Dominic Bevacqua
26edf24477
Allow split DNS configuration without requiring global nameservers
...
Align behaviour of dns_config.restricted_nameservers to tailscale.
Tailscale allows split DNS configuration without requiring global nameservers.
In addition, as per [the docs](https://tailscale.com/kb/1054/dns/#using-dns-settings-in-the-admin-console ):
> These nameservers also configure search domains for your devices
This commit aligns headscale to tailscale by:
* honouring dns_config.restricted_nameservers regardless of whether any global resolvers are configured
* adding a search domain for each restricted_nameserver
2023-01-31 00:15:48 +01:00
Motiejus Jakštys
bafb6791d3
oidc: allow reading the client secret from a file
...
Currently the most "secret" way to specify the oidc client secret is via
an environment variable `OIDC_CLIENT_SECRET`, which is problematic[1].
Lets allow reading oidc client secret from a file. For extra convenience
the path to the secret will resolve the environment variables.
[1]: https://systemd.io/CREDENTIALS/
2023-01-14 17:03:57 +01:00
Christian Heusel
ab6565723e
add the possibility for custom DNS records
...
related to https://github.com/juanfont/headscale/issues/762
Co-Authored-By: Jamie Greeff <jamie@greeff.me>
Signed-off-by: Christian Heusel <christian@heusel.eu>
2023-01-01 22:45:16 +01:00
John Axel Eriksson
7bb6f1a7eb
domains/restricted_nameservers: check dnsConfig.Resolvers instead of dnsConfig.Nameservers
2022-12-31 19:06:32 +01:00
Kristoffer Dalby
134c72f4fb
Set db_ssl to false by default, fixes #1043
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-07 14:58:47 +01:00
Zachary Newell
70f2f5d750
Added an OIDC AllowGroups option for authorization.
2022-12-07 08:53:16 +01:00
Orville Q. Song
72b9803a08
Change DBssl to string
2022-11-24 16:13:47 +01:00
Juan Font
d461097247
Remove mTLS stuff from code
2022-11-19 19:50:34 +01:00
Juan Font Alonso
751cc173d4
Fix issue when CLI is configured in config file
2022-11-18 19:19:56 +01:00
Juan Font Alonso
ff134f2b8e
Fix remote CLI when there is no config file present
2022-11-18 19:19:56 +01:00
Arnar Gauti Ingason
6d3ede1367
Add support for NextDNS resolver
2022-11-18 09:38:46 +01:00
Kristoffer Dalby
ca8bca98ed
Add support for "override local DNS" ( #905 )
...
* Add support for "override local DNS"
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* Update changelog
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* Update cli dump test
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-10-31 16:26:18 +01:00
Jiang Zhu
4e8b95e6cd
Fix issue 660 ( #874 )
...
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2022-10-31 15:59:50 +01:00
Kristoffer Dalby
94ad0a1555
Remove ip_prefix, its been deprecated for a long time ( #899 )
...
* Remove ip_prefix, its been deprecated for a long time
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* update changelog
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2022-10-30 22:31:18 +01:00
Kristoffer Dalby
fb25a06a66
Preserve current behaviour with a config flag
...
Add a configuration flag (default true to preserve current behaviour) to
allow headscale to start without OIDC being able to initialise.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-09-26 09:57:28 +02:00
Igor Perepilitsyn
dd155dca97
Create a distinct log section in config
2022-09-11 21:37:23 +02:00
Juan Font
302a88bfdb
Merge branch 'main' into feature/json-logs
2022-09-04 22:32:58 +02:00
Juan Font Alonso
68305df9b2
Applied gofumpt
2022-09-04 11:32:29 +02:00
Juan Font Alonso
197da8afcb
Migrate config.go to net/netip
2022-09-02 00:04:04 +02:00
Igor Perepilitsyn
2403c0e198
toggle json logging via config
2022-08-26 13:10:51 +02:00
Juan Font Alonso
4424a9abc0
Noise private key now a nested field in config
2022-08-21 10:42:23 +02:00
Juan Font
67ffebc30a
Merge branch 'main' into hs2021-v2
2022-08-18 17:56:56 +02:00
azz
4c7f54020b
feat: add support for TLS with Postgres
2022-08-16 08:50:30 +01:00
Juan Font Alonso
ade1b73779
Output an error when a user runs headscale without noise_private_key_path defined
2022-08-14 12:35:14 +02:00
Juan Font Alonso
6e8e2bf508
Generate and read the Noise private key
2022-08-13 11:14:38 +02:00
Grigoriy Mikhalkin
3f0639c87d
graceful shutdown lint fixes
2022-07-21 23:47:20 +02:00
Juan Font Alonso
5b5298b025
Renamed config param for node update check internal
2022-07-12 12:52:03 +02:00
Juan Font Alonso
cf3fc85196
Make tailnet updates check configurable
2022-07-12 12:27:28 +02:00
Kristoffer Dalby
8650328922
Remove debug output, it runs before we disable it
2022-06-12 16:40:43 +00:00
Kristoffer Dalby
76195bb3ac
Add warn if configuration could not be found
2022-06-12 13:32:16 +00:00
Kristoffer Dalby
fd3a1c13e3
Add a default to ephemeral_node_inactivity_timeout
2022-06-12 13:12:53 +00:00
Kristoffer Dalby
95824ac2ec
MOve ephemeral inactivity config check to all the other config check
2022-06-12 13:12:43 +00:00
Kristoffer Dalby
8d58894daa
Tailscale 1.26 uses dnstype pointer
2022-06-11 15:34:02 +00:00
Kristoffer Dalby
3f7749c6d4
Merge branch 'main' into feature/configure-randomize-port
2022-06-11 10:55:05 +01:00
Anton Schubert
34be10840c
add ability to set randomizeClientPort
2022-06-09 21:26:40 +02:00
Jiang Zhu
bcb04d38a5
Merge branch 'main' into enhance_cli_config
...
Extract LoadConfig from GetHeadscaleConfig, as they are conceptually
different operation, e.g.,
1) you can reload config through LoadConfig and do not get config
2) you can get config without reload config
2022-06-07 22:51:47 +08:00
Kristoffer Dalby
af891808f6
Make get config load the config, use config in main method
2022-06-05 17:47:12 +02:00
Kristoffer Dalby
24c9530eee
Add loglevel and disable update to config struct
2022-06-03 10:37:45 +02:00
Kristoffer Dalby
aee8aa1c61
Move TLS config into its own struct
2022-06-03 10:14:14 +02:00
Kristoffer Dalby
1ea8bb782c
Move all read config logic to config.go
2022-06-03 09:26:36 +02:00
Kristoffer Dalby
533ecee252
Move config struct to its own file
2022-06-03 09:05:41 +02:00