07b220d91b
[management] REST client impersonation ( #3879 )
2025-06-02 22:11:28 +02:00
2bef214cc0
[management] Fix user groups propagation ( #3902 )
2025-05-30 18:12:30 +03:00
684501fd35
[management] Prevent deletion of peers linked to network routers ( #3881 )
...
- Prevent deletion of peers linked to network routers
- Add API endpoint to list all network routers
2025-05-29 18:50:00 +03:00
a0d28f9851
[management] Reset test containers after cleanup ( #3885 )
2025-05-27 14:42:00 +03:00
5523040acd
[management] Add correlated network traffic event schema ( #3680 )
2025-05-27 13:47:53 +03:00
5bed6777d5
[management] force account id on save groups update ( #3850 )
2025-05-23 14:42:42 +01:00
2a89d6e47a
[management] Extend nameserver match domain validation ( #3864 )
...
* Enhance match domain validation logic and add test cases
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
* remove the leading dot and root dot support ns regex
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
* Remove support for wildcard ns match domain
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
---------
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2025-05-22 23:16:19 +02:00
24f932b2ce
[management] Update traffic events pagination filters ( #3857 )
2025-05-22 16:28:14 +03:00
c03435061c
[management] lazy connection account setting ( #3855 )
2025-05-22 14:09:00 +01:00
daa8380df9
[client] Feature/lazy connection ( #3379 )
...
With the lazy connection feature, the peer will connect to target peers on-demand. The trigger can be any IP traffic.
This feature can be enabled with the NB_ENABLE_EXPERIMENTAL_LAZY_CONN environment variable.
When the engine receives a network map, it binds a free UDP port for every remote peer, and the system configures WireGuard endpoints for these ports. When traffic appears on a UDP socket, the system removes this listener and starts the peer connection procedure immediately.
Key changes
Fix slow netbird status -d command
Move from engine.go file to conn_mgr.go the peer connection related code
Refactor the iface interface usage and moved interface file next to the engine code
Add new command line flag and UI option to enable feature
The peer.Conn struct is reusable after it has been closed.
Change connection states
Connection states
Idle: The peer is not attempting to establish a connection. This typically means it's in a lazy state or the remote peer is expired.
Connecting: The peer is actively trying to establish a connection. This occurs when the peer has entered an active state and is continuously attempting to reach the remote peer.
Connected: A successful peer-to-peer connection has been established and communication is active.
2025-05-21 11:12:28 +02:00
4785f23fc4
[management] Migrate events sqlite store to gorm ( #3837 )
2025-05-20 17:00:37 +03:00
207fa059d2
[management] make locking strength clause optional ( #3844 )
2025-05-19 16:42:47 +02:00
701c13807a
[management] add flag to disable auto-migration ( #3840 )
2025-05-19 13:36:24 +02:00
f1de8e6eb0
[management] Make startup period configurable ( #3767 )
2025-05-16 13:16:51 +02:00
adf494e1ac
[management] fix a bug with missed extra dns labels for a new peer ( #3798 )
2025-05-14 17:50:21 +02:00
2158461121
[management,client] PKCE add flag parameter prompt=login or max_age ( #3824 )
2025-05-14 17:48:51 +02:00
0cd4b601c3
[management] Add connection type filter to Network Traffic API ( #3815 )
2025-05-14 11:15:50 +03:00
fcd2c15a37
[management] policy delete cleans policy rules ( #3788 )
2025-05-07 07:25:25 +02:00
ebda0fc538
[management] Delete service users with account manager ( #3793 )
2025-05-06 17:31:03 +02:00
25faf9283d
[management] removal of foreign key constraint enforcement on sqlite ( #3786 )
2025-05-05 18:21:48 +02:00
055df9854c
[management] add gorm tag for primary key for the networks objects ( #3758 )
2025-05-04 20:58:04 +02:00
12f883badf
[management] Optimize load account ( #3774 )
2025-05-02 00:59:41 +02:00
2abb92b0d4
[management] Get account id with order ( #3773 )
...
updated log to display account id
2025-05-02 00:25:46 +02:00
7b64953eed
[management] user info with role permissions ( #3728 )
2025-05-01 11:24:55 +01:00
b5419ef11a
[management] limit peers based on module read permission ( #3757 )
2025-04-30 15:53:18 +01:00
488e619ec7
[management] Add network traffic events pagination ( #3580 )
...
* Add network traffic events pagination schema
2025-04-30 11:51:40 +03:00
d8dc107bee
[management] Skip IdP cache warm-up on Redis if data exists ( #3733 )
...
* Add Redis cache check to skip warm-up on startup if cache is already populated
* Refactor Redis test container setup for reusability
2025-04-28 15:10:40 +03:00
47c3afe561
[management] add missing network admin mapping ( #3751 )
2025-04-28 11:05:27 +01:00
38ada44a0e
[management] allow impersonation via pats ( #3739 )
2025-04-25 16:40:54 +02:00
dbf81a145e
[management] network admin role ( #3720 )
2025-04-25 15:14:32 +01:00
39483f8ca8
[management] Auditor role ( #3721 )
2025-04-25 15:04:25 +01:00
4a9049566a
[client] Set up firewall rules for dns routes dynamically based on dns response ( #3702 )
2025-04-24 17:37:28 +02:00
400b9fca32
[management] Add firewall rule route ID and missing route domains ( #3700 )
2025-04-23 21:29:46 +02:00
312bfd9bd7
[management] support custom domains per account ( #3726 )
2025-04-23 19:36:53 +02:00
c69df13515
[management] Add account meta ( #3724 )
2025-04-23 18:44:22 +02:00
986eb8c1e0
[management] fix lastLogin on dashboard ( #3725 )
2025-04-23 15:54:49 +02:00
1a6d6b3109
[management] fix github run id ( #3705 )
2025-04-18 11:21:54 +02:00
a4311f574d
[management] push benchmark results to grafana ( #3701 )
2025-04-17 21:01:23 +02:00
e0b33d325d
[management] permissions manager use crud operations ( #3690 )
2025-04-16 17:25:03 +02:00
75bdd47dfb
[management] get current user endpoint ( #3666 )
2025-04-15 11:06:07 +01:00
4134b857b4
[management] add permissions manager to geolocation handler ( #3665 )
2025-04-14 17:57:58 +01:00
7839d2c169
[management] Refactor/management/updchannel ( #3645 )
...
* refactoring updatechannel - use read mutex for send update
2025-04-11 18:22:59 +03:00
b9f82e2f8a
[management] Buffer updateAccountPeers calls ( #3644 )
2025-04-11 17:21:05 +02:00
fd2a21c65d
[management] remove unnecessary access control middleware ( #3650 )
2025-04-11 10:43:59 +01:00
82d982b0ab
[management,client] Add support to configurable prompt login ( #3660 )
2025-04-11 11:34:55 +02:00
5ea2806663
[management] use permission modules ( #3622 )
2025-04-10 11:06:52 +02:00
09243a0fe0
[management] Remove remaining backend linux router limitation ( #3589 )
2025-04-01 21:29:57 +02:00
cbec7bda80
[management] permission manager validate account access ( #3444 )
2025-03-30 17:08:22 +02:00
50f5cc48cd
[management] Fix extended config when nil ( #3593 )
...
* Fix extended config when nil
* update integrations
2025-03-27 23:07:10 +01:00
a4f04f5570
[management] fix extend call and move config to types ( #3575 )
...
This PR fixes configuration inconsistencies and updates the store engine type usage throughout the management code. Key changes include:
- Replacing outdated server.Config references with types.Config and updating related flag variables (e.g. types.MgmtConfigPath).
- Converting engine constants (SqliteStoreEngine, PostgresStoreEngine, MysqlStoreEngine) to use types.Engine for consistent type–safety.
- Adjusting various test and migration code paths to correctly reference the new configuration and engine types.
2025-03-27 13:04:50 +01:00
