In version 26.1.0, Stackland enters the General Availability stage. We introduced new features and improvements that make the platform more user friendly and versatile.

Important updatesImportant updates

• Added support for projects, i.e., logical resource organization units that help you manage namespaces, access, and quotas at the team or application level.
• Added the DataLens component for data visualization and analysis.
• Added the SpeechSense component for voice and text communication analysis.
• Integrated Yandex Object Storage. Renamed yandex-object-storage to storage.
• Implemented updating an existing cluster.
• Implemented automatic creation of storage classes based on disk type (HDD, SSD, NVMe, other). All disks other than the installation ones get added to one of the classes and become available for data storage right after Stackland is installed.
• Changed the configuration installation file format.
• Upgraded the NVIDIA® driver to version 580.126.

New featuresNew features

Identity and Access Management: support for Active DirectoryIdentity and Access Management: support for Active Directory

Added support for syncing Active Directory users and groups. Main features:

• Automatic creation of a user pool when setting up syncing.
• LDAPS support for secure connections to domain controller.
• Setting up user and group attribute mapping.
• Behavior management when deleting an AD user: blocking or deleting.

Managed Service for PostgreSQL: performance diagnosticsManaged Service for PostgreSQL: performance diagnostics

Implemented performance diagnostics for Managed Service for PostgreSQL clusters. The feature collects and analyzes the performance statistics of your SQL queries and sessions. Its data is visualized on a Grafana dashboard.

DataLensDataLens

Added the DataLens component for data visualization and analysis. Use it to create interactive dashboards and reports, connect to various data sources, and share your findings with your team.

SpeechSenseSpeechSense

Added the SpeechSense component for voice and text communication analysis. The component allows you to process conversations in audio and text formats for QoS assessment and debottlenecking.

Cluster upgradeCluster upgrade

The UI got a cluster upgrade form where you can select a version from the list of available releases. Added the sladm validate command to pre-check the configuration before an installation or upgrade. This command validates the configuration file and checks the nodes for availability. The installation of the cluster will not begin if it certain to fail.

ImprovementsImprovements

UI improvementsUI improvements

• The component management dialogs got meaningful names (displayName) instead of internal IDs.
• Added a feature for returning to the last viewed project.
• Added the pop-up window to confirm a logout.
• Added the projectMember access level.
• Blocked deletion of projects in terminating status.
• Improved validation of the project creation form.
• Updated the Kubeconfig page theme.

GuidesGuides

• Added the Projects and Resource model section to the concepts.
• Added a guide for SpeechSense.
• Added a guide for DataLens.
• Added a guide on disk subsystem and its diagnostics.
• Added a guide on upgrading a cluster.
• Added a guide on Managed Service for PostgreSQL performance diagnostics.
• Expanded guides on projects related to namespace management, roles, quotas.
• Updated the quick start section.
• Updated the Access management section.

Fixed issuesFixed issues

• Fixed the issue with AccessService cache in Identity and Access Management when creating or updating OAuthClient.
• Fixed the sidecar manager's scope of monitoring in Managed Service for ClickHouse®. Now only the current cluster's pods are monitored.
• Fixed access permissions for the sidecar service account in Managed Service for ClickHouse®.
• Fixed the display of Object Storage name in the UI.
• Fixed the default storage class configuration in Managed Service for ClickHouse® manifests.
• Fixed the processing of blank values in numeric fields of UI forms.
• Changed the wording and validation in the project creation form.

What's new in Stackland 0.5.0

Stackland 0.5.0 introduces new features and improvements that make the platform more user friendly and versatile.

New featuresNew features

nvme format -s 1 --force /dev/nvme0n1

NVIDIA® GPU supportNVIDIA® GPU support

Added the NVIDIA® GPU support component, a tool that manages your GPU resources in a Stackland cluster. It automates deployment and configuration of NVIDIA® drivers, device plugins, and other components for GPU provisioning. Added Grafana dashboards for monitoring of GPU resources.

Identity and Access ManagementIdentity and Access Management

Added the Identity and Access Management component, which is a system for centralized management of users, groups, and access permissions. Main features:

• SAML federation support.
• AWS-compatible AccessKeys for software access to services.
• OAuth clients for integration with applications.
• Grafana integration with Identity and Access Management OAuth for a single authentication point.

ImprovementsImprovements

Deletion protectionDeletion protection

Added protection against accidental deletion for database clusters and resources:

• Managed Service for PostgreSQL clusters
• Managed Service for Apache Kafka® clusters and topics
• Managed Service for ClickHouse® clusters

Managed Service for ClickHouse®Managed Service for ClickHouse®

• Added the autotuner for automatic optimization of cluster settings.
• Implemented storage availability checks before creating or deleting backups.

Managed Service for Apache Kafka®Managed Service for Apache Kafka®

Simplified ACL role selection in the user creation and editing form.

Managed Service for PostgreSQLManaged Service for PostgreSQL

Improved the UX of the dialog with cluster connection info.

UI improvementsUI improvements

• Added the ability to adjust column width in tables.
• Component deactivation is now blocked if there are active resources.
• Improved the deletion confirmation dialog.
• Added a table for Identity and Access Management group members.
• On the Policy Manager page, added the Mutes and Reports tab.

Fixed issuesFixed issues

• Fixed the issue with the internal FQDN for Managed Service for ClickHouse®.
• Fixed name length validation of Managed Service for ClickHouse® clusters when restoring them from a backup.
• Fixed the critical IPv6 address handling error.
• Fixed the issue when deleting an iptables rule of a local VMware registry.
• Fixed the compatibility issue that made it impossible to deploy Cilium on certain ESXi / NSX configurations.

What's new in Stackland 0.4

Stackland 0.4 introduces new features and improvements that make the platform more user friendly and versatile.

New featuresNew features

Managed Service for ClickHouse®Managed Service for ClickHouse®

Added the Managed Service for ClickHouse® component, a managed service for working with an open-source column-oriented ClickHouse® DBMS. It simplifies database cluster deployment and upgrades, ensures fault tolerance through replication and sharding, and provides tools for backup and monitoring. With Managed Service for ClickHouse®, you can create and restore cluster using the ClickhouseCluster custom resource, take one-off backups using the ClickhouseBackup custom resource, configure data replication between hosts to ensure high availability, and use sharding for horizontal scaling and load distribution.

Policy ManagerPolicy Manager

• Added the Policy Manager component, a tool to check Kubernetes resources for compliance with security policies. The tool generates reports in OpenReports format. Policy Manager supports two policy presets: baseline, which is the basic Kubernetes security standard for pods, and restricted, which is the secure standard for critical applications. You can select a default cluster policy preset using the PolicyManagerConfig custom resource or activate an additional preset using the ClusterPolicySet resource. To temporarily or permanently disable violation notifications for certain policies, use the ClusterPolicyMute resource.
• Implemented the Policy Manager GUI which enables you to view reports, select policy presets to be used, use the interactive YAML editor, configure mutes and their duration.
• Optimized state handling and resource status updates in Policy Manager to improve performance and reduce cluster load.
• Updated the policy-reporter version, a component collecting and displaying policy violation reports.

Hardware monitoringHardware monitoring

Added a module for monitoring cluster hardware state. The module collects data from kernel logs, sysfs, and SMART data from drives. For hardware state metrics and notifications, see the Hardware Monitoring Grafana dashboard.

ImprovementsImprovements

Stackland Diagnostic ToolStackland Diagnostic Tool

Added the ability to collect information about the following entities:

• storageClass
• ingressClass
• clusterIssuer
• PVC
• statefulset
• ingress
• cert-manager certificates (without secrets)
• Webhook configurations

DatabasesDatabases

• Added default resources for Managed Service for ClickHouse®, which automatically apply when you create a cluster.
• Added default resources for Managed Service for PostgreSQL clusters and connection poolers.
• Fixed infinite reconciliation of the Managed Service for PostgreSQL component.

Message brokerMessage broker

Added default resources for Managed Service for Apache Kafka®, which automatically apply when you create a cluster.

Fixed issuesFixed issues

• Fixed the issue with the internal FQDN for Managed Service for ClickHouse®.
• Improved Managed Service for PostgreSQL status handling to prevent excessive update operations.
• Fixed a bug where refresh tokens expired prematurely, requiring frequent kubeconfig updates.
• Multiple minor fixes and improvements.

What's new in Stackland 0.3

Stackland 0.3 introduces new features and improvements that make the platform more user friendly and versatile.

Important updatesImportant updates

• Updated the Managed PostgreSQL specification. Use the examples from the current version of our guides.

New featuresNew features

• Added the Managed Service for Apache Kafka® component. It enables creating message queues for data exchange between services.
• Introduced the combined server role. It combines the control-plane and worker functions, reducing the minimum size of a fault-tolerant cluster to just three servers.
• Support for servers with a single disk for the control-plane role is now available. It is convenient for working with small clusters.
• Point-in-time recovery is now supported for the PostgreSQL clusters. The cluster now can be recovered from a specific moment in the past.

ImprovementsImprovements

• Optimized naming system for platform components.
• New Grafana dashboards for Storage and Object Storage.

UI improvementsUI improvements

• Added Role bindings and Cluster role bindings to the Access management section.
• New Replicas, DaemonSets, and CronJobs tabs in the Workload section.
• Implemented timeline filtering in the System dashboard section.
• You can now add projects to your favorites.
• You can select the UI language.
• The UI now displays information about the PostgreSQL cluster fault tolerance.

Fixed issuesFixed issues

• Implemented static file compression, reducing the first load time by 0.3-0.4 seconds.
• Fixed the key name display on the overview page.
• Improved the error message display: now you will see a clear message when you try to create an access key without any buckets.
• Fixed the error where trying to delete a non-empty bucket incorrectly displayed a message about successful deletion.