Commit Graph

449 Commits

Author SHA1 Message Date
Michael Quigley
789532fff9
fix sqlite migration (#156) 2023-01-23 12:52:47 -05:00
Michael Quigley
b32ee6350e
implement the new password hashing approach (#156) 2023-01-23 12:50:24 -05:00
Michael Quigley
45d83d1521
salted password migrations (#156) 2023-01-23 11:49:22 -05:00
Michael Quigley
44f61d3bb7
email tweaks (#157) 2023-01-20 14:01:02 -05:00
Michael Quigley
088283d528
explicit lint 2023-01-20 12:45:02 -05:00
Michael Quigley
37d4586a03
log lint 2023-01-20 12:36:13 -05:00
Michael Quigley
3a0bc3c1c8
reset password email styling (#157) 2023-01-20 12:25:14 -05:00
Michael Quigley
1789e79b98
updated invitation email (#157) 2023-01-20 12:18:18 -05:00
Michael Quigley
7d3eeff885
forgot -> reset; password reset testing & tweaks (#65) 2023-01-20 12:08:40 -05:00
Michael Quigley
cc7516460c
Merge pull request #173 from openziti/forgot-password
Initial forgot password implementation (#65)
2023-01-20 11:21:36 -05:00
Cam Otts
3917892c58
missed bad request for password reset request 2023-01-20 10:04:52 -06:00
Cam Otts
2bbf404bae
added maintenance cleanup for expired password reset requests 2023-01-20 10:00:46 -06:00
Michael Quigley
73f068c54a
failing token invites fail with 401; display a hint about --token in the cli error message (#172) 2023-01-19 15:40:41 -05:00
Michael Quigley
1c77fdc065
remove frontend service policies (#171) 2023-01-19 15:23:38 -05:00
Michael Quigley
8bf060f71d
remove any frontend records assigned to an environment when the environment (#171) 2023-01-19 15:17:30 -05:00
Cam Otts
a07c4a519c
initial pass for forgot password 2023-01-18 13:05:10 -06:00
Michael Quigley
8f517876e0
fixes to postgres migrations to prevent primary key collisions (#160); fixes to migrations to remove renaming lint 2023-01-17 11:59:27 -05:00
Michael Quigley
8ef5225b20
updated verifiation email styling (#157) 2023-01-17 11:23:26 -05:00
Michael Quigley
f5ab73bcb0
openziti-rest-kitchen -> openziti (#158) 2023-01-13 15:01:34 -05:00
Michael Quigley
e8e87ca6ac
fine, sqlite, fine... (#96) 2023-01-13 13:29:34 -05:00
Michael Quigley
4e4bd1c876
limitless flag on accounts (#96) 2023-01-13 13:16:10 -05:00
Michael Quigley
e6932d67f2
limits on shares (#96) 2023-01-13 10:34:21 -05:00
Michael Quigley
faf3834c42
environment limits (#96) 2023-01-13 10:19:11 -05:00
Michael Quigley
0aa0eea0c7
the most rudimentary of limits (#96) 2023-01-13 09:42:42 -05:00
Michael Quigley
2da67d4a29
account expiration tweaks (#135) 2023-01-12 16:00:09 -05:00
Michael Quigley
a48fb04870
Merge branch 'v0.3.0' into stale-account-request-cleanup 2023-01-12 15:15:30 -05:00
Michael Quigley
7324c01fe8
controller config defaults 2023-01-12 15:12:48 -05:00
Cam Otts
679aa09615
added batch limits 2023-01-12 14:09:04 -06:00
Michael Quigley
63edd0ed48
logging improvements 2023-01-12 15:01:34 -05:00
Michael Quigley
627d9eb882
the 'registration' stanza should not be required (#147) 2023-01-12 14:17:09 -05:00
Cam Otts
0db3f0c9e6
added explicit get and delete for expired account requests 2023-01-12 13:00:16 -06:00
Cam Otts
deb6831fee
remove old test log and add log for exiting loop 2023-01-12 10:15:10 -06:00
Cam Otts
3a79608474
Merge branch 'v0.3.0' into stale-account-request-cleanup 2023-01-12 10:14:03 -06:00
Cam Otts
602c54cc43
Merge branch 'v0.3.0' into alternate-token-method 2023-01-12 10:08:06 -06:00
Cam Otts
e69119896e
added go routine to cleaup expired access requests 2023-01-12 10:04:56 -06:00
Michael Quigley
575a3f7030
a random token will work better 2023-01-10 16:43:58 -05:00
Michael Quigley
4792aa0064
include the secret token in the identity name to avoid collisions 2023-01-10 16:41:45 -05:00
Cam Otts
ee078a9e10
pr comments 2023-01-10 12:26:22 -06:00
Cam Otts
049ef6c9e9
send correct unauthorized error 2023-01-10 10:05:57 -06:00
Cam Otts
bb3d488212
move token generation to admin and add needed security to it 2023-01-10 09:53:41 -06:00
Cam Otts
354ccb853f
sqlite typo 2023-01-09 13:40:32 -06:00
Cam Otts
0734e7b511
pr comments 2023-01-09 13:23:02 -06:00
Cam Otts
e5b749be71
initial rough pass for a stored token implementation 2023-01-09 11:00:37 -06:00
Michael Quigley
e9c888f41d
elide secrets; tidy messes (#107) 2023-01-05 13:40:34 -05:00
Michael Quigley
d0cdcd3956
don't abandon detail generation if sparkdata is not available 2023-01-05 13:06:15 -05:00
Michael Quigley
3943aef40a
service -> share (#144) 2023-01-04 14:42:58 -05:00
Michael Quigley
74b9786a61
more services -> shares (#144) 2023-01-04 14:21:23 -05:00
Michael Quigley
fe89551bfb
massive services -> share boatload (#144) 2023-01-04 13:43:37 -05:00
Michael Quigley
9572ed3c73
controller, store infrastructure; services -> shares (#144) 2023-01-04 13:13:50 -05:00
Michael Quigley
1e6c35d6de
services -> shares in the schema (#144) 2023-01-04 12:59:36 -05:00
Michael Quigley
e0541ad094
controller organizational lint 2022-12-22 16:06:23 -05:00
Michael Quigley
a125c4b40b
/detail/service backend (#107) 2022-12-22 15:09:37 -05:00
Michael Quigley
3856d6eb61
roughed in environment details (#107) 2022-12-22 14:56:19 -05:00
Michael Quigley
a0fd3a9c63
/detail/environmment; environment detail api backend (#107) 2022-12-22 13:51:29 -05:00
Michael Quigley
2fb9e4fa9b
quick hack to make identity names more unique 2022-12-21 21:48:24 -05:00
Michael Quigley
ad515147b5
fix for non-unique service policy names (#112) 2022-12-21 14:31:14 -05:00
Michael Quigley
c9a96aa473
smol lint and polish on zrokEdgeSdk (#112) 2022-12-15 11:50:30 -05:00
Michael Quigley
44da809c94
further cleanup of sp dial and bind (#112) 2022-12-14 17:21:56 -05:00
Michael Quigley
1c5b030472
massive zrokEdgeSdk cleanups around service policies (#112) 2022-12-14 17:17:19 -05:00
Michael Quigley
d9148490a3
more zrokEdgeSdk lint and consolidation (#112) 2022-12-14 15:47:14 -05:00
Michael Quigley
8e56117c51
ziti_edge_sdk; config naming lint (#112) 2022-12-14 15:10:45 -05:00
Michael Quigley
0fe55e8213
improvements to zrok_sdk_edge for identities (#112) 2022-12-14 14:57:55 -05:00
Michael Quigley
65ff0f4f23
let's try embracing more camel case 2022-12-14 14:40:45 -05:00
Michael Quigley
856cf45ddc
zrok_edge_sdk; identity (#112) 2022-12-14 14:31:47 -05:00
Michael Quigley
f1388ab271
ziti_edge_sdk; erp (#112) 2022-12-14 14:13:40 -05:00
Michael Quigley
a77f39e97d
CreateShareService (#112) 2022-12-14 14:11:50 -05:00
Michael Quigley
cc1f62e317
edge sdk config (#112) 2022-12-14 14:09:54 -05:00
Michael Quigley
f46a1533a6
service policy (#112) 2022-12-14 14:04:29 -05:00
Michael Quigley
7b520597d6
edge_ctrl -> zrok_edge_sdk; serp (#112) 2022-12-14 13:58:41 -05:00
Michael Quigley
06ce17ae8f
centralizing edge_ctrl sdk; tags, service (#112) 2022-12-14 13:06:26 -05:00
Michael Quigley
ac09f2d749
modular backend implementation for share private (#95) 2022-12-13 12:24:28 -05:00
Michael Quigley
7585691b07
default metrics service name 2022-12-07 13:41:16 -05:00
Michael Quigley
362b8c2b84
more slickness tweaks for demonstration purposes 2022-12-07 12:24:00 -05:00
Michael Quigley
f12868c116
quickstart polish 2022-12-07 12:01:56 -05:00
Michael Quigley
4b7c1d3b51
formatting faux pas'es 2022-12-06 14:53:59 -05:00
Michael Quigley
9f4c37f88a
create service (dial) policy for new identity for metrics service (#130) 2022-12-06 14:16:15 -05:00
Michael Quigley
13fabc9ec6
basic 'admin create identity' infrastructure (#130) 2022-12-06 14:06:12 -05:00
Michael Quigley
4c70212304
zrok admin bootstrap now checks frontend entry for frontend identity (#131) 2022-12-06 12:25:17 -05:00
Michael Quigley
a0c50c68e5
allow share endpoint to return multiple frontends; more frontend selection (#110) 2022-12-06 12:00:25 -05:00
Michael Quigley
081a558ba2
refactor public sharing backend to use frontend selection, rather than hard-wired frontend zids (#110) 2022-12-06 11:48:59 -05:00
Michael Quigley
95adcfe10a
assert service policies for frontend and ctrl <-> metrics (#131) 2022-12-05 17:29:37 -05:00
Michael Quigley
6e42fa0225
assert metrics serp (#131) 2022-12-05 16:48:59 -05:00
Michael Quigley
4d75e2da4f
lint; assert 'metrics' service (#131) 2022-12-05 16:10:38 -05:00
Michael Quigley
15d289cc87
create ctrl and frontend identities if missing (#131) 2022-12-05 15:40:42 -05:00
Michael Quigley
e13ff1f090
fix for error message parameter lint (#131) 2022-12-05 15:03:55 -05:00
Michael Quigley
0dcd614cd5
create missing erps for ctrl and frontend identities (#131) 2022-12-05 15:00:22 -05:00
Michael Quigley
f385d9de3b
assert erps for identities (#131) 2022-12-05 14:25:49 -05:00
Michael Quigley
2fda4351ed
lint (#131) 2022-12-05 14:06:53 -05:00
Michael Quigley
d238809481
get zids from local identity configs (#131) 2022-12-05 14:00:51 -05:00
Michael Quigley
e0a734be2e
admin bootstrap scaffolding (#131) 2022-12-05 13:12:12 -05:00
Michael Quigley
7458c625aa
update backend proxy endpoint when overridden (#125) 2022-12-02 16:18:28 -05:00
Michael Quigley
135fd483fa
update share backend (#125) 2022-12-02 13:21:05 -05:00
Michael Quigley
5ba457313a
admin update frontend (#129) 2022-12-02 12:19:41 -05:00
Michael Quigley
38c83fda92
update frontend backend (#129) 2022-12-02 10:46:53 -05:00
Michael Quigley
d5d2497955
list frontends backend (#129) 2022-12-02 09:30:06 -05:00
Michael Quigley
309f4e7d87
add backend for 'admin delete frontend' (#129) 2022-12-02 08:58:41 -05:00
Michael Quigley
f0228e8fe0
admin create frontend now interrogates ziti for the identity (#129) 2022-12-02 08:44:17 -05:00
Michael Quigley
cbf809c06a
more edge control plane consolidation (#112, #129) 2022-12-02 08:28:40 -05:00
Michael Quigley
93d6f89107
oops... sorry sqlite 2022-12-01 16:51:53 -05:00
Michael Quigley
c9db95fe03
create frontend handler (#129) 2022-12-01 16:14:42 -05:00
Michael Quigley
9db6aa1c07
frontends.environment_id is now nullable; support anonymous public frontends (#110, #129) 2022-12-01 14:56:55 -05:00
Michael Quigley
8610cf944a
add admin support to rest_model_zrok.Principal; authenticator (#116) 2022-12-01 14:48:23 -05:00
Michael Quigley
b4f85e711f
configuration versioning (#118) 2022-12-01 13:40:57 -05:00
Michael Quigley
44f4e37e83
remove service03 type; consolidated service type (#119) 2022-12-01 12:54:14 -05:00
Michael Quigley
301249fe4a
more cleanups and polish for sharing and reserving (#122, #41) 2022-11-30 14:38:49 -05:00
Michael Quigley
3f5c5003de
zrok reserve; zrok release (#41) 2022-11-30 13:45:57 -05:00
Michael Quigley
f9143c3a5b
more naming refactoring 'name' -> 'token' (#119) 2022-11-30 12:46:19 -05:00
Michael Quigley
483babe813
massive name -> token work (#119) 2022-11-30 12:10:00 -05:00
Michael Quigley
f54d315e34
frontends.name -> frontends.token (#119) 2022-11-30 11:52:48 -05:00
Michael Quigley
0f9ed9dd68
api namespace/naming polish 2022-11-30 11:43:00 -05:00
Michael Quigley
64c3bdd3c1
service details operation (#41) 2022-11-30 11:17:09 -05:00
Michael Quigley
6841704b90
don't dealloate reserved services (#41) 2022-11-29 16:43:35 -05:00
Michael Quigley
158cc42c07
basic service reservation support (#41) 2022-11-29 16:41:18 -05:00
Michael Quigley
37be8fc4e0
services.reserved (#41) 2022-11-29 13:55:42 -05:00
Michael Quigley
189ed81718
add reserved column to frontends table (#41) 2022-11-29 13:45:23 -05:00
Michael Quigley
65d1539182
ensure supplied email addresses are valid at both the CLI and the API (#108) 2022-11-29 13:23:23 -05:00
Michael Quigley
39302cd4d5
allow access to private share service from unrelated environment (#109) 2022-11-29 13:07:49 -05:00
Michael Quigley
a3956509f3
working frontend allocation/deallocation; cleanups (#113) 2022-11-28 13:55:53 -05:00
Michael Quigley
5359754ba1
continued refinement of frontends; access/unacess (#113, #109) 2022-11-28 13:33:59 -05:00
Michael Quigley
c0e22792d0
cascade delete services when removing environment 2022-11-28 11:40:39 -05:00
Michael Quigley
4b70a8a0d3
Merge branch 'main' into v0.3.0 2022-11-28 11:26:12 -05:00
Michael Quigley
ebb13ac611
simply token generation; createToken+createServiceName (#114) 2022-11-28 11:18:56 -05:00
Michael Quigley
5971037835
createServicePolicyDialForEnvironment (#109, #112) 2022-11-28 11:10:10 -05:00
Michael Quigley
ce72fceb74
unaccess (#111); more access private wiring (#106, #109) 2022-11-23 13:00:01 -05:00
Michael Quigley
09c603845c
roughed-in access handler (#111) 2022-11-23 12:24:35 -05:00
Michael Quigley
6807cb3755
private sharing handler (#99, #109) 2022-11-22 15:31:02 -05:00
Michael Quigley
49987df381
streamlined unshare impl (#99) 2022-11-22 14:24:41 -05:00
Michael Quigley
ff3f623a74
use tags.zrokServiceName instead of name by convention (#99) 2022-11-22 14:12:35 -05:00
Michael Quigley
b54876fcb6
de-lint (#99) 2022-11-22 11:39:00 -05:00
Michael Quigley
c7d8395b89
publicResourceAllocator (#99) 2022-11-22 11:35:25 -05:00
Michael Quigley
6184e0e450
updated store.Services and friends (#103) 2022-11-22 11:14:58 -05:00
Michael Quigley
cbb9ec833f
service; prettier for sqlite (#103) 2022-11-22 10:58:17 -05:00
Michael Quigley
775ebb892f
make the new services table more pretty (#103) 2022-11-22 10:52:43 -05:00
Michael Quigley
5d60b5831d
initial strategy-based unshare handler (#99) 2022-11-21 15:11:35 -05:00
Michael Quigley
38c86aea82
implement store layer for service model changes (#103) 2022-11-21 14:51:11 -05:00
Michael Quigley
7cd36021ce
add share_mode and backend_mode to sql structures (#103) 2022-11-21 14:42:25 -05:00
Michael Quigley
ade25d21db
public sharing strategy; update test loop to match (#99) 2022-11-21 13:45:08 -05:00
Michael Quigley
82d9f6f6ed
additional service share/unshare and related naming refactoring (#102) 2022-11-18 15:48:13 -05:00
Michael Quigley
11068394b8
tunnel -> service; tunnel.Tunnel -> service.Share; tunnel.Untunnel -> service.Unshare (#102) 2022-11-18 15:36:55 -05:00
Michael Quigley
70c99b9791
frontend support in store; tests (#88, #98) 2022-11-17 14:41:07 -05:00
Michael Quigley
1fcb496321
store.Frontend (#98, #88) 2022-11-17 14:25:35 -05:00
Michael Quigley
f193976a50
ephemeral/non-ephemeral environments (#98, #88) 2022-11-17 13:27:57 -05:00
Michael Quigley
b9dca57dfa
store.CreateEphemeralEnvironment; tests (#88, #98) 2022-11-17 12:44:53 -05:00
Michael Quigley
dcdc00dcf4
sqlite3 port of the DDL changes (#20, #88) 2022-11-17 09:13:37 -05:00
Michael Quigley
d661b6a567
revised frontends schema (#20) 2022-11-15 14:48:40 -05:00
Michael Quigley
d825052a6a
docs; (#20) 2022-11-15 11:45:31 -05:00
Michael Quigley
59dd271591
better migration naming (#20) 2022-11-15 11:05:40 -05:00
Michael Quigley
cf77948ac5
availability_type; frontends; environments.account_id nullale; (#20) 2022-11-15 11:04:05 -05:00
Michael Quigley
bc98096881
ingress; first (#20) 2022-11-14 16:06:16 -05:00
Michael Quigley
01b43c6b74
accidental hard-coded email sender address, corrected 2022-11-11 10:50:17 -05:00
Michael Quigley
84af5be304
code maintenance; lint removal 2022-11-08 15:28:13 -05:00
Michael Quigley
bfdb3a1bd3
better logging to allow correlation with underlying ziti and operational management (#90) 2022-11-08 15:25:27 -05:00
Michael Quigley
c7dc3d5d71
wiring in the environment ziti identity for better correlation in logs (#90) 2022-11-08 15:07:18 -05:00
Michael Quigley
b9c9e62910
can't show 'cfg.Path', as it can contain secrets (#89) 2022-11-08 14:07:44 -05:00
Michael Quigley
e062a9f61f
add build-time version metadata (#70) 2022-11-02 15:07:43 -04:00
Michael Quigley
cc80b0e860
add migration for timestamp->timestamptz for postgres (#33) 2022-11-01 17:32:16 -04:00
Michael Quigley
477ff0f031
uptime for services (#33) 2022-11-01 17:03:32 -04:00
Michael Quigley
95b4143a85
communicate time as epoch ms; better disable of durations in ui (#33) 2022-11-01 16:52:02 -04:00
Michael Quigley
225e00861b
update cf to v0.0.13 to support secret suppression (#85) 2022-10-31 15:56:59 -04:00
Michael Quigley
8ba3b88a85
should probably include a default case, rather than panic-ing (#46) 2022-10-21 10:30:07 -04:00
Michael Quigley
3c8e5dee9f
vestigial log message 2022-10-21 09:37:34 -04:00
Michael Quigley
014da707d7
changes to support the agreement between sqlite and postgres (#46) 2022-10-21 09:31:12 -04:00
Michael Quigley
d479ff8609
basic schema conversion for postgres (#46) 2022-10-21 08:48:31 -04:00
Michael Quigley
bc75b312bf
organizing sqlite3 stuff to support postgres (#46) 2022-10-21 08:36:43 -04:00
Michael Quigley
6148fe316d
fix for service name creation (#79) 2022-10-20 14:16:18 -04:00
Michael Quigley
005db24691
better flux query for overview metrics (#74, #80) 2022-10-19 17:37:29 -04:00
Michael Quigley
e5e683d694
more 'active' removal; overview api sends spark metrics; spark ui (#74, #80) 2022-10-19 15:21:15 -04:00
Michael Quigley
e2d3208165
controller config structure improvements 2022-10-19 13:20:47 -04:00
Michael Quigley
40252f7a10
naming cleanups in api 2022-10-19 12:35:29 -04:00
Michael Quigley
887db1d2b6
more naming simplification 2022-10-19 12:24:43 -04:00
Michael Quigley
2d75181483
naming clarification 2022-10-19 12:10:22 -04:00
Michael Quigley
4a69d9dd31
not session... service 2022-10-19 12:00:07 -04:00
Michael Quigley
13251aec17
centralized metrics storage in metricsAgent, rather than the handler (#74, #76) 2022-10-19 11:37:31 -04:00
Michael Quigley
83c12e30cb
metrics lint; cache infrastructure (#74, #76) 2022-10-19 11:25:08 -04:00
Michael Quigley
095024c179
dnsSafeShortid (#79) 2022-10-18 15:49:30 -04:00
Michael Quigley
67377ed985
shortid (#79) 2022-10-18 15:21:53 -04:00
Michael Quigley
8bd7991b2b
tweak metrics logging to reduce irrelevant messages (#74, #76) 2022-10-18 13:31:49 -04:00
Michael Quigley
51d78526fe
better metrics accumulator (#74, #76) 2022-10-18 11:57:32 -04:00
Michael Quigley
1542e0131f
write to influxdb (#74, #76) 2022-10-17 15:54:22 -04:00
Michael Quigley
4559036ad8
starting on influx infrasructure (#74, #76) 2022-10-17 14:40:54 -04:00
Michael Quigley
69c44bdd51
local now; namespace (#74, #76) 2022-10-17 13:45:52 -04:00
Michael Quigley
e22e71cf71
metrics loop; bson (#74, #76) 2022-10-14 16:13:21 -04:00
Michael Quigley
318c73ad03
receiving metrics snapshots (#74, #76) 2022-10-14 15:49:59 -04:00
Michael Quigley
e519b4f16a
more metrics infrastructure (#74, #76) 2022-10-13 16:18:18 -04:00
Michael Quigley
41d5c2b652
metrics service name; metrics agent shutdown (#74, #76) 2022-10-13 15:50:15 -04:00
Michael Quigley
462025f5fa
metrics agent infrastructure 2022-10-13 14:23:52 -04:00
Michael Quigley
9d78e8e942
metrics config infrastructure (#74) 2022-10-12 12:42:05 -04:00
Michael Quigley
e58440722d
service cascade when processing environment disable (#52) 2022-10-07 14:27:01 -04:00
Michael Quigley
c2bfa5ea09
centralize more edge delete functionality 2022-10-07 14:17:15 -04:00
Michael Quigley
67bd77d2c3
garbage collect orphaned configs (#75) 2022-10-07 14:06:15 -04:00
Michael Quigley
b393c7f294
more garbage collection of orphans (#75) 2022-10-07 13:46:40 -04:00
Michael Quigley
69c71c0974
garbage collect service edge router policies (#75) 2022-10-07 09:30:58 -04:00
Michael Quigley
e8e0167a51
batch, offline garbage collection (#75) 2022-10-06 14:52:52 -04:00
Michael Quigley
637f27d9f4
query services (#75) 2022-10-06 13:52:19 -04:00
Michael Quigley
abe8d3e153
scaffolding for zrok gc (#75) 2022-10-06 13:24:15 -04:00
Michael Quigley
99bf504301
fix for sqlite transactional concurrency issue (#40) 2022-10-03 13:53:59 -04:00
Michael Quigley
02d6b7fce9
better url-ing in the ui (#68); demo improvements 2022-09-28 14:47:42 -04:00
Michael Quigley
3b9e6c5072
don't forward the error details 2022-09-26 16:35:06 -04:00
Michael Quigley
e61de01d9d
probably don't want to forward some of these errors 2022-09-26 16:33:57 -04:00
Michael Quigley
0142834665
fixed a lingering and silly bug causing FK constraint issues 2022-09-26 16:32:24 -04:00