6e9f7531f5
Track user block/unblock activity event ( #865 )
2023-05-17 09:54:20 +02:00
db69a0cf9d
Prevent setting primary resolver if using custom DNS port ( #861 )
...
Most host managers doesn't support using custom DNS ports.
We are now disabling setting it up to avoid unwanted results
2023-05-17 00:03:26 +02:00
4c5b85d80b
Merge pull request #863 from netbirdio/fix/base62_dependency
...
Remove dependency to base62 package
2023-05-16 13:36:08 +02:00
873abc43bf
move into separate package
2023-05-16 12:57:56 +02:00
2fef52b856
remove dependency to external base62 package and create own methods in utils
2023-05-16 12:44:26 +02:00
a3ee45b79e
Add mipsle build to enable netbird for devices such as EdgeRouter X ( #842 )
...
Add mipsle build and split build for mipsle and mips archs.
Removed yum and debian packages for these archs.
2023-05-14 12:06:29 +02:00
c2770c7bf9
Merge pull request #851 from bcmmbaga/bug/oidc-config
...
Resolve issue with AuthIssuer URL assignment in auth0
2023-05-12 17:25:41 +02:00
2570363861
fix assign correct issuer url to auth0 AuthIssuer
2023-05-12 18:07:11 +03:00
e3d2b6a408
Block user through HTTP API ( #846 )
...
The new functionality allows blocking a user in the Management service.
Blocked users lose access to the Dashboard, aren't able to modify the network map,
and all of their connected devices disconnect and are set to the "login expired" state.
Technically all above was achieved with the updated PUT /api/users endpoint,
that was extended with the is_blocked field.
2023-05-11 18:09:36 +02:00
9f758b2015
Fix preshared key command line arg handling ( #850 )
2023-05-11 18:09:06 +02:00
2c50d7af1e
Automatically load IdP OIDC configuration ( #847 )
2023-05-11 15:14:00 +02:00
e4c28f64fa
Fix user cache lookup filtering for service users ( #849 )
2023-05-10 19:27:17 +02:00
6f2c4078ef
Fix macOS installer script ( #844 )
...
Create /usr/local/bin/ folder before installation
2023-05-09 16:22:02 +02:00
f4ec1699ca
Add Zitadel IdP ( #833 )
...
Added intergration with Zitadel management API.
Use the steps in zitadel.md for configuration.
2023-05-05 19:27:28 +02:00
fea53b2f0f
Fix incomplete verification URI issue in device auth flow ( #838 )
...
Adds functionality to support Identity Provider (IdP) managers
that do not support a complete verification URI in the
device authentication flow.
In cases where the verification_uri_complete field is empty,
the user will be prompted with their user_code,
and the verification_uri field will be used as a fallback
2023-05-05 12:43:04 +02:00
60e6d0890a
Fix sharedsock build on android ( #837 )
2023-05-05 10:55:23 +02:00
cb12e2da21
Correct sharedsock BPF fields ( #835 )
2023-05-04 12:28:32 +02:00
873b56f856
Add Azure Idp Manager ( #822 )
...
Added intergration with Azure IDP user API.
Use the steps in azure-ad.md for configuration:
cb03373f8f/docs/integrations/identity-providers/self-hosted/azure-ad.md
2023-05-03 14:51:44 +02:00
ecac82a5ae
Share kernel Wireguard port with raw socket ( #826 )
...
This PR brings support of a shared port between stun (ICE agent) and
the kernel WireGuard
It implements a single port mode for execution with kernel WireGuard
interface using a raw socket listener.
BPF filters ensure that only STUN packets hit the NetBird userspace app
Removed a lot of the proxy logic and direct mode exchange.
Now we are doing an extra hole punch to the remote WireGuard
port for best-effort cases and support to old client's direct mode.
2023-05-03 14:47:44 +02:00
59372ee159
API cleanup ( #824 )
...
removed all PATCH endpoints
updated path parameters for all endpoints
removed not implemented endpoints for api doc
minor description updates
2023-05-03 00:15:25 +02:00
08db5f5a42
Merge pull request #831 from netbirdio/fix/issue_with_account_creation_after_auth_refactor
...
FIx account creation issue after auth refactor
2023-05-02 19:14:54 +02:00
88678ef364
Merge pull request #808 from bcmmbaga/main
...
Add support for refreshing signing keys on expiry
2023-05-02 17:17:09 +02:00
f1da4fd55d
using old isAdmin function to create account
2023-05-02 16:49:29 +02:00
e096ec39d5
Enable roaming for mobile ( #827 )
2023-04-28 16:26:54 +02:00
7f5e1c623e
Use forked Wireguard-go for custom bind ( #823 )
...
Update go version to 1.20
Use forked wireguard-go repo because of custom Bind implementation
2023-04-27 17:50:45 +02:00
afaa3fbe4f
Use local time zone for display last update changes ( #825 )
...
* Use local time zone for display last update changes
* using TZ UTC for testing purposes
* use init func
2023-04-27 16:02:00 +02:00
6fec0c682e
Merging full service user feature into main ( #819 )
...
Merging full feature branch into main.
Adding full support for service users including backend objects, persistence, verification and api endpoints.
2023-04-22 12:57:51 +02:00
45224e76d0
fallback to olde keys if failing to fetch refreshed keys
2023-04-21 13:34:52 +03:00
c2e90a2a97
feat: add support for custom device hostname ( #789 )
...
Configure via --hostname (or -n) flag in the `up` and `login` commands
---------
Signed-off-by: Chinmay D. Pai <chinmay.pai@zerodha.com >
2023-04-20 16:00:22 +02:00
118880b6f7
Send a status notification on offline peers change ( #821 )
...
Sum offline peers too
2023-04-20 15:59:07 +02:00
90c8cfd863
synchronize access to the signing keys
2023-04-19 17:11:38 +03:00
bb147c2a7c
Remove unnecessary uapi open ( #807 )
...
Remove unnecessary uapi open from Android implementation
2023-04-17 11:50:12 +02:00
4616bc5258
Add route management for Android interface ( #801 )
...
Support client route management feature on Android
2023-04-17 11:15:37 +02:00
f7196cd9a5
refactoring
2023-04-15 03:44:42 +03:00
1803cf3678
Fix error handling in case of the port is in used ( #810 )
2023-04-14 16:18:00 +02:00
9f35a7fb8d
Ignore ipv6 labeled address ( #809 )
...
Ignore ipv6 labeled address
2023-04-14 15:40:27 +02:00
53d78ad982
make variable unexported
2023-04-14 13:16:01 +03:00
9f352c1b7e
validate keys for idp's with key rotation mechanism
2023-04-14 12:20:34 +03:00
a89808ecae
initialize jwt validator with keys rotation state
2023-04-14 12:17:28 +03:00
c6190fa2ba
add use-key-cache-headers flag to management command
2023-04-13 20:19:04 +03:00
2eeed55c18
Bind implementation ( #779 )
...
This PR adds supports for the WireGuard userspace implementation
using Bind interface from wireguard-go.
The newly introduced ICEBind struct implements Bind with UDPMux-based
structs from pion/ice to handle hole punching using ICE.
The core implementation was taken from StdBind of wireguard-go.
The result is a single WireGuard port that is used for host and server reflexive candidates.
Relay candidates are still handled separately and will be integrated in the following PRs.
ICEBind checks the incoming packets for being STUN or WireGuard ones
and routes them to UDPMux (to handle hole punching) or to WireGuard respectively.
2023-04-13 17:00:01 +02:00
0343c5f239
Rollback simple ACL rules processing. ( #803 )
2023-04-12 09:39:17 +02:00
251f2d7bc2
Pass newly generated ID to network map when adding peer ( #800 )
2023-04-11 14:28:22 +02:00
306e02d32b
Update calculate server state ( #796 )
...
Refactored updateServerStates and calculateState
added some checks to ensure we are not sending connecting on context canceled
removed some state updates from the RunClient function
2023-04-10 18:22:25 +02:00
8375491708
Merge pull request #778 from netbirdio/fix/consistent_time_format_for_pat
...
fix/use_utc_for_time_operations
2023-04-10 18:11:41 +02:00
e197b89ac3
remove UTC from some not store related operations
2023-04-10 11:09:27 +02:00
6aba28ccb7
remove UTC from some not store related operations
2023-04-10 10:54:23 +02:00
8f9826b207
Fix export path for certificate files ( #794 )
...
assign the value for NETBIRD_LETSENCRYPT_DOMAIN
in the base.setup.env file
2023-04-07 10:34:17 +02:00
0aad9169e9
Fix nil pointer exception ( #790 )
...
Nil pointer exception fix. The error handling was in wrong order.
2023-04-06 18:15:55 +02:00
1057cd211d
Add scope and id token environment variables ( #785 )
2023-04-05 21:57:47 +02:00
