9 which provides a workaround to this issue.
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Fixed an issue where the Kubernetes client cache was not cleared and created correctly per user
Fixed an issue where Kubernetes namespace access changes were not reflected for API users after sign-in
Release 2.27.7
June 17, 2025
Known issues
Users with Portainer deployed behind a reverse proxy may encounter "Origin invalid" issues under some configurations. We recommend updating to 2.27.9 which provides a workaround to this issue.
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Resolved the following CVEs:
CVE-2025-22871
CVE-2025-22874
CVE-2025-49593
Release 2.27.6
May 9, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Implemented a new API route that will return logs collected from remote async environments
Release 2.27.5
May 2, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Fixed an issue where the PORTAINER_EDGE_ID variable was not being set properly
Release 2.27.4
April 15, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Implemented functionality to provide a method to update Team Memberships from external auth
Fixed an issue where an "edge secret is not allowed to transmit over HTTP” error could appear when pushing a change to an Edge Configuration using the API
Resolved the following CVEs:
CVE-2025-22868
CVE-2025-30204
CVE-2025-32386
CVE-2025-32387
Release 2.27.3
March 25, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration and does not affect authentication for any other functionality in the cluster.
Changes
Fixed missing cluster CPU reservation readings for Kubernetes clusters (R8S-268)
Fixed data loss resulting from redeploying stacks with relative path volumes (BE-11723)
Fixed error when updating user theme settings in profile (BE-11713)
Fixed “Unable to retrieve user authorizations” error when Edge Admins visit a page inside an environment (BE-11726)
Fixed “Change container image” form disappearing from Swarm service edit page after a hard refresh (BE-11707)
Fixed some pages only displaying first section of content (BE-11708)
Release 2.27.2
March 19, 2025
Known issues
When viewing or editing your user profile (via My Account) an error is being thrown. A fix for this will be provided in the next patch release.
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration, and does not affect authentication for any other functionality in the cluster.
Changes
Fixed an issue on Kubernetes environments where invalid deployments could fail silently
Fixed an issue on Kubernetes environments where namespaces that the user did not have access to could be shown
Fixed an issue where the select all checkbox didn't reflect the selected state
Resolved CVE-2025-22869
Optimized OAuth automatic team memberships
Fixed an issue where adding Omni nodes wasn't showing available machines
Fixed user access loss due to
--disable-role-syncflag
Release 2.27.1
February 27, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration, and does not affect authentication for any other functionality in the cluster.
Changes
Security: Resolved CVE-2024-50338
Fixed an issue where Compose files were not interpolated with .env
Fixed an issue where team(s) added to namespace access disappeared when a new team was added to environment
Added server certificate revalidation for mTLS connections
Added a mTLS status indicator icon for Edge Agent environments
Release 2.27.0
February 20, 2025
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration, and does not affect authentication for any other functionality in the cluster.
New in this release
Security: CVE-2025-21614, CVE-2025-21613, CVE-2024-45337, and CVE-2024-11053
Fix: Early exit optimization does not return the correct error
Fix: 2.19.5 - 2.21 Migration fails with "
StorageError: invalid object"Optimization: Investigate the web editor slowdown while typing
Improvement: Edge stack missing value warning improvement
Fix: Removing an edge stack makes the backend panic
Fix: Object not found inside the database (bucket=endpoint_relations, key=8)
Improvement: use an Edge Stack Status Update coordinator
Fix: High memory usage when counting nodes and CPUs
Fix: Unable to add environment to static Edge group
Fix: Removing an edge stack makes the backend panic
Fix: Error “failed to find local environment” occurs if there is at least one environment configured but no local environment
Fix: Bitnami Helm Charts location has moved
Fix: Edge stack "deployment received" counting is not correct with large scale deployments
Fix: Unable to deploy a git edge stack
Fix: RegistryList API operation returns password in clear text
Fix: Agent Edge stack status watcher errors on Swarm
Fix: edge_stack folder in volume is not deleted after Edge stack is removed
Fix: Swarm: Empty/incorrect value in Host column of Images list
Fix: Unpopulated Volumes Dropdown in App Templates in Portainer 2.21.4
Fix: "Select all" should select only elements of the current page
Fix: podman doesnt appear in the option to filter by platform in the homepage
Fix: Edge stack webhooks cannot be disabled once created
Fix: Unable to expand application list rows to view published URLs
Improvement: Change docs URL schema to LTS / STS
Fix: Group membership synchronization between Portainer and Azure OAuth appears to be broken
Fix: Adding environment variables to an application with a configmap moves the configmap to the secrets section and brings down the app
Improvement: Kubernetes - Rename
Create from filetoCreate from codeFix: Incorrect Replicated count while performing rolling restart on deployment
Fix: Kubernetes - Broken Cluster View
Fix: Podman - Unable to create an image from a container
Fix: User gets duplicated in a Team for each login, once it reaches 12 duplicates user unable to use any functions in Portainer
Improvement: Unit test the docker RBAC layer in BE
Improvement: Associating async Edge agent based devices in the waiting room outputs tunnel error
Optimization: Remove useless pending actions on startup
Fix: Edge Stack update not working
Fix: Async snapshots are discarded from the server when the agent doesn't send them
Fix: Update & Rollback schedules are not executed on standard edge agents
Fix: Edge Stack update not working
Fix: Unable to successfully update async edge stack using parallel update
Fix: Edge stack webhook does not update and pass env variables at the same time
Fix: Unable to redeploy stack if repo ref is changed
Fix: Edge settings don't persist when restarting Portainer
Fix: Can't Delete Image from Swarm Cluster
Improvement: Stabilise the overall diagnostics data collection
Improvement: Improve validations for Omni Credentials
Fix: RoleBinding and ClusterRoleBinding removal issues
Improvement: Refresh available machines when switching Omni credentials
Deprecated and removed Features
Deprecated features
Reminder:
<platform>-<arch>image tags were deprecated in 2.21
Removed features
The following API endpoints have been removed:
POST /endpoints/{id}/edge/trust
GET /edge_templates
POST /templates/file
POST /endpoints/{id}/kubernetes/helm/repositories
GET /endpoints/{id}/kubernetes/helm/repositories
GET /kubernetes/{id}/namespaces/{namespace}/configuration
POST /cloud/{provider}/cluster
GET /cloudcredentials
POST /cloudcredentials
GET /cloudcredentials/{id}
DELETE /cloudcredentials/{id}
PUT /cloudcredentials/{id}
POST /custom_templates
POST /edge_jobs
GET /cloud/microk8s/addons
POST /stacks
DELETE /edge_stacks/{id}/status/{environmentId}
POST /edge_stacks
GET /status/version
GET /status/nodes
Release 2.26.1
January 21, 2025
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration, and does not affect authentication for any other functionality in the cluster.
Known issues with Kubernetes
Displaying job executions of cron jobs are limited to 3.
Changes
Fixed issues relating to the Omni / Talos integration:
Implemented additional validation when adding Omni credentials in Portainer to ensure the Service Account key is correct, that it has an admin role, and that it is not expired.
Prevent the deletion of Omni credentials if they are still in use with an Omni environment within Portainer.
Do not apply Machine Config patches when ‘Override network settings’ is disabled.
Release 2.26.0
January 15, 2025
This is a STS (Short Term Support) release that includes all the changes added up to and including the 2.25.1 patch release as well as various fixes aimed at enhancing the stability and scalability of Portainer. For more details on what is included from the 2.25 release, refer to the 2.25 release notes.
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Known issues with Talos clusters managed by Omni
Loading Omni specific information in the Cluster Details view and configuring an existing Talos cluster is currently restricted to Portainer Admins. Environment Admins will get a forbidden error when attempting to do this. This only applies to Omni configuration, and does not affect authentication for any other functionality in the cluster.
Known issues with Kubernetes
Displaying job executions of cron jobs are limited to 3.
New in this release
Added the ability to remove associated volumes when deleting a stack
Improved the performance for edge:
Optimized the server polling handler
Optimized the snapshot diff for async
Optimized AddEnvironmentToEdgeGroups()
Made the async polling handler work concurrently in an optimistic way to allow for more parallelism
Optimized the async command creation to reduce DB lookups
Optimized the concurrent Edge Stack retrieval by the agent
Optimized the Edge Stack status update by the agent
Fixed a goroutine leak in the Agent that would exhaust the resources over time
Fixed Edge Stack status updates so that it doesn’t cause wrong counts
Updated compose-unpacker so it doesn’t rely on the docker-compose binary
Fixed data races:
GetPlatform()
Docker transport
Agent stack manager
Edge auto-onboarding
Fixed potential logic problems related to edge environment configurations
Fixed the async snapshot diff logic for Kubernetes environments
Fixed the router for Kubernetes requests
Fixed a problem that prevented the assignment of multiple edge groups to async agents on association
Fixed a problem that prevented the association of async devices without groups
Fixed a problem that would cause for the edge stack local filesystem path to not be retained when using GitOps edge configs
Fixed the volume list retrieval and app template deployment when the environment snapshot doesn’t exist
Standardized the lower case string comparison method
Fixed a problem that prevented the update of edge stacks when using webhooks with async environments
Added a new feature to integrate with Sidero Omni
Added a feature behind a feature flag to disable automatic sync of the built-in Kubernetes roles
Added a 30 minutes time interval to the OAuth session timeout options
Added a new Kubernetes view for Jobs and Cron Jobs
Fixed update create from file option order
Deprecated and removed features
Deprecated features
None
Removed features
None
Release 2.25.1
December 20, 2024
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Resolved CVEs
CVE-2024-45337 [BE-11511]
Changes
Fixed an issue where excessive warnings were logged if agents weren’t updated to match server version [BE-11498]
Release 2.21.5
December 20, 2024
Resolved CVEs
CVE-2024-45337
Changes
Fixed an issue that omitted copying the IP address in container port mapping when provided during the Edit/Duplicate operation for an existing container.
Fixed an issue with images that included files failing to build.
Fixed a resource leak that prevented the backup process from finishing under some specific circumstances.
Optimized the space used by Git repositories.
Fixed aggressive image pulling retry.
Fixed an issue where LDAP users get duplicated in a Team for each login.
Release 2.25.0
December 16, 2024
This is a STS (Short Term Support) release that includes all the changes added up to and including the 2.24.1 patch release as well as various fixes aimed at enhancing the stability and scalability of Portainer. For more details on what is included from the 2.24 release, refer to the 2.24 release notes.
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
New in this release
Added the ability to prune services while updating Compose Edge Stacks
Updated Compose to v2.31
Optimized the HTTP request/response compressor to reduce allocations and improve performance
Async Edge Agent: cleaned up executed commands to improve performance
Reduced the total locking time for the backup process and improved the error messages
Stopped preventing the server startup when
docker_config/config.jsonfile is corruptedAdded the ability for users to specify Portainer agent and updater images from their private registry when creating a remote update or rollback schedule for agents
Fixed a problem that prevented interaction with Swarm volumes
Fixed a problem that prevented the GitOps edge configurations from working properly
Fixed the missing IP binding of published ports when editing a container
Enforced timeouts for offline environments when doing parallel edge deployments
Fixed a resource leak that prevented the backup process from finishing under some specific circumstances
Removed incorrect persistence of filters when interacting with Services and Stack pages
Restored the remember functionality in the filtered stacks search results
Enforced Edge Stack naming rules
Fixed an issue with images that included files failing to build
Ensured proper Edge Stack removal after a power interruption in the Agent
Fixed an issue where Git stacks using sub-directories and environment files could not be edited
Fixed an issue where an extra network is created when deploying a stack with only external networks defined
Fixed an issue where the
env_filefield in Compose files were being ignoredFixed an issue where a stack that built an image that it then referenced would fail to deploy with a "no such image" error
Ensured that the
PORTAINER_EDGE_IDvariable is properly exposed when using Edge ConfigurationsAdded a new feature called Download Support Bundle
Added a new feature to enable/disable debug logging within the Portainer UI
Added a new button in the Licenses Page to support renewal
Fixed an issue where Helm status was not correctly shown for deployments
Fixed an issue where the date picker was unusable for activity logs in the dark mode
Fixed an issue where the namespace level access not being applied to teams
Fixed an issue where edge stack fails to be deleted when K8s job is set with TTL
Fixed an issue where LDAP users get duplicated in a Team for each login
Improved kapa.ai landing page
Migrated a handful of legacy Angular based Kubernetes pages to React
Deprecated and removed features
Deprecated features
PUT /kubernetes/{id}/namespacesAPI endpoint
Removed features
None
Release 2.24.1
December 3, 2024
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Changes
Fixed an issue where Git stacks using subdirectories and environment files could not be edited.
Fixed an issue where an extra network was being created when deploying a stack with only external networks defined.
Fixed an issue where the
env_filefield in Compose files was being ignored.Fixed an issue where users were unable to pull images from private registries as expected.
Fixed an issue where a stack that built an image that it then referenced would fail to deploy with a "no such image" error.
Fixed an infinite recursion issue in an RBAC route when switching users and connecting to an agent endpoint.
Fixed an issue that omitted copying the IP address in container port mapping when provided during the Edit/Duplicate operation for an existing container.
Fixed an issue with images that included files failing to build.
Fixed an issue where activity logs shown in the Portainer UI were encoded with base64.
Release 2.24.0
November 20, 2024
This is a STS (Short Term Support) release that includes all the changes added up to the 2.23 release and 2.21.4 LTS patch release, as well as various fixes aimed at enhancing the stability and scalability of Portainer. For more details on what is included from the 2.23 release, refer to the 2.23 release notes.
Known issues
Known issues with Docker support
Service pruning does not work with stacks using relative paths
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
New in this release
Bumped Go version to 1.23
Improved the status tracking for Kubernetes Edge Stacks
Rewrote the stack deployment code to remove the need for the docker-compose binary
Clean-up and compact user activity DB on start-up
Added the ability to prune services while deploying Compose stacks
Added a retry period to Edge Stack deployments
Fixed user authentication log sorting
Defaulted to descending timestamp order in the user activity log
Fixed user activity log sorting
Fixed aggressive image pulling retry
Relocated the GitOps TLS toggle so it’s harder to overlook
Added timeouts to OAuth requests
Fixed problem that prevented environment association in the waiting room
Fixed a problem that prevented the Docker image exporting
Improved the Kubernetes Cluster node view to display conditions
Migrated more Angular based pages to React
Fixed the following Kubernetes regressions:
Standard user can't get cluster scoped ingress controllers
CPU/Memory Limit & Reservation values not multiplied by replica count on "Applications running on this node" table
Application rollout restart isn’t functional
Deprecated and removed features
Deprecated features
None
Removed features
None
Release 2.21.4
October 25, 2024
Changes
Ported client API negotiation changes to ensure LTS can be compatible with future Docker versions.
Improved the Edge-related API error response by including environment ID and name.
Added the display of the missing Edge stack deployment errors on the Edge stack environment status page.
Fixed an issue that prevented the removal of older files when updating an Edge configuration.
Fixed an issue that prevented consecutive updates of Swarm services from reloading the page.
Release 2.23.0
October 16, 2024
This is a STS (Short Term Support) release that includes all the changes added up to and including the 2.22.0 release, as well as various fixes aimed at enhancing the stability and scalability of Portainer. For more details on what is included from the 2.22 release, refer to the 2.22 release notes.
Known issues
Known issues with Docker support
Image export is not functioning
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Unable to create an image from a container
Known issues with Kubernetes support
Service accounts, Cluster Roles/Bindings, Roles/Role Bindings) show system resources when toggle is off
Standard user can't get cluster scoped ingress controllers
CPU/Memory Limit & Reservation values not multiplied by replica count on "Applications running on this node" table
Application rollout restart is not functioning
New in this release
Improved the Home page search speed
Improved OAuth logging to help diagnose errors
Increased the CRL request timeout in the Agent to 30s
Moved the webhook deploying logic to the background to avoid timeouts
Optimized the space used by Git repositories
Improved the Edge-related API error response by including environment ID and name
Fixed the removal of old files when doing an Edge Config update
Added the display of the missing Edge stack deployment errors on the Edge stack environment status page
Fixed the Pending status getting stuck for Edge stacks when re-associating environments
Fixed issues with Kubernetes resources not showing information correctly
Improved the overall experience for Kubernetes
Deprecated and removed features
Deprecated features
None
Removed features
Platform and Architecture-Specific Images:
We have removed image tags named for various architectures using the convention
<platform>-<arch>. These images tags were deprecated in a previous release. This change ensures further standardization and consistency across our software distribution.
Release 2.21.3
October 8, 2024
Changes
Improved home page search performance, addressing slow response times in certain environments.
Fixed an issue where the Edge admin role would be removed after login when authenticating via OAuth.
Fixed an issue where the CRL (Certificate Revocation List) request timeout may be too short, causing potential connection issues.
Release 2.22.0
October 3, 2024
This is a STS (Short Term Support) release that includes all the changes added up to and including the 2.21.2 release, as well as various fixes aimed at enhancing the stability and scalability of Portainer. For more details on what is included from the 2.21 release, refer to the 2.21 release notes.
Breaking changes
As part of the changes on the Kubernetes experiences, some API operations for Kubernetes management may have changed slightly.
Known issues
Known issues with Podman support
Podman environments aren't supported by auto-onboarding script
It's not possible to add Podman environments via socket, when running a Portainer server on Docker (and vice versa)
Support for only CentOS 9, Podman 5 rootful
Unable to create an image from a container
Known issues with Kubernetes management
Applications deployed via helm chart are no longer grouped on the App list screen
Service accounts, Cluster Roles/Bindings, Roles/Role Bindings) show system resources when toggle is off
Standard user can't get cluster scoped ingress controllers
Unused label incorrectly showing on used volumes, and Used by column is blank
NaN value on Memory & CPU used bars on Node Details screen
CPU/Memory Limit/Reservation values on Applications running on this node table rounding down
Volumes created within Portainer are incorrectly labelled as External
New in this release
Podman Support:
Portainer now supports Podman. It can be installed on Podman and manage Podman environments. Initial support includes Podman 5.x running on CentOS environments.
ACI Enhancements:
Enhancements to ACI management include support for GPUs, private IPs, persistence, and the ability to start, stop, and restart container instances, among other improvements.
Better Kubernetes Management Experience:
The Kubernetes management experience has been overhauled by relocating most of the logic from the client to the server, improving client speed and responsiveness. This update also introduces the ability to manage all Kubernetes resources via a simplified, abstracted API.
Security Controls for Kubernetes:
New security controls allow administrators to disable access to downloading Kubeconfig files and interacting with the Kubernetes shell for non-administrator users.
Edge Capabilities Improvements:
Enhancements to the Edge features have resulted in a more stable, performant, and reliable experience when using Edge capabilities.
Stability Improvements:
Various fixes have been applied to increase the overall stability of Portainer.
Scalability Enhancements:
Adjustments have been made to improve Portainer's performance and reliability at scale, especially in larger environments.
Security:
Critical and high-security vulnerabilities (CVEs) in dependencies shipped within the Portainer images have been addressed. Key components, such as the Docker client and kubectl, have been updated to ensure a secure environment.
Deprecated and removed features
Deprecated features
Platform and Architecture-Specific Images:
We are deprecating image tags named for various architectures using the convention
<platform>-<arch>. This change ensures further standardization and consistency across our software distribution.
Removed features
Platform and Architecture-Specific Images:
We are removing images named using the convention
<platform>-<arch>-<version>. These images were deprecated in a previous release in favor of the newer convention<version>-<platform>-<arch>. This change ensures standardization and consistency across our software distribution.
Kompose Logic:
All logic related to Kompose has been removed, following its deprecation in a previous version.
Nomad Support:
All logic related to Nomad support has been removed after it was deprecated and subsequently removed from the client in version 2.20.
Release 2.21.2
September 24, 2024
Changes
Updated Linode branding to align with the new “Akamai Connected Cloud”.
Fixed an issue with stack deployment on Docker when using a .env file from a Git Repository and referencing it in the Compose file.
Release 2.21.1
September 10, 2024
Changes
Fixed an issue where Portainer would crash when cloning a large Git repository
Introduced a JWT revocation mechanism to revoke JWTs after logout
Fixed an issue when re-creating a container on Docker 24
Fixed an issue with stack deployment on Docker when using environment variables in the volumes section of the Compose file
Release 2.21.0
August 27, 2024
This is our first Long-Term Support (LTS) release, which includes all the changes that have been added up to the 2.20.3 release, as well as various fixes aimed at enhancing the stability and scalability of Portainer.
What’s Included
Changes from 2.20.x:
This LTS release incorporates all the features, improvements, and bug fixes from the 2.20.x series of releases.
For detailed information about the changes included in the 2.20.x releases, please refer to the 2.20.x release notes.
New in this Release
Stability Improvements: Various fixes have been applied to increase the overall stability of Portainer.
Scalability Enhancements: Specific adjustments have been made to improve the usage of Portainer at scale, ensuring better performance and reliability in larger environments.
Security: Critical and high security vulnerabilities (CVEs) associated with dependencies shipped within the Portainer images have been addressed. This includes updates to key components like the Docker client and kubectl to ensure a secure environment.
Deprecated Capabilities and Features
We’re deprecating the platform and architecture-specific images named using the convention
<platform>-<arch>-<version>in favor of the newer convention<version>-<platform>-<arch>. This change ensures standardization and consistency across our software distribution. In the future, we’ll only build and publish images using the new tag convention.
Release 2.20.3
May 21, 2024
This is an STS (Short-Term Support) release. Read more in our "Portainer 2.20 STS" blog post.
Important Notice
On update to this Portainer version, stacks and edge stacks will have their containers restarted after updating them. This is caused by the use of Docker Compose 2.26.1, which requires this restart. Note: If you already updated to 2.20.0, 2.20.1 or 2.20.2 previously, stacks and edge stacks that DO NOT use relative paths may already have had their containers restarted on update of them, and you would not then see a restart again.
Edge
Resolved an issue where edge configuration files were not being backed up.
Resolved an issue where device registration via the waiting room was extremely slow during large-scale edge deployment.
Resolved an issue where users were unable to remove or update an edge configuration that was pending deployment on a device.
Docker
Resolved an issue introduced in 2.20.0 where stopped Docker containers were incorrectly shown with an Unused badge. portainer/portainer#11797
Swarm
Resolved an issue where the Edit Container page on Swarm environments was not loading properly. portainer/portainer#11830
Kubernetes
Resolved an issue introduced in 2.20.0 where, when a placement rule was created for a Kubernetes application, if it was not met for a node, then it would not show up in the expand rows of the Application Details Placement constraints/preferences table. portainer/portainer#11826
Resolved an issue when creating a MicroK8s cluster where using a hyphen to specify an IP range had stopped working in 2.19.
Resolved an issue where the "More resources" views in Kubernetes would redirect to the Dashboard upon refresh.
Resolved an issue in the Kubernetes Applications List page where the namespace filter selection of a system namespace did not persist on refresh or revisit. portainer/portainer#11798
Introduced a tooltip to the 'Rollback to previous configuration' button in the Kubernetes Application Details screen to explain how rollback works. portainer/portainer#11804
Prevented a panic from occurring when mistakenly attempting to deploy a Kubernetes application and supplying a docker-compose.yaml instead of a Kubernetes manifest. portainer/portainer#11796
MicroK8s
Applied updates and ensured confirmed Kubernetes 1.30 support with creation of MicroK8s clusters.
Introduced an offline mode for creation of a MicroK8s Kubernetes cluster on air-gapped nodes.
Portainer
Resolved an issue where pending actions to be run on environments could end up in a panic state. portainer/portainer#11818
Resolved an issue where the subpath of an image tag was incorrectly truncated. portainer/portainer#11831
Resolved an issue around excessive GitHub API Portainer version checking on page loads. portainer/portainer#11795
Resolved an issue where loading a large number of volumes took an unreasonable amount of time portainer/portainer#11829
Resolved an issue in the agent where removing an undeployed stack resulted in errors. portainer/portainer#11828
Corrected the title wording and some UI styling in the Authentication Logs and Activity Logs screens. portainer/portainer#11807
Resolved an issue with deploying of containers via Portainer running on Windows Server 2022, where an error regarding CAP_AUDIT_WRITE was occurring. portainer/portainer#11805
API Changes
Release 2.20.2
May 1, 2024
This is an STS (Short-Term Support) release. Read more in our "Portainer 2.20 STS" blog post.
Resolved CVEs
Resolved CVE vulnerabilities for Windows images portainer/portainer#11716
Updated kubectl to resolve CVEs. portainer/portainer#11741
Resolved CVE vulnerabilities for docker binary portainer/portainer#11717
Resolved CVE vulnerabilities for protobuf portainer/portainer#11718
Resolved CVE vulnerabilities for crypto portainer/portainer#11719
Updated k8s.io/apiserver and Helm to resolve CVEs. portainer/portainer#11740
Resolved CVE vulnerabilities for containerd
Updated Docker client library to resolve CVEs. portainer/portainer#11738
Resolved CVE vulnerabilities for otelgrpc
Resolved CVE vulnerabilities for stdlib portainer/portainer#11720
Resolved CVE-2024-29296 by creating uniform response time for login attempts. portainer/portainer#11736
Resolved a CVE regarding data encryption. portainer/portainer#11737
Updated Docker Compose to resolve CVEs. portainer/portainer#11739
Updated OPA Gatekeeper for Pod security constraints feature in order to resolve CVEs.
Edge
Resolved an issue with the edge post initiation migration runner to ensure it runs migrations at the appropriate time, when connection between an edge environment and Portainer server has been established. portainer/portainer#11733
Docker
Resolved an issue that caused errors when users attempted to connect to their Docker environment via API using HTTPS portainer/portainer#11721
Provided info text in the UI to clearly explain environment variables stack.env file usage when deploying Docker stacks via Git vs. other methods. portainer/portainer#11732
Kubernetes
Ensured confirmed support of vanilla Kubernetes 1.30 clusters. portainer/portainer#11730
Fixed a bug with 2.20 migrating of Kubernetes secrets ownership to an improved model where the migration was not being flagged as complete.
Resolved an issue with Kubernetes environments that have a significant number of services where the Dashboard services panel never completed loading and the loading spinner was indefinitely displayed. portainer/portainer#11734
KaaS
Ensured Kubernetes 1.29 is supported with Azure Kubernetes Service (AKS) provisioning of KaaS clusters.
Ensured Kubernetes 1.29 is supported with Linode Kubernetes Engine (LKE) provisioning of KaaS clusters.
Portainer
Fixed an issue introduced in 2.20.0 where a user logged in using external SSO could no longer create a Portainer API access token. portainer/portainer#11731
Resolved an issue where pending actions to be run on environments would still be considered for deleted environments (although not actually run). portainer/portainer#11735
Resolved issue where containers that exited with code 0 were incorrectly marked as failed deployments portainer/portainer#11724
Introduced an additional option to automatically detect the authentication style for OAuth portainer/portainer#11725
API Changes
Fixed the content type for responses from the API endpoint used for token generation portainer/portainer#11723
Release 2.19.5
April 22, 2024
Portainer
Resolved CVE-2024-29296 by creating uniform response time for login attempts
Release 2.20.1
April 5, 2024
This is an STS (Short-Term Support) release. Read more in our "Portainer 2.20 STS" blog post.
Important Note Regarding Docker 26 Support
Please be aware that support for Docker 26 is provided on an "as-is" basis and is primarily driven by best-effort principles. Minimal regression testing has been conducted to ensure basic functionality. Users should proceed with caution and report any issues they encounter.
Docker
Resolved an issue where Docker 25/26 API changes affected container-related pages and image size display portainer/portainer#11504
Kubernetes
Resolved an issue where deploying GitOps edge stacks on a Kubernetes edge device resulted in error portainer/portainer#11503
Resolved an issue where the secret owner migration process could lead to a deadlock, preventing the HTTP(S) server from starting. portainer/portainer#11501
Portainer
Fixed an issue where local stacks were being overwritten by orphaned stacks with the same name in the regular stack listing page portainer/portainer#11502
Release 2.20.0
March 19, 2024
Overview of changes
Introducing the new Portainer BE 2.20.0 release. This is an STS (Short-Term Support) release.
As you gear up for the transition to Portainer BE 2.20.0, our latest STS (Short-Term Support) installment, ensuring a smooth upgrade is key. We urge you to back up your configurations via the Portainer UI beforehand. This backup acts as your safety net, ensuring you can gracefully revert to the prior version or state if the new frontier proves too wild. Additionally, pore over the release notes for catching any compatibility issues, understanding deprecated functionalities, and identifying essential tweaks to your current setup. Your diligence will pave the way for a seamless update.
A Short-Term Support release can be considered as "bleeding-edge" as it will contain the latest features and functionality we've developed. The STS releases (including this one) will go through a significant amount of pre-release testing, but there may be changes that could cause regressions and features that might see further iterations. As such, if stability is a crucial concern for your setup we wouldn't recommend deploying STS releases on production environments.
Read more in our "Portainer 2.20 STS" blog post.
Breaking changes
Discontinued Nomad support in this release. Users won't be able to create new Nomad environments from the UI, and existing Nomad environments are hidden, ceasing their management through Portainer
Introduced a requirement to specify the current user's password when adding an API token via the UI or the POST /users/{id}/tokens API endpoint.
Fixed issue when deploying Docker stacks from Git-based custom templates where a user could edit the content via the web editor, when they should only have been able to deploy the content from Git.
Deprecation notice
DEPRECATED API endpoint
GET /kubernetes/{id}/namespaces/{namespace}/configuration. Following Portainer 2.19 split of K8s ConfigMaps and Secrets to two UI tabs and K8s API proxy use, the original endpoint combining both resource types is marked deprecated.DEPRECATED API endpoint
GET+POST /endpoints/{id}/kubernetes/helm/repositories, MOVED Helm UI option to Advanced Deployment/Create from Manifest screen + now allow users to delete their Helm repos. New endpointGET+POST /users/{id}/helm/repositoriesadded.
Resolved CVEs
Updated various packages to resolve CVEs. portainer/portainer#9224
Resolved CVEs for Portainer Agent
Resolved CVEs for Portainer CE and BE
Edge
Addressed CVEs affecting Nomad, enhancing security and stability
Fixed an issue where edge stacks deployed with retry policy and failing to deploy would remain stuck indefinitely after 1 hour of retries
Fixed issue where edge stacks with GitOps enabled, would stop polling after restarting the server.
Fixed issue where confirmation modal was missing when user was trying to update edge stacks.
Resolving an issue where newer versions of images were not being pulled from the registry as expected when re-pull option was turned on.
Fixed issue where pre-pull image and retry deployment options were missing after edge stack was deployed
Fixed an issue where clicking to filter ascending/descending by a column on the waiting room page did not result in any sorting.
Fixed issue where admin users were unable to update a Git-based edge stack created by another user.
Fixed an issue where, upon disabling the waiting room feature, existing devices in the waiting room are now automatically associated to prevent them from remaining unassociated
Implemented a new "Edge Admin" role, enabling users to administer the edge compute feature without altering Portainer settings.
Fixed issue where the "Retry deployment" toggle did not persist when editing an edge stack.
Improved UX of making "GitOps Edge Configuration" stand independently, simplifying access and allowing users to effortlessly enable relative paths during configuration.
Resolved an issue where the count of configurations pushed to edge devices was inaccurately displayed. We now prevent double counting and ensure accurate representation
Updated app template version to 3.0, now supporting edge apps in templates.
Corrected the incorrect icon style for edge groups in the UI
Enhanced the tooltips in the auto onboarding page to provide clear instructions on how to use the "Edge ID" field. Users will now receive guidance on the specific command to run in the script for generating the edge ID
Resolved an issue where the waiting room remained visible in the sidebar menu despite being disabled by the administrator. The waiting room now correctly hides when disabled.
Simplified scheduler time settings by removing seconds, providing users with a more straightforward configuration experience.
Fixed issue where searching for edge groups in the waiting room returned no results
Fixed issue where non-trusted environments were incorrectly counted for static edge groups
Implemented the ability for users to upload and manage edge configurations grouped by folders, allowing seamless deployment based on matching edge group names rather than individual devices.
Resolved an issue by implementing timeouts for the agent during snapshot building, preventing it from getting stuck indefinitely or taking excessive time in unresponsive Docker daemon scenarios
Fixed an issue where the Edge Agent was resetting EndpointId to 0 and polling global-key incorrectly when disconnected from Portainer server, even with disabled edge compute features
Introduced Edge App Templates and Custom Templates to address the absence of app and custom templates for edge stacks in Portainer
Fixed an issue where a dynamic edge group would erroneously create a stack even if no environment was present
Decoupled the display of Portainer API server URL and tunnel server address from the Edge Compute feature toggle, ensuring clear visibility regardless of the Edge Compute setting, addressing potential user confusion.
Swarm
Resolved an issue with the Docker Swarm Service List screen where image up to date indicators were not always correct.
Fixed issue where relative path volumes in Docker Swarm environments did not update when new commits were pushed to the upstream repository and the user clicked "Pull and redeploy" in stacks with GitOps updates enabled.
Updated the documentation link for Swarm agent setup in the UI to ensure it directs users to the correct documentation.
Updated the Quick Setup wizard to provide a more accurate message, eliminating misleading connection failure notifications when adding the local environment via Agent deployment.
Resolved an issue where deleting a Docker Swarm agent stack caused continuous error messages in logs portainer/portainer#7937
Resolved an issue where a Swarm stack failed to restart after being stopped when using private images. portainer/portainer#8262
Docker
Introduced the ability to trigger reload of image up to date indicators in the UI.
Fixed issue where Docker Images List breaks when an image has no tags.
Resolved inconsistencies between image up to date indicators of Docker Container List, Stack List and Stack Details screens.
Kubernetes
Introduced warning that Civo KaaS provisioning for a Kubernetes 1.27+ cluster on Extra Small node size may no longer complete as the compute resources are now too limited for required workloads.
Ensured that, when enabling addons on a MicroK8s cluster during initial set-up of that cluster, any errors that arise are now shown in the UI.
Ensured that, when enabling addons on a MicroK8s cluster post set-up of that cluster, any errors that arise are now shown in the UI.
Disabled GKE functionality's Google API client telemetry.
Updated the version of the kubectl client in the kubectl shell console. portainer/portainer#11303
Fixed the stripping of labels from certain Kubernetes resources - Ingress, ConfigMap or Secret - when form-editing them. portainer/portainer#11147
Resolved inconsistency in Kubernetes deployment behavior between standard and async agents regarding the 'Use namespace(s) specified from manifest' switch
Fixed an issue where namespaces 'set to system' from within Portainer weren't being detected as system. portainer/portainer#11146
Fixed 'Unable to determine which association to use to convert form' error when adding a service to a Kubernetes pod that had been deployed external to Portainer. portainer/portainer#11136
Fixed an issue introduced in 2.19.0 where a Kubernetes application deployed from Git required re-entry of Git credentials when changing the deployment.
Corrected a minor UI issue introduced in 2.19.0, where, on create of Kubernetes application, if the user scrolled down and clicked 'Add persisted folder' without populating name and image fields, the focus would jump up to the first empty required field. portainer/portainer#11155
Fixed an issue introduced in 2.19 in the ConfigMaps and Secrets lists where a check was no longer made against them for deployments of type Pod and hence an 'Unused' badge in those instances was then not shown. portainer/portainer#11145
Fixed a 'this.formValues.Services is undefined' error that was shown when editing a pod created via manifest. portainer/portainer#11152
Resolved an issue where ConfigMaps and Secrets created via manifest were incorrectly shown with the 'External' badge. portainer/portainer#11169
Fixed issues that occurred when creating a Kubernetes namespace after disabling cluster's over-commit setting, including "Value must be between 0 and -x." warning that was incorrectly shown.
Introduced a per-user option to enable five-minute data caching for non-edge Kubernetes environments - to improve performance. portainer/portainer#11118
Resolved an issue with deploying of an edge stack to a Kubernetes async device failing.
Fixed the Kubernetes Application details screen not showing referenced resources for an app that had used 'envFrom:' in its manifest to load an entire ConfigMap or Secret as environment variables instead of referencing individual values via 'valueFrom:'. portainer/portainer#11144
Introduced a setting to turn off the Stacks functionality within the Kubernetes side of Portainer. portainer/portainer#11119
Renamed the Kubernetes Advanced Deployment screen to be 'Create from Manifest'. portainer/portainer#11128
Corrected display of a very high 'CPU used' value in the Kubernetes Cluster details screen when micro-CPU units were being used. portainer/portainer#11154
DEPRECATED API endpoint
GET+POST /endpoints/{id}/kubernetes/helm/repositories, MOVED Helm UI option to Advanced Deployment/Create from Manifest screen + now allow users to delete their Helm repos. New endpointGET+POST /users/{id}/helm/repositoriesadded. portainer/portainer#11127Introduced an option to enforce admin-only viewing/editing of Kubernetes Secret contents in the UI (where the user did not create that Secret).
Resolved issues that occurred around editing a Kubernetes application when a namespace had resource quotas set, where the application's (pre-edit) existing resource usage was not being taken into account. portainer/portainer#11143
Introduced a change so that, on deletion of an ECR or other registry, any related Kubernetes registry secret will now be removed. Note that this type of secret is auto created when assigning a registry to a namespace in a Kubernetes environment. portainer/portainer#11158
Migrated the Kubernetes Application Details screen's YAML, Events and Containers sections plus any of the screen's remaining code from Angular to React. portainer/portainer#11121
Fixed an issue around the display of incorrect search results for Kubernetes applications that are exposed via an ingress. portainer/portainer#11160
Corrected the Kubernetes Volume Details screen to show the Shared Access Policy of the Volume rather than (erroneously) of the StorageClass. portainer/portainer#11163
Corrected the deploying of a Kubernetes Daemonset with shared storage so that RWX access is granted to the Persistent Volume Claim, as relevant. portainer/portainer#11168
Migrated the Kubernetes Cluster Setup screen from Angular to React and improved loading of its elements. portainer/portainer#11122
Introduced a change so that, on assigning a user access to a Kubernetes environment that is down, the access is enabled when the environment next connects. portainer/portainer#11157
Fixed a console error that could arise in the Kubernetes Add/Edit Application screen when updating resource sliders. portainer/portainer#11159
Resolved error shown on editing a Kubernetes namespace when the cluster's 'Allow resource over-commit' setting had been turned off where the namespace had originally been created when the cluster's setting was on.
Corrected the labelling of the Stack field in the Kubernetes Advanced Deployment (now 'Create from Manifest') screen. Also clarified the labelling of Namespace and Name concepts. portainer/portainer#11120
Introduced new screen for listing, searching and deleting Kubernetes Cluster Roles and their Bindings.
Introduced new screen for listing, searching and deleting Kubernetes Roles and their Bindings.
Updated the Ingress list screen to indicate system resources correctly. portainer/portainer#11162
Fixed incorrect display of an error message when adding a Kubernetes secret under certain circumstances. portainer/portainer#11156
Made changes to allow stopping of a replicated Kubernetes application by scaling it to zero instances. portainer/portainer#11117
Introduced new screen for listing, searching and deleting Kubernetes Service Accounts.
Migrated most of the components of the Kubernetes Create and Edit application screens from Angular to React. portainer/portainer#11123
Migrated the Kubernetes Add Namespace screen from Angular to React. portainer/portainer#11124
KaaS
Ensured Kubernetes 1.28 is supported with Linode Kubernetes Engine (LKE) provisioning of KaaS clusters.
Ensured Kubernetes 1.29 is supported with DigitalOcean Kubernetes (DOKS) provisioning of KaaS clusters.
Applied updates and ensured Kubernetes 1.29 is supported with Amazon Elastic Kubernetes Service (EKS) provisioning of KaaS clusters.
Ensured Kubernetes 1.28 is supported with Civo Kubernetes provisioning of KaaS clusters.
Ensured Kubernetes 1.28 is supported with Google Kubernetes Engine (GKE) provisioning of KaaS clusters.
Ensured Kubernetes 1.27 is supported with Civo Kubernetes provisioning of KaaS clusters.
Ensured Kubernetes 1.27 is supported with Linode Kubernetes Engine (LKE) provisioning of KaaS clusters.
Ensured Kubernetes 1.28 is supported with Azure Kubernetes Service (AKS) provisioning of KaaS clusters.
Ensured Kubernetes 1.28 is supported with DigitalOcean Kubernetes (DOKS) provisioning of KaaS clusters.
Applied updates and ensured Kubernetes 1.28 is supported with Amazon Elastic Kubernetes Service (EKS) provisioning of KaaS clusters.
Corrected access to Add Shared Credentials screen to prevent standard users from navigating to it (although note that it was already correctly disallowing add or view of credentials).
Removed the possibility of a race condition occurring on use of the eksctl binary for Amazon EKS KaaS cluster provisioning.
Ensured confirmed support of vanilla Kubernetes 1.29 clusters. portainer/portainer#11129
MicroK8s
Applied updates and ensured confirmed Kubernetes 1.29 support with creation of MicroK8s clusters.
Corrected the grammar of a MicroK8s version retrieval error message.
Ensured confirmed Kubernetes 1.28 support with creation of MicroK8s clusters.
Introduced the ability for admins to enable the mayastor addon (that has prerequisites) for a MicroK8s cluster, and for admins and environments admins to enable or disable the mayastor addon for a MicroK8s cluster, after is has been provisioned.
Introduced the ability for admins to enable the minio addon (that has prerequisites) for a MicroK8s cluster, and for admins and environments admins to enable or disable the minio addon for a MicroK8s cluster, after is has been provisioned.
Resolved a Portainer and MicroK8s issue where, on installing Portainer Agent, the microk8s status command incorrectly shows Portainer Server as enabled. Note, this is fixed in fresh MicroK8s 1.29 installs (and is unrelated to the Portainer version).
Portainer
Fixed an issue where the "Force HTTPS only" toggle in the SSL certificates section was not functioning as expected.
Fixed an issue that caused local stacks to be overwritten by orphaned stacks with the same name on the regular stack listing page
Added version path to in-app documentation links to support long-term support (LTS) vs. short-term support (STS) releases. portainer/portainer#11375
Fixed issue where users could erroneously edit web editor content in Git-based custom templates.
Improved logging of in-app Kubernetes CE to BE upgrade.
Resolved an issue with restoring from backup where portainer_data was stored on a network volume. portainer/portainer#11150
Fixed web editor errors when selecting between templates with identical Mustache variables and default values.
Added experimental feature (behind a feature flag) to stream Syslog-formatted user activity and authentication logs to an external Security Information and Event Management (SIEM) system.
Fixed issue where Bitbucket commit links were broken due to incorrect URL formatting.
Resolved 'Unable to download backup' error that sometimes occurred when initiating database backup if portainer_data was sited on a network volume. portainer/portainer#11153
Fixed an issue where a webhook error occurred during the redeployment of a stack created from a private Git repository with relative path enabled.
Fixed an issue where the cursor would jump to the end of the field after entering a character while editing environment variables for a stack.
Fixed issue where sorting images by tags in the Images view of a Docker/Swarm environment had no effect, ensuring that images are now sorted in tag order when clicking on the Tags column header.
Fixed an issue where users were unable to edit the YAML provided by a selected Custom template when deploying a stack.
Improved GitOps auto updates to prevent piling up when the deployment time exceeds the polling interval.
Resolved an issue with the upgrade and rollback process where the database was being backed up to a name that the rollback was not expecting. portainer/portainer#10751
Fixed an issue with the Log viewer where lines that only contained numerical values were not shown.
Fixed a minor typo in the 'Back up Portainer' settings section. portainer/portainer#11138
Fixed a UI issue in Backup settings where, on reopening, they would revert to the default view after saving as S3.
Fixed an invalid commit link in the Stack details screen that could occur if the original copy/pasted Git URL of the stack was a GitHub repo URL with an extension of .git. portainer/portainer#11140
Fixed an issue where triggering a non-admin container's webhook changed the permission to admin-only.
Resolved repository reference display discrepancy on deployed Environment Stacks details page
Fixed inconsistency in container counting between the environment tile on the home page and the containers tile on the environment's Dashboard.
Introducing 'Auto-Complete' branch selection for Git repositories in stack creation
Introduced a UI fix to show a 'disabled input' cursor on hover of a toggle that's disabled for change (similar to existing disabled fill-ins, etc.). portainer/portainer#11165
Provided information text to notify users that the GPU feature supports only Nvidia graphics cards, addressing any potential confusion
Changed the "Upgrade Licenses" button to "Buy more nodes" for accurate representation of the action, as it reflects the purchase of additional licenses for expanding the number of nodes.
Resolved an issue in GitLab registry handling, ensuring that Portainer continues loading images seamlessly despite errors such as deleted repositories, preventing 401 errors from affecting the display.
Discontinued Nomad support in this release. Users won't be able to create new Nomad environments from the UI, and existing Nomad environments are hidden, ceasing their management through Portainer
Enhanced version details popup to display the current Git commit hash and specific server environment variables for improved transparency and troubleshooting.
Resolved an issue where an invalid IP address caused an error when the PORT environment variable was used during stack deployment
Fixed a minor UI issue with the Environment -> Manage access screen enabling the 'Create access' button even though no changes had been made. portainer/portainer#11141
Fixed issue where editing stacks or edge stacks didn't display relative path information. We now ensure clarity on the mounting point used, despite users being unable to modify the relative path during the editing process
Adjusted license check-in.
Enlarged a too-small font used in the Web editor's search/replace feature. portainer/portainer#11175
Improved authentication and activity logs exported content.
Improved security by storing sensitive JWT tokens in a more secure manner, enhancing protection for user authentication in the local browser storage
Implemented improvements to restrict access to specific environment group details
Enhanced measures to prevent global admins from accessing each other's tokens through direct HTTP requests. This ensures data privacy and aligns with intended access levels in the User Interface.
Fixed an issue where the "Save Settings" button remained disabled after changing Advanced Options for a Git stack
Disabled ability to edit orphaned stacks, ensuring consistency and preventing unintended modifications from the UI.
Fixed issue where sorting by the "Updated" column in the Stacks view of a Docker environment incorrectly sorted based on the "Created" column instead.
Implemented displaying of the exit code for containers in the Portainer UI.
Improved Portainer navigation so all submenus now have their top-level option moved down to be the first option within their submenu and they always open to that. Implemented several other small menu improvements. portainer/portainer#11116
Fixed an issue where the client secret field appeared blank when editing an OAuth configuration under 'Settings - Authentication'.
Improved the functionality around changing a linked environment's IP address so Portainer Server no longer needs restarting for the update to apply. portainer/portainer#11151
Improved security by adding a dropdown to hide environment variables in the stack UI on the details page, preventing potential exposure of sensitive information in public or share environments.
Resolved an issue where information was missing on the registry tag view due to certain registry servers not providing manifest v1 json
Resolved an issue where hiding a container would incorrectly label the associated container image as Unused. We now ensure accurate representation and address potential user confusion and unintended image deletion.
Introduced 'noindex' meta-tag to the Portainer login page to denote to search engines that the page should not be indexed and served in search results. portainer/portainer#11164
Fixed a console error that occurred when resizing the browser window on the containers page, particularly during an active exec console session.
Improved styling and layout of headings and sub-headings throughout the user interface to improve legibility and hierarchy within pages. portainer/portainer#11166
Resolved an issue in Container Logs with the Wrap Lines toggle on, where the log display could be mangled and end up unreadable.
Introduced success notification that was missing when adding a user to a team. portainer/portainer#11170
Improved styling of toggles throughout the user interface to make it clearer whether they are on or off, both when they are enabled for change or disabled for change. portainer/portainer#11167
Improved high contrast mode so that field borders, box selector text and expiry banners are easier to make out. portainer/portainer#11173
Improved high contrast mode to introduce a border around modals and tooltips so they are easier to distinguish from the rest of the screen. portainer/portainer#11174
Resolved an issue where adding an environment to a newly created group didn't move it from 'available environment' to 'associated environment'; this now functions correctly.
Introduced support for input, copy and paste of extended Unicode characters in Docker container and Kubernetes kubectl shell consoles. portainer/portainer#5780
Development
Updated Chisel to version 1.9 to facilitate the upgrade of Golang to version 1.20 for improved performance and compatibility
Updated the logging library to restore colored console logs from the Portainer binary, enhancing readability and improving visibility for users.
API Docs
Corrected Swagger API documentation for the Stack image status endpoint, which should be
/stacks/{id}/images_status(rather than/docker/{environmentId}/stacks/{id}/images_status).Corrected Swagger API documentation for the
GET+POST /users/{id}/tokensendpoint so the example response describes the digest format correctly as a string, rather than (erroneously) as a list of integers. portainer/portainer#11172Corrected Swagger API documentation for the Docker container, service and stack image status endpoints so they now include example responses and a status explanation.
Corrected Swagger API documentation for various /cloud (KaaS) endpoints and around an edge generate key endpoint.
Corrected Swagger API documentation for the
GET /edge_update_schedulesendpoint so it now describes the includeEdgeStacks parameter, and the/edge_update_schedules/activeendpoint which is a POST request but was (erroneously) described as a GET request.Corrected Swagger API documentation which listed creation of custom template POST endpoints as
/custom_templates/file(or repository or string), but should have listed them as/custom_templates/create/file(or repository or string). portainer/portainer#11149Corrected API endpoint GET /webhooks documentation to describe filters parameter as a JSON string. portainer/portainer#11148
Resolved further Swagger API documentation problems including issues definition of
GET /edge_stacks/{id}/logs/{endpoint_id}/file,GET /kubernetes/{id}/max_resource_limitsandGET /kubernetes/{id}/namespaces/{namespace}/role_bindings. portainer/portainer#11171Fixed Swagger API documentation to accurately reflect the path where the 'environmentId' should be passed, addressing inconsistencies between the documentation and the actual implementation.
Updated Swagger API documentation to ensure consistency in property naming conventions by using PascalCase instead of camelCase.
Fixed Swagger API documentation issue where the kaas version and system version APIs erroneously shared the same swaggo ID.
REST API Changes
Introduced a requirement to specify the current user's password when adding an API token via the UI or the
POST /users/{id}/tokensAPI endpoint. portainer/portainer#11126Enhanced the system version API endpoint's response to now include the Portainer version type, distinguishing between Community Edition and Business Edition.
Release 2.19.4
December 6, 2023
Swarm
Resolved the inability to change the replica set for a swarm service, addressing errors related to invalid CredentialSpec (A refresh of your browser cache may be required) portainer/portainer#10702
Release 2.19.3
November 22, 2023
Portainer
Resolved an issue where polling and webhook methods failed to update the Stack portainer/portainer#10673
Release 2.19.2
November 13, 2023
Breaking changes
Deprecation notice of Nomad support in next minor release.
Edge
Fixed bug around Update and Rollback menu showing when Edge Compute feature is disabled.
Resolved an issue where edge group details were missing from the update and rollback table.
Resolved an issue where searching on the Update & Rollback page caused the screen to go blank
Resolved an issue where users were unable to delete any failed remote update scheduler entries.
Resolved an issue where edge stack rollback and pause updates remained stuck in the pending state
Resolved an issue where the update scheduler would stay in a "pending" state indefinitely, even when some edge agents were already running the latest version in the target edge group.
Added a deprecation notice to inform users about the upcoming removal of Nomad support in next minor release.
Swarm
Resolved an issue where the Docker service page could not load correctly when the deployment was created using the GMSA credential spec parameter. portainer/portainer#10571
Kubernetes
Introduced the ability for Helm chart repository searching and registry browsing to operate behind a forward proxy. portainer/portainer#10432
Portainer
Improved security around non-admin user environment information access. portainer/portainer#10434
Fixed 'unable to upgrade' error that could potentially occur when upgrading from CE to BE.
Resolved an issue where stacks that were initially deployed from a template could not be modified. portainer/portainer#10563
Resolved an issue where users couldn't define a proxy for the agent and edge agent when their network relied on a proxy for internet access. portainer/portainer#10564
Resolved an issue where pulling and redeploying Git stacks took longer than expected. portainer/portainer#10565
Resolved an issue where stacks triggered from webhooks were marked as inactive status, even though they were running as expected portainer/portainer#10567
Improved storage efficiency by retaining only one copy of Git repositories for versioning, preventing excessive disk usage.
Fixed an issue where authentication failures occurred when editing stacks deployed from Git repositories created with version 2.19.0 or 2.19.1.
Fixed an issue introduced in 2.19.0 when deploying from a custom template that was set up via API, where defined mustache variables are not always being prompted for.
Resolved an issue where users could interact with a console even after logging out from another tab in the browser portainer/portainer#10568
Resolved an issue where there was no warning for version mismatch between the server and edge agent, now UI clearly indicates matching server and edge agent versions are required for feature availability. portainer/portainer#10569
Resolved an issue where containers were not deleted when users removed them from asynchronous environments by browsing snapshots.
REST API Changes
Improved security around non-admin users and their permissions. portainer/portainer#10434
Release 2.19.1
September 20, 2023
Breaking changes
Changes to API format and checking of some requests - See REST API Changes below for more details.
Edge
Resolved an issue with snapshots between Edge Agent versions 2.18.2 and Portainer Server 2.19.0, which caused dropping of remote commands in async mode due to mismatches.
Database migration for edge URLs now includes a check to verify if the edge feature is enabled. This fix ensures a more accurate and controlled upgrade process.
Fixed an issue where the migration of Edge Tunnel URLs was broken when the Portainer API URL did not contain a port.
We've improved the transparency of Edge Agent update scheduler and rollback statuses. Now, you'll have clear explanations for each status, simplifying monitoring and management.
We've added a info notice to clarify that the option to update edge agent from a private registry is exclusively available in Edge Agent version 2.18.1 or newer.
Fixed an issue where edge devices in the waiting room were incorrectly counted as part of the dynamic edge group.
Kubernetes
Fixed an issue introduced in 2.19.0 where standard and read-only users could no longer view node stats on a Kubernetes cluster.
Fixed an issue introduced in 2.19.0 where the Kubernetes Create Application screen no longer showed in the bottom of page summary when a Deployment would be created.
MicroK8s
Fixed an issue introduced in 2.19.0 where MicroK8s cluster creation would fail if the SSH access used a passworded login and sudo access required the password.
Portainer
Fixed an issue where backup files were missing the Chisel private key. This could have disrupted communication between the Portainer server and agent after a restoration from backup. portainer/portainer#10335
Improved the upgrade process for the Portainer server, upgrade process now halts on database migration errors, preventing database version mismatches for a more stable environment. portainer/portainer#10336
Fixed an issue when chatbot integration was enabled globally, where a user who then set a chatbot key could not subsequently clear out their key to turn off the feature for themselves.
Fixed an issue introduced in 2.19.0 when the chatbot integration feature was enabled for a user, where container logs did not display in the log viewer unless in full-screen mode.
Fixed an issue where webhooks were failing when updating a stack deployed from a private Git repository.
We've added a backup reminder for in-app updates, ensuring data safety during the update process.
Resolved issue where failed stack status persists after incorrect compose from Git. Now auto-recovers with the next successful update.
Fixed an issue where usernames and passwords were being stored along with Git stack configurations when Git credentials were used.
Fixed an issue where using spaces in an Organizational Unit (OU) or Common Name (CN) name caused incorrect data to be displayed in the Active Directory configuration.
Fixed an issue where toggles could be activated outside of their intended component area, potentially leading to inadvertent toggling. portainer/portainer#10324
REST API Changes
Fixed API endpoints that were broken in the 2.19.0 release, ensuring that they retain their previous functionality. portainer/portainer#10337
Fixed an issue introduced in 2.19.0 when Kubernetes environment metrics API features were enabled, where these features would return an 'Unable to reach metrics API' error.
Introduced new format around the change of a user's password via API. portainer/portainer#10326
Updated the checking around change of a user via API. portainer/portainer#10326
Release 2.19.0
August 31, 2023
Breaking changes
Introduced the ability for admins and environment admins to enable/disable community addons on a MicroK8s cluster created via Portainer. Note: On upgrade to this release, existing MicroK8s clusters created via Portainer are set to allow community addons.
A number of components/views have been migrated from Angular to React.
Helm, eksctl, and docker-compose have been updated to newer versions.
Internal versioning on stacks feature has introduced file structure changes in 2.19.
We have addressed an API issue in which an incorrect parameter was being used for API endpoint
/edge_groups. Users relying on the HasEdgeGroup parameter should now use HasEdgeJob to achieve the intended functionality.Select API endpoints are broken and will be restored in the next release:- see REST API changes for specific details.
Resolved CVEs
Updated the Docker Compose binary to v2.20.2, to resolve CVEs. portainer/portainer#10099
Updated the Helm binary to v3.12.2, to resolve CVEs. portainer/portainer#10100
Resolve identified CVEs.
Updated various packages to resolve CVEs. portainer/portainer#9224
Updated various packages in the agent, to resolve CVEs.
Edge
Fixed an issue where the edge agent was getting disconnected due to user updates to their remote update scheduler.
Resolved an issue where users were unable to create a rollback and subsequently edit it from the scheduler.
Introduced visual enhancement of dynamic progress bar for clearer edge stack status tracking. Get real-time deployment progress at a glance.
Fixed an issue where deploying a large volume edge stack triggered a 'URI too large' error. portainer/portainer#10128
Resolved an issue where edge devices were not fully shown in the waiting room when the total amount exceeded 100
Introducing new statuses - 'Running', 'Deploying', and 'Partially running' - for increased transparency in edge stack monitoring.
Introduced staggered deployment & rollback for edge stacks. Update in stages, reduce risks & revert failed updates seamlessly.
Introduced internal versioning & Git commit ID as edge stack version. Clearer version tracking for Git-deployed stacks.
Added support for relative paths in Git-deployed edge stacks.
Resolved an issue where the 'change windows setting' option was shifting outside of the div when a user was using a smaller screen
Fixed an API issue where the incorrect parameter HasEdgeGroup was being used instead of HasEdgeJob for endpoint /edge_groups. Users relying on the HasEdgeGroup parameter should now use HasEdgeJob to achieve the intended functionality.
Introducing the ability to use environment variables for edge stack.
Introducing a new feature: GitOps Edge Configurations, which simplify edge device configurations with GitOps. Effortlessly manage settings via version-controlled Git repositories for enhanced configuration control.
Introducing the latest commit ID display in edge stacks. Perfect for GitOps updates, this feature lets you easily track your running version. Stay informed and up-to-date effortlessly.
Introduced ability to push per-device configurations effortlessly. Bundle settings in a zip package, Portainer matches and delivers to edge devices. Simplify management, enhance precision.
Fixed an issue where the count of edge stack deployments was incorrect when dealing with asynchronous devices exceeding 100.
Fixed an issue where the order of the list changed while logs were being retrieved, and where previously cleared logs were reappearing after retrieving logs for a different environment.
Improved logging for edge agent when polling fails. This enhancement provides more informative and detailed logs when polling encounters failures, aiding in quicker identification and resolution of issues. portainer/portainer#10143
Introduced a feature that empowers you to associate edge devices with newly selected or dynamically generated meta values. Enhance flexibility and precision in device management with this innovative addition.
Introduced an informative enhancement to the waiting room experience. With the addition of the 'Last Check-In' field, users now have valuable insights into when edge devices last communicated with the Portainer server.
Introduced ability to remove edge devices that you no longer want sitting in the waiting room. This feature empowers you with streamlined waiting room management, enabling you to maintain a dynamic and optimised edge environment.
Resolved an issue where editing an existing scheduler caused an error due to a missing edge stack on a related endpoint.
Resolved an issue where users were able to create schedulers with an empty edge group, which is no longer allowed to ensure proper functionality and avoid potential errors portainer/portainer#10149
Resolved an issue with Portainer tunnel server address validation error during migration. This fix ensures that when migrating, tunnel server addresses are validated correctly.
Fixed an issue where Edge groups were incorrectly marked as 'in use' after a scheduler was executed.
Addressed an issue where snapshot information was not reliable when the environment was offline. This fix ensures that snapshot information is now accurately presented even when the environment is offline.
Resolved an issue where the count for acknowledged edge stacks was dropping after deployment.
Resolved an issue where the edge agent default poll frequency selector was not lining up correctly portainer/portainer#10150
Resolved an issue where users were unable to create an edge group when there were no members present in that group. Edge groups can now be created without requiring initial members, offering greater flexibility in edge device and configuration management. portainer/portainer#10153
Introduce an enhancement to our snapshot creation process for edge devices which streamlines the snapshot creation experience, providing users with a more efficient and user-friendly way to capture snapshots on edge devices. portainer/portainer#10154
Introduced ability to seamlessly browse snapshots for your asynchronous environment and access detailed stack information.
Fixed an issue where environment files were not functioning properly in Git deployments for edge stacks. portainer/portainer#10171
Introduced webhooks for edge stack, you can now set up webhooks for your edge stacks, enabling automated polling for GitOps updates. portainer/portainer#10178
Docker
Addressed an issue where the Docker client was not utilizing version negotiation. portainer/portainer#10125
Resolved an issue where the image name was displayed incorrectly when a user tried to duplicate or edit a container portainer/portainer#10126
Fixed an issue in the API where sending files to a Docker endpoint resulted in a panic. portainer/portainer#10129
Resolved an issue with Docker Proxy's performance, resulting in improved overall performance and responsiveness when using the Docker Proxy feature. portainer/portainer#10131
Resolved an issue in the Docker Container List where searching by published ports was no longer working. portainer/portainer#6656
Resolved an issue where '.' was not allowed in the image name (but should be) when building a Docker image via the UI. portainer/portainer#8047
Resolved some minor UI issues in Docker Services-related screens. portainer/portainer#10117
Swarm
Fixed an issue in Docker Swarm version 24.0.0 where image tags were not being displayed. portainer/portainer#10134
Resolved an issue where clicking into the details page of a Swarm stack would redirect users to the service section instead of the top of the page portainer/portainer#10151
Kubernetes
Resolved an issue around Operator role users not being able to perform rolling restart, redeploy and rollback to previous version for Deployment, DaemonSet and StatefulSet resources.
Resolved an issue introduced in 2.18 that prevented the use of Amazon EKS provisioning of a Kubernetes as a Service (KaaS) cluster.
Fixed a Kubernetes environment issue when restricting access to the default namespace, where any other namespace with a resource quota may have the resource reservations of its apps incorrectly calculated, preventing standard users from editing the apps.
Amended the path for the eksctl binary (used by Amazon EKS KaaS cluster provisioning functionality) to a new expected location.
Adjusted Kubernetes Cluster setup screen's ingress settings to be clearer and to give info on ingress defaults. portainer/portainer#10101
Resolved an issue with Kubernetes ECR image pull where the secret token was not updating on manifest deployment. portainer/portainer#10119
Resolved an issue on use of the 'Restrict Proc Mount Types' Kubernetes pod security constraint where the restriction was not being applied.
Resolved an issue in the Kubernetes Advanced deployment screen, where a backend panic could occur when deploying some invalid YAML manifests.
Updated the link to Portainer documentation (following docs reorganization) for Kubernetes Add Environment via kubeconfig Import.
Resolved an issue where Node stats for a Google Kubernetes Engine (GKE) cluster gave an error 'unable to retrieve node metrics'.
Migrated the Kubernetes Add/Edit Application screen's Services section from Angular to React. portainer/portainer#9235
Reintroduced the ability to specify and use (via Add/Edit Application) ingress defaults (hostname and annotations). portainer/portainer#10030
Reintroduced the ability to publish via ingress from the Add/Edit Application screen. portainer/portainer#10103
Introduced the ability to force setting of a note when creating/editing a Kubernetes application (via form), so it can immediately be labelled with its intended use.
Introduced correct redirecting of the user, following deployment of a Kubernetes manifest. Previously the user was always returned to the Applications List but will now arrive back at the screen from which they accessed the Advanced Deployment function. portainer/portainer#10115
Migrated the Kubernetes Application Details screen's Summary and Details sections from Angular to React. portainer/portainer#10102
Introduced a loading spinner to the Add/Edit ingress screen's ingress class dropdown, to indicate that available options are still being retrieved. portainer/portainer#10000
Resolved an issue that was occurring on the exposing of Portainer over a subpath, where Kubernetes Cluster Setup and other screens failed to load and reported an error. portainer/portainer#10112
Resolved an issue around limiting of Kubernetes pod security constraints updates.
Split the Kubernetes ConfigMaps & Secrets functionality in order to provide better performance and a clearer user experience. We now have separate tabs in the list screen and separate add/edit functions. portainer/portainer#9222
Introduced the ability to set annotations against Kubernetes Services, so they can be configured for service meshes and other tools.
Resolved an issue with Kubernetes pages where a warning showed in the browser console ('findDOMNode is deprecated in StrictMode') when resource assignment was first toggled on for the namespace. portainer/portainer#10111
Updated BE Kubernetes Add/Edit Ingress screen to allow use of NodePort or LoadBalancer service types (in addition to existing ClusterIP).
Updated Kubernetes ConfigMaps & Secrets terminology that was previously shown as Configurations, so as to align more clearly with Kubernetes. portainer/portainer#10025
Introduced the ability to specify a manifest to be auto deployed to a Kubernetes cluster when connecting or provisioning one. This allows the environment to be initialized with users, namespaces, secrets, etc., as required.
In the Dashboard screen of Kubernetes environments, Ingresses and Services panels have now been introduced, providing a count of these resources and an easy means to click through and access their list screens. portainer/portainer#9223
Introduced showing of the error that occurs when a Kubernetes deployment is prevented by any pod security constraints that have been enabled.
Migrated Kubernetes Application console page from Angular to React. portainer/portainer#9177
Resolved a Node details issue where nodes showed incorrect role of 'Worker' due to deprecated 'node-role.kubernetes.io/master' K8s label (now 'control-plane'). Also where MicroK8s cluster nodes were incorrectly identified (though not due to labels). portainer/portainer#10104
KaaS
Ensured Kubernetes 1.27 is supported with Google Kubernetes Engine (GKE) provisioning of KaaS clusters.
Ensured Kubernetes 1.26 is supported with Google Kubernetes Engine (GKE) provisioning of KaaS clusters.
Ensured Kubernetes 1.27 is supported with Azure Kubernetes Service (AKS) provisioning of KaaS clusters.
Ensured Kubernetes 1.27 is supported with Digital Ocean Kubernetes (DOKS) provisioning of KaaS clusters.
Ensured Kubernetes 1.26 is supported with Linode Kubernetes Engine (LKE) provisioning of KaaS clusters.
Applied updates and ensured Kubernetes 1.27 is supported with Amazon Elastic Kubernetes Service (EKS) provisioning of KaaS clusters.
MicroK8s
Added Beta support for MicroK8s version 1.28 when creating and managing MicroK8s clusters. Note that 1.27 is still the default option for now, as only limited testing of 1.28 has been performed.
Introduced the ability for admins to enable the nfs addon (that has prerequisites) for a MicroK8s cluster, and for admins and environments admins to enable or disable the nfs addon for a MicroK8s cluster, after is has been provisioned.
Introduced the ability for admins to enable the openebs addon (that has prerequisites) for a MicroK8s cluster, and for admins and environments admins to enable or disable the openebs addon for a MicroK8s cluster, after is has been provisioned.
Introduced the ability for admins and environment admins to retrieve a status report on each control plane node of a MicroK8s cluster.
Introduced the ability for admins and environment admins to enable and disable addons that require arguments and generally specify arguments for addons for a MicroK8s cluster.
Introduced the ability for admins and environment admins to connect via SSH console to nodes in a MicroK8s cluster.
Introduced the ability for admins and environment admins to enable/disable community addons on a MicroK8s cluster created via Portainer. Note: On upgrade to this release, existing MicroK8s clusters created via Portainer are set to allow community addons.
Introduced the ability for admins and environment admins to enable or disable addons for a MicroK8s cluster, after it has been provisioned.
Introduced the ability for admins, when removing a MicroK8s environment, to also delete the cluster on the nodes, leaving them in a fresh state, ready to begin again.
Introduced the ability for admins and environment admins to horizontally scale up or down a MicroK8s cluster (i.e. add or remove nodes), after it has been provisioned.
Introduced the ability for admins and environment admins to upgrade the version of a MicroK8s cluster.
Added support for MicroK8s version 1.27 when creating MicroK8s clusters and removed warnings in the UI around a Metrics Server issue with MicroK8s 1.25 and 1.26, now that they've been patched to resolve the issue.
Fixed an issue in Environment and Cluster Details screens for a MicroK8s cluster that failed to provision via Portainer. In this scenario, the display of enabled addons no longer triggers (whereas, it would previously still attempt it, causing a problem).
Added info text to Kubernetes MicroK8s functionality to inform that nodes must be internet routable and open on certain ports.
Portainer
Fixed an issue where a bad gateway response occurred when updating an environment with an empty URL. portainer/portainer#10123
Resolved an issue where users were unable to deploy a stack when utilising an image from a private GitLab registry. portainer/portainer#10124
To identify Portainer submenus more clearly, their sub-options are now indented. portainer/portainer#9216
Added a link to the Portainer Assistant/Chatbot settings taking you to an explanatory blogpost.
Fixed an issue where the Portainer Assistant/Chatbot icon could eclipse list table screens' pagination.
Introducing a new feature that enhances version tracking and clarity for stacks deployed from Git repositories.
Resolved an issue around orphaned environments being included in the total count of nodes.
Renamed "Automatic updates" in Git deployment section to "GitOps Updates" to clarify the feature at first glance for users. Please note this is a name change only and no functionality has been altered. portainer/portainer#10175
Resolved an issue with the App Templates screen, where a Kubernetes icon was incorrectly showing for Docker Swarm stacks. Also updated the Swagger API documentation to detail the existence of a 'Compose edge stack' App Template (numbered 4) type. portainer/portainer#10028
Fixed an issue where saving Git credentials and subsequently redeploying a stack resulted in an error.
Resolved a minor UI issue where warning icons were smaller in size in multi-line warning messages. portainer/portainer#10118
Fixed an issue where standard users were unable to create Azure Container Instances (ACI) resources. portainer/portainer#10152
Fixed an issue where line break HTML tags were showing in some pop-up dialogs instead of actual line breaks. portainer/portainer#9226
Improved App Templates page with enhanced cursor icon and tile highlighting portainer/portainer#10136
Improved rolling back to CE from a CE to BE migration, by providing better logging and performing a check that the db file exists. portainer/portainer#9225
Fixed an issue where edge devices were incorrectly counted as nodes while in the waiting room. Now, waiting room devices are excluded from node count, ensuring accurate resource allocation and adherence to policy.
Fixed an issue where the primary environment remained permanently down after restoring from backup. portainer/portainer#10137
Introduced validation to prevent the use of invalid names when creating or editing Kubernetes or Docker Custom Templates. portainer/portainer#10113
Fixed an issue where the 'Skip TLS Verification' option was not functioning properly for custom templates. portainer/portainer#10138
Resolved a minor UI issue where multi-line text-tip and form-error icons were incorrectly vertically center-aligned rather than top-aligned. portainer/portainer#10118
Fixed an issue where the hover interaction for the environment tile on the homepage was missing portainer/portainer#10136
Fixed a security issue where usernames and passwords were displayed in responses. portainer/portainer#10140
Improved error logging in libhttp to provide more useful context. portainer/portainer#10142
Addressed an issue where TLS handshake error messages were being logged, which should only occur when using the DEBUG log level. portainer/portainer#10144
Fixed an issue where using spaces in an Organizational Unit (OU) or Common Name (CN) name caused incorrect data to be displayed in the Active Directory configuration.
Fixed an issue where Git deployment did not synchronize authentication status.
Resolved an issue where unnecessary snapshots were being loaded on the home page, leading to improved loading times and a smoother user experience portainer/portainer#10147
Resolved an issue where users were not being notified about the proper referencing of their uploaded .env files, requiring them to now utilize "stack.env" for appropriate referencing portainer/portainer#10148
Introduced a 'copy to clipboard' button to web editors within the Portainer UI. portainer/portainer#10116
Introduced the ability to manage time in seconds or milliseconds for container logs, expanding your time management options beyond seconds for more insightful troubleshooting. portainer/portainer#10176
Resolved a logging issue with database migrations, where, if an error occurred causing a rollback to the pre-upgrade version of the database, that error was no longer output to the console. portainer/portainer#10110
Provided icons for 'image up to date' indicators (in place of the previous colored circles) shown in Docker Stacks, Services and Containers list screens. This improves accessibility for color-blind users.
Resolved an issue that prevented users from stopping stacks with invalid project names during their upgrade from versions 2.6 or 2.7 to 2.13, 2.14, 2.15, 2.16, and subsequent versions. portainer/portainer#10163
Resolved an issue that prevented users from deleting stacks with invalid project names during their upgrade from versions 2.6 or 2.7 to 2.13, 2.14, 2.15, 2.16, and subsequent versions. portainer/portainer#10164
Resolved an issue where users were unable to browse image tags in a private Sonatype registry.
Resolved an issue where mouse clicks were not functioning within the "Display Users" section of Active Directory under authentication settings.
Resolved an issue where users were encountering difficulties when attempting to push images using a service principal account on Azure Registry. portainer/portainer#10155
Fixed an issue where delete confirmation modals were absent for edge stacks, Docker images, environment groups, and tags. portainer/portainer#10156
Fixed an issue where the creation of manifest file paths slice was incorrect. portainer/portainer#10170
Resolved a minor grammatical issue with a log line recorded when the Docker image up to date indicator check runs but there are no registries defined.
Community contribution - The enhancement ensures that the response rewrite operation is properly wrapped with a valid status check, contributing to a more robust and reliable system behavior. portainer/portainer#2705
Fixed an issue where enabling GPU support on existing containers resulted in errors. portainer/portainer#10174
Addressed an issue where users were unable to update the TLS certificate for the Docker API environment. portainer/portainer#10166
Resolved an issue where incorrect AWS ECR icon was used when creating registry portainer/portainer#10162
Added a feature that allows users to update to the latest Portainer Business Edition version directly from within the app
Improved the way ANSI escape codes are handled in logs. With this enhancement, logs will now provide clearer and more readable information by effectively stripping out ANSI escape codes.
Fixed a user interface issue where only up to 100 groups were being displayed. portainer/portainer#10160
Addressed an issue where using incorrect Azure registry credentials resulted in errors, even after updating with correct credentials, the issue persisted. portainer/portainer#10159
Resolved an issue where custom templates created from Git were not being pulled again at deploy time. This improvement has also been extended to Kubernetes custom templates. portainer/portainer#10157
Development
Resolved an issue with new React version list screens where filter icons were not positioned next to the correct column heading but were abutting the next heading along. portainer/portainer#10098
Applied changes to the helper-reset-password utility to prevent it being accidentally used with the Docker Desktop Extension version of Portainer (where it could break access to the Portainer instance). portainer/portainer#10109
Replaced archived gorilla/securecookie library with just the function that we need extracted out. portainer/portainer#10008
Transitioned Edge stack environments table to React, delivering a more dynamic user experience with modernized interface, improved performance, and interactive management. portainer/portainer#10210
REST API Changes
Corrected API method from 'GET' to 'POST' and path for generate edge key in Swagger API docs
Documented 'excludeSnapshots' in Swagger API docs portainer/portainer#10130
Documented webhook types in Swagger API docs portainer/portainer#9121
Resolved a 2.0 validation error in our Swagger API documentation portainer/portainer#10135
Corrected an error in our Swagger API documentation where 'EdgeTunnelServerAddress' was marked as required. It is now correctly marked as optional
We have updated the response for /endpoint to correctly reference 'EdgeCheckinInterval' in line with the accurate API Swagger documentation portainer/portainer#10139
Corrected missing type and 'file' to 'File' in Swagger API documentation for custom templates portainer/portainer#10141
Added descriptions to the Swagger API documentation for Kubernetes API endpoints that were previously missing from the docs. portainer/portainer#10106
Fixed an API issue where requests to create edge stacks with invalid deployment types were erroneously accepted portainer/portainer#10168
Addressed an issue in the 'edgeStackCreate' API where sending an incorrect request resulted in a 500 error response instead of the expected 400 error. portainer/portainer#10169
Fixed an issue in Swagger API documentation where 'endpointId' was incorrectly marked as optional. It is now correctly set as a required field portainer/portainer#10173
Removed the incorrect documentation for the DELETE method on the license API, as it is not supported. Documented the correct way to perform the operation using the POST method on the license API in Swagger API documentation.
Corrected Swagger API documentation for starting or stopping stacks portainer/portainer#8001
Corrected 'ResourceId' and 'endpointId' as required instead of optional in Swagger API documentation for webhooks portainer/portainer#9121
Fixed the Swagger API documentation to require 'endpointId' when updating a stack portainer/portainer#10161
Corrected 'Endpoints' to be listed in alphabetical order in Swagger API docs portainer/portainer#10158
Release 2.18.4
July 7, 2023
This release includes an experimental ChatGPT integration. Although it promises exciting possibilities, it's in the early stages of development. We recommend its use for testing and development, and urge caution in production environments. We greatly appreciate your feedback and understanding during this phase. portainer/portainer#9116
Resolved CVEs
Docker
Upgraded Docker Compose version to v2.17.2 for Portainer Agent. portainer/portainer#9095
Resolve a problem building Portainer due to an issue with v1.53.0 of golangci-lint. portainer/portainer#9057
Swarm
Resolved an issue where users were unable to migrate or duplicate their swarm stack. portainer/portainer#9097
Portainer
Resolved an issue where the static IP addresses in a macvlan were unexpectedly changed. portainer/portainer#9101
Enhanced the user experience of the 'Skip TLS Verification' feature by adding a confirmation modal. portainer/portainer#9098
Resolved an issue where recreate containers fail when it has a shared and external volumes. portainer/portainer#9102
Fixed issue where registry credential does not sync between registry configuration page and registry details page.
Fixed an issue around prompting for a new license.
Improved the way node count shows for trial licenses.
Resolved an issue where update or rollback was only executed when connection was re-established.
Introduced a change to allow removal of all Portainer licenses.
Fixed an issue where a warning banner was not always showing in the Homepage or Licenses page when licenses were close to expiring.
REST API Changes
Resolved an issue where the response from the API was inconsistent when querying all endpoints and a specific endpoint. portainer/portainer#9096
Corrected 'container' to 'containers' in Swagger API docs (Business Edition).
Release 2.18.3
May 22, 2023
In this release, we introduce an experimental ChatGPT integration. Although it promises exciting possibilities, it's in the early stages of development. We recommend its use for testing and development, and urge caution in production environments. We greatly appreciate your feedback and understanding during this phase.
Edge
Fixed issue preventing configuration of Portainer authentication settings with an alternative mTLS certificate
Resolved issue causing edge agent to skip command processing during full snapshot resend
Kubernetes
Restored options and wording in the Kubernetes Advanced deployment screen's Automatic updates section, following regression from changes in 2.17. (portainer/portainer#8950)
Docker
Resolved issue preventing correct display of network details when containers are running on an unexpected Docker swarm node. (portainer/portainer#8981)
Portainer
Introduced ChatGPT integration as an experimental feature, currently not recommended for production environment use
Fixed issue preventing LDAP server from creating a connection when using TLS 1.2. (portainer/portainer#8980)
Implemented minor UI changes to clarify existing experimental and beta features, ensuring accurate icon and wording display. (portainer/portainer#8951)
Corrected an issue causing the polling indicator to float incorrectly in UI when pulling Git repo list on the stack creation page. (portainer/portainer#8982)
Resolved syntax styling display issue in web editor. (portainer/portainer#8984)
Improved button color contrast in web editor. (portainer/portainer#8985)
Fixed visual hierarchy in web editor selection behavior. (portainer/portainer#8986)
REST API Changes
Corrected 'team' to 'teams' in Swagger API docs. (portainer/portainer#8983)
Release 2.18.2
May 1, 2023
Upgrade notice
Users upgrading from 2.16.x should note that a bug was introduced then which prevented enforcing of TLS verifications. This has now been fixed but, in circumstances where certificates were not set up correctly and appeared to work due to the bug, you may now need to resolve the certificate issue or deliberately set the new ‘Skip verification’ toggle.
Edge
Fixed issue where users were unable to update their Edge Agent to the latest version because the corresponding option was not available when creating a scheduled update
Kubernetes
Increased potential success rate of updating Portainer with larger databases by changing Kubernetes manifest and Helm chart for Portainer to have
initialDelaySecondsof 45 (sec) andfailureThresholdof 3. portainer/portainer#8860
Docker
Fixed issue where users were unable to pull the latest image from the image details page portainer/portainer#8847
Portainer
Fixed issue where the option to skip TLS verification was missing when editing a stack created from git. Additionally, to adhere to security best practices, the option’s default value has been corrected to be set to off during migration portainer/portainer#8853
Fixed issue where TLS verification was being skipped when creating / editing stacks created from git in version 2.16.x portainer/portainer#8853
Fixed issue where the port number in the displayed webhook link was incorrect when Portainer was running behind a reverse proxy
Resolved an issue with the updated web editor component, where it was not loading long YAML files correctly portainer/portainer#8848
Release 2.18.1
April 18, 2023
Please note 2.18.0 is not publicly available. This release is 2.18.1 and is our next GA release since "2.17.x". This was done due to the need to provide an upgradeable preview image to a customer.
Breaking changes
For breaking changes in the API, please see the REST API changes section.
The Kompose functionality in Kubernetes has been removed since 2.17.0. Compose yaml can no longer be deployed on Kubernetes.
Moved edge devices to the homepage view and removed edge devices menu option under edge compute.
Add devices button is replaced with new UX in environment wizard.
Resolved CVEs
Upgrade notice
Since release 2.17.x we have added the ability to upgrade Edge Agents from Portainer when running on Docker Standalone / Docker Swarm / Nomad. Before using this feature we strongly advise to test this on a non-production environment first and have an alternative method available to connect to the Edge Device.
Any clusters connected to Portainer of version 1.23 Kubernetes and above will have their Pod Security Policies (if they have any and are using the pod security constraints feature) updated to the Pod Security Standards
Edge
Introduced a retry policy for edge stack deployment to improve success rate
Fixed issue where browse snapshot button was clickable for Kubernetes and Nomad edge agents in async mode
Fixed issue where upgrading edge agent from ECR private registry using certificates failed
Fixed issue when browsing async edge agents before first snapshot is received.
Provide feature flag for FDO feature to be shown in UI portainer/portainer#8696
Fixed issue when browsing non-existent async agent snapshot cause backend panic
Fixed issue for remote update schedules error incorrectly displaying for non admin users
Fixed the issue where the edge stack is not removed from edge agent when it has been deleted while edge agent is offline
Fixed issue where live connect button is clickable for async environment when it shouldn't be portainer/portainer#8697
Fixed issue where edge agent panics with malformed edge key
Introduced ability to view container's environment variable when browsing snapshot
Removed "Add Edge devices" from Edge Compute and introduced to Environment wizard by renaming Edge Agent to Edge Agent Standard and introduced Edge Agent Async UI options portainer/portainer#8783
Fixed an issue where "copy token" button was missing from edge agent environment wizard portainer/portainer#8554
Introduced remote updating edge agent from a private registry for docker standalone environment
Introduced ability to assign group, edge groups and tags to edge environment when using AEEC script
Fixed issue where live connect button is clickable for async environment when it shouldn't be portainer/portainer#8697
Fixed issue where edge job logs was not retrieved correctly when edge groups contain async devices
Changed default value for async check-in intervals from disabled to 1 minute to improve success rate of initial edge agent connection
Renamed AEEC to "Auto onboarding" for better user understanding
Kubernetes
Introduced a new feature to allow creating of a MicroK8s Kubernetes cluster on existing machines.
Improved performance of Kubernetes screens by adjusting rate limiting of Kubernetes go client. portainer/portainer#8682
Fixed an issue when provisioning a Civo Kubernetes cluster with the Kubernetes version left as the latest, due to Civo introducing Talos as a new Kubernetes cluster type (instead of K3s on Alpine) which then only applied to the latest Kubernetes version.
Improved Kubernetes Applications page performance by introducing a namespace filter. portainer/portainer#8637
Improved Kubernetes Dashboard page performance. portainer/portainer#8635
Improved the load time of various Kubernetes pages by removing existing API calls that retrieve namespace resource quota information, where they are not needed. portainer/portainer#8571
Introduced the ability to set annotations against various different Kubernetes objects via the existing form pages.
Introduced a new Services screen in Kubernetes environments to improve the visibility of all services that may exist in a cluster, and enable removing where they've inadvertently been left behind after manual removal of applications/deployments. portainer/portainer#8613
Introduced the ability to upload an internal SSL/TLS certificate which can then be used to access a Helm repository hosted on a private server.
Updated the pod security constraints feature to use newer OPA Gatekeeper 2.9 and moved the feature away from using Pod Security Policy resources with Kubernetes clusters of 1.23 and above (as they are now removed in Kubernetes 1.25 and above).
Added migration to ensure existing pod security constraints work on environments with new Pod Security Standards of updated OPA Gatekeeper 2.9. This includes migrating edge environments on post-upgrade connect that may occur on clicking into via Homepage.
Resolved an issue where pod security constraints were not being enforced (since 2.16).
Docker
Fixed issue where users are not able to re-create container with multiple networks
Fixed issue with relative path not working when private registry is used, due to private registry credentials not passing to unpacker
Resolved an issue where default storage detection logic that runs on Kubernetes environment connection was incorrectly running on Docker environment connection, and was therefore causing an error to be output to the logs (but was otherwise benign). portainer/portainer#8606
Improved the existing UI around GPU support for Docker Standalone environments, introduced an overall toggle to turn this on or off and generally improved performance in Docker Containers and Stacks screens where GPU columns may show. portainer/portainer#8646
Defaulted the image up to date indicator to on for new Docker environments added, or on upgrade from CE to BE for all Docker environments (now that caching and Ajax load performance improvements have been applied to this feature).
Fixed an issue where stack name validation was missing, causing deployments to fail portainer/portainer#8629
Nomad
Fixed issue where Nomad Edge Agent install script causes error when using environment variables
Introduced ability to upgrade edge agent in Nomad environment from within portainer UI
Portainer
Fixed issue where container log not showing when logs contain NULL value
Added form validation for S3 compatible host field
Resolved a minor UI issue with the Container details page's container health panel alignment and content label wrapping. portainer/portainer#8636
Fixed a typo in the placeholder text for the access control component's Authorized users dropdown where it said 'teams' but should have said 'users'. portainer/portainer#8565
Fixed issue where stack can not be deleted if relative path is removed from the mount point
Fixed issue where logs in JSON format displayed incorrectly in log viewer portainer/portainer#8787
Resolved an issue with slow performance of certain actions (such as bulk removing of unused container volumes or adding of Kubernetes ingresses) when a user has a long list of notifications (shown via the bell icon in the page header). portainer/portainer#8604
Fixed issue where you can not connect or configure Azure private registry from Portainer while registry is empty
Added release testing of ARM32 architecture for Portainer Agent
Resolved an issue that occurred when updating user preferences. portainer/portainer#8570
Introduced UI mechanism for automatic retrying of tunnel connection when it fails due to high latency portainer/portainer#8784
Added certificate support of AWS IAM Role Anywhere authentication for Agent and Edge Agent portainer/portainer#8789
Updated hide internal authentication prompt option to default to off
Fixed issue where searching is not functional in associated edge environment when creating edge group portainer/portainer#8589
Fixed issue with Docker Swarm environment where containers count weren't displaying correctly in homepage. portainer/portainer#8695
Fixed issue where skipping https verification was default to true for Azure git deployment portainer/portainer#8698
Fixed issue where TLS Min Version was not fully enforced portainer/portainer#8788
Fixed a minor issue on restarting a container where the toaster pop-up message shown had an extraneous slash in front of the container name. portainer/portainer#8563
Introduced ability to use different certificate for mTLS communication between Portainer server and agent.
Fixed an issue while in dark mode, where, with any auto-filled text in fill-ins, the cursor completely disappeared until you started typing again. portainer/portainer#8564
Resolved a minor issue in the Browse Registry screen on Kubernetes environments, where the Registries breadcrumb link would take non-admin users back to the Homepage instead of the Registries list screen.
Provide feature flag for FDO feature to be shown in UI portainer/portainer#8696
Fixed issue of missing requirement of TLS definition for endpoint creation and correct tagids parameter in swagger API portainer/portainer#8780
Improved Edge Agent Health status indicator and keep consistency with API response portainer/portainer#8781
Fixed issue where git deployment failed to edit or redeploy when compose path begin with slash portainer/portainer#8782
Fixed an issue in the restore from backup function, where a timeout error can occur and Portainer does not restart with the backup restored. portainer/portainer#8792
Development
Improved the layering of the Portainer Dockerfile to ensure internal development-related aspects are excluded where possible. portainer/portainer#8559
Migrated git deployment page form Angular to React portainer/portainer#8785
Migrated code editor component from Angular to React portainer/portainer#8786
Introduced Tailwind prettier which will group utility classes project-wide and order them in a recommended way, making it easier to work with them. portainer/portainer#8560
Introduced replacement for bootbox with react components portainer/portainer#8588
Improved the feature flag architecture to make it easier to use. portainer/portainer#8562
Resolved incorrect usage of log.fatal to ensure the application exits only as necessary. portainer/portainer#8561
REST API Changes
Fixed the API Swagger/OpenAPI documentation for some IDs that were defined as strings but should be integers. portainer/portainer#8794
Added to the API Swagger/OpenAPI documentation that you can upload a file to a Docker Standalone host when the host management feature is enabled. portainer/portainer#8793
Release 2.17.1
February 22, 2023
Resolved CVEs
Resolved the false positive report of Portainer binaries from VirusTotal. portainer/portainer#8519
Docker
Fixed issue with recreating containers in the Portainer UI if they have been originally created via the CLI. portainer/portainer#8507
Portainer
Fixed an issue where upgrading to Business Edition leaves behind limited stack. portainer/portainer#8516
Fixed an issue where Edge Agent updater leaves behind limited stack.
Fixed grammar of placeholder for region field in S3 backup configuration. portainer/portainer#8515
Fixed an issue where an error occurred for upgrading Portainer to 2.17.0 version when Docker engine version is 19.03. portainer/portainer#8514
Fixed an issue where node enforcement message displayed incorrectly for trial license users.
Fixed an issue where git credentials are not selected when editing stack deployed from git repository.
Release 2.17.0
February 7, 2023
Known issues
Running Portainer with Docker Engine <= 19.03 (Docker API <= 1.40) will cause a fatal error similar to
failed initializing upgrade service | error="failed to determine container platform: failed to retrieve docker info: Error response from daemon: client version 1.41 is too new. Maximum supported API version is 1.40"
Breaking changes
For breaking changes in the API, please see the REST API changes section
The Kompose functionality in Kubernetes has been removed. Compose yaml can no longer be deployed on Kubernetes.
Moved Edge Devices to the homepage view and removed Edge Devices menu option under Edge Compute
Add devices button is temporarily located on the Edge Compute Settings page
Resolved CVEs
Portainer dependencies
CVE-2022-27191 - golang.org/x/crypto/ssh in Go
GHSA-8c26-wmh5-6g9v - golang.org/x/crypto/ssh in Go
CVE-2022-27664 - net/http in Go
CVE-2022-29526 - Go
SNYK-JS-XMLDOMXMLDOM-3092934 - javascript
CVE-2022-23806 - kompose
CVE-2022-41720 - kompose
CVE-2022-41716 - kompose
CVE-2022-41715 - kompose
CVE-2022-32189 - kompose
CVE-2022-30635 - kompose
CVE-2022-30634 - kompose
CVE-2022-30633 - kompose
CVE-2022-30632 - kompose
CVE-2022-30631 - kompose
CVE-2022-30630 - kompose
CVE-2022-30580 - kompose
CVE-2022-29804 - kompose
CVE-2022-2880 - kompose
CVE-2022-2879 - kompose
CVE-2022-28327 - kompose
CVE-2022-28131 - kompose
CVE-2022-27664 - kompose
CVE-2022-24921 - kompose
CVE-2022-24675 - kompose
CVE-2022-23772 - kompose
CVE-2021-44716 - kompose
CVE-2021-41772 - kompose
CVE-2021-41771 - kompose
CVE-2021-39293 - kompose
CVE-2021-33198 - kompose
CVE-2021-33196 - kompose
CVE-2021-33195 - kompose
CVE-2021-27918 - kompose
CVE-2020-16845 - kompose
CVE-2022-41717 - kompose
CVE-2022-32148 - kompose
CVE-2022-29526 - kompose
CVE-2022-1962 - kompose
CVE-2022-1705 - kompose
CVE-2021-44717 - kompose
CVE-2021-36221 - kompose
CVE-2021-34558 - kompose
CVE-2021-33197 - kompose
CVE-2021-31525 - kompose
CVE-2021-3114 - kompose
CVE-2020-24553 - kompose
CVE-2020-15586 - kompose
CVE-2020-14039 - kompose
CVE-2022-30629 - kompose
Agent dependencies
CVE-2022-27664 - net/http in Go
Upgrade notice
This release has added the ability to upgrade Edge Agents from Portainer when running on Docker Standalone. Before using this feature we strongly advise to test this on a non-production environment first and have an alternative method available to connect to the Edge Device.
Edge
Introduced the ability to remotely update edge agents from within Portainer
Moved Edge Devices to the homepage view: portainer/portainer#8333
Introduced the ability to browse snapshots of async edge environments from homepage view: portainer/portainer#8336
Optimized performance for scaling large numbers of edge agents: portainer/portainer#8349
Introduced option for pre-pull of images for edge stack deployment to increase deployment success rate
Added edge group support in edge jobs to allow execution across many devices
Introduce the ability to edit edge agent tunnel URL and API server URL from within Portainer
Introduced improved environment tile layout to address consistency when edge devices moved to homepage: portainer/portainer#8334
Clarified UX around polling intervals and poll frequency option in edge compute settings between async and normal edge agents.
Added info text to waiting room view
Fixed issue where edge stack incorrectly deployed to default namespace when there is a specified namespace defined in the manifest: portainer/portainer#8346
Fixed issue where select all checkbox is missing for edge stack and edge job tables: portainer/portainer#8029
Fixed issue with Edge device tags not showing on Create Edge Group screen: portainer/portainer#7936
Fixed issue where delete edge device does not remove it from the edge groups mapping: portainer/portainer#8348
Fixed issue where edge stack failed to deploy with private registry in async mode
Fixed issue where actions icon under edit edge stack page is not consistent
Kubernetes
Introduced new log viewer to Portainer Business Edition
Introduced the ability to edit the YAML manifest of Kubernetes objects and apply the changes via the Kubernetes patch function
Introduced global and cluster-level options to allow enforcing of code-based deployment of Kubernetes objects, preventing the use of Portainer forms and other less easy-to-repeat workflows
Introduced a new setting in the Cluster setup screen of a Kubernetes environment to allow enforcing of admin-only deploying of ingresses
Introduced the ability to specify updates to existing environment variables of a deployment via query string parameters on the Kubernetes application redeploy webhook
Added a rolling restart button to the Kube application UI
Introduced a new rollout-restart parameter to Kube application redeploy webhooks to allow remote initiating of zero-downtime deployment rolling restarts
Introduced an alternate means of authenticating connections to the Google Cloud platform (used by our KaaS provisioning of Google Kubernetes Engine environments), following their deprecation of the gcp auth plugin in Kubernetes v1.22 and removal in v1.26
Introduced experimental Kubernetes functionality (behind a feature flag) to allow installing of MicroK8s to existing machines
The Kubernetes deployment option for docker-compose format manifests and the Kompose conversion tool that enabled this have now been removed due to long-standing Common Vulnerabilities and Exposures (CVEs) in Kompose: portainer/portainer#8355
Improved the explanatory tooltips and info text for Kube application automatic updates functionality: portainer/portainer#8223
Updated Kubernetes as a Service (KaaS) cluster provisioning to use the latest eksctl tool for the AWS EKS platform, and support up to v1.23 of Kubernetes (use of this version was previously failing)
Resolved an issue where Kubernetes secrets were no longer shown in an expand panel for each application listed in the Applications list screen: portainer/portainer#8118
Improved config setting defaults when connecting clusters: ingress controllers (with a class) are auto detected/set as allowed, metrics API features setting is on (if metrics server is deployed), and storage classes with the 'default' annotation are on: portainer/portainer#8240
The Kubernetes Operator role is not intended to have secrets update permission and hence, as a security consideration, this permission is now removed from Portainer
Corrected the look of the fallback icon used for Helm charts that don't have their own icon: portainer/portainer#8116
Made a change to default the resource quota's resource assignment setting to off for new Kubernetes namespaces but always show the toggle (although it can be disabled for change if the cluster's (BE only) allow over-commit setting is off): portainer/portainer#8122
In the Kubernetes Add ingress screen, corrected the namespace selection dropdown to only show those that the user has access to: portainer/portainer#8150
Added a check in Kube Cluster setup and Namespace -> Manage access to see if Kube RBAC addon is enabled in the cluster, and if not, show a warning that Portainer RBAC functionality will be limited. Warning also gives info on enabling RBAC in the cluster: portainer/portainer#8171
Resolved an issue that was causing an 'Unable to get k8s environment access' error on deleting of a Kubernetes edge environment
When connecting a Kubernetes environment to Portainer via kubeconfig import, stop deleting of any extant 'portainer' namespace in the cluster
When using Kubernetes (KaaS) cluster provisioning and choosing the Azure Kubernetes Service (AKS) option, only node size options that are valid for provisioning now show. Previously, there was at least one option which gave an error on use
Resolved two scenarios where importing of the kubeconfig of a Kubernetes cluster raised an error that caused a stuck 'Deploying' status
In Kube Create namespace and Namespace details screens, made the resource assignment toggle always visible - even when the cluster's resource over-commit option is off (when it will show but be disabled for change)
Fixed an issue introduced in 2.16, where deploying of an ingress via the Portainer Add ingress form does not label the ingress object in the cluster with a Portainer 'internal' deployment label. Any deployment of ingress via Portainer should have this: portainer/portainer#8337
Fixed an issue introduced in 2.16, where, when attaching a ConfigMap to an application being deployed via the Portainer Add application form, the ConfigMap is wrongly included as a Secret in the manifest and the deployment could therefore fail: portainer/portainer#8323
Fixed an incorrect mention in the UI of a 'docker-compose file' which was showing when editing a Kube application deployed from git: portainer/portainer#8228
Fixed an issue preventing adding of a Helm repo that has a redirect: portainer/portainer#7892
Fixed an issue where the kubectl shell does not work when Istio Proxy is installed in the cluster: portainer/portainer#8321
Fixed an issue introduced in 2.16 where the Kube Create namespace screen's CPU and Memory resource allocation max limits did not have other namespaces' resource amounts subtracted when the cluster's allow resource over-commit option was turned off
Docker
Introduced support of relative paths for volumes when creating a Docker Standalone or Swarm stack that uses a git repository. Support in edge stacks is excluded at present: portainer/portainer#6390
Introduced new log viewer to Portainer Business Edition
Introduced pull image param for stack webhook to turn pull-image on and off
Introduced 24 hour caching for new image notification
Upgraded docker compose to v2.13.0: portainer/portainer#8289
Provided clarification and rewording in the UI around the 'Pull latest image' toggle in Stacks, Swarm Services and Service details update and Container recreate: portainer/portainer#8226
Updated embedded docker binaries in Portainer and agent from 20.10.13 to 20.10.18: portainer/portainer#8290
Fixed issue of not been able to associate stack created from other docker environments: portainer/portainer#8030
Fixed issue where content overlap edge of screen and left column becomes too narrow: portainer/portainer#8161
Fixed issue where default option for access control is not selected when editing public resource: portainer/portainer#8162
Fixed incorrect wording for private box selector under user access control: portainer/portainer#7969
Fixed issue where text input jumps to the end of the input box in repository form: portainer/portainer#8214
Fixed issue where scrollbar always visible in web editor form regardless contents of web editor: portainer/portainer#7968
Fixed issue where number of stopped container does not display in dashboard correctly: portainer/portainer#7925
Fixed an issue where deleting a network, config or secret did not show a confirmation warning modal: portainer/portainer#7920
Fixed an issue where a user cannot upload a stack file as a custom template: portainer/portainer#7921
Fixed an issue where the old-style UI was still being used in a Docker template-related page: portainer/portainer#7950
Fixed issue where container webhook URL always changed on each recreation
Fixed issue where new image notification only relies on checking first digest which is not always accurate: portainer/portainer#7148
Portainer
Introduced support for S3 compatible hosts for backup and restore: portainer/portainer#6555
Introduced support for GitHub container registry as a registry type
On the header context sensitive help icon, the red dot notification has been removed. This was put there to highlight the new feature in 2.16: portainer/portainer#8167
Updated Portainer dependencies of Business Edition
Upgraded version of golang.org/x/net from v0.0.0 to v0.1.0 for agent: portainer/portainer#8073
Upgraded jwt version to 4.4.2: portainer/portainer#7970
Improved Portainer tooltips to allow them to stay open long enough for clicking of links and selecting of text in them. Also left-justified them for better readability: portainer/portainer#8224
Resolved an issue related to revoking of user permissions: portainer/portainer#8338
Fixed issue where password could be leaked to the log files when errors occur: portainer/portainer#8343
Fixed issue when navigating to the login page log as a unique visitor in Matomo: portainer/portainer#8344
Fixed an svg attribute height error in the page (visible via the browser console): portainer/portainer#8105
Fixed typo where "occured" is used in error message instead of "occurred": portainer/portainer#8027
Fixed issue where long notification is pushed out of table making it hard to read: portainer/portainer#8215
Fixed incorrect link for other settings and agent setup: portainer/portainer#8347
Fixed issue where deleted environment does not clear in table and sidebar when deleting current selected environment: portainer/portainer#8291
Fixed issue where standard users were not able to change ownership to their own team: portainer/portainer#8216
Fixed issue where user encountered an error by deleting tags associated to deleted environments: portainer/portainer#8089
Fixed an issue where the 'hide for all users' button styling behaves differently in dark mode: portainer/portainer#7926
Fixed a minor issue where the pages and items per page elements in data table pagination controls did not quite vertically align with each other: portainer/portainer#8227
Fixed issue where team lead feature is unexpectedly enabled when external authentication is enabled with team sync: portainer/portainer#7972
Fixed issue where response from API when creating edge environments wasn't clearly specifying that URL is compulsory: portainer/portainer#7997
Fixed issue where internal authentication setting is not saved when switch from other authentication method without refreshing browser manually: portainer/portainer#8028
Fixed issue where admin users are not able to delete expired or revoked license
Fixed issue where user unable to remove group configuration with active directory authentication: portainer/portainer#7558
Fixed issue where user is not removed from team when removed from LDAP group
Nomad
Fixed issue around task logs not loading if they are empty
Fixed issue where old UI components were still being used for Nomad related pages
Development
Replaced Feather svg icon set with Lucide, a Feather fork that is actively maintained and has a larger and improved range of icons: portainer/portainer#8121
Removed Font Awesome and all remaining references to it. All icons are now svg-based: portainer/portainer#8120
Redesigned Portainer database migration versioning to improve the robustness of the upgrade process: portainer/portainer#8153
Replaced aws-sdk-go with aws-sdk-go-v2
Fixed issue where random number generator is not seeded causing predictable outputs: portainer/portainer#8342
Resolved issues building Portainer (caused by third-party deletion of the github.com/rkl-/digest package) by replacing the package with imported code. This provides HTTP Digest Authentication for Portainer's FIDO Device Onboard (FDO) protocol support: portainer/portainer#8177
Corrected a minor UI issue around a corrupted file-code.svg icon: portainer/portainer#8117
Removed the Go experimental module golang.org/x/exp, replacing the small amount of functionality that we use from it with direct code: portainer/portainer#8176
Deprecated the github.com/portainer/libhelm Helm wrapper and moved the code into CE, since EE can now share from CE. This is used by Portainer's Helm functionality: portainer/portainer#8178
Fixed issue where struct tag is malformed with incorrect blank space in template_file.go: portainer/portainer#7923
(swagger) fix licenses attach route
REST API changes
New Endpoints
GET
/docker/{environmentId}/containers/{containerID}/image_statusGET
/docker/{environmentId}/services/{serviceID}/image_statusGET
/docker/{environmentId}/stacks/{id}/images_statusGET
/kubernetes/{id}/namespaces/{namespace}/applicationsGET
/kubernetes/{id}/namespaces/{namespace}/applications/{kind}/{name}GET
/kubernetes/{id}/rbac_enabledGET
/nomad/endpoints/{endpointID}/leaderGET
/system/infoGET
/system/nodesGET
/system/statusPOST
/system/upgradeGET
/system/versionPUT
/webhooks/{id}/reassign
Deleted Endpoints
GET
/nomad/endpoints/{endpointID}/status
Deprecated Endpoints
GET
/status- Deprecated: use the/system/statusendpoint instead to retrieve the Portainer status.GET
/status/nodes- Deprecated: use the/system/nodesendpoint instead.GET
/status/version- Deprecated: use the/system/versionendpoint instead to check if portainer has an update available.
Modified Endpoints
POST
/backup/s3/executePOST
/backup/s3/restorePOST
/backup/s3/settingsPOST
/edge_jobsPOST
/edge_jobs/{id}POST
/edge_stacksPUT
/edge_stacks/{id}POST
/edge_update_schedulesGET
/edge_update_schedules/activePUT
/endpoints/{id}PUT
/endpoints/{id}/settingsPOST
/registriesPUT
/registries/{id}PUT
/settingsPOST
/stacks
Release 2.16.2
November 21, 2022
Edge
Fixed issue where the Git repository section is missing when creating an Edge Stack via the Git repository option. portainer/portainer#8072
Portainer
Fixed issue where the effective viewer is not showing the correct user access role of environments they have access to. portainer/portainer#8070
Release 2.16.1
November 9, 2022
Kubernetes
Fixed an issue with view/edit of an external application (i.e. one originally added to the cluster outside of Portainer) where a 'cannot read properties' error was shown.
Fixed an issue with view/edit of Kubernetes namespaces where memory and CPU resource limit sliders were positioned incorrectly and erroneous warnings were shown.
Docker
Fixed issue of update stack button being disabled when updating an existing stack.
Portainer
Fixed license key issue where node counts were not updated when environments are deleted.
Fixed issue with JSON formatted logs failing in 2.16.0.
Release 2.16.0
October 31, 2022
Deprecation notice
Proposing to deprecate ACI (Azure Container Instances) and remove the functionality to connect to ACI, view existing containers and deploy new containers.
Upgrade notice
portainer/portainer:latestmoved toportainer/portainer:2.16.
React migration
Migrated from Angular to React: Tag selector for Environment Details view.
Migrated from Angular to React: Teams view.
Kubernetes
When upgrading to 2.16, if you already have ingress controllers in a Kubernetes cluster/environment linked to Portainer and used Portainer to set them at the cluster and namespace level, and if these ingress controllers were not used by any ingresses, after the upgrade, you may end up with dummy ingresses visible in the new Ingresses screen in Portainer (that are not actually used for any deployment). This is simply an artifact of how we retained information about ingress controllers in earlier Portainer releases. If you find these kinds of dummy ingresses, you can safely delete them.
Introduced the ability to auto-detect ingress classes in the environment. portainer/portainer#7827
Added an Ingress menu option in the sidebar that lists all Ingresses in the cluster. portainer/portainer#7839
Introduced the ability to set the type of a Kubernetes secret (e.g. TLS or a user-defined/custom type). Existing secrets were previously always of type Opaque (which remains the default). portainer/portainer#7842
Improved ingress options on the cluster setup page, allowing admins to define ingresses without assigning them to a namespace. portainer/portainer#7832
Introduce TLS and HTTPS support for ingresses. portainer/portainer#7843
Moved the Ingress management from the Application details page to a new Ingress section. portainer/portainer#7828
Resolved an issue when OAuth is in use and Kubernetes updates are deployed via manifest from git. The user email address used in labels/annotations for Kube objects now has disallowed characters (such as the at symbol) replaced with a dot (period symbol). portainer/portainer#7720
The Homepage's kubeconfig download dialog now only includes those environments that show on the Homepage. Those with a connection error or provisioning error (these states were introduced in recent releases) are now excluded.
Resolved an issue where Node stats would not work for Google Kubernetes Engine (GKE) clusters. portainer/portainer#7668
Fixed the issue of missing Kubernetes definition for Kubernetes application deployment in the swagger API documentation. portainer/portainer#7741
Fixed issue with deploying custom templates on Kubernetes that are using mustache variables.
Docker
Updated the Compose version to 2.10.2. portainer/portainer#7838
Added support for shared memory when creating or editing a container by allowing to set --shm-size from portainer. portainer/portainer#4992
Introduced support for uploading of local files to be included in a Docker image when using Portainer to build an image. portainer/portainer#7796
Set notification of new image for docker default to off.
Introduced a setting to turn on/off per host showing of out-of-date image indicators. portainer/portainer#7219
Resolved an issue in Docker Services, Containers, and Stacks, where loading of the recently added out-of-date image indicator delayed showing of a row's action icons.
Added information for rebuilding images from stacks on docker standalone environments. portainer/portainer#7829
Added information to the build image from the URL page, including a link to additional documentation. portainer/portainer#7771
Fixed an issue where environment variables for stacks could not be set to empty. portainer/portainer#7780
Fixed an issue where assigning user access to a stack, showed users that don't have access to the Environment. portainer/portainer#7695
Fixed the issue of missing agent deployment script for the docker standalone environment. portainer/portainer#7757
Fixed the issue of the misconfigured stack being saved and subsequently can not be deleted. portainer/portainer#7798
Fixed an issue where the Swarm secret values incorrectly were being trimmed. portainer/portainer#7772
Fixed the issue where the container webhook toggle was not being saved.
Fixed an issue where the Docker API section in the add environment wizard incorrectly was showing the docker.sock code block. portainer/portainer#7650
Fixed an issue where a console error was showing for GPU when using Swarm because GPU is not supported on Swarm.
Fixed an issue where renaming a deployed container resulted in an error. portainer/portainer#7778
Fixed an issue where the image pull limits weren't being shown for standard users.
Fixed error message when adding new docker environments with invalid CA certs for TLS. portainer/portainer#7934
Adjusted the "remove" buttons as per the UI guidelines that were introduced in the 2.15 release. portainer/portainer#7739
Gitops
Introduced the offering of auto-suggestions retrieved from the git repo when entering the Compose path.
Added the ability to store git credentials in user settings.
Portainer
Introduced a new section that shows past toaster notifications, which are stored in the browser's local storage. portainer/portainer#7756
Introduced a context sensitive help button that links to the relevant documentation based on the current page. portainer/portainer#7744
Introduced login screen banner to the login page.
Added banner for "new version available" in portainer business edition.
Updated dependencies of PCIDB/GHW for the portainer agent. portainer/portainer#7705
Updated version of chart.js to 2.9.4 and moment to 2.29.4. portainer/portainer#7681
Update golang and image dependencies for API and portainer binary ( EE ).
Updated binary version for docker-compose and helm (to v3.9.3). portainer/portainer#7704
Updated the agent library dependencies. portainer/portainer#7420
Fixed an issue where the Microsoft OAuth information was not being retrieved correctly when editing the settings.
Fixed select all behavior in environments page.
Fixed the issue of handling images built by buildx or buildkit in the registry browser.
Fixed an issue where the browser tab title did not update with the actually selected environment. portainer/portainer#7651
Fixed issue with text color and text background color on auto-filled text.
Fixed issue where the dropdown menu has incorrect background color in dark mode. portainer/portainer#7678
Fixed styling issues in the Runtime & Resources tab. portainer/portainer#7779
Fixed an issue where the new styling wasn't being applied to links. portainer/portainer#7740
Adjusted the warning text color as per the UI guidelines that were introduced in the 2.15 release. portainer/portainer#7667
Introduced UI info components while browsing snapshots.
Edge
Introduced the ability to run remote commands on edge environments connected via Async using mTLS.
Introduced UI info components while browsing snapshots.
Nomad
Fixed issue around Home page loading time when you have Nomad environments connected.
Removed extension validation from compose path field. portainer/portainer#7652
Fixed an issue where the Group and Tag could not be set for Nomad environments when adding it via the wizard. portainer/portainer#7703
Fixed an issue where Nomad system jobs would prevent other jobs from being shown. portainer/portainer#7229
Development
Improved unit tests by using T.TempDir to create a temporary test directory. portainer/portainer#7675
Replaced the logrus logging framework with Zerolog. portainer/portainer#7935
Fixed an issue where new installations that use the develop branch didn't apply the analytics setting correctly. portainer/portainer#7584
Release 2.15.1
September 16, 2022
Docker
Fixed an issue with connecting to the local Docker environment when using Windows Container Services. portainer/portainer#7618
Fixed an issue where the build image button would stay inactive when using a tar file. portainer/portainer#7624
Portainer
Fixed an issue where some colors in dark mode appeared too brown. portainer/portainer#7616
Fixed an issue when using leading or trailing spaces in a password would break the login process. portainer/portainer#7621
Release 2.15.0
September 6, 2022
Deprecation notice
Proposing to deprecate Kompose and remove the functionality to deploy compose yaml on Kubernetes. portainer/portainer#7514
Breaking changes
Breaking change in API where the endpoint filter
edgeDeviceFilterhas been replaced byedgeDeviceandedgeDeviceUntrusted.
Browser cache
Improved caching to prepare a resolution for an issue where certain browsers need a manual browser refresh for new version assets to load. The change only takes effect for upgrades subsequent to migration to 2.15. portainer/portainer#7443
React migration
Migrated docker/containers/list views to React.
Migrated the Docker console.
Migrated Azure Container Instances views to React.
Migrated the sidebar menu and adjusted the Settings page.
Migrated the Kubectl shell window.
Migrated tooltip into react component.
Migrated page header into React component.
Kubernetes
Introduced the ability to define pod security constraints per Kubernetes cluster.
Introduced an option to forcibly remove a Kubernetes namespace that's in a 'Terminating' state. portainer/portainer#4580
Improved the kubeconfig download dialog by providing pagination (including choosing of the number of items per page), an option to 'select all in page' and selection across multiple pages. portainer/portainer#7261
Resolved an issue where the link shown for an application that is exposed via an ingress was including an incorrect port (the servicePort). portainer/portainer#7337
Resolved some errors and wording issues in recent KaaS cluster provisioning and import kubeconfig functionality.
When using Kubernetes (KaaS) cluster provisioning and choosing the DigitalOcean option, only node size options that are valid for provisioning now show. Previously, there was at least one option which gave an 'invalid droplet size' error on use.
Docker
Added GPU support to Docker containers. portainer/portainer#3143
Introduced the ability to disable use of the anonymous Docker Hub registry option via the Portainer UI for all users.
Added support to read value from .env in subfolder for git deployment in Docker Standalone Environment. portainer/portainer#7265
Added message explaining that changed env values only take effect after redeployment or auto update via webhook. portainer/portainer#7242
Provided prune option for stack deployment from Git. portainer/portainer#7224
Removed "Show Container Template" toggle on App templates page and introduced filter and sort by dropdown options. portainer/portainer#7394
Fixed recreate of container so it pulls the image using the SHA256 hash if its tag no longer exists, and if the image is still inaccessible (as it no longer exists or the tag or name is now incorrect) warn the user and disable 'Pull latest image' option. portainer/portainer#6566
Introduced support for checking images held in private registries to the recently added functionality that shows a visual image indication on stacks, services and containers that are running with an out-of-date image.
Introduced improved validation to the Docker build image function, to prevent invalid image names. portainer/portainer#7463
Fixed host info being sent when host management feature is turned off. portainer/portainer#7277
Following the introduction of v2 Docker Compose, changed any front-end wording that mentions 'docker-compose' to say 'docker compose', to clarify and bring in line with official documentation. portainer/portainer#7141
Portainer
Introduced license enforcement for 5 nodes free in business edition.
Introduced new styling for Portainer. portainer/portainer#7528
Introduced Portainer UI redesign with changes for common configuration pages. portainer/portainer#7527
Included build information in Portainer for easier debug. portainer/portainer#7317
Introduced the ability to show/hide the password you are entering on login. portainer/portainer#7461
Introduced CTRL+F (or CMD+F on MacOS) to search in web editors. portainer/portainer#6537
Introduced the ability to filter connection type and agent version on the home page. portainer/portainer#7468
Improved environment address entry to handle http:// or https:// prefixes when adding an environment via Docker or Kubernetes (agent) options. portainer/portainer#7462
Introduced a change to the Homepage's multi-select filters to keep the dropdown open after a single selection until the user closes it themselves, or the last remaining option is selected. portainer/portainer#7548
Added tips for entering Portainer license key.
Updated the agent library dependencies portainer/portainer#7420
Fixed issue where Automatic team membership did not always work for Azure.
Fixed an issue where auto populate team admins LDAP feature didn't work on upgrade from CE to BE.
Fixed issue of authentication logs not working behind reverse proxy. portainer/portainer#7120
Fixed license expiry message flashing even license is not expired or close to expiring.
Fixed a few typos in various locations. portainer/portainer#7243
Fixed issue with environment page table losing selection on table refresh. portainer/portainer#7395
Fixed missing BE feature indicators. portainer/portainer#7396
Fixed issue where certificate uploading is not functional for StartTLS/TLS in LDAP configuration. portainer/portainer#6271
Reworded error message for JWT token missing to more user-friendly message.
Edge
Introduced the ability to get logs for edge stacks of specific environments.
Fixed connection issue ("Environment is unreachable") after deploying Nomad environment with AEEC script.
Updated UI of Add devices page to match the Add environment page. portainer/portainer#7393
Fixed issue where editing edge jobs changed the configured cron expression. portainer/portainer#7432
Fixed known issue with manually adding an Edge Device environment through the edge device page when using Async mode, does not retain Async settings and needs to be manually added through the environment details page.
Removed Beta label on Edge Jobs. portainer/portainer#7162
Improved image parsing for Kubernetes Edge Stacks that use private registries so that the same parsing as Docker ones is used.
Registry
Improved Registry details screen with better prompting for relevant fields. portainer/portainer#3015
Resolved an issue around not being able to add multiple Quay registries. portainer/portainer#7430
Improved the Registry details screen to show the registry provider and made the Add registry screen default to Docker Hub as the provider. portainer/portainer#7246
Nomad
Standardized the behavior of Nomad edge environments to be the same as non-Nomad edge environments.
Release 2.14.2
July 26, 2022
Known issues
Known issue with manually adding an Edge Device environment through the Edge Device page when using Async mode, does not retain Async settings and needs to be manually added through the environment details page.
Image update notifications are currently not supported for private registries and private images in DockerHub. This is due to be fixed in our next major version.
Kubernetes
Fixed an issue where the kubeconfig downloadable from Portainer always had port 9443 in its URLs, even though the actual Portainer instance was being accessed via another port. portainer/portainer#7059
Docker
Fixed certificate file validation for .pem files portainer/portainer#7183
Fixed an issue when using a Mustache variable (e.g. {{service}}) multiple times in the YAML, where the UI should prompt for it only once and then reuse it (rather than prompting for it multiple times).
Fixed an issue when using a Mustache variable (e.g. {{path}}) with special characters in the value, where the resulting value would end up being HTML encoded.
Fixed issue around access control labels being ignored.
Portainer
Fixed an issue where the original admin user was unable to change their password when external authentication is enabled. portainer/portainer#7291
Fixed toggle state reset issue for custom logo and anonymous statistics. portainer/portainer#7278
Fixed issue with not being able to add users to teams while LDAP authentication is enabled without auto teams population. portainer/portainer#7252
Fixed an issue where auto populate team admins LDAP feature didn't work on upgrade from CE to BE.
Resolved an issue where new installs of recent Portainer releases had an extraneous (although innocuous) db version update on restart.
Edge
Fixed pagination issue on Add edge jobs page for listed environments. portainer/portainer#7312
Release 2.14.1
July 12, 2022
Known issues
Known issue with manually adding an Edge Device environment through the Edge Device page when using Async mode, does not retain Async settings and needs to be manually added through the environment details page.
Image update notifications are currently not supported for private registries and private images in DockerHub. This is due to be fixed in our next major version.
When using a Mustache variable (e.g.
{{ service }}) multiple times in the YAML, the UI also prompts for it multiple times, rather than prompting for it a single time and then reusing it.
Kubernetes
Improved KaaS cluster provisioning's cluster name validation to enforce restrictions that Google GKE expects.
Fixed issue of variable inputs not showing on deployment view when using custom templates.
Improved Portainer logging to better record the output from eksctl, the CLI tool used for Amazon EKS (KaaS) cluster provisioning.
Fixed an issue where, upon initiating AWS KaaS cluster/environment provisioning and subsequently restarting Portainer in a short space of time, the requested environment would become stuck and unusable in Portainer, and couldn't be deleted.
Docker
Resolved an issue where users running Portainer with non-root access were receiving a 'Permission denied on docker-compose' error since the recent update to Docker Compose V2. portainer/portainer#6906
Portainer
Fix to improve LDAP, etc. authentication/login speed when there are many thousands of users.
Resolved an issue where users upgrading a Portainer install, where the portainer_data volume is stored on a network volume, receive a 'Permission denied' error when the upgrade attempts a backup of the database. portainer/portainer#7144
Fixed "Create user" button in disabled stage when external Auth enabled. portainer/portainer#7214
Edge
Fixed issue where the edge agent could not connect when running Portainer behind a reverse proxy only supporting TLS v1.2. portainer/portainer#7167
Release 2.14.0
June 28, 2022
Known issues
Known issue with manually adding an Edge Device environment through the Edge Device page when using Async mode, does not retain Async settings and needs to be manually added through the environment details page.
Image update notifications are currently not supported for private registries and private images in DockerHub. This is due to be fixed in our next major version.
Breaking changes
With the upgrade to Docker Compose V2, container names now use hyphens as separators instead of underscores. This may affect you if you are generating container names instead of explicitly defining them, then using them as references.
Kubernetes
Introduced ability to set up a new Kubernetes environment in Portainer via upload of a kubeconfig file for an existing on premises or on-cloud cluster.
Fixed issue around Git clone working with Main (in addition to existing Master) branch type. portainer/portainer#6002
Updated packaged components to recent stable release versions: Docker 20.10.9, Docker Compose plugin 2.5.1, kubectl 1.24.1, Helm 3.9.0. portainer/portainer#6074
Administrators can now set up cloud provider settings via a list page and separate add page in a similar way to other records in Portainer.
Introduced support for provisioning of a Kubernetes cluster on the Amazon (AWS) EKS platform from within Portainer, alleviating the need to do so in the cloud provider's portal. The AWS eksctl binary is auto downloaded when first using this functionality.
Introduced support for provisioning of a Kubernetes cluster on the Microsoft Azure AKS platform from within Portainer, alleviating the need to do so in the cloud provider's portal.
Introduced support for provisioning of a Kubernetes cluster on the Google Cloud GKE platform from within Portainer, alleviating the need to do so in the cloud provider's portal.
Fixed a typo in the Kubernetes -> Namespaces -> Create from manifest (advanced deployment) page. portainer/portainer#6968
Fixed an issue with cluster provisioning via Civo KaaS, where if the Civo account has an issue with its defined networks, the environment was stuck waiting to complete provisioning and never ultimately errored.
Introduced the ability to set the group and tags against the environment in Portainer when an admin provisions a Kubernetes as a Service cluster.
Introduced slight improvements to editing of sensitive cloud credentials values.
Fixed an issue in the Settings -> Environments page, where an environment that was disabled or still being provisioned could be selected for removal and then removed.
Added the ability to manually refresh pulling of Kubernetes as a Service cluster provisioning options from cloud providers.
Improved error handling around KaaS provisioning in the environment wizard.
Kubernetes as a Service (cloud) provisioned environments will now appear in the 'new environments' side panel in the environments wizard.
Docker
Introduced a visual indication of stacks, services and containers that are running with an out-of-date image. portainer/portainer#1304
Fixed issue around Git clone working with Main (in addition to existing Master) branch type. portainer/portainer#6002
Updated packaged components to recent stable release versions: Docker 20.10.9, Docker Compose plugin 2.5.1, kubectl 1.24.1, Helm 3.9.0. portainer/portainer#6074
Fixed issue for standard user having an empty network as default when creating containers on Windows environments portainer/portainer#6959
Introduced ability to pass environment variables on the webhooks in Docker stack deployment.
Provide a stack template for dokku deployment within portainer. portainer/portainer#7011
Resolved an issue when updating an application and changing its service from replicated to global, where an error occurs and the deployed application is deleted. portainer/portainer#7056
Third-party developer Inedo has fixed their ProGet registry software to resolve an intermittent error admins were experiencing in Portainer on retag or delete of a tagged image. This is planned to ship 10 June 2022 in ProGet 6.0.16, before Portainer 2.14.
Introduced support in the container webhook for pull/recreate of containers from images residing in private registries.
Fixed an issue in the Containers page, where choosing 'Recreate' enabled the webhook for the container, even though it was not currently turned on.
Fixed an issue where, when calling Swarm update API through Portainer, incorrect overriding of the registry authentication header occurred, preventing pull of an image. portainer/portainer#7095
Portainer
Redesigned team leader feature. portainer/portainer#7093
Fixed an issue where the delete environment confirmation dialog was positioned too low on-screen. portainer/portainer#6983
Fixed an issue where agent and edge agent install command instructions do not list the agent_secret option. portainer/portainer#6801
Fixed an issue where the home (environments) page no longer showed the words 'No tags' for environments without tags. portainer/portainer#6967
Introduced support for provisioning of a Kubernetes cluster on the Amazon (AWS) EKS platform from within Portainer, alleviating the need to do so in the cloud provider's portal. The AWS eksctl binary is auto downloaded when first using this functionality.
The Add environment page and Environment wizard are now consolidated into a single consistent, improved wizard-style experience. portainer/portainer#7022
Introduced support for provisioning of a Kubernetes cluster on the Microsoft Azure AKS platform from within Portainer, alleviating the need to do so in the cloud provider's portal.
Introduced support for provisioning of a Kubernetes cluster on the Google Cloud GKE platform from within Portainer, alleviating the need to do so in the cloud provider's portal.
Fixed Go panic state for the environments list handler portainer/portainer#7047
Introduced ability for admin to set required password length. portainer/portainer#7055
Fixed an issue recently introduced in the environments page where the name of an environment that was down no longer linked through to its details page.
Resolved an issue preventing migration from EE 2.12 to 2.13 (or now 2.14) for Portainer instances that had previously migrated to EE from a CE instance with Allow Volume Browser for Regular Users toggled on for an environment.
Increased the click/touch area in expandable panels so it's easier to open/close them. portainer/portainer#7036
Fixed propagation of Portainer agent polling frequency when changed before deploying via automatic edge environment creation
Introduced the ability to paste in an existing license, revalidate with the license server and replace it in the database. This can be used to fix a corrupted license.
Edge
Fixed issue with status indicator on Edge Stacks not updating when removing tags from edge environments/groups portainer/portainer#6950
Introduced the ability to define the 3 polling intervals for Async
For edge agents, the URL shown in the Environment summary page (access from the Home page) has now been removed, as it caused confusion since it simply showed the Portainer Server URL. portainer/portainer#6978
Fixed Data race in the operations of the edge key in the Edge Agent portainer/portainer#7024
Added "goto page" to the Edge devices page view portainer/portainer#6982
Added the ability to add edge agents in the environment wizard portainer/portainer#7023
Nomad
Added HTTPS support for Nomad Edge Agent.
Added display of BE feature highlights in CE for new Nomad, KaaS provisioning and kubeconfig import functionality. portainer/portainer#7051
Release 2.13.1
May 12, 2022
Portainer
Changed the minimum TLS version of Portainer from 1.3 to 1.2 to avoid issues with nginx reverse proxies: portainer/portainer#6902
Fixed issue with the Portainer authentication settings page not being able to save: portainer/portainer#6899
Changed the password policy to require 12 characters for all Portainer internal users: portainer/portainer#6904
Release 2.13.0
May 9. 2022
Known issues
When provisioning a Civo cluster while there are multiple default networks defined on the Civo account, the environment will fail to provision and Portainer will end up waiting for the environment to be ready indefinitely. This can be resolved from the Civo console by deleting the cluster and using a non-default network for the provision.
Breaking changes
The minimum TLS version of Portainer was changed from 1.2 to 1.3. If you are running a proxy in front of Portainer with HTTPS you will need to ensure it is configured to support TLS 1.3.
Standard users can browse registries including edit and delete
Introduced the ability for non admin users to browse image registries
Added strong password policy for all Portainer internal users. When using a weak password and logging in you will be required to update your password.
Kubernetes
Improve how Portainer helps you set up ingresses (especially Nginx ones), including support of regular expressions in paths - by assisting with required annotations and correcting a rewrite issue: portainer/portainer#6854
Introduce support for provisioning of a Kubernetes cluster on a cloud provider's KaaS offering from within Portainer, alleviating the need to do so in the provider's own portal. Initial supported providers are Civo, DigitalOcean and Linode.
Fixed an issue where, on setting up (on a namespace) an ingress controller for a k8s cluster and I create an app with two ingress routes on the controller, app details show only the second of the paths: portainer/portainer#6856
Fixed an issue where Portainer's validation of a K8s namespace's hostnames was disallowing wildcards (e.g. *abc.com): portainer/portainer#6855
Fixed issue with default helm repo not populating in settings page: portainer/portainer#6849
Created documentation around using GKE ingress with Portainer: portainer/portainer#6848
Added input validation for kubernetes workload names: portainer/portainer#5363
Fixed issue where changing Portainer to HTTPS crashed Portainer: portainer/portainer#6836
Fixed issue where Helm Charts could not be deployed when using SSL certs with Portainer: portainer/portainer#6742
Fixed issue of not being able to use a name previously used for kubernetes resources: portainer/portainer#6830
Fixed issue where the Kube cluster resource stats had a rounding issue: portainer/portainer#6472
Fixed an issue when deploying Portainer client with AGENT_SECRET without configuring Kubernetes agent with AGENT_SECRET where an "Failure unknown" error shows rather than "agent already paired" : portainer/portainer#6791
Docker
Standard users can browse registries including edit and delete
Introduced the ability for non admin users to browse image registries
Fixed issue where the Disable bind mounts for non-administrators setting would prevent existing volumes from being used: portainer/portainer#6387
Fixed issue with creating a CIFS volume that uses a hostname: portainer/portainer#6338
Fixed issue where webhooks for services were accepting invalid tags: portainer/portainer#6493
Fixed issue with libcompose logging where error output is attempted to be included when an error did not occur: portainer/portainer#6857
Fixed an issue where 'Pull and Redeploy' and 'Force redeploy' don't work on ARM: portainer/portainer#6788
Documented deviation from the Docker standard when using the /docker/images/create API endpoint in conjunction with a private registry: portainer/portainer#6712
Fixed issue where credentials from different registries were being used: portainer/portainer#6087
Fixed issue where stack name was stated inaccurately in the message which informs users that a container/service inherited its access control settings from a specific stack: portainer/portainer#6478
Fixed issue with displaying container template when connected to docker swarm in the app templates page view: portainer/portainer#6837
Fixed text color on modal when updating a service: portainer/portainer#6839
Fixed issue where Watchtower did not work for standalone stacks on Arm64: portainer/portainer#5799
Portainer
Enforced strong password policy for all Portainer Users: portainer/portainer#6846
Improved the database migration to become more resilient: portainer/portainer#6778
Introduced the ability to filter and sort environments on the Home page: portainer/portainer#6823
When changing the user password the user gets redirected to the login page: portainer/portainer#6456
Fixed issue where upgrading to the Business Edition and then downgrading back to the Community Edition did not work
Improved security for custom templates when using Git repos that contain symlinks: portainer/portainer#6847
Improved how the installation page times out: portainer/portainer#6740
Improved file type validation when selecting multiple files when deploying from Git repository
Removed superfluous warning message for the Enable Change Window setting
Fixed bug relating to environment status in home page: portainer/portainer#6047
Improved concurrency in agent code to prevent race conditions: portainer/portainer#6677
Improved concurrency in backend code to prevent race conditions: portainer/portainer#6677
Fixed duplicate naming issue for registries: portainer/portainer#6838
Fixed issue around user accessing agent environment after changing an invalid environment url to a valid one: portainer/portainer#6824
Fixed issue with the menu when connecting to another environment fails: portainer/portainer#6449
Updated registry form wording from Password to "Dockerhub access token" : portainer/portainer#6308
Fixed text color for change window warning text
Fixed an issue where the hover-over tooltip for nav menu items always just showed 'Settings' rather than the menu item text: portainer/portainer#6779
Fixed issue where the green success notification was not showing up after deleting a custom app template: portainer/portainer#6724
Improved UX for setting themes by removing save button: portainer/portainer#6840
Edge
Renamed Trust on first connect to "Waiting Room"
Introduced the ability to pass env variables from local system to edge stacks for Kubernetes environments
Created the ability for Automatic Edge Environment Creation (AEEC) within Portainer Server
Introduced support for using credentials with private registries for edge stacks
Resolved data race on stack deploy for edge agents: portainer/portainer#6677
Added environment variable to the agent to adjust the probe timeout and interval: portainer/agent#293
Introduce the ability to pass env variables from a local system on edge devices to the edge stack: portainer/portainer#6832
Fixed issue with edge environments having faulty heartbeat on Edge Devices page: portainer/portainer#6825
Improved concurrency in edge code to prevent race conditions: portainer/portainer#6677
Fixed data race in poll service on Edge Agent: portainer/portainer#6677
Resolved some race conditions with the edge agent: portainer/portainer#6677
Resolved data race on tunnels for edge agents: portainer/portainer#6677
Resolved data race with activity timer for edge agents: portainer/portainer#6677
Fixed issue with displaying AMT device table for non-activated devices: portainer/portainer#6835
Fixed minor UI issues in Edge devices page view around Action buttons: portainer/portainer#6844
Fixed issue when creating edge job from file returning 404: portainer/portainer#6826
Development
Updated the Go library dependencies: portainer/portainer#6777
Migrated AngularJS components to ReactJS: portainer/portainer#6031
Reorganized the file structure of the agent installation yaml files: portainer/portainer#6776
Removed the integration with Storidge clusters: portainer/portainer#6512
Release 2.12.2
April 4, 2022
Nomad
Introduced Nomad integration
Allows Nomad to be added as an environment in Portainer by using the Edge Agent
Allows Edge Stacks to be deployed on Nomad as Nomad Jobs
Allows Nomad Jobs and Tasks to be listed
Allows Nomad logs and events to be viewed for Tasks
Kubernetes
Fixed issue where changing Portainer to HTTPS crashed Portainer
Fixed issue around deploying in default namespace via manifest using the portainer namespace instead
Fixed bug causing domain names to not displaying correctly under publish application options
Fixed issue with first service naming having a suffix attached.
Improved error message being displayed when deploying a malformed Kubernetes manifest from GitOps
Portainer
Fixed issue with GitOps automatic update
Fixed issues around migration path for CE to BE
Fixed missing operator role when migrating from 1.x
Improved concurrency in edge code to prevent race conditions: portainer/portainer#6677
Edge
Resolved some race conditions with the Edge Agent
Release 2.12.1
March 9, 2022
Portainer
Fixed bug where redeploying a stack causes an error and success message at the same time.
Fixed bug that was preventing ability to edit application with persisted folder on Kubernetes.
Release 2.12.0
March 8, 2022
Breaking changes
When OAuth is enabled, Portainer users can no longer use their Portainer internal password: portainer/portainer#5889
Deploying a manifest without a namespace definition and selecting the Default namespace in Portainer may deploy the application into the portainer namespace in certain circumstances
Kubernetes
Added input validation for kubernetes workload names: portainer/portainer#5363
Fixed issue where the Kube cluster resource stats had a rounding issue: portainer/portainer#6472
Migrated to use the networking.k8s.io/v1 ingress API, available from Kubernetes v1.19: portainer/portainer#6396
Allow Services to be managed for Kubernetes applications, which can be deployed within Portainer or outside of it: portainer/portainer#5941
Restarting Portainer will no longer result in invalid kubeconfig credentials, which would have required the user to download a new kubeconfig file again: portainer/portainer#5940
Provides a single process so that users can gain access to all their environments contexts from within the Portainer UI: portainer/portainer#5945
Improved how a namespace gets selected when using Advanced deployment: portainer/portainer#5557
Added warning that a secret will be created when adding registry access to a namespace: portainer/portainer#5845
Fixed issue where selecting a Helm chart did not scroll to the top: portainer/portainer#6146
Fixed issue when clearing Helm repo in global settings and added text notification in Helm charts page: portainer/portainer#5996
Fixed issue where Helm charts fail to load in ARM cloud environments: portainer/portainer#5937
Fixed issue where the kubectl shell wasn't working when Portainer runs on ARM64: portainer/portainer#5723
Fixed bug so that Kubernetes terminology is used when deploying through Kubernetes: portainer/portainer#6099
Fixed issue where error notice was coming up when deleting an application through kubeshell: portainer/portainer#5939
Fixed issue where Portainer stacks were not being removed when removing a namespace: portainer/portainer#5897
Fixed issue where standard users were unable to access the pod and node stats view: portainer/portainer#5898
Fixed issue where the namespace details page showed an object object error: portainer/portainer#5802
Fixed issue when selecting Cluster Setup in the menu: portainer/portainer#6033
Fixed order of registries to be alphabetical in the select registry dropdown in namespaces: portainer/portainer#6175
Fixed issue with publishing method defaulting to Ingress when changing to Cluster IP: portainer/portainer#6190
Docker
Introduced the ability to pull latest images when redeploying: portainer/portainer#6155
Fixed issue where webhooks for services were accepting invalid tags: portainer/portainer#6493
When updating a Swarm service and enabling Pull latest image, it would change the tag to latest: portainer/portainer#6352
Fixed issue with displaying container template when connected to docker swarm in the app templates page view
Fixed issue where updating the Stack always recreated the containers: portainer/portainer#6306
Added the ability to filter the Swarm services published ports column: portainer/portainer#6161
Added a warning when the same Swarm secret is assigned multiple times to a service: portainer/portainer#2821
Added the option to detach Stacks deployed from Git to make them editable: portainer/portainer#5748
Removed the ability to edit the Portainer container: portainer/portainer#5121
Fixed issue where an error message would not be shown when failing to pull an image: portainer/portainer#6239
Fixed issue where the default user for the container console was incorrectly auto filled: portainer/portainer#6315
Fixed issue where uploading large files to a volume would fail: portainer/portainer#4453
Fixed issue where stacks deployed from App Templates behaved as if they were deployed from Git: portainer/portainer#5748
Fixed issue where stacks with environment variables in the networks section could not be removed: portainer/portainer#5779
Allow the resource settings of a container to be updated without redeploying the container: portainer/portainer#5906
Added support for .bz2 and .xz compression formats when importing Docker images: portainer/portainer#5220
Enhancement of the Docker image import feature to support manually adding tags to the imported image: portainer/portainer#5944
Improved how to change the image when editing a Service by pre-populating the fields in the UI: portainer/portainer#5150
Fixed issue where automatic updates of stacks fail after restarting Portainer: portainer/portainer#5914
Fixed issue where pull and redeploy button was not functioning as expected: portainer/portainer#5948
Fixed UI issue when using a personal access token to deploy from Git: portainer/portainer#5847
Fixed issue where certain docker events showed as Unsupported: portainer/portainer#2717
Fixed issue with stack names when migrating from Swarm to docker standalone: portainer/portainer#6139
Fixed issue where migrating a stack shows up twice: portainer/portainer#5159
Fixed issue where using a webhook with an image registry running on a custom port did not work: portainer/portainer#4526
Fixed issue where downloading container log files added extra carriage returns: portainer/portainer#5312
Fixed issue where copying container log files added trailing commas: portainer/portainer#4318
Fixed issue where the scale labels of the stats graph was showing multiple times: portainer/portainer#5843
Fixed issue where stats were not working on windows containers: portainer/portainer#5826
Fixed UI issue with empty stack dropdown when deploying an application via the form: portainer/portainer#5848
Fixed issue with Custom Template on Docker being created when the file does not exist on a git repo: portainer/portainer#6184
Portainer
Fixed issue where upgrading from CE to BE failed due to missing RBAC roles
Fixed trivy Helm and Portainer vulnerabilities relating to direct dependencies. portainer/portainer#6342
Standard users will no longer be able to remove or export images. Also, Operators, Help Desk, and ready only users will no longer be able to export images.
When changing the user password the user gets redirected to the login page: portainer/portainer#6456
Fixed issue with default helm repo not populating in settings page
Fixed ability for a Standard User to start/stop stacks portainer/portainer#6369
Removed the integration with Storidge clusters: portainer/portainer#6512
Changed the default Microsoft OAuth logout URL: portainer/portainer#6405
Portainer users can no longer use their Portainer internal password when OAuth is enabled: portainer/portainer#5889
Option to encrypt values in Portainer database: portainer/portainer#6412
Added the ability to override the "Force HTTPS only" option: portainer/portainer#6126
Supporting the ability for Portainer to run inside a subpath: portainer/portainer#3901
Updated the defaults for the Git authentication toggles: portainer/portainer#6406
Fixed display issue for environment tags in the Home page view portainer/portainer#6276
Fixed issue where scrollbars would show in confirmation dialogs: portainer/portainer#6257
Fixed issue where the
--sslcertflag was being ignored: portainer/portainer#6021The ability for users to easily interact with the Portainer API through the use of Personal Access Tokens: portainer/portainer#813
Automatically sync Portainer dark/light theme with the browser dark/light theme settings: portainer/portainer#5753
Fixed issue where the CPU and memory were not shown on the Home screen: portainer/portainer#6143
Added confirmation modal when deleting an Environment: portainer/portainer#5952
Fixed issue where removing an environment did not update the tree: portainer/portainer#6127
Fixed issue where the DockerHub anonymous registry was being used instead of one with an account: portainer/portainer#5896
Fixed issue where environment displayed as offline after starting Portainer: portainer/portainer#5732
Fixed issue where the custom logo settings showed incorrectly in the UI: portainer/portainer#4437
Fixed issue where uploading a backup file could not select a file on Mac: portainer/portainer#5357
Fixed issue where apple touch Portainer icon had non standard image dimensions portainer/portainer#5887
Fixed issue with widget header not displaying correctly for application settings: portainer/portainer#6191
Edge
Introduce the ability to pass env variables from a local system on edge devices to the edge stack
Fixed minor UI behavior with toggles in Edge Compute settings view
Fixed issue with displaying AMT device table for non-activated devices
Fixed minor UI issues in Edge devices page view around Action buttons
Introduced the ability to control and interact with OpenAMT: devices portainer/portainer#6444
Introduce the ability to add edge devices through FDO: portainer/portainer#6445
Added behavior for Edge agents to reject connections if not connected to within 72hrs: portainer/portainer#6420
Optimize disk performance for Edge Agent portainer/portainer#6455
Fixed issues with the Edge Agent reverse tunnel timing out: portainer/portainer#5725
Fixed issue where the URL of an Environment would change to localhost: portainer/portainer#5803
Registry
Fixed issue with duplicating registries during upgrade process. portainer/portainer#6062
Bring users the ability to use Amazon Elastic Container Registry: portainer/portainer#1533
ACI
Fixed issue where ACI stopped working when the number of exposed ports and container ports were different: portainer/portainer#5335
Development
Upgraded golang version to 1.17 portainer/portainer#6342
Updated the Swagger documentation: portainer/portainer#6019
Deprecated EndpointProvider in the code and moving away from its use: portainer/portainer#5524
Introduced ReactJS support in the frontend: portainer/portainer#6031
Updated docker and kubernetes library dependencies: portainer/portainer#6137
Updated the Swagger documentation: portainer/portainer#5338
Added logging to migrations: portainer/portainer#6183
Release 2.10.0
November 15, 2021
Known issues
Both Portainer and the Agent need to be upgraded at the same time: portainer/agent#187
Restarting Portainer will invalidate all downloaded Kubeconfig files: portainer/portainer#5574
Access can not be assigned to registries when defining multiple registries with the same URL
Browser cache causes UI abnormalities after upgrading from a prior version. Force a cache refresh (Ctrl-Shift-R) to remedy
Breaking changes
Default HTTPS support has been added: portainer/portainer#5462
As a consequence the
--sslflag has been deprecated. If you are using the--sslcertand--sslkeyflags, then after the upgrade port9000will servehttpand port9443will servehttpswith the provided certificate. To retain the old behavior consider using the port mapping-p 9000:9443instead.The
/stacksAPI has renamed fromComposeFilePathInRepositorytoComposeFile, and the non-mandatory fieldsAdditionalFilesandAutoUpdatewere added: portainer/portainer#5461
Security
It is advisable to upgrade to this version, since some security improvements have been made with regards to embedding images: portainer/portainer#5805
Kubernetes
Introduced the ability to keep the deployments of stacks and applications in sync with the definitions in Git
Introduced the ability to open a shell in Portainer to use kubectl: portainer/portainer#5574
Introduced the ability to download a kubeconfig file and use Portainer as a proxy: portainer/portainer#5574
Introduced the ability to install Helm charts: portainer/portainer#5479
Introduced the ability to use any public Helm repository: portainer/portainer#5480
Introduced the ability to automatically sync a manifest from a git repository: portainer/portainer#5494
Introduced a visual indicator for applications to see if they're fully replicated: portainer/portainer#5718
Introduced the ability to filter Kubernetes applications by type: portainer/portainer#5726
Introduced the ability to remove all workloads of a manifest based deployment: portainer/portainer#5715
Added the ability to display Helm chart deployments in the applications list: portainer/portainer#5478
Added the ability to update and redeploy an application created from a git repository: portainer/portainer#5486
Added support for deploying images stored on private registries for Docker and Kubernetes: portainer/portainer#4393
Introduced the ability to mark and unmark namespaces as system: portainer/portainer#4389
Added functionality to define a manifest as custom template: portainer/portainer#5489
Added the ability to deploy a manifest from a URL: portainer/portainer#5556
Added memory and CPU usage indicators to the namespace and cluster details: portainer/portainer#5460
Added status information to list of namespaces: portainer/portainer#5555
Added Pod IP address information to the application details: portainer/portainer#5713
Added input validation when adding an ingress: portainer/portainer#5716
Improved the validation of resource allocation available on any of the nodes when adding an application: portainer/portainer#5530
Improved UI so that accessing the advanced deployment functionality is similar to accessing the form: portainer/portainer#5558
Renamed configuration and the networking area in the UI: portainer/portainer#5804
Improved UI for the metrics API toggle in the cluster setup: portainer/portainer#5508
Removed validation of any ingresses that are already in use in other namespaces: portainer/portainer#5526
Introduced the ability to use Edge Stacks on Kubernetes via edge agents: portainer/portainer#5472
Added warning that a secret will be created when adding registry access to a namespace: portainer/portainer#5845
Fixed issue where the metrics server API was being queried when disabled: portainer/portainer#5523
Fixed issue where the node events would not be showing: portainer/portainer#5474
Fixed issue where applications deployed via Helm in Portainer were marked as external: portainer/portainer#5727
Fixed issue where the kubectl shell would close when performing other actions: portainer/portainer#5721
Fixed issue where the kubectl shell wasn't working when Portainer runs on ARM64: portainer/portainer#5723
Fixed issue where the cluster status was incorrectly shown: portainer/portainer#5293
Fixed issue where the application details incorrectly showed how it was deployed : portainer/portainer#5728
Fixed issue where standard users were unable to access the pod and node stats view: portainer/portainer#5898
Fixed issue where editing an application could not expose it via Ingress: portainer/portainer#5915
Fixed issue when clearing Helm repo in global settings and added text notification in Helm charts page: portainer/portainer#5996
Fixed issue where Helm charts fail to load in ARM cloud environments: portainer/portainer#5937
Fixed issue where the namespace details page showed an object object error: portainer/portainer#5802
Fixed issue where Environment variables with empty values are not showing when editing a Kubernetes application
Fixed issue where standard users could not see the quota set in the namespace details page
Docker
Introduced the ability to keep the deployments of stacks and applications in sync with the definitions in Git
Introduced the ability to automatically sync a stack from a git repository: portainer/portainer#5461
Introduced the ability to use stacks on docker standalone on ARM64: portainer/portainer#4776
Introduced the ability to use Edge Stacks on ARM64: portainer/portainer#4776
Added support for deploying images stored on private registries for Docker and Kubernetes: portainer/portainer#4393
Added the ability to edit a stopped stack: portainer/portainer#4944
Added the ability to edit environment variables for stacks on docker standalone: portainer/portainer#3441
Docker container stats graphs now support cgroups v2: portainer/portainer#4818
Improved how to change the image when editing a Service by pre-populating the fields in the UI: portainer/portainer#5150
Fixed issue where all images regardless of their tag would be pulled: portainer/portainer#4870
Fixed issue where volumes would lose their access control settings: portainer/portainer#4851
Fixed issue where standard users were unable to browse volumes created by stacks: portainer/portainer#4929
Fixed issue where ports would show for IPv4 as well as IPv6: portainer/portainer#5038
Fixed issue where
container_namevalidation would not take stopped containers into account: portainer/portainer#5522Fixed issue where editing a stack would warn about the container name being in use: portainer/portainer#5130
Fixed issue where navigating away incorrectly showed a changes not saved popup: portainer/portainer#5512
Fixed issue where the stack name would contain spaces or upper case characters: portainer/portainer#5153
Fixed issue where the UI would incorrectly report that an image was successfully pulled: portainer/portainer#3123
Fixed issue where the Stack editor would not always load its content: portainer/portainer#5102
Fixed issue where environment variables were incorrectly showing when the value contained an equals sign: portainer/portainer#5395
Fixed issue where the browser console would show errors in the container and image details view: portainer/portainer#5511
Fixed issue where dashes and underscores in stack names were being removed: portainer/portainer#5759
Fixed UI issue where adding a Service with a mix of TCP and UDP was being prevented: portainer/portainer#5521
Fixed issue where images could be used in custom templates notes: portainer/portainer#5805
Fixed issue where automatic updates would keep polling when the user that created the stack is removed: portainer/portainer#5719
Fixed issue where automatic updates of stacks fail after restarting Portainer: portainer/portainer#5914
Fixed issue where stack names were not being validated when using custom templates: portainer/portainer#5841
Fixed issue where stats were not working on windows containers: portainer/portainer#5826
Fixed issue where the scale labels of the stats graph was showing multiple times: portainer/portainer#5843
Fixed UI issue when using a personal access token to deploy from Git: portainer/portainer#5847
Fixed UI issue with empty stack dropdown when deploying an application via the form: portainer/portainer#5848
Fixed issue where migrating a stack shows up twice: portainer/portainer#5159
Fixed issue where switching from docker standalone to swarm would show duplicate stacks
Portainer
Added automatic updates of stacks and applications to the activity logs
Introduced the ability to define a time based change window in which automatic updates of stacks and applications can take place
Introduced the ability to automatically set OAuth users as a Portainer Admin
Introduced the ability to automatically set LDAP users as a Portainer Admin
Added a Portainer and Agent Juju Charm to the Charmhub marketplace
Introduced dark theme and high contrast mode: portainer/portainer#5493
Introduced the ability to access Portainer via HTTPS: portainer/portainer#5462
Renamed Endpoints to Environments in the UI: portainer/portainer#5492
Improved the menu UI to indicate the existence of sub items: portainer/portainer#5528
Improved UI how to add environments to Portainer when doing a new installation: portainer/portainer#5477
Added functionality to copy error messages from toast notifications: portainer/portainer#5720
Improved how a Portainer upgrade can be rolled back: portainer/portainer#5482
Improved UI where the table background wasn't working very well in dark mode: portainer/portainer#5714
Fixed issue where Git content could not be cloned when Portainer is behind a proxy: portainer/portainer#3286
Fixed issue where the SSL certificates were not included in the Portainer backup: portainer/portainer#5497
Fixed issue where editing an endpoint results in errors: portainer/portainer#5318
Fixed upgrade issue where disconnected endpoints caused the upgrade to fail: portainer/portainer#5764
Fixed issue with the layout of the add Environment Wizard: portainer/portainer#5801
Fixed issue where the custom logo was not used in all places: portainer/portainer#5447
Fixed issue where the DockerHub anonymous registry was being used instead of one with an account: portainer/portainer#5896
Fixed issue where upgrade fails: portainer/portainer#5969
Fixed issue where the Quick Setup wizard wasn't showing correctly when using the dark theme: portainer/portainer#5842
Fixed issue where uploading a backup file could not select a file on Mac: portainer/portainer#5357
Fixed issue where the URL of an Environment would change to localhost: portainer/portainer#5803
Fixed issue where RBAC settings would be retained after removing an Environment from Portainer
Fixed issue where certificates would end up in the activity logs
Fixed issue when exporting activity logs as CSV without a data range set
Added a build for Windows Server 20H2: portainer/portainer#4971
Added a build for Windows Server 21H2: portainer/portainer#5763
Registries
Improved UI to provide information for correctly using a ProGet registry: portainer/portainer#5510
Fixed UI issue where the registry list incorrectly showed that there's no registry available: portainer/portainer#5731
ACI
Fixed issue where ACI stopped working when the number of exposed ports and container ports were different: portainer/portainer#5335
Fixed issue where ACI would show errors when a resource group had multiple containers: portainer/portainer#5335
Edge
Introduced the ability to use Edge Stacks on Kubernetes via Edge Agents: portainer/portainer#5472
Introduced the ability to re-associate an edge endpoint to a new Edge Agent: portainer/portainer#5473
Improved the REST API access of the Edge Agent in Docker standalone: portainer/agent#187
Fixed issue where the heartbeat indicator was not reliable: portainer/portainer#5569
Fixed issues with the Edge Agent reverse tunnel timing out: portainer/portainer#5725
Development
Added the ability to query the endpoints by type through the Portainer API: portainer/portainer#4786
Integrated with Logrus for the internal logging mechanism: portainer/portainer#5509
Updated the Golang version to 1.16: portainer/portainer#5463
Improved the Portainer API documentation for adding users: portainer/portainer#5136
Fixed inconsistencies in the Portainer API documentation: portainer/portainer#5527
Updated the Swagger documentation: portainer/portainer#5338
Release 2.7.0
July 29, 2021
Docker
Added the ability to update and redeploy a stack created from a git repository
Added I/O usage to the container statistics
Enhanced environment variables UI/UX for Docker
sysctl options are available when creating a container
Show the number of Swarm nodes for the endpoint on the Home page
Show how many Docker pulls are remaining for DockerHub to avoid exceeding the quota
Introduced support for compose version 3.8 on docker swarm environments
Display the container IP address(es) in the list of containers
Improved layout of the toggles on the create container setting tab
For Docker Standalone, prevent a stack from being created if the Compose has a container_name that already exists
Creating a container from a DockerHub image will show a search button in the UI
Fixed issue where deploying a stack from Git did not work for Azure DevOps
Fixed issue where stacks with a status of 0 are hidden in the UI
Fixed issue where pulling a large image is failing when using an Agent due to a timeout
Fixed issue where listing the services with Auto-refresh on collapses all services after refresh
Fixed issue where dash characters got removed from the stack name on Docker Standalone
Fixed issue where access control management via labels was not fault tolerant
Fixed issue where the label showing the default location of secrets was incorrect for Windows
Fixed typo in the error message "Unable to start stack"
Registries
Added ProGet as a specific registry type when adding a registry
Fixed issue where pushing to a quay.io registry failed due to not including the username in the quay registry URL
Templates
Fixed issue where creating a custom template from uploading a compose file failed
Fixed issue where switching custom template in the template tab of stack create view doesn't update editor
Fixed issue with an invalid template documentation URL in the Settings
Volumes
Added validation to prevent adding empty mount to an existing service
Fixed issue with the MountType and nfsvers when creating NFS4 volumes
Fixed issue where editing the properties of volumes on a service did not enable the apply button
Kubernetes
Introduced the ability to deploy a manifest from a git repository when using advanced deployment
The advanced deployment feature has been made available to standard users
Introduced a summary of Kubernetes actions when deploying a Kubernetes resource
Added the ability to display realtime node metrics in Kubernetes
Added functionality to allow multiple ingress networks per kubernetes namespace, with a differing config per ingress
Added the ability to redeploy an externally deployed application
Added the ability to expand the YAML tab of a Kubernetes application to full size
Added the ability to cordon/uncordon/drain nodes
Added a warning in the placement tab when an application can't be scheduled on the cluster
Renamed Resource Pools to Namespaces in the UI
Improved UI for the placement policies when creating an application
Improved how application image names are shown
Form validation has been added for Configuration keys
Environment variable are sorted alphabetically to improve the readability
Display the ImagePull policy in the details of an application
Default to the kube-system namespace in the advanced deployment view on ARM
Fixed minor UI inconsistency when creating an application with an ingress
Fixed issue with the UI layout when creating an application with ingress
Fixed issue where updating the Kubernetes endpoint URL did not get persisted
Fixed issue where the endpoint url is not updated when updating a kubernetes local endpoint
Fixed issue where renaming the endpoint of a kubernetes agent breaks the endpoint
Fixed issue where environment variables with empty values are not showing when editing a kubernetes application
Fixed issue where environment variable validation when creating an application was too restrictive
Fixed issue where creating an application with two different ingresses incorrectly populates the hostname UI fields
Fixed issue where an application with persisted data can't update, after the storage option is disabled in the cluster settings
Fixed issue where adding an ingress route is not prevented when editing an application with existing ingress route and ingress is disabled
Fixed issue where adding an application does not allow Global to be set
ACI
Fixed issue where ACI stops working after persistence or networking gets added
Edge
Added the ability to deploy Edge stacks on Docker standalone Edge endpoints
Show the status of the edge agent check-in on the home page dashboard
Hide the webhook UI in the service creation view of an edge endpoint, since it's not applicable
Fixed issue where accessing a down Kubernetes Edge endpoint should redirect the user to the home view
Portainer
Added the ability to sync Portainer teams with group memberships provided via OAuth
Added SSO support for OAuth and do not enforce a login prompt. Use
<portainer_url>/#!/internal-authto login with internal admin.Added the ability to manage orphaned stacks when Portainer has the compose file
Added the option to specify the local socket location when adding a docker endpoint
Search filters are retained within the browser session
Properly expose backend error when using image management features
Prevent web editor related views from being accidentally closed
Improved descriptions for Portainer initialization errors
Disable sysctl settings for non-administrators incorrectly defaults to being on
Fixed issue where the File select windows gets shown when pressing enter in text fields
Fixed issue where restoring Portainer from a backup file fails in certain circumstances related to the activity logs
Fixed issue where a custom snapshot interval cannot be changed
Fixed issue with incorrect Windows agent deployment command in the agent endpoint creation tab
Podman
Introduced initial experimental support for Podman. Known limitations are listed in https://github.com/portainer/portainer/issues/5188
Development
Introduce buildx to support Windows 1903+ Base Images
Added the ability to debug through VSCode
Added check for missing angularJS inject annotation
Removed grunt-karma ang grunt-html2js dependencies
Fixed issue where webpack complains about charset source maps
Fixed issue where babel complains about missing core-js dependency
Known Issues
Logging into Portainer as a Standard User fails to load home page when using 'microk8s v1.21.3-3+6343a564e351b0'
Host Management features do not work on Windows Hosts #4450
Host Browser function does not work for Non-Admin users.
Release 2.4.0
May 4, 2021
Kubernetes
Pods without workloads are now displayed as applications
Improved UI/UX of configurations for creation / edition
Introduced request of confirmation upon volume removal
Introduced the advanced deployment panel to each resource list view
Updated validation to prevent a user from exposing an application over an external load balancer with mixed protocols
Introduced the ability to display the access policy associated to the storage of a volume
Clarified advanced deployment feature
Clarified sensitive configuration creation
Clarified ingress controller configuration in the cluster setup view
Renamed the create entry from file button when creating a configuration
Improved validation warnings in the application creation / edition views
Removed extra whitespace in stacks and storage datatables
Fixed issue with access management feature on resource pools
Fixed issue with ability to retrieve configs when a config is a binary file
Fixed issue with advanced deployment feature on agent and Edge agent endpoints
Fixed an issue that would mark a sensitive configuration as external without owner after an update
Fixed issue with access to configuration details view for a configuration containing binary data
Fixed labels to display system labels first in the node details view
Fixed refresh issue on the view with the YAML panel selected
Fixed invalid display issue when accessing the load balancer panel from the application panel
Fixed issue when accessing the cluster setup incorrectly expanding the Endpoint sidebar
Fixed issue with exposed configuration keys over filesystem inside an application not being applied
Fixed issue when Adding a key to existing used configuration that would throw an error when editing an application using that configuration
Fixed an issue with the form validation in the configuration creation view
Fixed issue with resource pool “created” attribute not showing actual creation time
Fixed issue with ability to apply a note to a Pod type application
Fixed issue with creating Kubernetes resources with a username longer than 63 characters
Fixed issue with special characters in usernames when creating Kubernetes resources
Fixed issue with ability to retrieve config map error when trying to manager newly create resource pool
Activity Logging
Introduced user authentication activity logging
Introduced user activity logging
RBAC
Introduced new RBAC “Operator” Role
Fixed issue with user in 2 team with mix of helpdesk & endpoint admin resulting in the user having permissions of endpoint admin
Registries
Fixed issue causing Portainer to forget the password associated to a registry after an update
Fixed issue preventing the registry manager feature to work properly with a ProGet registry
Improved description for advanced mode usage with private registries
Swarm
Introduced validation to prevent adding a mount with nothing filled to and exiting service
Fixed issue in service creation, switching to bind mode from volume mode with a volume selected fills the host field with {object Object}
Stacks
Introduced support for creating stacks with the same name across different endpoints
Introduced extra stack information: creation, last update time and user who created the stack
Minor UX change for the start/stop stack action
Fixed issue with ability to use private registries with Standalone stacks
Fixed issue showing editor tab on limited stacks when it should not
Fixed issue when editing a stack, hitting backspace or delete keys with contents of web editor selected hides the entire editor UI element
Fixed issue with stack create via API with a regular user account are incorrectly marked as administrator only
Fixed issue of error being displayed when creating a stack on docker standalone despite the stack is created
Fixed issue of stacks being created via API incorrectly marked private with no owner
Docker
Introduced support for Compose > v2 when deploying a stack on a Docker standalone environment
Introduced the ability to download log file from Docker container/service views
Display labels in Image Details
Clarify the description of the restrict external access to the network property when creating a network
User Management
Automatically lowercase username when authenticating users
Update the authentication UX to put an emphasis on OAuth when OAuth is enabled
Portainer
Introduced the ability to backup / restore Portainer
Fixed issue of version not being shown correctly after update
Support starting Portainer without having to specify any endpoint
ACI
Introduced RBAC to ACI
Introduced UAC to ACI
Minor Changes
Removed the new version check
Changed the license server errors to be a silent fail for offline environments
Added JS source map for Portainer UI
Release 2.0.1
February 22, 2021
Fixes
Fix an issue preventing a user from creating Kubernetes resources if they have a
@character in their username Users with a@character in their username were not able to create the following Kubernetes resources:Resource pool
Application
Configuration
Fix platform issues with the Docker image for Portainer Business The Docker image can now be successfully deployed on the following platforms:
Linux ARM64
Linux ARM
Minor update to the license server mechanism The license server mechanism has been updated.
Release 2.0.0
December 3, 2020
Initial release of Portainer Business
Last updated
Was this helpful?