Commit Graph

406 Commits

Author SHA1 Message Date
Cam Otts
8203811f34
removed debugging log 2023-02-02 09:24:06 -06:00
Cam Otts
9aba5f3524
added error checking for name collision on frontend and send corresponding error 2023-02-01 13:13:15 -06:00
Cam Otts
cd08b98a0a
added configuration endpoint which sends tou link and version info 2023-01-31 12:44:03 -06:00
Michael Quigley
abb5a5e537
log invalid authentication attempts (#186) 2023-01-30 11:43:28 -05:00
Michael Quigley
d9258a2915
operational improvements in log messages (#186) 2023-01-30 11:38:55 -05:00
Michael Quigley
685683312b
registration/email_from -> email/from (#178) 2023-01-23 16:52:13 -05:00
Michael Quigley
ed2b1a653d
account -> reset_password (#175) 2023-01-23 16:44:08 -05:00
Michael Quigley
789532fff9
fix sqlite migration (#156) 2023-01-23 12:52:47 -05:00
Michael Quigley
b32ee6350e
implement the new password hashing approach (#156) 2023-01-23 12:50:24 -05:00
Michael Quigley
45d83d1521
salted password migrations (#156) 2023-01-23 11:49:22 -05:00
Michael Quigley
44f61d3bb7
email tweaks (#157) 2023-01-20 14:01:02 -05:00
Michael Quigley
088283d528
explicit lint 2023-01-20 12:45:02 -05:00
Michael Quigley
37d4586a03
log lint 2023-01-20 12:36:13 -05:00
Michael Quigley
3a0bc3c1c8
reset password email styling (#157) 2023-01-20 12:25:14 -05:00
Michael Quigley
1789e79b98
updated invitation email (#157) 2023-01-20 12:18:18 -05:00
Michael Quigley
7d3eeff885
forgot -> reset; password reset testing & tweaks (#65) 2023-01-20 12:08:40 -05:00
Michael Quigley
cc7516460c
Merge pull request #173 from openziti/forgot-password
Initial forgot password implementation (#65)
2023-01-20 11:21:36 -05:00
Cam Otts
3917892c58
missed bad request for password reset request 2023-01-20 10:04:52 -06:00
Cam Otts
2bbf404bae
added maintenance cleanup for expired password reset requests 2023-01-20 10:00:46 -06:00
Michael Quigley
73f068c54a
failing token invites fail with 401; display a hint about --token in the cli error message (#172) 2023-01-19 15:40:41 -05:00
Michael Quigley
1c77fdc065
remove frontend service policies (#171) 2023-01-19 15:23:38 -05:00
Michael Quigley
8bf060f71d
remove any frontend records assigned to an environment when the environment (#171) 2023-01-19 15:17:30 -05:00
Cam Otts
a07c4a519c
initial pass for forgot password 2023-01-18 13:05:10 -06:00
Michael Quigley
8f517876e0
fixes to postgres migrations to prevent primary key collisions (#160); fixes to migrations to remove renaming lint 2023-01-17 11:59:27 -05:00
Michael Quigley
8ef5225b20
updated verifiation email styling (#157) 2023-01-17 11:23:26 -05:00
Michael Quigley
f5ab73bcb0
openziti-rest-kitchen -> openziti (#158) 2023-01-13 15:01:34 -05:00
Michael Quigley
e8e87ca6ac
fine, sqlite, fine... (#96) 2023-01-13 13:29:34 -05:00
Michael Quigley
4e4bd1c876
limitless flag on accounts (#96) 2023-01-13 13:16:10 -05:00
Michael Quigley
e6932d67f2
limits on shares (#96) 2023-01-13 10:34:21 -05:00
Michael Quigley
faf3834c42
environment limits (#96) 2023-01-13 10:19:11 -05:00
Michael Quigley
0aa0eea0c7
the most rudimentary of limits (#96) 2023-01-13 09:42:42 -05:00
Michael Quigley
2da67d4a29
account expiration tweaks (#135) 2023-01-12 16:00:09 -05:00
Michael Quigley
a48fb04870
Merge branch 'v0.3.0' into stale-account-request-cleanup 2023-01-12 15:15:30 -05:00
Michael Quigley
7324c01fe8
controller config defaults 2023-01-12 15:12:48 -05:00
Cam Otts
679aa09615
added batch limits 2023-01-12 14:09:04 -06:00
Michael Quigley
63edd0ed48
logging improvements 2023-01-12 15:01:34 -05:00
Michael Quigley
627d9eb882
the 'registration' stanza should not be required (#147) 2023-01-12 14:17:09 -05:00
Cam Otts
0db3f0c9e6
added explicit get and delete for expired account requests 2023-01-12 13:00:16 -06:00
Cam Otts
deb6831fee
remove old test log and add log for exiting loop 2023-01-12 10:15:10 -06:00
Cam Otts
3a79608474
Merge branch 'v0.3.0' into stale-account-request-cleanup 2023-01-12 10:14:03 -06:00
Cam Otts
602c54cc43
Merge branch 'v0.3.0' into alternate-token-method 2023-01-12 10:08:06 -06:00
Cam Otts
e69119896e
added go routine to cleaup expired access requests 2023-01-12 10:04:56 -06:00
Michael Quigley
575a3f7030
a random token will work better 2023-01-10 16:43:58 -05:00
Michael Quigley
4792aa0064
include the secret token in the identity name to avoid collisions 2023-01-10 16:41:45 -05:00
Cam Otts
ee078a9e10
pr comments 2023-01-10 12:26:22 -06:00
Cam Otts
049ef6c9e9
send correct unauthorized error 2023-01-10 10:05:57 -06:00
Cam Otts
bb3d488212
move token generation to admin and add needed security to it 2023-01-10 09:53:41 -06:00
Cam Otts
354ccb853f
sqlite typo 2023-01-09 13:40:32 -06:00
Cam Otts
0734e7b511
pr comments 2023-01-09 13:23:02 -06:00
Cam Otts
e5b749be71
initial rough pass for a stored token implementation 2023-01-09 11:00:37 -06:00
Michael Quigley
e9c888f41d
elide secrets; tidy messes (#107) 2023-01-05 13:40:34 -05:00
Michael Quigley
d0cdcd3956
don't abandon detail generation if sparkdata is not available 2023-01-05 13:06:15 -05:00
Michael Quigley
3943aef40a
service -> share (#144) 2023-01-04 14:42:58 -05:00
Michael Quigley
74b9786a61
more services -> shares (#144) 2023-01-04 14:21:23 -05:00
Michael Quigley
fe89551bfb
massive services -> share boatload (#144) 2023-01-04 13:43:37 -05:00
Michael Quigley
9572ed3c73
controller, store infrastructure; services -> shares (#144) 2023-01-04 13:13:50 -05:00
Michael Quigley
1e6c35d6de
services -> shares in the schema (#144) 2023-01-04 12:59:36 -05:00
Michael Quigley
e0541ad094
controller organizational lint 2022-12-22 16:06:23 -05:00
Michael Quigley
a125c4b40b
/detail/service backend (#107) 2022-12-22 15:09:37 -05:00
Michael Quigley
3856d6eb61
roughed in environment details (#107) 2022-12-22 14:56:19 -05:00
Michael Quigley
a0fd3a9c63
/detail/environmment; environment detail api backend (#107) 2022-12-22 13:51:29 -05:00
Michael Quigley
2fb9e4fa9b
quick hack to make identity names more unique 2022-12-21 21:48:24 -05:00
Michael Quigley
ad515147b5
fix for non-unique service policy names (#112) 2022-12-21 14:31:14 -05:00
Michael Quigley
c9a96aa473
smol lint and polish on zrokEdgeSdk (#112) 2022-12-15 11:50:30 -05:00
Michael Quigley
44da809c94
further cleanup of sp dial and bind (#112) 2022-12-14 17:21:56 -05:00
Michael Quigley
1c5b030472
massive zrokEdgeSdk cleanups around service policies (#112) 2022-12-14 17:17:19 -05:00
Michael Quigley
d9148490a3
more zrokEdgeSdk lint and consolidation (#112) 2022-12-14 15:47:14 -05:00
Michael Quigley
8e56117c51
ziti_edge_sdk; config naming lint (#112) 2022-12-14 15:10:45 -05:00
Michael Quigley
0fe55e8213
improvements to zrok_sdk_edge for identities (#112) 2022-12-14 14:57:55 -05:00
Michael Quigley
65ff0f4f23
let's try embracing more camel case 2022-12-14 14:40:45 -05:00
Michael Quigley
856cf45ddc
zrok_edge_sdk; identity (#112) 2022-12-14 14:31:47 -05:00
Michael Quigley
f1388ab271
ziti_edge_sdk; erp (#112) 2022-12-14 14:13:40 -05:00
Michael Quigley
a77f39e97d
CreateShareService (#112) 2022-12-14 14:11:50 -05:00
Michael Quigley
cc1f62e317
edge sdk config (#112) 2022-12-14 14:09:54 -05:00
Michael Quigley
f46a1533a6
service policy (#112) 2022-12-14 14:04:29 -05:00
Michael Quigley
7b520597d6
edge_ctrl -> zrok_edge_sdk; serp (#112) 2022-12-14 13:58:41 -05:00
Michael Quigley
06ce17ae8f
centralizing edge_ctrl sdk; tags, service (#112) 2022-12-14 13:06:26 -05:00
Michael Quigley
ac09f2d749
modular backend implementation for share private (#95) 2022-12-13 12:24:28 -05:00
Michael Quigley
7585691b07
default metrics service name 2022-12-07 13:41:16 -05:00
Michael Quigley
362b8c2b84
more slickness tweaks for demonstration purposes 2022-12-07 12:24:00 -05:00
Michael Quigley
f12868c116
quickstart polish 2022-12-07 12:01:56 -05:00
Michael Quigley
4b7c1d3b51
formatting faux pas'es 2022-12-06 14:53:59 -05:00
Michael Quigley
9f4c37f88a
create service (dial) policy for new identity for metrics service (#130) 2022-12-06 14:16:15 -05:00
Michael Quigley
13fabc9ec6
basic 'admin create identity' infrastructure (#130) 2022-12-06 14:06:12 -05:00
Michael Quigley
4c70212304
zrok admin bootstrap now checks frontend entry for frontend identity (#131) 2022-12-06 12:25:17 -05:00
Michael Quigley
a0c50c68e5
allow share endpoint to return multiple frontends; more frontend selection (#110) 2022-12-06 12:00:25 -05:00
Michael Quigley
081a558ba2
refactor public sharing backend to use frontend selection, rather than hard-wired frontend zids (#110) 2022-12-06 11:48:59 -05:00
Michael Quigley
95adcfe10a
assert service policies for frontend and ctrl <-> metrics (#131) 2022-12-05 17:29:37 -05:00
Michael Quigley
6e42fa0225
assert metrics serp (#131) 2022-12-05 16:48:59 -05:00
Michael Quigley
4d75e2da4f
lint; assert 'metrics' service (#131) 2022-12-05 16:10:38 -05:00
Michael Quigley
15d289cc87
create ctrl and frontend identities if missing (#131) 2022-12-05 15:40:42 -05:00
Michael Quigley
e13ff1f090
fix for error message parameter lint (#131) 2022-12-05 15:03:55 -05:00
Michael Quigley
0dcd614cd5
create missing erps for ctrl and frontend identities (#131) 2022-12-05 15:00:22 -05:00
Michael Quigley
f385d9de3b
assert erps for identities (#131) 2022-12-05 14:25:49 -05:00
Michael Quigley
2fda4351ed
lint (#131) 2022-12-05 14:06:53 -05:00
Michael Quigley
d238809481
get zids from local identity configs (#131) 2022-12-05 14:00:51 -05:00
Michael Quigley
e0a734be2e
admin bootstrap scaffolding (#131) 2022-12-05 13:12:12 -05:00
Michael Quigley
7458c625aa
update backend proxy endpoint when overridden (#125) 2022-12-02 16:18:28 -05:00
Michael Quigley
135fd483fa
update share backend (#125) 2022-12-02 13:21:05 -05:00
Michael Quigley
5ba457313a
admin update frontend (#129) 2022-12-02 12:19:41 -05:00
Michael Quigley
38c83fda92
update frontend backend (#129) 2022-12-02 10:46:53 -05:00
Michael Quigley
d5d2497955
list frontends backend (#129) 2022-12-02 09:30:06 -05:00
Michael Quigley
309f4e7d87
add backend for 'admin delete frontend' (#129) 2022-12-02 08:58:41 -05:00
Michael Quigley
f0228e8fe0
admin create frontend now interrogates ziti for the identity (#129) 2022-12-02 08:44:17 -05:00
Michael Quigley
cbf809c06a
more edge control plane consolidation (#112, #129) 2022-12-02 08:28:40 -05:00
Michael Quigley
93d6f89107
oops... sorry sqlite 2022-12-01 16:51:53 -05:00
Michael Quigley
c9db95fe03
create frontend handler (#129) 2022-12-01 16:14:42 -05:00
Michael Quigley
9db6aa1c07
frontends.environment_id is now nullable; support anonymous public frontends (#110, #129) 2022-12-01 14:56:55 -05:00
Michael Quigley
8610cf944a
add admin support to rest_model_zrok.Principal; authenticator (#116) 2022-12-01 14:48:23 -05:00
Michael Quigley
b4f85e711f
configuration versioning (#118) 2022-12-01 13:40:57 -05:00
Michael Quigley
44f4e37e83
remove service03 type; consolidated service type (#119) 2022-12-01 12:54:14 -05:00
Michael Quigley
301249fe4a
more cleanups and polish for sharing and reserving (#122, #41) 2022-11-30 14:38:49 -05:00
Michael Quigley
3f5c5003de
zrok reserve; zrok release (#41) 2022-11-30 13:45:57 -05:00
Michael Quigley
f9143c3a5b
more naming refactoring 'name' -> 'token' (#119) 2022-11-30 12:46:19 -05:00
Michael Quigley
483babe813
massive name -> token work (#119) 2022-11-30 12:10:00 -05:00
Michael Quigley
f54d315e34
frontends.name -> frontends.token (#119) 2022-11-30 11:52:48 -05:00
Michael Quigley
0f9ed9dd68
api namespace/naming polish 2022-11-30 11:43:00 -05:00
Michael Quigley
64c3bdd3c1
service details operation (#41) 2022-11-30 11:17:09 -05:00
Michael Quigley
6841704b90
don't dealloate reserved services (#41) 2022-11-29 16:43:35 -05:00
Michael Quigley
158cc42c07
basic service reservation support (#41) 2022-11-29 16:41:18 -05:00
Michael Quigley
37be8fc4e0
services.reserved (#41) 2022-11-29 13:55:42 -05:00
Michael Quigley
189ed81718
add reserved column to frontends table (#41) 2022-11-29 13:45:23 -05:00
Michael Quigley
65d1539182
ensure supplied email addresses are valid at both the CLI and the API (#108) 2022-11-29 13:23:23 -05:00
Michael Quigley
39302cd4d5
allow access to private share service from unrelated environment (#109) 2022-11-29 13:07:49 -05:00
Michael Quigley
a3956509f3
working frontend allocation/deallocation; cleanups (#113) 2022-11-28 13:55:53 -05:00
Michael Quigley
5359754ba1
continued refinement of frontends; access/unacess (#113, #109) 2022-11-28 13:33:59 -05:00
Michael Quigley
c0e22792d0
cascade delete services when removing environment 2022-11-28 11:40:39 -05:00
Michael Quigley
4b70a8a0d3
Merge branch 'main' into v0.3.0 2022-11-28 11:26:12 -05:00
Michael Quigley
ebb13ac611
simply token generation; createToken+createServiceName (#114) 2022-11-28 11:18:56 -05:00
Michael Quigley
5971037835
createServicePolicyDialForEnvironment (#109, #112) 2022-11-28 11:10:10 -05:00
Michael Quigley
ce72fceb74
unaccess (#111); more access private wiring (#106, #109) 2022-11-23 13:00:01 -05:00
Michael Quigley
09c603845c
roughed-in access handler (#111) 2022-11-23 12:24:35 -05:00
Michael Quigley
6807cb3755
private sharing handler (#99, #109) 2022-11-22 15:31:02 -05:00
Michael Quigley
49987df381
streamlined unshare impl (#99) 2022-11-22 14:24:41 -05:00
Michael Quigley
ff3f623a74
use tags.zrokServiceName instead of name by convention (#99) 2022-11-22 14:12:35 -05:00
Michael Quigley
b54876fcb6
de-lint (#99) 2022-11-22 11:39:00 -05:00
Michael Quigley
c7d8395b89
publicResourceAllocator (#99) 2022-11-22 11:35:25 -05:00
Michael Quigley
6184e0e450
updated store.Services and friends (#103) 2022-11-22 11:14:58 -05:00
Michael Quigley
cbb9ec833f
service; prettier for sqlite (#103) 2022-11-22 10:58:17 -05:00
Michael Quigley
775ebb892f
make the new services table more pretty (#103) 2022-11-22 10:52:43 -05:00
Michael Quigley
5d60b5831d
initial strategy-based unshare handler (#99) 2022-11-21 15:11:35 -05:00
Michael Quigley
38c86aea82
implement store layer for service model changes (#103) 2022-11-21 14:51:11 -05:00
Michael Quigley
7cd36021ce
add share_mode and backend_mode to sql structures (#103) 2022-11-21 14:42:25 -05:00
Michael Quigley
ade25d21db
public sharing strategy; update test loop to match (#99) 2022-11-21 13:45:08 -05:00
Michael Quigley
82d9f6f6ed
additional service share/unshare and related naming refactoring (#102) 2022-11-18 15:48:13 -05:00
Michael Quigley
11068394b8
tunnel -> service; tunnel.Tunnel -> service.Share; tunnel.Untunnel -> service.Unshare (#102) 2022-11-18 15:36:55 -05:00
Michael Quigley
70c99b9791
frontend support in store; tests (#88, #98) 2022-11-17 14:41:07 -05:00
Michael Quigley
1fcb496321
store.Frontend (#98, #88) 2022-11-17 14:25:35 -05:00
Michael Quigley
f193976a50
ephemeral/non-ephemeral environments (#98, #88) 2022-11-17 13:27:57 -05:00
Michael Quigley
b9dca57dfa
store.CreateEphemeralEnvironment; tests (#88, #98) 2022-11-17 12:44:53 -05:00