New features:

Remote user enrollment process

The main defguard concept is that the core (with the database) should be deployed securely and not available from the public Internet (accessible only from the internal network or VPN). This approach raised a significant problem with onboarding new remote users: how can users access defguard, set up password, and add their devices to access VPN or change their password if they can't access defguard?

We introduced a public proxy that now enables a secure enrollment process, during which the user can: double-check their data, setup their password, and add their initial device to access VPN as a nice wizard!

In the future we plan to add more functionalities to the public proxy - like password reset for users.

User onboarding after enrollment

Now you can easily share with new users any relevant company information, links to company systems, security guidelines, etc. In the enrollment module, you can write custom messages using markdown that will be shown on the last step of the enrollment process and sent to the user via email:

Email/SMTP support

In Setup -> SMTP tab you can setup and test your SMTP for sending email (for enrollment and onboarding).
SMTP setup is required in order for enrollment & onboarding to work.

Send debug/support information

Now you can go to Settings -> Support and download (or send via email automatically if you have setup SMTP) support data & logs if you need our help/assistance!
Or you can use them when submitting a bug.

UI Library

Our beautiful React UI is now a collection of React components, that can be used in other projects! Get it at: https://github.com/defguard/ui (now used in Core & Proxy - soon desktop clients).

Native FreeBSD Wireguard Kernel support

Our gateway now supports native kernel Wireguard implementation - and we released a FreeBSD package.

OPNSense Plugin

On the gateway release page you will now find OPNSense Plugin package (named: defguard-gateway_0.5.2_x86_64-unknown-opnsense.txz)

Other Changes

feat: support forward auth for reverse proxies by @wojcik91 in #309
Do not trigger builds on documentation. by @teon in #268
Rewrite select macro with conditional by @j-chmielewski in #269
Fix docker build by @j-chmielewski in #270
fix: username, first & last name validation by @j-chmielewski in #272
refactor: switch templating engine from handlebars to tera by @j-chmielewski in #275
feat: handle SMTP errors on SMTP settings page by @j-chmielewski in #274
feat: send enrollment success notification to admin by @wojcik91 in #297
Added test for adding user to admin group by @kchudy in #298
feat: download debugging/support information and logs or send them via email by @j-chmielewski in #277
Fix: Mail templates styling by @dzania in #303
feat: defguard-ui by @filipslezaklab in #304
284 e2e test change user password by @kchudy in #302
fix: overview device card connection time refresh by @filipslezaklab in #267
fix: select by @filipslezaklab in #311
style: add user modal by @filipslezaklab in #313
fix: missing enrollment settings field by @filipslezaklab in #314
279 e2e test enrollment process by @dzania in #312
Fix: Hide sensitive data in support information by @dzania in #315

New Contributors

@kchudy made their first contribution in #265
@teon made their first contribution in #268

Full Changelog: v0.6.1...v0.7.0

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v0.7.0