Release v0.30.0

Release Image

Image	Registry
`ghcr.io/vmware-tanzu/pinniped/pinniped-server:v0.30.0`	GitHub Container Registry
`docker.io/getpinniped/pinniped-server:v0.30.0`	DockerHub

These images can also be referenced by their digest: sha256:3955ac6e04db6b87fb992e08302ca9080f1dcfc340deacc82f0f0f4687d535b6.

This release includes several new features and upgrades all project dependencies.

Added new option to OIDCClient resource to allow configuration of ID token lifetime for tokens issued by authcode flows and refresh flows. See OIDCClient.spec.tokenLifetimes.idTokenSeconds in the API docs. (#1914)
Setting the new env var PINNIPED_SKIP_PRINT_LOGIN_URL=true will cause the Pinniped CLI to skip printing the login URL when a browser has launched, which can be useful when using console UIs like k9s. (#1938, #1897)
WebhookAuthenticator resources will have detailed status written to them automatically, to aid in debugging. (#1894)
WebhookAuthenticators now honor Pinniped's preferred client TLS configuration, including its preferred allowed TLS v1.2 ciphers. This could be a breaking change if your webhook server is serving requests using only TLS v1.2 (not allowing TLS v1.3) and does not allow any of Pinniped's preferred TLS v1.2 ciphers. Note that Pinniped's preferred TLS v1.2 cipher list is different depending on if it was compiled in FIPS compatibility mode or not. (#1917)
Removed all deprecated deployment options from ytt templates. (#1926)
Clarified the text in some error messages. (#1932, #1922)
Added documentation to provide some debugging tips. (#1936, #1904, #1824)
Updates Go to v1.22.3, updates the Kubernetes libraries to v0.30.0, and updates all other project dependencies. (#1940, #1937, #1935, #1934, #1933, #1931, #1921, #1916, #1913, #1911, #1902, #1899)

A complete list of changes (101 commits, 768 changed files with 33,015 additions and 64,816 deletions) can be found here.