4f63996ae8
[management] added events streaming metrics ( #3814 )
2025-06-12 18:48:54 +01:00
6d654acbad
[management] Persist peer flags in meta updates ( #3958 )
...
This PR adds persistence for peer feature flags when updating metadata, including equality checks, gRPC extraction, and corresponding unit tests.
- Introduce a new `Flags` struct with `isEqual` and incorporate it into `PeerSystemMeta`.
- Update `UpdateMetaIfNew` logic to consider flag changes.
- Extend gRPC server’s `extractPeerMeta` to populate `Flags` and add tests for `Flags.isEqual`.
2025-06-11 22:39:59 +02:00
4ee1635baa
[management] Propagate user groups when group propagation setting is re-enabled ( #3912 )
2025-06-11 14:32:16 +03:00
87376afd13
[management] Enable unidirectional rules for all port policy ( #3826 )
2025-06-10 18:02:45 +03:00
b76d9e8e9e
[management] Add support for port ranges in firewall rules ( #3823 )
2025-06-10 18:02:13 +03:00
de27d6df36
[management] Add account ID index to activity events ( #3946 )
2025-06-09 14:34:53 +03:00
b604c66140
[management] Add postgres support for activity event store ( #3890 )
2025-06-04 17:38:49 +03:00
87148c503f
[management] support account retrieval and creation by private domain ( #3825 )
...
* [management] sys initiator save user (#3911 )
* [management] activity events with multiple external account users (#3914 )
2025-06-04 11:21:31 +01:00
07b220d91b
[management] REST client impersonation ( #3879 )
2025-06-02 22:11:28 +02:00
2bef214cc0
[management] Fix user groups propagation ( #3902 )
2025-05-30 18:12:30 +03:00
684501fd35
[management] Prevent deletion of peers linked to network routers ( #3881 )
...
- Prevent deletion of peers linked to network routers
- Add API endpoint to list all network routers
2025-05-29 18:50:00 +03:00
a0d28f9851
[management] Reset test containers after cleanup ( #3885 )
2025-05-27 14:42:00 +03:00
5523040acd
[management] Add correlated network traffic event schema ( #3680 )
2025-05-27 13:47:53 +03:00
5bed6777d5
[management] force account id on save groups update ( #3850 )
2025-05-23 14:42:42 +01:00
2a89d6e47a
[management] Extend nameserver match domain validation ( #3864 )
...
* Enhance match domain validation logic and add test cases
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
* remove the leading dot and root dot support ns regex
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
* Remove support for wildcard ns match domain
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
---------
Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com >
2025-05-22 23:16:19 +02:00
24f932b2ce
[management] Update traffic events pagination filters ( #3857 )
2025-05-22 16:28:14 +03:00
c03435061c
[management] lazy connection account setting ( #3855 )
2025-05-22 14:09:00 +01:00
daa8380df9
[client] Feature/lazy connection ( #3379 )
...
With the lazy connection feature, the peer will connect to target peers on-demand. The trigger can be any IP traffic.
This feature can be enabled with the NB_ENABLE_EXPERIMENTAL_LAZY_CONN environment variable.
When the engine receives a network map, it binds a free UDP port for every remote peer, and the system configures WireGuard endpoints for these ports. When traffic appears on a UDP socket, the system removes this listener and starts the peer connection procedure immediately.
Key changes
Fix slow netbird status -d command
Move from engine.go file to conn_mgr.go the peer connection related code
Refactor the iface interface usage and moved interface file next to the engine code
Add new command line flag and UI option to enable feature
The peer.Conn struct is reusable after it has been closed.
Change connection states
Connection states
Idle: The peer is not attempting to establish a connection. This typically means it's in a lazy state or the remote peer is expired.
Connecting: The peer is actively trying to establish a connection. This occurs when the peer has entered an active state and is continuously attempting to reach the remote peer.
Connected: A successful peer-to-peer connection has been established and communication is active.
2025-05-21 11:12:28 +02:00
4785f23fc4
[management] Migrate events sqlite store to gorm ( #3837 )
2025-05-20 17:00:37 +03:00
207fa059d2
[management] make locking strength clause optional ( #3844 )
2025-05-19 16:42:47 +02:00
701c13807a
[management] add flag to disable auto-migration ( #3840 )
2025-05-19 13:36:24 +02:00
f1de8e6eb0
[management] Make startup period configurable ( #3767 )
2025-05-16 13:16:51 +02:00
adf494e1ac
[management] fix a bug with missed extra dns labels for a new peer ( #3798 )
2025-05-14 17:50:21 +02:00
2158461121
[management,client] PKCE add flag parameter prompt=login or max_age ( #3824 )
2025-05-14 17:48:51 +02:00
0cd4b601c3
[management] Add connection type filter to Network Traffic API ( #3815 )
2025-05-14 11:15:50 +03:00
fcd2c15a37
[management] policy delete cleans policy rules ( #3788 )
2025-05-07 07:25:25 +02:00
ebda0fc538
[management] Delete service users with account manager ( #3793 )
2025-05-06 17:31:03 +02:00
25faf9283d
[management] removal of foreign key constraint enforcement on sqlite ( #3786 )
2025-05-05 18:21:48 +02:00
055df9854c
[management] add gorm tag for primary key for the networks objects ( #3758 )
2025-05-04 20:58:04 +02:00
12f883badf
[management] Optimize load account ( #3774 )
2025-05-02 00:59:41 +02:00
2abb92b0d4
[management] Get account id with order ( #3773 )
...
updated log to display account id
2025-05-02 00:25:46 +02:00
7b64953eed
[management] user info with role permissions ( #3728 )
2025-05-01 11:24:55 +01:00
b5419ef11a
[management] limit peers based on module read permission ( #3757 )
2025-04-30 15:53:18 +01:00
488e619ec7
[management] Add network traffic events pagination ( #3580 )
...
* Add network traffic events pagination schema
2025-04-30 11:51:40 +03:00
d8dc107bee
[management] Skip IdP cache warm-up on Redis if data exists ( #3733 )
...
* Add Redis cache check to skip warm-up on startup if cache is already populated
* Refactor Redis test container setup for reusability
2025-04-28 15:10:40 +03:00
47c3afe561
[management] add missing network admin mapping ( #3751 )
2025-04-28 11:05:27 +01:00
38ada44a0e
[management] allow impersonation via pats ( #3739 )
2025-04-25 16:40:54 +02:00
dbf81a145e
[management] network admin role ( #3720 )
2025-04-25 15:14:32 +01:00
39483f8ca8
[management] Auditor role ( #3721 )
2025-04-25 15:04:25 +01:00
4a9049566a
[client] Set up firewall rules for dns routes dynamically based on dns response ( #3702 )
2025-04-24 17:37:28 +02:00
400b9fca32
[management] Add firewall rule route ID and missing route domains ( #3700 )
2025-04-23 21:29:46 +02:00
312bfd9bd7
[management] support custom domains per account ( #3726 )
2025-04-23 19:36:53 +02:00
c69df13515
[management] Add account meta ( #3724 )
2025-04-23 18:44:22 +02:00
986eb8c1e0
[management] fix lastLogin on dashboard ( #3725 )
2025-04-23 15:54:49 +02:00
1a6d6b3109
[management] fix github run id ( #3705 )
2025-04-18 11:21:54 +02:00
a4311f574d
[management] push benchmark results to grafana ( #3701 )
2025-04-17 21:01:23 +02:00
e0b33d325d
[management] permissions manager use crud operations ( #3690 )
2025-04-16 17:25:03 +02:00
75bdd47dfb
[management] get current user endpoint ( #3666 )
2025-04-15 11:06:07 +01:00
4134b857b4
[management] add permissions manager to geolocation handler ( #3665 )
2025-04-14 17:57:58 +01:00
7839d2c169
[management] Refactor/management/updchannel ( #3645 )
...
* refactoring updatechannel - use read mutex for send update
2025-04-11 18:22:59 +03:00
