64f949abbb
Integrate relay into peer conn
...
- extend mgm with relay address
- extend signaling with remote peer's relay address
- start setup relay connection before engine start
2024-06-14 14:40:31 +02:00
4da29451d0
Add missing openid scope when requesting JWT token ( #2089 )
...
According to the Zitadel documentation, `openid` scope is required
when requesting JWT tokens.
Apparently Zitadel was accepting requests without it until very
recently. Now lack thereof causes 400 Bad Requests which makes it
impossible to authenticate to the Netbird dashboard.
https://zitadel.com/docs/guides/integrate/service-users/client-credentials#2-authenticating-a-service-user-and-request-a-token
2024-06-04 10:46:24 +02:00
456629811b
Prevent using expired ctx when sending metrics ( #2088 )
2024-06-03 12:41:15 +02:00
521f7dd39f
Improve login performance ( #2061 )
2024-05-31 16:41:12 +02:00
012235ff12
Add FindExistingPostureCheck ( #2075 )
2024-05-30 15:22:42 +02:00
f176807ebe
Add extra logs for account not found, peer login and getAccount ( #2053 )
2024-05-27 12:29:28 +02:00
d4c47eaf8a
Don't allow delete group from peer groups ( #2055 )
2024-05-27 11:06:43 +02:00
d35a79d3b5
Upgrade gRPC and OpenTelemetry packages for compatibility ( #2003 )
...
Upgrades `go.opentelemetry.io/otel` from version` v1.11.1` to `v1.26.0`. The upgrade addresses compatibility issues caused by the removal of several sub-packages in the latest OpenTelemetry release, which were causing broken dependencies.
**Key Changes:**
- Upgraded `go.opentelemetry.io/otel` from `v1.11.1` to `v1.26.0`.
- Fixed broken dependencies by replacing the deprecated sub-packages:
- `go.opentelemetry.io/otel/metric/instrument`
- `go.opentelemetry.io/otel/metric/instrument/asyncint64`
- `go.opentelemetry.io/otel/metric/instrument/syncint64`
- Upgraded `google.golang.org/grpc` from `v1.56.3` to `v1.64.0` which deprecate `Dial` and `DialContext` to `NewClient`.
2024-05-27 08:39:18 +02:00
7a1c96ebf4
Remove extra error mapping ( #2050 )
2024-05-24 14:46:11 +02:00
41fe9f84ec
Extend integrated validator with error handling ( #2044 )
2024-05-24 13:29:25 +02:00
29a2d93873
Log global lock acquisition per user ( #2039 )
2024-05-23 17:09:58 +02:00
9d3db68805
Return the proper error when a peer is deleted ( #2035 )
...
this fixes an issue causing peers to keep retrying the connection after a peer is removed from the management system
2024-05-23 14:59:09 +02:00
91fa2e20a0
Store location information in peer event meta ( #1994 )
2024-05-22 12:31:16 +02:00
a5811a2d7d
Implement experimental PostgreSQL store ( #1939 )
...
* migrate sqlite store to
generic sql store
* fix conflicts
* init postgres store
* Add postgres store tests
* Refactor postgres store engine name
* fix tests
* Run postgres store tests on linux only
* fix tests
* Refactor
* cascade policy rules on policy deletion
* fix tests
* run postgres cases in new db
* close store connection after tests
* refactor
* using testcontainers
* sync go sum
* remove postgres service
* remove store cleanup
* go mod tidy
* remove env
* use postgres as engine and initialize test store with testcontainer
---------
Co-authored-by: Maycon Santos <mlsmaycon@gmail.com >
2024-05-16 19:28:37 +03:00
0a75da6fb7
Remove GetNetworkMap stacktrace( #1941 )
2024-05-07 19:19:30 +02:00
2e0047daea
Improve Sync performance ( #1901 )
2024-05-07 14:30:03 +02:00
ce0718fcb5
Migrate blob net ip fields to json serializer ( #1906 )
...
* serialize net.IP as json
* migrate net ip field from blob to json
* run net ip migration
* remove duplicate index
* Refactor
* Add tests
* fix tests
* migrate null blob values
2024-05-07 14:01:45 +03:00
df4ca01848
Return system serial on a peer HTTP API call ( #1929 )
2024-05-06 14:49:03 +02:00
4e7c17756c
Refactor Route IDs ( #1891 )
2024-05-06 14:47:49 +02:00
3598418206
Update the check interval for new geo db and change log level ( #1908 )
...
Update log level to trace and update the check db interval from 60s to 300s
2024-04-30 17:54:29 +02:00
fd26e989e3
Check if channel exist before sending network map ( #1894 )
...
Check for connection channel before calculating and sending the network map
2024-04-29 18:31:52 +02:00
71c6437bab
add content type before writing header ( #1887 )
2024-04-25 21:20:24 +02:00
8f3a0f2c38
Add retry to IdP cache lookup ( #1882 )
2024-04-23 19:23:43 +02:00
1e6addaa65
Add account locks to getAccountWithAuthorizationClaims method ( #1847 )
2024-04-23 19:09:58 +02:00
a80c8b0176
Redeem invite only when incoming user was invited ( #1861 )
...
checks for users with pending invite status in the cache that already logged in and refresh the cache
2024-04-22 11:10:27 +02:00
b74078fd95
Use a better way to insert data in batches ( #1874 )
2024-04-20 22:04:20 +02:00
77488ad11a
Migrate serializer:gob fields to serializer:json ( #1855 )
2024-04-18 18:14:21 +02:00
e0de86d6c9
Use fixed activity codes ( #1846 )
...
* Add duplicate constants check
2024-04-15 14:15:46 +02:00
5204d07811
Pass integrated validator for API ( #1814 )
...
Pass integrated validator for API handler
2024-04-15 12:08:38 +02:00
9505805313
Rename variable ( #1829 )
2024-04-11 14:08:03 +02:00
704c67dec8
Allow owners that did not create the account to delete it ( #1825 )
...
Sometimes the Owner role will be passed to new users, and they need to be able to delete the account
2024-04-11 10:02:51 +02:00
c28657710a
Fix function names in comments ( #1816 )
...
Signed-off-by: verytrap <wangqiuyue@outlook.com >
2024-04-09 13:18:38 +02:00
9af532fe71
Get scope from endpoint url instead of hardcoding ( #1770 )
2024-04-02 13:43:57 +02:00
22beac1b1b
Fix invalid token due to the cache race ( #1763 )
2024-03-28 12:33:56 +01:00
2d76b058fc
Feature/peer validator ( #1553 )
...
Follow up management-integrations changes
move groups to separated packages to avoid circle dependencies
save location information in Login action
2024-03-27 18:48:48 +01:00
ea2d060f93
Add limited dashboard view ( #1738 )
2024-03-27 16:11:45 +01:00
af50eb350f
Change log level for JWT override message of single account mode ( #1747 )
2024-03-25 14:25:26 +01:00
f0672b87bc
Add missing dns domain to tests to avoid verbose test logs ( #1724 )
2024-03-18 12:25:01 +01:00
9b0fe2c8e5
Validate authentik issuer url ( #1723 )
...
* Validate authentik issuer url
* test issuer
* adjust test times on windows
2024-03-18 10:12:46 +01:00
abd57d1191
Avoid creating duplicate groups with the same name ( #1579 )
...
Avoid creating groups with the same name via API calls.
JWT and integrations still allowed to register groups with duplicated names
2024-03-17 11:13:39 +01:00
fc7c1e397f
Disable force jsonfile variable ( #1611 )
...
This enables windows management tests
Added another DNS server to the dns server tests
2024-03-15 10:50:02 +01:00
52a3ac6b06
Add support for inviting/deleting users via Zitadel ( #1572 )
...
This fixes the "Invite User" button in Dashboard v2.0.0
and enables the usage of the --user-delete-from-idp flag for Zitadel.
Unlike the NetBird SaaS solution, we rely on Zitadel to send
the emails on our behalf.
2024-03-15 10:32:51 +01:00
0b3b50c705
Remove deprecated Rules API endpoints ( #1523 )
2024-03-14 21:31:21 +01:00
042141db06
Update account attributes only when there is a domain ( #1701 )
...
add log for when a domain is not present
2024-03-14 14:17:22 +01:00
5dde044fa5
Check for record not found when searching the store ( #1686 )
...
This change returns status.NotFound only on gorm.ErrRecordNotFound and status.Internal on every other DB error
2024-03-10 19:09:45 +01:00
0aeb87742a
Return 1s when next expiration is too low ( #1672 )
...
using the login expired issue could cause problems with ticker used in the scheduler
This change makes 1s the minimum number returned when rescheduling the peer expiration task
2024-03-06 15:18:53 +01:00
199bf73103
Remove usage stats ( #1665 )
2024-03-05 09:45:32 +01:00
17f5abc653
Handle canceling schedule and avoid recursive call ( #1636 )
...
Using time.Ticker allows us to avoid recursive calls that may end up in schedule running and possible deadlock if no routine is listening for cancel calls
2024-03-03 10:35:01 +01:00
aa935bdae3
Register creation time for peer, user and account ( #1654 )
...
This change register creation time for new peers, users and accounts
2024-03-02 13:49:40 +01:00
a4b9e93217
add environment meta from grpc to store ( #1651 )
2024-03-01 15:15:56 +01:00
