netbird

mirror of https://github.com/netbirdio/netbird.git synced 2026-04-21 01:36:46 +00:00

Author	SHA1	Message	Date
bcmmbaga	accada3311	Remove db lock on aggregate db calls Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-25 21:23:58 +03:00
bcmmbaga	71af7edd05	Refactor new account handling Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-25 17:43:39 +03:00
bcmmbaga	e17d8127e3	Remove unused store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-25 13:49:41 +03:00
bcmmbaga	ea51ce876e	Remove group all checks for accounts during startup Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-22 18:07:23 +03:00
bcmmbaga	70b4628b5a	Refactor account settings updates Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-22 17:53:15 +03:00
bcmmbaga	de3e67e7ae	Add route store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-22 00:45:45 +03:00
bcmmbaga	6a456c52bf	Refactor user and PAT handling Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-19 23:42:27 +03:00
bcmmbaga	a2fb274b86	remove duplicate store method Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-18 15:09:30 +03:00
bcmmbaga	a61e9da3e9	run peer ops in transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-18 15:06:25 +03:00
bcmmbaga	f5e7449d01	Add lock for peer store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-14 19:24:51 +03:00
bcmmbaga	6315644065	Add peer store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-14 13:04:36 +03:00
bcmmbaga	218345e0ff	Refactor name server groups to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-13 20:41:30 +03:00
bcmmbaga	560190519d	Refactor dns settings to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-13 13:15:47 +03:00
bcmmbaga	32d1b2d602	Retrieve policy groups and posture checks once for validation Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-12 18:53:10 +03:00
bcmmbaga	0c0fd380bd	Refactor policy get and save account to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-12 11:17:16 +03:00
bcmmbaga	ffce48ca5f	Merge branch 'groups-get-account-refactoring' into policy-get-account-refactoring	2024-11-11 23:08:34 +03:00
bcmmbaga	d23b5c892b	Retrieve modified peers once for group events Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-11 22:58:22 +03:00
bcmmbaga	010a8bfdc1	Merge branch 'main' into groups-get-account-refactoring # Conflicts: # management/server/group.go # management/server/group/group.go # management/server/setupkey.go # management/server/sql_store.go # management/server/status/error.go # management/server/store.go	2024-11-11 21:10:02 +03:00
Bethuel Mmbaga	6cb697eed6	[management] Refactor setup key to use store methods (#2861 ) * Refactor setup key handling to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add lock to get account groups Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add check for regular user Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * get only required groups for auto-group validation Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add account lock and return auto groups map on validation Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix missing group removed from setup key activity Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Remove context from DB queries Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Add user permission check and add setup events into events to store slice Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Retrieve all groups once during setup key auto-group validation Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Fix lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Fix sonar Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-11 19:46:10 +03:00
bcmmbaga	174e07fefd	Refactor posture checks to remove get and save account Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-11 12:37:19 +03:00
bcmmbaga	871500c5cc	fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-09 01:52:09 +03:00
bcmmbaga	0a70e4c5d4	Refactor groups to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-08 18:39:36 +03:00
bcmmbaga	389c9619af	Refactor setup key handling to use store methods Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-11-08 00:31:41 +03:00
pascal-fischer	10480eb52f	[management] Setup key improvements (#2775 )	2024-10-28 17:52:23 +01:00
Maycon Santos	da3a053e2b	[management] Refactor getAccountIDWithAuthorizationClaims (#2715 ) This change restructures the getAccountIDWithAuthorizationClaims method to improve readability, maintainability, and performance. - have dedicated methods to handle possible cases - introduced Store.UpdateAccountDomainAttributes and Store.GetAccountUsers methods - Remove GetAccount and SaveAccount dependency - added tests	2024-10-12 08:35:51 +02:00
pascal-fischer	8284ae959c	[management] Move testdata to sql files (#2693 )	2024-10-10 12:35:03 +02:00
Bethuel Mmbaga	7f09b39769	[management] Refactor User JWT group sync (#2690 ) * Refactor GetAccountIDByUserOrAccountID Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * sync user jwt group changes Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * propagate jwt group changes to peers Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix no jwt groups synced Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests and lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Move the account peer update outside the transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * move updateUserPeersInGroups to account manager Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * move event store outside of transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * get user with update lock Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Run jwt sync in transaction Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-10-04 17:17:01 +03:00
pascal-fischer	158936fb15	[management] Remove file store (#2689 )	2024-10-03 15:50:35 +02:00
Bethuel Mmbaga	acb73bd64a	[management] Remove redundant get account calls in GetAccountFromToken (#2615 ) * refactor access control middleware and user access by JWT groups Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor jwt groups extractor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor handlers to get account when necessary Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountFromToken Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountWithAuthorizationClaims Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix merge Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * revert handles change Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * remove GetUserByID from account manager Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor getAccountWithAuthorizationClaims to return account id Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor handlers to use GetAccountIDFromToken Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * remove locks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * refactor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add GetGroupByName from store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add GetGroupByID from store and refactor Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor retrieval of policy and posture checks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor user permissions and retrieves PAT Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor route, setupkey, nameserver and dns to get record(s) from store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * Refactor store Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix lint Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix add missing policy source posture checks Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add store lock Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * fix tests Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> * add get account Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com> --------- Signed-off-by: bcmmbaga <bethuelmbaga12@gmail.com>	2024-09-27 17:10:50 +03:00
pascal-fischer	6c50b0c84b	[management] Add transaction to addPeer (#2469 ) This PR removes the GetAccount and SaveAccount operations from the AddPeer and instead makes use of gorm.Transaction to add the new peer.	2024-09-16 15:47:03 +02:00
pascal-fischer	049b5fb7ed	Split DB calls in peer login (#2439 )	2024-08-19 12:50:11 +02:00
Maycon Santos	165988429c	Add write lock for peer when saving its connection status (#2359 )	2024-07-31 14:53:32 +02:00
Maycon Santos	1f48fdf6ca	Add SavePeer method to prevent a possible account inconsistency (#2296 ) SyncPeer was storing the account with a simple read lock This change introduces the SavePeer method to the store to be used in these cases	2024-07-26 07:49:05 +02:00
Bethuel Mmbaga	1537b0f5e7	Add batch save/update for groups and users (#2245 ) * Add functionality to update multiple users * Remove SaveUsers from DefaultAccountManager * Add SaveGroups method to AccountManager interface * Refactoring * Add SaveUsers and SaveGroups methods to store interface * Refactor method SaveAccount to SaveUsers and SaveGroups The method SaveAccount in user.go and group.go files was split into two separate methods. Now, user-specific data is handled by SaveUsers and group-specific data is handled by SaveGroups method. This provides a cleaner and more efficient way to save user and group data. * Add account ID to user and group in SqlStore * Refactor SaveUsers and SaveGroups in store * Remove unnecessary ID assignment in SaveUsers and SaveGroups	2024-07-15 17:04:06 +03:00
pascal-fischer	765aba2c1c	Add context to throughout the project and update logging (#2209 ) propagate context from all the API calls and log request ID, account ID and peer ID --------- Co-authored-by: Zoltan Papp <zoltan.pmail@gmail.com>	2024-07-03 11:33:02 +02:00
Bethuel Mmbaga	fc15ee6351	auto migrate older management to sqlite (#2170 )	2024-06-20 19:45:57 +02:00
Bethuel Mmbaga	95299be52d	Deprecate FileStore engine support (#2119 ) * Removejsonfile' from test matrix in workflows * Remove sqlite to json migration command * Refactor store engine implementation to remove JSON file store support The codebase has been refactored to remove support for JSON file store storage engine, with SQLite serving as the default store engine. New functions have been added to handle unsupported store engines and to migrate data from file store to SQLite. * Remove 'downCmd' from migration commands * Refactoring * Add sqlite cleanup * Remove comment	2024-06-13 13:39:19 +03:00
pascal-fischer	521f7dd39f	Improve login performance (#2061 )	2024-05-31 16:41:12 +02:00
pascal-fischer	012235ff12	Add FindExistingPostureCheck (#2075 )	2024-05-30 15:22:42 +02:00
Bethuel Mmbaga	d35a79d3b5	Upgrade gRPC and OpenTelemetry packages for compatibility (#2003 ) Upgrades `go.opentelemetry.io/otel` from version` v1.11.1` to `v1.26.0`. The upgrade addresses compatibility issues caused by the removal of several sub-packages in the latest OpenTelemetry release, which were causing broken dependencies. Key Changes: - Upgraded `go.opentelemetry.io/otel` from `v1.11.1` to `v1.26.0`. - Fixed broken dependencies by replacing the deprecated sub-packages: - `go.opentelemetry.io/otel/metric/instrument` - `go.opentelemetry.io/otel/metric/instrument/asyncint64` - `go.opentelemetry.io/otel/metric/instrument/syncint64` - Upgraded `google.golang.org/grpc` from `v1.56.3` to `v1.64.0` which deprecate `Dial` and `DialContext` to `NewClient`.	2024-05-27 08:39:18 +02:00
Bethuel Mmbaga	a5811a2d7d	Implement experimental PostgreSQL store (#1939 ) * migrate sqlite store to generic sql store * fix conflicts * init postgres store * Add postgres store tests * Refactor postgres store engine name * fix tests * Run postgres store tests on linux only * fix tests * Refactor * cascade policy rules on policy deletion * fix tests * run postgres cases in new db * close store connection after tests * refactor * using testcontainers * sync go sum * remove postgres service * remove store cleanup * go mod tidy * remove env * use postgres as engine and initialize test store with testcontainer --------- Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>	2024-05-16 19:28:37 +03:00
pascal-fischer	2e0047daea	Improve Sync performance (#1901 )	2024-05-07 14:30:03 +02:00
Maycon Santos	fc7c1e397f	Disable force jsonfile variable (#1611 ) This enables windows management tests Added another DNS server to the dns server tests	2024-03-15 10:50:02 +01:00
Viktor Liu	199bf73103	Remove usage stats (#1665 )	2024-03-05 09:45:32 +01:00
Yury Gargay	bbea4c3cc3	Use SQLite store as default when running tests when env is not set (#1612 )	2024-02-22 16:51:56 +01:00
Viktor Liu	b7a6cbfaa5	Add account usage logic (#1567 ) --------- Co-authored-by: Yury Gargay <yury.gargay@gmail.com>	2024-02-22 12:27:08 +01:00
Yury Gargay	0fbf72434e	Make SQLite default for new installations (#1529 ) * Make SQLite default for new installations * if var is not set, return empty string this allows getStoreEngineFromDatadir to detect json store files --------- Co-authored-by: Maycon Santos <mlsmaycon@gmail.com>	2024-02-20 15:06:32 +01:00
Yury Gargay	9bc7b9e897	Add initial support of device posture checks (#1540 ) This PR implements the following posture checks: * Agent minimum version allowed * OS minimum version allowed * Geo-location based on connection IP For the geo-based location, we rely on GeoLite2 databases which are free IP geolocation databases. MaxMind was tested and we provide a script that easily allows to download of all necessary files, see infrastructure_files/download-geolite2.sh. The OpenAPI spec should extensively cover the life cycle of current version posture checks.	2024-02-20 09:59:56 +01:00
pascal-fischer	141065f14e	Merge branch 'main' into feature/peer-approval	2023-11-29 16:27:01 +01:00
Maycon Santos	c2eaf8a1c0	Add account deletion endpoint (#1331 ) Adding support to account owners to delete an account This will remove all users from local, and if --user-delete-from-idp is set it will remove from the remote IDP	2023-11-28 14:23:38 +01:00

1 2

69 Commits