netbird

mirror of https://github.com/netbirdio/netbird.git synced 2026-04-16 15:26:40 +00:00

Author	SHA1	Message	Date
pascal	0cb02bd906	fix path handling + extract targets to separate table + guard resource/peer deletion	2026-02-10 17:12:34 +01:00
pascal	ca9a7e11ef	continue on host lookup failure	2026-02-10 14:38:15 +01:00
pascal	a803f47685	add network map support for clustering	2026-02-10 14:29:20 +01:00
pascal	7c14056faf	fix resource lookup	2026-02-09 17:58:28 +01:00
pascal	62e37dc2e2	fix host resolution	2026-02-09 17:56:38 +01:00
pascal	9a67a8e427	send updates on changes	2026-02-09 17:06:04 +01:00
pascal	2390c2e46e	change network map calc to inject proxy policies	2026-02-09 14:41:22 +01:00
Viktor Liu	2f390e1794	Conflate default ports	2026-02-09 00:57:08 +08:00
Viktor Liu	3630ebb3ae	Add option to rewrite redirects	2026-02-09 00:44:47 +08:00
Viktor Liu	260c46df04	Fix broken auth redirect	2026-02-09 00:02:54 +08:00
Viktor Liu	7f11e3205d	Validate target id	2026-02-08 23:44:31 +08:00
Viktor Liu	d2a7f3ae36	Fix pass host header	2026-02-08 21:33:48 +08:00
Viktor Liu	7c647dd160	Add peer firewall to the receiving peer	2026-02-08 17:49:03 +08:00
Viktor Liu	07e59b2708	Add reverse proxy header security and forwarding - Rewrite Host header to backend target (configurable via pass_host_header per mapping) - Strip and set X-Forwarded-For/X-Real-IP from direct connection (trust boundary) - Set X-Forwarded-Host and X-Forwarded-Proto headers - Strip nb_session cookie and session_token query param before forwarding - Add --forwarded-proto flag (auto/http/https) for proto detection - Fix OIDC redirect hardcoded https scheme - Add pass_host_header to proto, API, and management model	2026-02-08 15:00:35 +08:00
mlsmaycon	2f263bf7e6	fix cluster logic for domains and reverse proxy	2026-02-07 11:43:01 +01:00
mlsmaycon	f65f4fc280	fix some conflicts regression	2026-02-06 20:39:17 +01:00
pascal	adbd7ab4c3	send account updates on proxy change	2026-02-06 17:03:18 +01:00
pascal	d6e35bd0fe	fix merge conflicts	2026-02-05 15:22:23 +01:00
pascal	0e00f1c8f7	Merge remote-tracking branch 'origin/prototype/reverse-proxy-clusters' into prototype/reverse-proxy # Conflicts: # management/internals/modules/reverseproxy/manager/manager.go # management/internals/modules/reverseproxy/reverseproxy.go # management/internals/server/modules.go # management/internals/shared/grpc/proxy.go # management/server/http/handler.go # management/server/http/testing/testing_tools/channel/channel.go	2026-02-05 15:19:57 +01:00
mlsmaycon	5ccce1ab3f	add debug logging for proxy connections and domain resolution - Log proxy address and cluster info when proxy connects - Log connected proxy URLs when GetConnectedProxyURLs is called - Log proxy allow list when GetDomains is called - Helps debug issues with free domains not appearing in API response	2026-02-05 02:18:38 +01:00
pascal	096d4ac529	rewrite peer creation and network map calc [WIP]	2026-02-04 20:01:00 +01:00
Alisdair MacLeod	694ae13418	add stateless proxy sessions	2026-02-04 16:52:35 +00:00
Alisdair MacLeod	28f3354ffa	Merge remote-tracking branch 'origin/prototype/reverse-proxy' into prototype/reverse-proxy # Conflicts: # management/internals/modules/reverseproxy/reverseproxy.go # management/internals/server/boot.go # management/internals/shared/grpc/proxy.go # proxy/internal/auth/middleware.go # shared/management/proto/proxy_service.pb.go # shared/management/proto/proxy_service.proto # shared/management/proto/proxy_service_grpc.pb.go	2026-02-04 11:56:04 +00:00
Alisdair MacLeod	562923c600	management OIDC implementation using pkce	2026-02-04 11:51:46 +00:00
mlsmaycon	b02982f6b1	add logs	2026-02-04 03:14:26 +01:00
mlsmaycon	4d89ae27ef	add clusters logic	2026-02-04 02:16:57 +01:00
pascal	92f72bfce6	add reverse proxy meta to api resp	2026-02-03 17:37:55 +01:00
pascal	bffb25bea7	add status confirmation for certs and tunnel creation	2026-02-03 16:58:14 +01:00
Alisdair MacLeod	3af4543e80	check for domain ownership via subdomain rather than naked domain	2026-02-03 12:50:25 +00:00
Alisdair MacLeod	5243481316	get OIDC configuration from proxy flags/env	2026-02-03 12:10:23 +00:00
Alisdair MacLeod	76a39c1dcb	Revert "add management side of OIDC authentication" This reverts commit `02ce918114`.	2026-02-03 10:03:38 +00:00
Alisdair MacLeod	02ce918114	add management side of OIDC authentication	2026-02-03 09:42:40 +00:00
Alisdair MacLeod	30cfc22cb6	correct proto and proxy authentication for oidc	2026-02-03 09:01:39 +00:00
Alisdair MacLeod	3168afbfcb	clean up proxy reported urls when using them for validation	2026-02-02 15:59:24 +00:00
Alisdair MacLeod	fa6ff005f2	add validation logging	2026-02-02 10:53:46 +00:00
Alisdair MacLeod	095379fa60	add logging to domain validation	2026-02-02 10:27:20 +00:00
Alisdair MacLeod	30572fe1b8	add domain validation using values from proxies	2026-02-02 09:53:49 +00:00
Alisdair MacLeod	e95cfa1a00	add support for some basic authentication methods	2026-01-29 16:34:52 +00:00
pascal	8e0b7b6c25	add api for access log events	2026-01-29 14:27:57 +01:00
Alisdair MacLeod	f204da0d68	fix management reverseproxy proto mapping	2026-01-29 12:29:21 +00:00
Alisdair MacLeod	7700b4333d	correctly interpret custom domains from the database	2026-01-28 12:45:32 +00:00
Alisdair MacLeod	2c9decfa55	fix domain store slice retrieval	2026-01-27 17:27:16 +00:00
Alisdair MacLeod	b86722394b	fix domain api registration	2026-01-27 17:01:55 +00:00
pascal	73fbb3fc62	fix reverse proxy put and post	2026-01-27 17:38:55 +01:00
Alisdair MacLeod	7b3523e25e	return empty domain list when none in database	2026-01-27 16:34:56 +00:00
pascal	6e4e1386e7	fix path variables	2026-01-27 17:13:42 +01:00
pascal	671e9af6eb	create setup key and policy to send to reverse proxies	2026-01-27 17:05:32 +01:00
Alisdair MacLeod	50f42caf94	connect api to store and manager for domains	2026-01-27 15:43:54 +00:00
pascal	b7eeefc102	send proxy mapping updates	2026-01-27 16:34:00 +01:00
pascal	8dd22f3a4f	move to reverse proxy and update api	2026-01-27 15:34:01 +01:00

50 Commits