• Welcome to the Chevereto User Community!

    Here, users from all over the world come together to learn, share, and collaborate on everything related to Chevereto. It's a place to exchange ideas, ask questions, and help improve the software.

    Please keep in mind:

    • This community is user-driven. Always be polite and respectful to others.
    • Support development by purchasing a Chevereto license, which also gives you priority support.
    • Go further by joining the Community Subscription for even faster response times and to help sustain this space

Chevereto v4.5.2 announcement

Status
Not open for further replies.
Rodolfo

Rodolfo

πŸ‘‘ Chevereto Godlike
Chevereto Staff
Administrator
Hello there,

I'm confirming the ongoing development of Chevereto v4.5.2 which aims to address the edge cases and needs we have encountered by running Chevereto in multi-tenant setups.
 
Added support for X-Forwarded-Host and X-Router-Secret headers

This enables proper hostname detection when running behind a reverse proxy, and lets you restrict direct access to the app so only traffic coming through your proxy is accepted.
 
Added CHEVERETO_ROUTER_SECRET, CHEVERETO_HEADER_FORWARDED_HOST, and CHEVERETO_HEADER_ROUTER_SECRET environment variables

These variables enable to configure hostname proxy support.
 
Added CHEVERETO_INTERNAL_HOSTNAME environment variable

This enables to configure the internal hostname, used to exclude the tenants-internal api. It is also used to determine if the host is localhost and if also considered when determining the root hostname. All this is for tenants context.
 
Added CHEVERETO_SERVICE_NAME environment variable

This enables to pass the backend service name to the Traefik config, it defaults to php as the default container service name.
 
Added CHEVERETO_PROXY_ENTRYPOINT environment variable

This enables to pass web or websecure depending on your Traefik setup.
 
Added CHEVERETO_PROXY_IP_ALLOW_LIST environment variable

This enables to pass a list of allowed IP Address and ranges (CIDR notation) for configuring your Traefik ingress.
 
Renamed CHEVERETO_TENANTS_API_ALLOW_LIST to CHEVERETO_TENANTS_API_IP_ALLOW_LIST

Just because.
 
Fixed JSON YAML syntax error in Traefik configuration

Fixed a bug that was preventing Traefik to parse the configuration, now the system outputs in yaml-json compatible format.
 
Added CHEVERETO_SERVICE_PORT environment variable

This enables to customize the service port if for any reason you want to run anything else 8080, is currently used only for generating Traefik config.
 
Added missing root namespace configuration in Traefik configuration

Traefik config now includes the root hostname router at * namespace, you don't longer need to manually configure this.
 
Added support for Traefik Cloudflare middleware

Via CHEVERETO_PROXY_IP_ALLOW_LIST you can now pass the special keyword cloudflare and the Traefik config will automatically generate the middleware for Cloudflare IP ranges.
 
Improved system notices

The system now detects when you need to configure the email addresses, also when the email provider is not configured. At "Site storage" it now shows the same icon as shown on the Dashboard menu entry.


1776785706744.png
 
Setting email_mode is now optional

By default the system will now install with no selection for email mode (previously it used phpmail and smtp depending on your context). There are some use cases where email won't be even needed so we made this optional (but shows an admin warning).
 
Status
Not open for further replies.
Back
Top