v3.7.6
📦 traefikView on GitHub →
✨ 2 features🐛 15 fixes🔧 14 symbols
Summary
This release focuses heavily on bug fixes across Kubernetes integration, various middlewares (especially CORS and Gateway API related), and dependency bumps for security and stability. It also introduces configuration options for request headers.
Migration Steps
- Review the migration guide at https://doc.traefik.io/traefik/v3.7/migrate/v3/#v376 for potential necessary changes.
✨ New Features
- Add an option to remove request headers with underscores in the server configuration.
- Introduce configurable max request header size in the server configuration.
🐛 Bug Fixes
- Fixed ingress-nginx ssl passthrough status updates.
- Fixed force-ssl-redirect routing 418 when TLS is terminated upstream in ingress-nginx.
- Configured retry according to buffering configuration for ingress-nginx.
- Fixed x-forwarded-port in forward-auth middleware.
- Fixed Gateway API redirect missing statuses.
- Fixed Host header not being modified by RequestHeaderModifier middleware when using Gateway API.
- Fixed request scheme derivation when Gateway API RequestRedirect omits scheme.
- Fixed CORS Max-Age being set to 0 by default.
- Fixed CORS wildcard when allow-credentials is true.
- Fixed nondeterministic TLS certificate selection on shared SAN.
- Fixed connection upgrades when backend server is using h2c scheme for websocket.
- Detected EndpointSlice condition changes in Kubernetes provider.
- Indexed Kubernetes EndpointSlice by service name.
- Sorted Kubernetes EndpointSlices to keep backend IPs consistent across rebuilds.
- Avoided collisions for Gateway API services names.