|
| 1 | +--- |
| 2 | +layout: post |
| 3 | +title: "Kroxylicious release 0.14.0" |
| 4 | +date: 2025-08-08 00:00:00 +1200 |
| 5 | +author: "Rob Young" |
| 6 | +author_url: "https://github.com/robobario" |
| 7 | +# noinspection YAMLSchemaValidation |
| 8 | +categories: blog kroxylicious-proxy kroxylicious-operator releases |
| 9 | +tags: [ "releases", "kroxylicious-proxy", "kroxylicious-operator" ] |
| 10 | +--- |
| 11 | + |
| 12 | +The Kroxylicious project is very pleased to announce the release |
| 13 | +of [Kroxylicious 0.14.0](https://github.com/kroxylicious/kroxylicious/releases/tag/v0.14.0). See |
| 14 | +the [Changelog](https://github.com/kroxylicious/kroxylicious/blob/main/CHANGELOG.md#0140) for a list of changes and |
| 15 | +summary of Deprecations, Changes and Removals. |
| 16 | + |
| 17 | +### Key Highlights |
| 18 | + |
| 19 | +* **New Authentication APIs for Plugin Authors:** |
| 20 | + We are laying the groundwork for powerful client-identity-oriented Plugins. Our goal is to enable Plugins to access |
| 21 | + and influence client identity. This opens the door to advanced features like per-user authorization, message |
| 22 | + redaction, and much more! |
| 23 | + |
| 24 | + This release takes the first major steps by adding APIs that allow Filters to: |
| 25 | + - [Access client-provided TLS certificates](https://github.com/kroxylicious/design/blob/main/proposals/005-filter-api-to-expose-client-and-server-tls-info.md). |
| 26 | + - [Report and access SASL authentication details](https://github.com/kroxylicious/design/blob/main/proposals/006-filter-api-to-expose-client-sasl-info.md) |
| 27 | + across the Filter chain. |
| 28 | + |
| 29 | +* **New Back-Pressure Metrics:** |
| 30 | + You can now pinpoint performance bottlenecks with new duration metrics that measure exactly how long the proxy is |
| 31 | + applying back-pressure to client connections. |
| 32 | + |
| 33 | +* **Large Message Encryption Fix:** |
| 34 | + See you later, alligator! We've squashed a critical bug in the Record Encryption Filter where encrypting events over |
| 35 | + 1MB would fail ([#2504](https://github.com/kroxylicious/kroxylicious/issues/2504)). |
| 36 | + |
| 37 | +* **API Versions Negotiation Fix:** |
| 38 | + We resolved a bug that prevented Redpanda Connect (using the [franz-go](https://github.com/twmb/franz-go) client) |
| 39 | + from connecting when Kroxylicious was proxying older Kafka broker versions ([#2450](https://github.com/kroxylicious/kroxylicious/issues/2450)). |
| 40 | + |
| 41 | +### Feedback |
| 42 | + |
| 43 | +Please let us know, |
| 44 | +through [Slack](https://kroxylicious.slack.com), [GitHub](https://github.com/kroxylicious/kroxylicious/issues) or |
| 45 | +even [bsky](https://bsky.app/profile/kroxylicious.io)), if you find the project interesting or helpful and especially if |
| 46 | +you have deployed it in production. |
0 commit comments