netbird

mirror of https://github.com/netbirdio/netbird.git synced 2024-11-26 01:53:42 +01:00

Author	SHA1	Message	Date
pascal-fischer	da75a76d41	Adding dashboard login activity (#1092 ) For better auditing this PR adds a dashboard login event to the management service. For that the user object was extended with a field for last login that is not actively saved to the database but kept in memory until next write. The information about the last login can be extracted from the JWT claims nb_last_login. This timestamp will be stored and compared on each API request. If the value changes we generate an event to inform about a login.	2023-08-18 19:23:11 +02:00
Misha Bragin	d4e9087f94	Add peer login and expiration activity events (#1090 ) Track the even of a user logging in their peer. Track the event of a peer login expiration.	2023-08-17 14:04:04 +02:00
Givi Khojanashvili	e5e69b1f75	Autopropagate peers by JWT groups (#1037 ) Enhancements to Peer Group Assignment: 1. Auto-assigned groups are now applied to all peers every time a user logs into the network. 2. Feature activation is available in the account settings. 3. API modifications included to support these changes for account settings updates. 4. If propagation is enabled, updates to a user's auto-assigned groups are immediately reflected across all user peers. 5. With the JWT group sync feature active, auto-assigned groups are forcefully updated whenever a peer logs in using user credentials.	2023-08-07 19:44:51 +04:00
Maycon Santos	973316d194	Validate input of expiration time for setup-keys (#1053 ) So far we accepted any value for setup keys, including negative values Now we are checking if it is less than 1 day or greater than 365 days	2023-08-04 23:54:51 +02:00
Maycon Santos	74fde0ea2c	Update setup key auto_groups description (#1042 ) * Update setup key auto_groups description * Update setup key auto_groups description	2023-08-02 17:50:00 +02:00
Maycon Santos	2541c78dd0	Use error level for JWT parsing error logs (#1026 )	2023-07-22 17:56:27 +02:00
Zoltan Papp	9c2c0e7934	Check links of groups before delete it (#1010 ) * Check links of groups before delete it * Add delete group handler test * Rename dns error msg * Add delete group test * Remove rule check The policy cover this scenario * Fix test * Check disabled management grps * Change error message * Add new activity for group delete event	2023-07-14 20:45:40 +02:00
Bethuel Mmbaga	bb9f6f6d0a	Add API Endpoint for Resending User Invitations in Auth0 (#989 ) * add request handler for sending invite * add InviteUser method to account manager interface * add InviteUser mock * add invite user endpoint to user handler * add InviteUserByID to manager interface * implement InviteUserByID in all idp managers * resend user invitation * add invite user handler tests * refactor * user userID for sending invitation * fix typo * refactor * pass userId in url params	2023-07-03 12:20:19 +02:00
Givi Khojanashvili	8b619a8224	JWT Groups support (#966 ) Get groups from the JWT tokens if the feature enabled for the account	2023-06-27 18:51:05 +04:00
Maycon Santos	09ca2d222a	Update the API description with the correct API state (#958 )	2023-06-16 18:26:50 +02:00
Givi Khojanashvili	803bbe0fff	Fix validation for ACL policy rules ports (#938 )	2023-06-07 08:57:43 +02:00
Pascal Fischer	5028450133	add examples	2023-06-02 01:50:15 +02:00
Pascal Fischer	2dcfa1efa3	fix summary	2023-06-02 01:32:48 +02:00
Pascal Fischer	75fbaf811b	update openapi	2023-06-02 01:09:18 +02:00
Givi Khojanashvili	ba7a39a4fc	Feat linux firewall support (#805 ) Update the client's engine to apply firewall rules received from the manager (results of ACL policy).	2023-05-29 16:00:18 +02:00
Pascal Fischer	7bdb0dd358	merge openapi with version from docs repo	2023-05-26 15:32:52 +02:00
Misha Bragin	e3d2b6a408	Block user through HTTP API (#846 ) The new functionality allows blocking a user in the Management service. Blocked users lose access to the Dashboard, aren't able to modify the network map, and all of their connected devices disconnect and are set to the "login expired" state. Technically all above was achieved with the updated PUT /api/users endpoint, that was extended with the is_blocked field.	2023-05-11 18:09:36 +02:00
pascal-fischer	59372ee159	API cleanup (#824 ) removed all PATCH endpoints updated path parameters for all endpoints removed not implemented endpoints for api doc minor description updates	2023-05-03 00:15:25 +02:00
Pascal Fischer	f1da4fd55d	using old isAdmin function to create account	2023-05-02 16:49:29 +02:00
pascal-fischer	6fec0c682e	Merging full service user feature into main (#819 ) Merging full feature branch into main. Adding full support for service users including backend objects, persistence, verification and api endpoints.	2023-04-22 12:57:51 +02:00
Pascal Fischer	6aba28ccb7	remove UTC from some not store related operations	2023-04-10 10:54:23 +02:00
Pascal Fischer	489892553a	use UTC everywhere in server	2023-04-03 15:09:35 +02:00
Pascal Fischer	d3de035961	error responses always lower case + duplicate error response fix	2023-04-01 11:04:21 +02:00
Pascal Fischer	931c20c8fe	fix test name	2023-03-31 12:45:10 +02:00
Pascal Fischer	2eaf4aa8d7	add test for auth middleware	2023-03-31 12:44:22 +02:00
Pascal Fischer	110067c00f	change order for access control checks and aquire account lock after global lock	2023-03-31 12:03:53 +02:00
Pascal Fischer	32c96c15b8	disable linter errors by comment	2023-03-31 10:30:05 +02:00
Pascal Fischer	ca1dc5ac88	disable access control for token endpoint	2023-03-30 19:03:44 +02:00
Pascal Fischer	f273fe9f51	revert codacy	2023-03-30 18:54:55 +02:00
Pascal Fischer	e08af7fcdf	codacy	2023-03-30 17:46:21 +02:00
Pascal Fischer	454240ca05	comments for codacy	2023-03-30 17:32:44 +02:00
Pascal Fischer	1343a3f00e	add test + codacy	2023-03-30 16:43:39 +02:00
Pascal Fischer	6c8bb60632	fix merge	2023-03-30 16:06:46 +02:00
Pascal Fischer	4d7029d80c	Merge branch 'main' into feature/add_pat_middleware # Conflicts: # management/server/grpcserver.go # management/server/http/middleware/jwt.go	2023-03-30 16:06:21 +02:00
pascal-fischer	909f305728	Merge pull request #766 from netbirdio/feature/add_rest_endpoints_for_pat Feature/add rest endpoints for pat	2023-03-30 15:55:48 +02:00
Pascal Fischer	9b000b89d5	Merge branch 'feature/add_rest_endpoints_for_pat' into feature/add_pat_middleware # Conflicts: # management/server/mock_server/account_mock.go	2023-03-30 14:02:58 +02:00
Pascal Fischer	5c1acdbf2f	move validation into account manager + func for get requests	2023-03-30 13:58:44 +02:00
Pascal Fischer	db3a9f0aa2	refactor jwt token validation and add PAT to middleware auth	2023-03-30 10:54:09 +02:00
Pascal Fischer	ecc4f8a10d	fix Pat handler test	2023-03-29 19:13:01 +02:00
Pascal Fischer	03abdfa112	return empty object on all handlers instead of empty string	2023-03-29 18:46:40 +02:00
Pascal Fischer	3bab745142	last_used can be nil	2023-03-29 17:46:09 +02:00
Pascal Fischer	726ffb5740	add comments for exported functions	2023-03-29 15:06:54 +02:00
Pascal Fischer	42ba0765c8	fix linter	2023-03-28 14:54:06 +02:00
Pascal Fischer	514403db37	use object instead of plain token for create response + handler test	2023-03-28 14:47:15 +02:00
Pascal Fischer	6a75ec4ab7	fix http error codes	2023-03-27 17:42:05 +02:00
Pascal Fischer	b66e984ddd	set limits for expiration	2023-03-27 17:28:24 +02:00
Pascal Fischer	c65a934107	refactor to use name instead of description	2023-03-27 16:28:49 +02:00
Maycon Santos	a27fe4326c	Add JWT middleware validation failure log (#760 ) We will log the middleware log now, but in the next releases we should provide a generic error that can be parsed by the dashboard.	2023-03-23 18:26:41 +01:00
Pascal Fischer	de8608f99f	add rest endpoints and update openapi doc	2023-03-21 16:02:19 +01:00
Givi Khojanashvili	3bfa26b13b	Feat rego default policy (#700 ) Converts rules to Rego policies and allow users to write raw policies to set up connectivity and firewall on the clients.	2023-03-13 18:14:18 +04:00

1 2 3

122 Commits