fosrl/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-03-02 14:38:56 +00:00
Code Issues Packages Projects Releases 10 Wiki Activity

10 Releases 112 Tags

RSS Feed
  • 1.15.2 b4c01349d1
    Compare

    Stable

    scottk released this 2026-02-05 05:44:07 +00:00 | 509 commits to main since this release

    📅 Originally published on GitHub: Thu, 05 Feb 2026 19:23:58 GMT
    🏷️ Git tag created: Thu, 05 Feb 2026 05:44:07 GMT

    What's Changed

    • Add show user display name on user device
    • Add --network host to Newt Docker Run install method
    • Other minor bug fixes and improvements

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.15.1...1.15.2

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.15.1 37c4a7b690
    Compare

    Stable

    scottk released this 2026-01-24 19:55:32 +00:00 | 546 commits to main since this release

    📅 Originally published on GitHub: Sat, 24 Jan 2026 20:34:24 GMT
    🏷️ Git tag created: Sat, 24 Jan 2026 19:55:32 GMT

    What's Changed

    • Fix orphan device on archive (client fails to connect when archived from the user view)
    • Fix logo url not saving

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.15.0...1.15.1

    Warning

    For the clients feature to work you need to have updated Gerbil to 1.3.0 and have UDP port 21820 open on the VPS firewall and in the docker compose file.

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.15.0 40f2262f3e
    Compare

    Stable

    scottk released this 2026-01-23 18:40:16 +00:00 | 549 commits to main since this release

    📅 Originally published on GitHub: Fri, 23 Jan 2026 19:48:21 GMT
    🏷️ Git tag created: Fri, 23 Jan 2026 18:40:16 GMT

    Read the Announcement

    Read the full announcement with discussion of new features: Pangolin 1.15: iOS and Android apps, device approvals and posture, 1 year anniversary, stability, and more

    What's Changed

    • Add store user device fingerprint information (OS, serial number, hostname, etc)
    • Add store user device posture information (auto updates, encryption, biometrics, etc) (EE)
    • Add user device approvals for admins; explicitly approve a user’s device before it can connect to resources (EE)
    • Add support for organization only scoped identity providers for true multi-tenancy (EE)
    • Add block user device and machine
    • Add archive user device and machine client
    • Add show Site and Client install commands on credentials tab
    • Add option to set rule priorities in blueprints
    • Add Russian, Bulgarian, and Czech languages
    • Add apply blueprint through the cli
    • Fix tab key not working to navigation between host and port inputs on resource target forms
    • Fix logo URL optional in custom org branding (EE)
    • Fix confirm delete button working without confirm text
    • General UI improvements
    • Various other bug fixes

    Warning

    For the clients feature to work you need to have updated Gerbil to 1.3.0 and have UDP port 21820 open on the VPS firewall and in the docker compose file.

    New Contributors

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.14.1...1.15.0

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.15.0-rc.0 49001f6dda
    Compare

    Pre-Release

    scottk released this 2026-01-21 23:45:20 +00:00 | 579 commits to main since this release

    📅 Originally published on GitHub: Wed, 21 Jan 2026 23:54:04 GMT
    🏷️ Git tag created: Wed, 21 Jan 2026 23:45:20 GMT

    RC

    A Release Candidate (RC) is a near-final software version, stable but undergoing last tests before official release. It has all features and no known bugs.

    • Users: Use cautiously due to potential undiscovered bugs. Not for critical systems unless prepared for issues. Report bugs.
    • Developers/Testers: Perform crucial final validation and thorough testing, especially of recent changes, to catch last-minute major issues.
    • Backup: Always back up data before installing an RC to allow rollback if problems arise.
    • Feedback: Provide feedback; it's vital for a robust final release.

    What's Changed

    Note

    Some things like fingerprinting and posture info coming in new clients as they are released. Please update clients when released to test.

    • Add store user device fingerprint information (OS, serial number, hostname, etc)
    • Add store user device posture information (auto updates, encryption, biometrics, etc) (EE)
    • Add user device approvals for admins; explicitly approve a user’s device before it can connect to resources (EE)
    • Add support for organization only scoped identity providers for true multi-tenancy (EE)
    • Add block user device and machine
    • Add archive user device and machine client
    • Add show Site and Client install commands on credentials tab
    • Add option to set rule priorities in blueprints
    • Add Russian, Bulgarian, and Czech languages
    • Fix logo URL optional in custom org branding (EE)
    • Fix confirm delete button working without confirm text
    • General UI improvements
    • Various other bug fixes

    New Contributors

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.14.1...1.15.0-rc.0

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.14.1 2ca400ab16
    Compare

    Stable

    scottk released this 2025-12-24 21:14:26 +00:00 | 894 commits to main since this release

    📅 Originally published on GitHub: Wed, 24 Dec 2025 21:33:56 GMT
    🏷️ Git tag created: Wed, 24 Dec 2025 21:14:26 GMT

    What's Changed

    • Fix mobile header dissapearing after closing virtual keyboard
    • Add flags.disable_product_help_banners to disable product help banners
    • Fix machine client credentials page always showing the same ID
    • UI enhancements
    • Fix raw resources throwing a nextjs error
    • Fix blueprint not accepting ALL

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.14.0...1.14.1

    Warning

    For the clients feature to work you need to have updated Gerbil to 1.3.0 and have UDP port 21820 open on the VPS firewall and in the docker compose file.

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.14.0 7e9f18bf24
    Compare

    Stable

    scottk released this 2025-12-23 02:57:14 +00:00 | 965 commits to main since this release

    📅 Originally published on GitHub: Tue, 23 Dec 2025 03:21:32 GMT
    🏷️ Git tag created: Tue, 23 Dec 2025 02:57:14 GMT

    What's Changed

    New Contributors

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.13.1...1.14.0

    Recommended Versions

    Pangolin is backward compatible with older versions of its components. However, access to new features requires that all components be updated to their latest versions. We strongly recommend keeping everything up to date to ensure you benefit from the newest functionality, improvements, and fixes.

    • Pangolin 1.14.0+
    • Badger 1.3.1+
    • Gerbil 1.3.0+
    • Olm 1.3.0+
      • Note: If you're using a client for macOS, Windows, or Pangolin CLI, simply update to the latest versions.
    • Newt 1.8.0+

    Warning

    For the clients feature to work you need to have updated Gerbil to 1.3.0 and have UDP port 21820 open on the VPS firewall and in the docker compose file.

    CROWDSEC USERS PLEASE READ

    Due to an earlier misconfiguration of the health check for Crowdsec installs you may get rate limited due to Crowdsec's new policies. Please follow the info in this discussion to make the change to prevent rate limiting.

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Badger Supports Real IP with Cloudflare Proxy

    Badger 1.3.0 supports pulling the real IP when behind the Cloudflare Proxy. Support for this is enabled by default. Read more in the Badger release notes.

    Port Firewalling and ICMP Ping Support in Private Resources

    Private resources now support more granular access controls for ports and protocols. For TCP and UDP traffic, you can choose to allow all ports, block all ports, or define a specific set of allowed ports and port ranges.

    In addition, private resources now support ICMP ping. Previously, ICMP traffic was always blocked, preventing you from using tools like ping to test connectivity. With this update, ICMP ping is enabled by default and can also be disabled at any time through the resource’s firewall settings.

    image

    Wildcard Alias

    Private resources now support wildcard DNS aliases. Instead of defining a single, explicit alias, you can now use a wildcard like *.vpn.internal, which will resolve all matching subdomains to the destination host.

    This is useful, for example, when running a reverse proxy (such as Traefik) alongside the site connector (Newt). Multiple services can be routed by hostname and served over HTTPS with valid certificates, while remaining accessible only privately over the tunnel.

    Use Private DNS Servers with Pangolin Clients

    Pangolin clients on Windows, macOS, and Linux now support routing DNS queries through the secure tunnel. This allows you to configure a self-hosted or private DNS server that the client will use whenever it is connected.

    When this feature is enabled, all DNS resolution is performed over the tunnel instead of the local network. As long as you have a private resource configured that grants the client access to the DNS server, queries will be securely resolved within your private infrastructure.

    To use this feature, please update your client to the latest available versions.

    Downloads
  • 1.14.0-rc.0 972febf0ea
    Compare

    Pre-Release

    scottk released this 2025-12-22 01:36:19 +00:00 | 983 commits to main since this release

    📅 Originally published on GitHub: Mon, 22 Dec 2025 02:49:19 GMT
    🏷️ Git tag created: Mon, 22 Dec 2025 01:36:19 GMT

    RC

    A Release Candidate (RC) is a near-final software version, stable but undergoing last tests before official release. It has all features and no known bugs.

    • Users: Use cautiously due to potential undiscovered bugs. Not for critical systems unless prepared for issues. Report bugs.
    • Developers/Testers: Perform crucial final validation and thorough testing, especially of recent changes, to catch last-minute major issues.
    • Backup: Always back up data before installing an RC to allow rollback if problems arise.
    • Feedback: Provide feedback; it's vital for a robust final release.

    What's Changed

    New Contributors

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.13.1...1.14.0-rc.0

    Recommended Versions

    Pangolin is backward compatible with older versions of its components. However, access to new features requires that all components be updated to their latest versions. We strongly recommend keeping everything up to date to ensure you benefit from the newest functionality, improvements, and fixes.

    • Pangolin 1.14.0+
    • Badger 1.3.0+
    • Gerbil 1.3.0+
    • Olm 1.3.0+
    • Newt 1.8.0+

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Badger Supports Real IP with Cloudflare Proxy

    Badger 1.3.0 supports pulling the real IP when behind the Cloudflare Proxy. Support for this is enabled by default. Read more in the Badger release notes.

    Port Firewalling and ICMP Ping Support in Private Resources

    Private resources now support more granular access controls for ports and protocols. For TCP and UDP traffic, you can choose to allow all ports, block all ports, or define a specific set of allowed ports and port ranges.

    In addition, private resources now support ICMP ping. Previously, ICMP traffic was always blocked, preventing you from using tools like ping to test connectivity. With this update, ICMP ping is enabled by default and can also be disabled at any time through the resource’s firewall settings.

    image

    Use Private DNS Servers with Pangolin Clients

    Pangolin clients on Windows, macOS, and Linux now support routing DNS queries through the secure tunnel. This allows you to configure a self-hosted or private DNS server that the client will use whenever it is connected.

    When this feature is enabled, all DNS resolution is performed over the tunnel instead of the local network. As long as you have a private resource configured that grants the client access to the DNS server, queries will be securely resolved within your private infrastructure.

    To use this feature, please update your client to the latest available versions.

    Downloads
  • 1.13.1 f2d4c2f83c
    Compare

    Stable

    scottk released this 2025-12-13 17:16:11 +00:00 | 1285 commits to main since this release

    📅 Originally published on GitHub: Sat, 13 Dec 2025 18:00:27 GMT
    🏷️ Git tag created: Sat, 13 Dec 2025 17:16:11 GMT

    What's Changed

    • Fix newt proxies not getting created when creating new users
    • Fix pagination issues
    • Fix resource priority
    • Minor UI improvements
    • Update react CVE-2025-55184, CVE-2025-67779 & CVE-2025-55183

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.13.0...1.13.1

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Downloads
  • 1.13.0 5d6ee45125
    Compare

    Stable

    scottk released this 2025-12-11 21:49:40 +00:00 | 1301 commits to main since this release

    📅 Originally published on GitHub: Thu, 11 Dec 2025 23:19:41 GMT
    🏷️ Git tag created: Thu, 11 Dec 2025 21:49:40 GMT

    What's Changed

    • Rename Clients to Machine Clients
    • Rename Client Resources to Private Resources
    • Rename Proxy Resources to Public Resources
    • Add user-device clients that allow users to connect to private resources like a VPN
    • Add Host and CIDR option to Private Resources
    • Add “magic DNS” alias to Private Resources
    • Add manage user devices modal to user profile dropdown
    • Add ability to regenerate/rotate credentials on Sites, Clients, and Remote Nodes (EE)
    • Add Request Analytics page with basic request statistics, request map, and graphs
    • Add optional new version available notification to sidebar
    • Add optional new features notification to sidebar
    • Add support for Private Resources, Machine Clients, and User Devices in Blueprints
    • Add SNI input field to health check form
    • Add generate password reset code to users table in Server Admin page
    • Add contact admin warning in forgot password page when SMTP not set up
    • Add role to Badger passthrough header
    • Add new access/audit log retention policy: keep until end of next year
    • Add option to edit animal-themed identifier (niceId) on Sites, Resources, and Clients
    • Fix broken inputs in edit health check form
    • Fix custom branding login/signup page subtitle not displaying
    • Fix empty path strip preventing create resource
    • Fix custom healthy HTTP codes not respected
    • Fix save resource overwrite custom headers input
    • Fix various blueprint inconsistencies and annoyances
    • Fix display of setup token after CrowdSec installation
    • Improve speed of request logging by removing blocking db operations
    • General UI enhancements

    Breaking

    Warning

    This requires an update to Gerbil, Newt, Olm, and Pangolin.

    Minimum Versions:

    • Pangolin 1.13.0+
    • Gerbil 1.3.0+
    • Newt 1.7.0+
    • Olm 1.2.0+
    • Remove remote subnets from sites in favor of Private Resources
    • Remove site:port proxy on Client Resources in favor of Private Resources
    • Remove client to site associations in favor of Private Resources
    • Remove --accept-clients flag from Newt; clients are on by default now with option to disable with --disable-clients
    • Remove flag.enable_clients from Pangolin config
    • Remove branding.favicon_path from private Pangolin config
      • To customize the icon, mount your favicon to /app/public/favicon.ico in the container
    • Remove branding.login.title_text and branding.signup.title_text from private Pangolin config
      • Only subtitle customization is supported (there is no longer a title on these pages)

    Note

    We've done our best to migrate Client Resources and Clients to the new Private Resources and Machine Clients. All pre-existing clients are now Machine Clients, and all Client Resources are now Private Resources. We've also attempted to migrate all pre-existing site associations to Private Resource access controls, and remote subnets to CIDR Private Resources. However, please review your configuration after updating to ensure everything has been migrated correctly.

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.12.3...1.13.0

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Private Resources, User Devices, and Machine Clients

    Note

    This is still in beta. We will work towards getting out of beta by early 2026.

    This release introduces a major evolution of Pangolin’s networking model enabling private remote access via user clients. This update transforms it into a fully self‑hosted, open‑source alternative to Twingate using WireGuard under the hood. You can now access resources privately on the local network running Newt when connected and logged in to a Pangolin Client (available on Windows, Mac, and Linux).

    Overview

    • Newt still acts as your Site Connector, establishing a secure control and data plane over WireGuard.
    • Private Resources define what’s accessible, like specific hosts on local networks or the entire local networks.
    • Clients (human or machine) connect securely to the private network and gain access to defined resources using their familiar LAN‑style addresses.

    This effectively “flattens” your internal topology: once connected, resources across all sites are accessible without manually connecting to each individual site.

    dashboard

    User Devices

    User Devices bring private network access directly to end users. Users can download Pangolin Client for their system and log in to their familiar Pangolin account. These authenticated clients connect securely through Pangolin and gain access to permitted Private Resources.

    • Native GUI clients are available for macOS and Windows.
    • CLI clients are available for Linux and macOS, with Windows CLI support coming soon.
    • All clients support the full feature set including WireGuard‑based encryption, NAT traversal, DNS alias, and peer‑to‑peer connections when possible for direct networking.
    • Mobile apps for Android and iOS will be coming in 2026.
    Windows Client Mac Client
    windows mac

    Private Resources

    Private Resources represent network targets reachable through your site connectors. These can be defined at different granularities:

    • Host Resources: Point directly to an individual host (e.g., 192.168.1.210).
    • CIDR Resources: Expose an entire subnet or range (e.g., 192.168.1.0/24).

    When a client connects to the Pangolin network, they can access these Private Resources using the same LAN addresses without any port forwarding, route table setup, DNS configuration, VPN configuration, or proxy redirection needed.

    Each Private Resource also supports a “magic DNS” alias, allowing friendly hostnames like mynas.internal to resolve automatically when connected. This simplifies navigation and behaves naturally across operating systems and clients.

    Fine‑grained access control allows admins to assign which users, roles, and machine clients can access each Private Resource.

    Port and protocol based restrictions coming soon.

    Machine Clients

    All existing “Clients” have now been migrated and renamed to Machine Clients.
    Machine Clients are designed for servers, services, and automated systems (like CICD runners, monitoring, or backups) that need ongoing access to Private Resources.

    They authenticate using familiar ID and secret credentials, and retain full compatibility with pre‑existing integrations while benefiting from the unified Private Resource model.

    Downloads
  • 1.13.0-rc.0 b63a8fd3ed
    Compare

    Pre-Release

    scottk released this 2025-12-08 20:16:12 +00:00 | 1379 commits to main since this release

    📅 Originally published on GitHub: Mon, 08 Dec 2025 21:17:44 GMT
    🏷️ Git tag created: Mon, 08 Dec 2025 20:16:12 GMT

    RC

    A Release Candidate (RC) is a near-final software version, stable but undergoing last tests before official release. It has all features and no known bugs.

    • Users: Use cautiously due to potential undiscovered bugs. Not for critical systems unless prepared for issues. Report bugs.
    • Developers/Testers: Perform crucial final validation and thorough testing, especially of recent changes, to catch last-minute major issues.
    • Backup: Always back up data before installing an RC to allow rollback if problems arise.
    • Feedback: Provide feedback; it's vital for a robust final release. Participate in the discussion linked at the bottom

    Warning

    MIGRATIONS MAY BREAK BETWEEN RC VERSIONS

    What's Changed

    • Rename Clients to Machine Clients
    • Rename Client Resources to Private Resources
    • Rename Proxy Resources to Public Resources
    • Add user-device clients that allow users to connect to private resources like a VPN
    • Add Host and CIDR option to Private Resources
    • Add “magic DNS” alias to Private Resources
    • Add manage user devices modal to user profile dropdown
    • Add ability to regenerate/rotate credentials on Sites, Clients, and Remote Nodes (EE)
    • Add Request Analytics page with basic request statistics, request map, and graphs
    • Add optional new version available notification to sidebar
    • Add optional new features notification to sidebar
    • Add support for Private Resources, Machine Clients, and User Devices in Blueprints
    • Add SNI input field to health check form
    • Add generate password reset code to users table in Server Admin page
    • Add contact admin warning in forgot password page when SMTP not set up
    • Add role to Badger passthrough header
    • Add new access/audit log retention policy: keep until end of next year
    • Add option to edit animal-themed identifier (niceId) on Sites, Resources, and Clients
    • Fix broken inputs in edit health check form
    • Fix custom branding login/signup page subtitle not displaying
    • Fix empty path strip preventing create resource
    • Fix custom healthy HTTP codes not respected
    • Fix save resource overwrite custom headers input
    • Fix various blueprint inconsistencies and annoyances
    • Fix display of setup token after CrowdSec installation
    • General UI enhancements

    Breaking

    Warning

    This requires an update to Gerbil, Newt, Olm, and Pangolin.

    Minimum Versions:

    • Pangolin 1.13.0+
    • Gerbil 1.3.0+
    • Newt 1.7.0+
    • Olm 1.2.0+
    • Remove remote subnets from sites in favor of Private Resources
    • Remove site:port proxy on Client Resources in favor of Private Resources
    • Remove client to site associations in favor of Private Resources
    • Remove --accept-clients flag from Newt; clients are on by default now with option to disable with --disable-clients
    • Remove flag.enable_clients from Pangolin config
    • Remove branding.favicon_path from private Pangolin config
      • To customize the icon, mount your favicon to /app/public/favicon.ico in the container
    • Remove branding.login.title_text and branding.signup.title_text from private Pangolin config
      • Only subtitle customization is supported (there is no longer a title on these pages)

    Note

    We've done our best to migrate Client Resources and Clients to the new Private Resources and Machine Clients. All pre-existing clients are now Machine Clients, and all Client Resources are now Private Resources. We've also attempted to migrate all pre-existing site associations to Private Resource access controls, and remote subnets to CIDR Private Resources. However, please review your configuration after updating to ensure everything has been migrated correctly.

    Full Changelog: https://github.com/fosrl/pangolin/compare/1.12.3...1.13.0-rc.0

    How to Update

    Important

    Always back up your config app-data before updating. This will allow you to easily roll back if the update breaks your configuration. You will not be able to easily downgrade otherwise.

    View documentation

    Private Resources, User Devices, and Machine Clients

    Note

    This is still in beta. We will work towards getting out of beta by early 2026.

    This release introduces a major evolution of Pangolin’s networking model enabling private remote access via user clients. This update transforms it into a fully self‑hosted, open‑source alternative to Twingate using WireGuard under the hood. You can now access resources privately on the local network running Newt when connected and logged in to a Pangolin Client (available on Windows, Mac, and Linux).

    Overview

    • Newt still acts as your Site Connector, establishing a secure control and data plane over WireGuard.
    • Private Resources define what’s accessible, like specific hosts on local networks or the entire local networks.
    • Clients (human or machine) connect securely to the private network and gain access to defined resources using their familiar LAN‑style addresses.

    This effectively “flattens” your internal topology: once connected, resources across all sites are accessible without manually connecting to each individual site.

    dashboard

    User Devices

    User Devices bring private network access directly to end users. Users can download Pangolin Client for their system and log in to their familiar Pangolin account. These authenticated clients connect securely through Pangolin and gain access to permitted Private Resources.

    • Native GUI clients are available for macOS and Windows.
    • CLI clients are available for Linux and macOS, with Windows CLI support coming soon.
    • All clients support the full feature set including WireGuard‑based encryption, NAT traversal, DNS alias, and peer‑to‑peer connections when possible for direct networking.
    • Mobile apps for Android and iOS will be coming in 2026.
    Windows Client Mac Client
    windows mac

    Private Resources

    Private Resources represent network targets reachable through your site connectors. These can be defined at different granularities:

    • Host Resources: Point directly to an individual host (e.g., 192.168.1.210).
    • CIDR Resources: Expose an entire subnet or range (e.g., 192.168.1.0/24).

    When a client connects to the Pangolin network, they can access these Private Resources using the same LAN addresses without any port forwarding, route table setup, DNS configuration, VPN configuration, or proxy redirection needed.

    Each Private Resource also supports a “magic DNS” alias, allowing friendly hostnames like mynas.internal to resolve automatically when connected. This simplifies navigation and behaves naturally across operating systems and clients.

    Fine‑grained access control allows admins to assign which users, roles, and machine clients can access each Private Resource.

    Port and protocol based restrictions coming soon.

    Machine Clients

    All existing “Clients” have now been migrated and renamed to Machine Clients.
    Machine Clients are designed for servers, services, and automated systems (like CICD runners, monitoring, or backups) that need ongoing access to Private Resources.

    They authenticate using familiar ID and secret credentials, and retain full compatibility with pre‑existing integrations while benefiting from the unified Private Resource model.

    Downloads