Givi Khojanashvili
8b619a8224
JWT Groups support ( #966 )
...
Get groups from the JWT tokens if the feature enabled for the account
2023-06-27 18:51:05 +04:00
Maycon Santos
ed075bc9b9
Refactor: Configurable supported scopes ( #985 )
...
* Refactor: Configurable supported scopes
Previously, supported scopes were hardcoded and limited to Auth0
and Keycloak. This update removes the default set of values,
providing flexibility. The value to be set for each Identity
Provider (IDP) is specified in their respective documentation.
* correct var
* correct var
* skip fetching scopes from openid-configuration
2023-06-25 13:59:45 +02:00
Pascal Fischer
8eb098d6fd
add sleep and comment
2023-06-23 17:02:34 +02:00
Pascal Fischer
68a8687c80
fix linter
2023-06-23 16:45:07 +02:00
Pascal Fischer
f7d97b02fd
fix error codes on cli
2023-06-23 16:27:10 +02:00
Pascal Fischer
2691e729cd
fix ssh
2023-06-23 12:20:14 +02:00
Givi Khojanashvili
b524a9d49d
Fix use wrpped device in windows ( #981 )
2023-06-23 10:01:22 +02:00
Givi Khojanashvili
774d8e955c
Fix disabled DNS resolver fail ( #978 )
...
Fix fail of DNS when it disabled in the settings
2023-06-22 16:59:21 +04:00
Givi Khojanashvili
c20f98c8b6
ACL firewall manager fix/improvement ( #970 )
...
* ACL firewall manager fix/improvement
Fix issue with rule squashing, it contained issue when calculated
total amount of IPs in the Peer map (doesn't included offline peers).
That why squashing not worked.
Also this commit changes the rules apply behaviour. Instead policy:
1. Apply all rules from network map
2. Remove all previous applied rules
We do:
1. Apply only new rules
2. Remove outdated rules
Why first variant was implemented: because when you have drop policy
it is important in which order order you rules are and you need totally
clean previous state to apply the new. But in the release we didn't
include drop policy so we can do this improvement.
* Print log message about processed ACL rules
2023-06-20 20:33:41 +02:00
Zoltan Papp
20ae540fb1
Fix the stop procedure in DefaultDns ( #971 )
2023-06-20 20:33:26 +02:00
Bethuel
58cfa2bb17
Add Google Workspace IdP ( #949 )
...
Added integration with Google Workspace user directory API.
2023-06-20 19:15:36 +02:00
pascal-fischer
06005cc10e
Merge pull request #968 from netbirdio/chore/extend_gitignore_for_multiple_configs
...
Extend gitignore to ignore multiple configs
2023-06-19 17:17:12 +02:00
Pascal Fischer
1a3e377304
extend gitignore to ignore multiple config files
2023-06-19 15:07:27 +02:00
Zoltan Papp
dd29f4c01e
Reduce the peer status notifications ( #956 )
...
Reduce the peer status notifications
When receive new network map invoke multiple notifications for
every single peers. It cause high cpu usage We handle the in a
batch the peer notification in update network map.
- Remove the unnecessary UpdatePeerFQDN calls in addNewPeer
- Fix notification in RemovePeer function
- Involve FinishPeerListModifications logic
2023-06-19 11:20:34 +02:00
pascal-fischer
cb7ecd1cc4
Merge pull request #945 from netbirdio/feat/refactor_route_adding_in_client
...
Refactor check logic when adding routes
2023-06-19 10:16:22 +02:00
Maycon Santos
a4350c19e7
Fix: Skip state notification should use a copy of the previous peer state ( #960 )
...
This was affecting the behavior of the route manager,
causing issues with HA and with cases of flaky connections
2023-06-17 09:03:52 +02:00
Maycon Santos
09ca2d222a
Update the API description with the correct API state ( #958 )
2023-06-16 18:26:50 +02:00
Zoltan Papp
f1b38dbe80
Fix/dns initialization ( #954 )
...
The systemd HostManagers require valid, initialized network interface
2023-06-15 12:25:18 +02:00
Givi Khojanashvili
042f124702
Use different initialize order for DNS resolver in android/nonandroid clients ( #952 )
2023-06-13 09:20:29 +02:00
Pascal Fischer
b5d8142705
test windows
2023-06-12 16:22:53 +02:00
Pascal Fischer
f45eb1a1da
test windows
2023-06-12 16:12:24 +02:00
Pascal Fischer
2567006412
test windows
2023-06-12 16:01:06 +02:00
Pascal Fischer
b92107efc8
test windows
2023-06-12 15:38:47 +02:00
pascal-fischer
ff267768f0
Decouple docs generation ( #941 )
...
* decouple docs update
* removed workflow run on push to main
2023-06-12 15:37:08 +02:00
Pascal Fischer
5d19811331
test windows
2023-06-12 15:26:28 +02:00
Pascal Fischer
697d41c94e
test windows
2023-06-12 15:14:51 +02:00
Pascal Fischer
75d541f967
test windows
2023-06-12 14:56:30 +02:00
Zoltan Papp
481465e1ae
Feature/android dns ( #943 )
...
Support DNS feature on mobile systems
---------
Co-authored-by: Givi Khojanashvili <gigovich@gmail.com>
2023-06-12 14:43:55 +02:00
Pascal Fischer
7dfbb71f7a
test windows
2023-06-12 12:49:21 +02:00
Pascal Fischer
a5d14c92ff
test windows
2023-06-12 12:16:00 +02:00
Pascal Fischer
ce091ab42b
test windows
2023-06-12 11:43:18 +02:00
Pascal Fischer
d2fad1cfd9
testing windows
2023-06-12 11:06:49 +02:00
pascal-fischer
f8da516128
Add app restart to brew installer ( #944 )
...
* add app stop and service uninstall
* add app stop and service uninstall
* do not send error messages for positive case
2023-06-11 22:22:03 +02:00
Maycon Santos
c331cef242
Remove the number of status notifications on disconnected peers ( #946 )
...
Only send notifications when disconnected once, at peer's IP update
2023-06-11 21:51:33 +02:00
Pascal Fischer
0b5594f145
testing windows
2023-06-09 19:17:26 +02:00
Pascal Fischer
9beaa91db9
testing windows
2023-06-09 19:15:39 +02:00
Pascal Fischer
c8b4c08139
split systemops for operating systems and add linux
2023-06-09 18:48:21 +02:00
Pascal Fischer
dad5501a44
split systemops for operating systems and add linux
2023-06-09 18:40:35 +02:00
Pascal Fischer
1ced2462c1
split systemops for operating systems and add linux
2023-06-09 18:36:49 +02:00
Pascal Fischer
64adaeb276
split systemops for operating systems and add linux
2023-06-09 18:30:36 +02:00
Pascal Fischer
6e26d03fb8
split systemops for operating systems and add linux
2023-06-09 18:27:09 +02:00
Pascal Fischer
493ddb4fe3
Revert "hacky all-operating-systems solution"
...
This reverts commit 75fac258e7
.
2023-06-09 17:59:06 +02:00
Pascal Fischer
75fac258e7
hacky all-operating-systems solution
2023-06-09 17:40:10 +02:00
Pascal Fischer
bc8ee8fc3c
add tests
2023-06-09 16:18:48 +02:00
Pascal Fischer
3724323f76
test still failing
2023-06-09 15:33:22 +02:00
Pascal Fischer
3ef33874b1
change checks before route adding to not only check for default gateway (test missing)
2023-06-09 12:35:57 +02:00
Zoltan Papp
a0296f7839
Eliminate default trace log level on Mobile ( #942 )
2023-06-09 09:55:31 +02:00
Givi Khojanashvili
1d9feab2d9
Feat fake dns address ( #902 )
...
Works only with userspace implementation:
1. Configure host to solve DNS requests via a fake DSN server address in the Netbird network.
2. Add to firewall catch rule for these DNS requests.
3. Resolve these DNS requests and respond by writing directly to wireguard device.
2023-06-08 13:46:57 +04:00
Bethuel
2c9583dfe1
Support authentication with client_secret ( #936 )
...
* add dashboard client_secret env
* add NETBIRD_AUTH_CLIENT_SECRET env test
2023-06-07 16:00:04 +02:00
Givi Khojanashvili
ef59001459
Fix routes allow acl rule ( #940 )
...
Modify rules in iptables and nftables to accept all traffic not from netbird network but routed through it.
2023-06-07 15:24:27 +02:00