Releases: caddyserver/caddy
2.0 beta 1
mholt
Matt Holt
The first beta/development release is here! v2.0.0-beta1 is functional enough to serve most sites and may be used in production after you test it and find that it meets your needs. Caddy 2 is not backwards-compatible with Caddy 1.
Caddy 2 beta releases are not feature-complete or free of bugs, but we hope to release beta version regularly until the release candidates later this year. Beta releases may also have breaking changes, so please be aware of the changes as we continue developing Caddy 2.
To learn how to get started, see the README on the v2 branch: https://github.com/caddyserver/caddy/tree/v2
This is a community effort, so please report bugs, join the discussion, and submit pull requests to be a part of the team!
Support:
- Community forum to ask questions, get community support, and lend your help
- Issue tracker for bug reports and dev discussion
v2 Resources:
1.0.3
1.0.2
This release uses Go 1.12.8 to patch the HTTP/2 implementation against the security vulnerabilities reported today.
One minor breaking change in Go 1.12.8 might affect some configurations that use service name in the port of their Caddyfiles, like so: example.com:https - we've smoothed this over so the behavior of Caddy is the same but if you encounter any odd inconsistencies, switch to using numeric ports or proper URL scheme: either https://example.com (recommended) or example.com:443.
1.0.1
Caddy 1.0.1 introduces a number of fixes and improvements, and deprecates the max_certs subdirective of tls (using it still enables on-demand TLS but you should use ask for proper protection).
KNOWN ISSUE: Building Caddy with plugins is difficult due to the repository move. Our build server has been patched to make it work, but plugin authors will need to update import paths. (Sorry! Unexpected.) I've done my best to file issues with all registered plugins.
1.0.0
We did it! Caddy 1.0 is here. Future changes on the 1.0 tree will focus on stability and bug fixes.
Go modules are required to build Caddy from source. Go 1.13 will use modules by default.
Notably, binaries are no longer licensed with a separate EULA. Commercial use of our download page, however, still requires a subscription (all customers have been grandfathered in -- in effect, nothing is really different except we got rid of the annoying legal technicality).
CHANGES:
- Minor internal/linting improvements
- EULA no longer applies
- Backwards compatibility goal
1.0.0-beta2
mholt
Matt Holt
We continue to improve Caddy's compatibility with Go modules. Beta 2 improves Caddy's build process. Separate build scripts are no longer required, and Caddy can be built with a custom selection of plugins without any modifications to Caddy's source code. See the README/wiki for instructions.
Please report any bugs you find, especially if there are regressions due to updates for compatibility (a significant refactoring of CertMagic was recently folded in).
- Continue migration to Go modules
- Eliminate need for special build script
- Internal changes for better compatibility
1.0.0-beta1
mholt
Matt Holt
During this beta period, the build server will be undergoing maintenance. If you encounter issues downloading, please use these GitHub releases to get Caddy builds (or build from source) in the meantime.
Full change list:
- Major internal changes (Go modules & remove vendor)
- Rename -env flag to -envfile
- New -env flag to print the environment
- New 'dyndns' directive
- proxy: Manipulate headers using regular expressions
- A few bug fixes
0.11.5
Caddy 0.11.5 is built with Go 1.12 and brings TLS 1.3 to all worthy TLS connections by default. We've also re-allowed HEAD requests on static files and organized the startup output a little better.
(If you need to enable TLS 1.0 or 1.1 -- please don't -- you now have to specify TLS 1.0 or TLS 1.1 ciphers, as those ciphers have been removed from the default cipher suite listing.)
Full change log:
- TLS 1.3
- Built with Go 1.12
- More organized output at startup
- internal: Paths are now hidden from other middlewares
- staticfiles: Allow HEAD method
- tls: TLS 1.3 default max version (1.2 still default min)
- tls: Better handling of empty ACME email addresses
- tls: Removed CBC ciphers from defaults
- Other minor improvements and bug fixes
0.11.4
This release adds features to specify trusted CA certificates in the proxy middleware, allows disabling log rotation, and fixes numerous bugs with the recent extraction of TLS logic into CertMagic, including self-signed certificates, IP-only certificates, and email address prompts related to creating an ACME CA account. Also added a new third-party plugin directive, extauth.
Most notably, this version supports the ACME TLS-ALPN challenge by default, which replaces the TLS-SNI challenge. Caddy now supports clustering plugins, allowing it to share TLS assets in a fleet configuration and/or behind load balancers using CertMagic's storage implementations. This is a feature that is enterprise-only in competing software distributions, but is free in Caddy!
This release in particular fixes a bug related to the storage paths of certificates. If you have any files in ~/.local/share/certmagic that were not there before, consider moving them to ~/.caddy (or whatever your $CADDYPATH is).
v0.11.3 is also built on Go 1.11.5 which includes security fixes.
It is recommended that all users upgrade to this version.
Full change list for v0.11.2-v0.11.4::
0.11.4 (February 15, 2019)
- New -json-to-caddyfile and -caddyfile-to-json flags
- Fix leaking logging goroutine on SIGUSR1
- basicauth: Error is logged when authentication fails
- proxy: Fix bug by re-adding pre-existing trailing slashes
- tls: Fix bug related to certificate storage path
0.11.3 (February 5, 2019)
- New {server_port} placeholder
- New third-party plugin: extauth
- New flags -log-roll-mb and -log-roll-compress
- basicauth: Bypass for OPTIONS method
- errors/log: Ability to disable log rolling
- proxy: New subdirective 'ca_certificates'
- staticfiles: Require GET method to serve static files
- tls: Fixes to self-signed certs, IP certs, email prompts, & more
- SOLVED REGRESSIONS: #2356, #2414
- A number of other important fixes and improvements
0.11.2 (January 16, 2019)
- Extracted automagic TLS code into CertMagic library
- Add support for new clustering plugins
- New placeholder: '{when_iso_local}'
- New third-party plugins: s3browser, filebrowser
- Removed third-party plugins: jekyll, hugo
- bind: Support multiple interface values
- import: Can now be used within directive blocks
- proxy: Status 499 when clients close connection early
- templates: No longer emit ETag and Last-Modified headers
- tls: Support for the ACME TLS-ALPN-01 challenge
- KNOWN/UNRESOLVED REGRESSIONS: #2356, #2414
- Several bug fixes and minor improvements