coderabbit-test
diff --git a/‎home/README.md
Lines changed: 6 additions & 0 deletions b/‎home/README.md
Lines changed: 6 additions & 0 deletions
diff --git a/‎home/docs/community/how-to-release.md
Lines changed: 14 additions & 13 deletions b/‎home/docs/community/how-to-release.md
Lines changed: 14 additions & 13 deletions
diff --git a/‎home/docs/download.md
Lines changed: 15 additions & 10 deletions b/‎home/docs/download.md
Lines changed: 15 additions & 10 deletions
diff --git a/‎home/docs/start/account-modify.md
Lines changed: 107 additions & 78 deletions b/‎home/docs/start/account-modify.md
Lines changed: 107 additions & 78 deletions
@@ -49,6 +49,12 @@ If you are using GitHub pages for hosting, this command is a convenient way to b
 GITHUB_HOST=gitee.com USE_SSH=true yarn deploy  
 ```
 
+### Archive Version
+
+```shell
+yarn docusaurus docs:version v1.5.x
+```
+
 
 ## Directory Structure
 
 
@@ -434,7 +434,7 @@ One item of the email content is `Vote thread`, and the link is obtained here: h
 Send a voting email in the incubator community requires at least three `+1` and no `-1`.
 
 > `Send to`: [email protected] <br />
-> `cc`: [email protected]、tison@apache.org、[email protected] <br />
+> `cc`: [email protected]、private@hertzbeat.apache.org <br />
 > `Title`: [VOTE] Release Apache HertzBeat (incubating) 1.6.0-rc1 <br />
 > `Body`:
 
@@ -492,7 +492,6 @@ ChunJin Mu
 If there is no -1 after 72 hours, reply to the email as follows
 
 > `Send to`: [email protected] <br />
-> `cc`: [email protected] <br />
 > `Body`:
 
 ```
@@ -505,27 +504,24 @@ Chunjin Mu
 Then the voting results will be counted, and the voting result email will be sent, as follows.
 
 > `Send to`: [email protected] <br />
-> `cc`: [email protected]、[email protected]、[email protected] <br />
 > `Title`: [RESULT][VOTE] Release Apache HertzBeat (incubating) 1.6.0-rc1 <br />
 > `Body`:
 
 ```
-Hi all,
+Hi Incubator Community,
 
-Thanks for your review and vote for "Release Apache HertzBeat (incubating) 1.6.0-rc1"
-I'm happy to announce the vote has passed:
+The vote to release Apache HertzBeat (incubating) 1.6.0-rc4 has passed with 3 +1 binding and no +0 or -1 votes.
 
 3 binding votes, no +0 or -1 votes.
-Thanks for reviewing and voting.
 
 +3 (binding) +1, from:
-- cc
+- xxx
 
 no 0 or -1 votes.
 
 Vote thread:
-https://lists.apache.org/thread/k3cvcbzxqs6qy62d1o6r9pqpykcgvvhm
 
+https://lists.apache.org/thread/m1kyn4l30y55p6q39m0ys5djvdd73h0f
 
 Thanks everyone for your feedback and help with HertzBeat apache release. The HertzBeat team will take the steps to complete this release and will announce it soon.
 
@@ -557,16 +553,20 @@ Open the official website address https://hertzbeat.apache.org/docs/download/ to
 
 #### 4.3 Generate a release on github
 
-Create a tag named v1.6.0 based on the release-1.6.0-rc1 branch, and set this tag to latest release.
+Update pre-release to create a tag named v1.6.0 based on the release-1.6.0-rc1 branch, and set this tag to latest release.
+
+:::tip
+You can modify it on the original RC Release without creating a new Release.
+:::
 
 Then enter Release Title and Describe
 - Release Title: 
 ```
-v1.6.0-incubating
+v1.6.0
 ```
 - Describe:
 ```
-Release-1.6.0-incubating
+xxx
 release note: xxx
 ```
 
@@ -582,14 +582,15 @@ The rename the release-1.6.0-rc1 branch to release-1.6.0.
 > `Body`:
 
 ```
-Hi all,
+Hi Incubator Community,
 
 We are glad to announce the release of Apache HertzBeat (incubating) 1.6.0.
 Once again I would like to express my thanks to your help.
 
 Apache HertzBeat(https://hertzbeat.apache.org/) - a real-time monitoring system with agentless, performance cluster, prometheus-compatible, custom monitoring and status page building capabilities.
 
 Download Links: https://hertzbeat.apache.org/download/
+
 Release Notes: https://github.com/apache/hertzbeat/releases/tag/v1.6.0
 
 HertzBeat Resources:
 
@@ -15,18 +15,23 @@ sidebar_label: Download
 ## The Latest Release
 
 :::tip
-The Apache release coming soon!
+Previous releases of HertzBeat may be affected by security issues, please use the latest one.
 :::
 
----- 
 
-## Non-Apache Release
+| Version | Date       | Download                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        | Release Notes                                                           |
+|---------|------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------|
+| v1.6.0  | 2024.06.10 | [apache-hertzbeat-1.6.0-incubating-bin.tar.gz](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-bin.tar.gz) ( [signature](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-bin.tar.gz.asc) , [sha512](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-bin.tar.gz.sha512) ) <br/> [apache-hertzbeat-collector-1.6.0-incubating-bin.tar.gz](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-collector-1.6.0-incubating-bin.tar.gz) ( [signature](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-collector-1.6.0-incubating-bin.tar.gz.asc) , [sha512](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-collector-1.6.0-incubating-bin.tar.gz.sha512) ) <br/> [apache-hertzbeat-1.6.0-incubating-src.tar.gz](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-src.tar.gz) ( [signature](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-src.tar.gz.asc) , [sha512](https://downloads.apache.org/incubator/hertzbeat/1.6.0/apache-hertzbeat-1.6.0-incubating-src.tar.gz.sha512) ) | [release note](https://github.com/apache/hertzbeat/releases/tag/v1.6.0) |
 
-:::tip
-These releases were made before the HertzBeat project joined the ASF Incubator.   
-These have not followed the usual ASF release process.
-:::
 
-| Version | Date       | Source                                                                     | Binary                                                                                                                                                                                                                                                  | Release Notes                                                           |
-|---------|------------|----------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------|
-| v1.5.0  | 2024.03.08 | [source](https://github.com/apache/hertzbeat/archive/refs/tags/v1.5.0.zip) | [hertzbeat-1.5.0.tar.gz](https://github.com/apache/hertzbeat/releases/download/v1.5.0/hertzbeat-1.5.0.tar.gz) <br/> [hertzbeat-collector-1.5.0.tar.gz](https://github.com/apache/hertzbeat/releases/download/v1.5.0/hertzbeat-collector-1.5.0.tar.gz) | [release note](https://github.com/apache/hertzbeat/releases/tag/v1.5.0) |
+## Release Docker Image
+
+> Apache HertzBeat provides a docker image for each release. You can pull the image from the [Docker Hub](https://hub.docker.com/r/apache/hertzbeat).
+
+- HertzBeat https://hub.docker.com/r/apache/hertzbeat
+- HertzBeat Collector https://hub.docker.com/r/apache/hertzbeat-collector
+
+
+## All Archived Releases
+
+For older releases, please check the [archive](https://archive.apache.org/dist/incubator/hertzbeat/).
@@ -7,88 +7,110 @@ sidebar_label: Update Account Secret
 ## Update Account
 
 Apache HertzBeat (incubating) default built-in three user accounts, respectively admin/hertzbeat tom/hertzbeat guest/hertzbeat     
-If you need add, delete or modify account or password, configure `sureness.yml`. Ignore this step without this demand.
-The configuration file content refer to project repository[/script/sureness.yml](https://github.com/hertzbeat/hertzbeat/blob/master/script/sureness.yml)   
+If you need add, delete or modify account or password, configure `sureness.yml`. Ignore this step without this demand.   
 Modify the following **part parameters** in sureness.yml：**[Note⚠️Other default sureness configuration parameters should be retained]**
 
 ```yaml
 
 resourceRole:
-   - /api/account/auth/refresh===post===[admin,user,guest]
-   - /api/apps/**===get===[admin,user,guest]
-   - /api/monitor/**===get===[admin,user,guest]
-   - /api/monitor/**===post===[admin,user]
-   - /api/monitor/**===put===[admin,user]
-   - /api/monitor/**===delete==[admin]
-   - /api/monitors/**===get===[admin,user,guest]
-   - /api/monitors/**===post===[admin,user]
-   - /api/monitors/**===put===[admin,user]
-   - /api/monitors/**===delete===[admin]
-   - /api/alert/**===get===[admin,user,guest]
-   - /api/alert/**===post===[admin,user]
-   - /api/alert/**===put===[admin,user]
-   - /api/alert/**===delete===[admin]
-   - /api/alerts/**===get===[admin,user,guest]
-   - /api/alerts/**===post===[admin,user]
-   - /api/alerts/**===put===[admin,user]
-   - /api/alerts/**===delete===[admin]
-   - /api/notice/**===get===[admin,user,guest]
-   - /api/notice/**===post===[admin,user]
-   - /api/notice/**===put===[admin,user]
-   - /api/notice/**===delete===[admin]
-   - /api/tag/**===get===[admin,user,guest]
-   - /api/tag/**===post===[admin,user]
-   - /api/tag/**===put===[admin,user]
-   - /api/tag/**===delete===[admin]
-   - /api/summary/**===get===[admin,user,guest]
-   - /api/summary/**===post===[admin,user]
-   - /api/summary/**===put===[admin,user]
-   - /api/summary/**===delete===[admin]
+  - /api/account/auth/refresh===post===[admin,user,guest]
+  - /api/apps/**===get===[admin,user,guest]
+  - /api/monitor/**===get===[admin,user,guest]
+  - /api/monitor/**===post===[admin,user]
+  - /api/monitor/**===put===[admin,user]
+  - /api/monitor/**===delete==[admin]
+  - /api/monitors/**===get===[admin,user,guest]
+  - /api/monitors/**===post===[admin,user]
+  - /api/monitors/**===put===[admin,user]
+  - /api/monitors/**===delete===[admin]
+  - /api/alert/**===get===[admin,user,guest]
+  - /api/alert/**===post===[admin,user]
+  - /api/alert/**===put===[admin,user]
+  - /api/alert/**===delete===[admin]
+  - /api/alerts/**===get===[admin,user,guest]
+  - /api/alerts/**===post===[admin,user]
+  - /api/alerts/**===put===[admin,user]
+  - /api/alerts/**===delete===[admin]
+  - /api/notice/**===get===[admin,user,guest]
+  - /api/notice/**===post===[admin,user]
+  - /api/notice/**===put===[admin,user]
+  - /api/notice/**===delete===[admin]
+  - /api/tag/**===get===[admin,user,guest]
+  - /api/tag/**===post===[admin,user]
+  - /api/tag/**===put===[admin,user]
+  - /api/tag/**===delete===[admin]
+  - /api/summary/**===get===[admin,user,guest]
+  - /api/summary/**===post===[admin,user]
+  - /api/summary/**===put===[admin,user]
+  - /api/summary/**===delete===[admin]
+  - /api/collector/**===get===[admin,user,guest]
+  - /api/collector/**===post===[admin,user]
+  - /api/collector/**===put===[admin,user]
+  - /api/collector/**===delete===[admin]
+  - /api/status/page/**===get===[admin,user,guest]
+  - /api/status/page/**===post===[admin,user]
+  - /api/status/page/**===put===[admin,user]
+  - /api/status/page/**===delete===[admin]
 
-# Resources that need to be filtered and protected can be accessed directly without authentication
-# /api/v1/source3===get means /api/v1/source3===get it can be accessed by anyone. Don't need to authentication
+# config the resource restful api that need bypass auth protection
+# rule: api===method 
+# eg: /api/v1/source3===get means /api/v1/source3===get can be access by anyone, no need auth.
 excludedResource:
-   - /api/account/auth/**===*
-   - /api/i18n/**===get
-   - /api/apps/hierarchy===get
-   # web ui  the front-end static resource
-   - /===get
-   - /dashboard/**===get
-   - /monitors/**===get
-   - /alert/**===get
-   - /account/**===get
-   - /setting/**===get
-   - /passport/**===get
-   - /**/*.html===get
-   - /**/*.js===get
-   - /**/*.css===get
-   - /**/*.ico===get
-   - /**/*.ttf===get
-   - /**/*.png===get
-   - /**/*.gif===get
-   - /**/*.jpg===get
-   - /**/*.svg===get
-   - /**/*.json===get
-   # swagger ui resource
-   - /swagger-resources/**===get
-   - /v2/api-docs===get
-   - /v3/api-docs===get
+  - /api/alerts/report/**===*
+  - /api/account/auth/**===*
+  - /api/i18n/**===get
+  - /api/apps/hierarchy===get
+  - /api/push/**===*
+  - /api/status/page/public/**===*
+  # web ui resource
+  - /===get
+  - /dashboard/**===get
+  - /monitors/**===get
+  - /alert/**===get
+  - /account/**===get
+  - /setting/**===get
+  - /passport/**===get
+  - /status/**===get
+  - /**/*.html===get
+  - /**/*.js===get
+  - /**/*.css===get
+  - /**/*.ico===get
+  - /**/*.ttf===get
+  - /**/*.png===get
+  - /**/*.gif===get
+  - /**/*.jpg===get
+  - /**/*.svg===get
+  - /**/*.json===get
+  - /**/*.woff===get
+  - /**/*.eot===get
+  # swagger ui resource
+  - /swagger-resources/**===get
+  - /v2/api-docs===get
+  - /v3/api-docs===get
+  # h2 database
+  - /h2-console/**===*
 
-# user account information
-# Here is admin tom lili three accounts
-# eg: admin includes[admin,user]roles, password is hertzbeat 
-# eg: tom includes[user], password is hertzbeat
-# eg: lili includes[guest],text password is lili, salt password is 1A676730B0C7F54654B0E09184448289
+# account info config
+# eg: admin has role [admin,user], password is hertzbeat
+# eg: tom has role [user], password is hertzbeat
+# eg: lili has role [guest], plain password is lili, salt is 123, salted password is 1A676730B0C7F54654B0E09184448289
 account:
-   - appId: admin
-     credential: hertzbeat
-     role: [admin,user]
-   - appId: tom
-     credential: hertzbeat
-     role: [user]
-   - appId: guest
-     credential: hertzbeat
-     role: [guest]
+  - appId: admin
+    credential: hertzbeat
+    role: [admin]
+  - appId: tom
+    credential: hertzbeat
+    role: [user]
+  - appId: guest
+    credential: hertzbeat
+    role: [guest]
+  - appId: lili
+    # credential = MD5(password + salt)
+    # plain password: hertzbeat
+    # attention: digest authentication does not support salted encrypted password accounts
+    credential: 94C6B34E7A199A9F9D4E1F208093B489
+    salt: 123
+    role: [user]
 ```
 
 Modify the following **part parameters** in sureness.yml **[Note⚠️Other default sureness configuration parameters should be retained]**：
@@ -97,19 +119,26 @@ Modify the following **part parameters** in sureness.yml **[Note⚠️Other defa
 
 # user account information
 # Here is admin tom lili three accounts
-# eg: admin includes[admin,user]roles, password is hertzbeat 
-# eg: tom includes[user], password is hertzbeat
-# eg: lili includes[guest], text password is lili, salt password is 1A676730B0C7F54654B0E09184448289
+# eg: admin has role [admin,user], password is hertzbeat
+# eg: tom has role [user], password is hertzbeat
+# eg: lili has role [guest], plain password is lili, salt is 123, salted password is 1A676730B0C7F54654B0E09184448289
 account:
   - appId: admin
     credential: hertzbeat
-    role: [admin,user]
+    role: [admin]
   - appId: tom
     credential: hertzbeat
     role: [user]
   - appId: guest
     credential: hertzbeat
     role: [guest]
+  - appId: lili
+    # credential = MD5(password + salt)
+    # plain password: hertzbeat
+    # attention: digest authentication does not support salted encrypted password accounts
+    credential: 94C6B34E7A199A9F9D4E1F208093B489
+    salt: 123
+    role: [user]
 ```
 
 ## Update Security Secret  
@@ -122,7 +151,7 @@ Update the `application.yml` file in the `config` directory, modify the `surenes
 ```yaml
 sureness:
   jwt:
-    secret: 'CyaFv0bwq2Eik0jdrKUtsA6bx3sDJeFV643R
+    secret: 'CyaFv0bwq2Eik0jdrKUtsA6bx4sDJeFV643R
              LnfKefTjsIfJLBa2YkhEqEGtcHDTNe4CU6+9
              8tVt4bisXQ13rbN0oxhUZR73M6EByXIO+SV5
              dKhaX0csgOCTlCxq20yhmUea6H6JIpSE2Rwp'