netbird

mirror of https://github.com/netbirdio/netbird.git synced 2025-01-05 21:49:03 +01:00

Author	SHA1	Message	Date
bcmmbaga	cd92646348	enable diff nil structs comparison Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 19:33:17 +03:00
bcmmbaga	30a0d9c8c4	fix postgres tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 18:03:00 +03:00
bcmmbaga	a42ebb8202	fix management suite tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 15:26:05 +03:00
bcmmbaga	15b83cb1e5	Merge branch 'feature/optimize-network-map-updates' into feature/validate-group-association	2024-10-10 13:59:02 +03:00
bcmmbaga	fdb1a1fe00	Merge branch 'main' into feature/optimize-network-map-updates	2024-10-10 13:57:34 +03:00
pascal-fischer	8284ae959c	[management] Move testdata to sql files (#2693 )	2024-10-10 12:35:03 +02:00
bcmmbaga	8cabb07728	fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 10:40:24 +03:00
bcmmbaga	57f7f43ecb	Merge branch 'feature/optimize-network-map-updates' into feature/validate-group-association # Conflicts: # management/server/account.go	2024-10-10 09:46:32 +03:00
bcmmbaga	2e20a586cb	fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 09:44:31 +03:00
bcmmbaga	ed3c3c214e	Merge branch 'main' into feature/optimize-network-map-updates # Conflicts: # management/server/testdata/store.json	2024-10-10 09:31:55 +03:00
bcmmbaga	bdf114cd74	add peer tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-10 01:51:47 +03:00
bcmmbaga	ce7de03d6e	use generic differ for netip.Addr and netip.Prefix Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-09 23:49:41 +03:00
pascal-fischer	b79c1d64cc	[management] Make max open db conns configurable (#2713 )	2024-10-09 20:17:25 +02:00
bcmmbaga	9ee08fc441	fix nameserver tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-09 17:04:20 +03:00
bcmmbaga	271bed5f73	upgrade diff package Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-09 17:01:40 +03:00
bcmmbaga	2a751645f9	fix group tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-09 17:00:29 +03:00
pascal-fischer	d4ef84fe6e	[management] Propagate error in store errors (#2709 )	2024-10-09 14:33:58 +02:00
bcmmbaga	d4edde90c2	fix routes tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-09 13:52:43 +03:00
bcmmbaga	5cc07ba42a	fix nameserver tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 19:39:12 +03:00
bcmmbaga	70f1c394c1	fix typo Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 17:15:06 +03:00
bcmmbaga	c74a13e1a9	fix account and route tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 17:11:50 +03:00
bcmmbaga	1ed44b810c	fix user and setup key tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 16:51:00 +03:00
bcmmbaga	41acacfba5	add posture checks tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 15:50:13 +03:00
bcmmbaga	fc7157f82f	add policy tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-08 11:59:03 +03:00
Bethuel Mmbaga	2c1f5e46d5	[management] Validate peer ownership during login (#2704 ) * check peer ownership in login Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * update error message Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-07 19:06:26 +03:00
bcmmbaga	63c510e80d	fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-06 20:34:50 +03:00
pascal-fischer	dbec24b520	[management] Remove admin check on getAccountByID (#2699 )	2024-10-06 17:01:13 +02:00
Bethuel Mmbaga	5897a48e29	fix wrong reference (#2695 ) Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-04 18:55:25 +03:00
Bethuel Mmbaga	8bf729c7b4	[management] Add AccountExists to AccountManager (#2694 ) * Add AccountExists method to account manager interface Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * remove unused code Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-04 18:09:40 +03:00
Bethuel Mmbaga	7f09b39769	[management] Refactor User JWT group sync (#2690 ) * Refactor GetAccountIDByUserOrAccountID Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * sync user jwt group changes Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * propagate jwt group changes to peers Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix no jwt groups synced Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests and lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Move the account peer update outside the transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * move updateUserPeersInGroups to account manager Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * move event store outside of transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * get user with update lock Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Run jwt sync in transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-04 17:17:01 +03:00
bcmmbaga	716009b791	Merge branch 'feature/optimize-network-map-updates' into feature/validate-group-association # Conflicts: # management/server/account.go # management/server/peer.go # management/server/peer_test.go # management/server/policy.go # management/server/route.go # management/server/route_test.go	2024-10-04 10:46:41 +03:00
pascal-fischer	158936fb15	[management] Remove file store (#2689 )	2024-10-03 15:50:35 +02:00
bcmmbaga	a915707d13	fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-03 14:12:53 +03:00
bcmmbaga	5108888163	Merge branch 'main' into feature/optimize-network-map-updates # Conflicts: # management/server/account_test.go # management/server/peer.go	2024-10-03 14:10:46 +03:00
Bethuel Mmbaga	ff7863785f	[management, client] Add access control support to network routes (#2100 )	2024-10-02 13:41:00 +02:00
pascal-fischer	16179db599	[management] Propagate metrics (#2667 )	2024-09-30 22:18:10 +02:00
adasauce	58ff7ab797	[management] improve zitadel idp error response detail by decoding errors (#2634 ) * [management] improve zitadel idp error response detail by decoding errors * [management] extend readZitadelError to be used for requestJWTToken more generically parse the error returned by zitadel. * fix lint --------- Co-authored-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-09-27 22:21:34 +03:00
Bethuel Mmbaga	acb73bd64a	[management] Remove redundant get account calls in GetAccountFromToken (#2615 ) * refactor access control middleware and user access by JWT groups Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor jwt groups extractor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor handlers to get account when necessary Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountFromToken Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountWithAuthorizationClaims Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * revert handles change Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * remove GetUserByID from account manager Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountWithAuthorizationClaims to return account id Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor handlers to use GetAccountIDFromToken Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * remove locks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add GetGroupByName from store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add GetGroupByID from store and refactor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor retrieval of policy and posture checks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor user permissions and retrieves PAT Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor route, setupkey, nameserver and dns to get record(s) from store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix add missing policy source posture checks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add store lock Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add get account Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-09-27 17:10:50 +03:00
pascal-fischer	1e4a0f77e2	Add get DB method to store (#2650 )	2024-09-25 18:22:27 +02:00
pascal-fischer	d47be154ea	[misc] Fix ip range posture check example (#2628 )	2024-09-23 10:02:03 +02:00
Bethuel Mmbaga	35c892aea3	[management] Restrict accessible peers to user-owned peers for non-admins (#2618 ) * Restrict accessible peers to user-owned peers for non-admin users Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add service user test Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * reuse account from token Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * return error when peer not found Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-09-20 12:36:58 +03:00
pascal-fischer	6c50b0c84b	[management] Add transaction to addPeer (#2469 ) This PR removes the GetAccount and SaveAccount operations from the AddPeer and instead makes use of gorm.Transaction to add the new peer.	2024-09-16 15:47:03 +02:00
Bethuel Mmbaga	82739e2832	[management] fix legacy decrypting of empty values (#2595 ) * allow legacy decrypting on empty values * validate source size and padding limits * added tests --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>	2024-09-15 16:22:46 +02:00
Bethuel Mmbaga	170e842422	[management] Add accessible peers endpoint (#2579 ) * move accessible peer to separate endpoint in api doc Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add endpoint to get accessible peers Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Update management/server/http/api/openapi.yml Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com> * Update management/server/http/api/openapi.yml Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com> * Update management/server/http/peers_handler.go Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> Co-authored-by: pascal-fischer <32096965+pascal-fischer@users.noreply.github.com>	2024-09-12 16:19:27 +03:00
Bethuel Mmbaga	cf6210a6f4	[management] Add GCM encryption and migrate legacy encrypted events (#2569 ) * Add AES-GCM encryption Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * migrate legacy encrypted data to AES-GCM encryption Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor and use transaction when migrating data Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Add events migration tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * skip migrating record on error Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Preallocate capacity for nonce to avoid allocations in Seal Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-09-11 20:09:57 +03:00
Viktor Liu	2d1bf3982d	[relay] Improve relay messages (#2574 ) Co-authored-by: Zoltán Papp <zoltan.pmail@gmail.com>	2024-09-11 16:20:30 +02:00
pascal-fischer	f43a0a0177	[client] Retry on tun creation for darwin (#2564 ) The interface creation on macOS seems to be asynchronus why the tun.create methode somethimes failes becasue the interface is not ready yet. To work around this issue we introduce a retry on tun.create	2024-09-09 19:02:10 +02:00
benniekiss	12c36312b5	[management] Auto update geolite (#2297 ) introduces helper functions to fetch and verify database versions, downloads new files if outdated, and deletes old ones. It also refactors filename handling to improve clarity and consistency, adding options to disable auto-updating via a flag. The changes aim to simplify GeoLite database management for admins.	2024-09-09 18:27:42 +02:00
Zoltan Papp	0c039274a4	[relay] Feature/relay integration (#2244 ) This update adds new relay integration for NetBird clients. The new relay is based on web sockets and listens on a single port. - Adds new relay implementation with websocket with single port relaying mechanism - refactor peer connection logic, allowing upgrade and downgrade from/to P2P connection - peer connections are faster since it connects first to relay and then upgrades to P2P - maintains compatibility with old clients by not using the new relay - updates infrastructure scripts with new relay service	2024-09-08 12:06:14 +02:00
Maycon Santos	a7e46bf7b1	Reduce test logs (#2550 )	2024-09-06 16:28:19 +02:00

1 2 3 4 5 ...

651 Commits