Taky

Added
- Kickban command allows admins to ban clients
- DPS endpoints that don't require client certificates
- Monitor clients receive persist data, can inject packets
- Monitor clients receive all routed packets, not just broadcast
- Relative path support for config

Changed
- Migrated from Python OpenSSL to Cryptography
- Pinned Flask dependency to ~2.0
- Improved "correctness" of cenerated certificates

Fixed
- SSL certs being generated in a way that Android rejects
- Packets with empty <marti/> tags get routed now

Contributors
- fieldmapper, sgofferj, skadakar, and FarrantAlex for their help wrangling
GitHub issues
- All the patient users in `taky` who gave helpful feedback for this release

Added
- Management socket + status command
- TCP Monitor socket
- Log messages from anonymous users
- max_persist_ttl option to prevent long lived COTs
- P12 bundles now have a "Friendly Name" set

Changed
- Overhaul of config object to be a global variable
- Refactor of client objects for code reuse

Fixed
- Allowing for a proper shutdown from SIGTERM
- Clients receiving malformed XML doesn't crash the server
- Switched to nonblocking sockets to prevent rare lockup
- Removed the server's private key from the server.p12 file
- Don't crash after PDB exit

Contributors
- Thanks to AdakaR for helping find both the XML and blocking socket bugs!
- Thanks to Tom for finding the private key issue!
- Thanks to Alex and Doug for helping with development!
- Thanks to jazap for the logo!

Added
- Generation of iTAK compatible client certificates

Fixed
- Internal client certificate files are now unique by UUID (39)

Contributors
- Thanks to fordepowers for contributing the iTAK certificate generation!
- Thanks to pclifaz for assisting testing of the new features!
- Thanks to skadakar for offering heaps of help to new users in Discord!
- Thanks to mighkel for a comprehensive writeup to improve documentation!

Fixed
- Routing GeoChats should work now

Contributors
- Thanks to skadakar for his work finding this, and testing the fix!

Fixed
- Routing packets with multiple sockets sharing an identifier (callsign, UID)
- Added a none check on user object

Added
- COT messages that fail to parse are logged

Changed
- Data packages marked private do not show up in search listings
- New data packages are assumed private until the client specifies public

Fixed
- Improvements for Windows compatibility
- Send the detail as received from the user
- Use restart for systemd scripts
- Correct the path for the DPS outside of systemd
- Stale SSL sockets and the persistence dare are occasionally pruned

Contributors
- Thanks to doug-fitzmaurice-rowden for submitting the client certificate
support for the data package server, and helping test the release!