Added the missing nomad.rpc.mTLS.enabled configuration flag to Helm values to properly enable certificate generation within nomad-server pods.
Renamed the session cookie to circleci-session.
Fixed OIDC service configuration for air-gapped environments by adding oidc_service.base_url Helm value. This allows customers with non-publicly resolvable domains to override the issuer URL with a publicly accessible endpoint for external OIDC provider integration.
Fixed database connection configuration in OIDC Tasks Service by using templated PostgreSQL host value instead of hardcoded hostname, allowing proper database connectivity in custom environments.
Bug Fixes
Fixed Helm installation failures on Kubernetes clusters with strict Server-Side Apply validation by removing duplicate imagePullSecrets entries from Bitnami subcharts (MongoDB, PostgreSQL, RabbitMQ, Redis).
Fixed OIDC Tasks Service migrator CrashLoopBackOff by correcting the container image reference, fixing invalid command paths, adding required Flyway security context, and updating database URL format for proper Flyway compatibility.
Fixed user deletion failures via admin commands by correcting service port configurations in Helm charts. Updated client configurations to use proper Kubernetes service ports (80) instead of pod ports (8000).
Fixed OIDC token minting panics caused by protocol buffer version mismatches between builds-service and oidc-tasks-service.
Resolved database connection issues in OIDC Tasks Service by restoring the DATABASE_URL environment variable alongside the newer POSTGRESQL_OIDCTASKS_URI variable for backward compatibility.
Fixed failed job navigation behavior where clicking on failed CircleCI status checks or workflow nodes incorrectly routed to the Steps tab instead of the Tests tab, restoring the expected navigation to test failure details.