Kristoffer Dalby
428d7c86ce
Rename namespace in protobuf files
...
While this truly breaks the point of the backwards compatible stuff with
protobuf, it does not seem worth it to attempt to glue together a
compatible API.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-18 15:40:04 +01:00
Kristoffer Dalby
af1ec5a593
Rename .go namespace files
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-18 15:40:04 +01:00
Kristoffer Dalby
e3a2593344
Rename [Nn]amespace -> [Uu]ser in go code
...
Use gopls, ag and perl to rename all occurances of Namespace
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-18 15:40:04 +01:00
Motiejus Jakštys
bafb6791d3
oidc: allow reading the client secret from a file
...
Currently the most "secret" way to specify the oidc client secret is via
an environment variable `OIDC_CLIENT_SECRET`, which is problematic[1].
Lets allow reading oidc client secret from a file. For extra convenience
the path to the secret will resolve the environment variables.
[1]: https://systemd.io/CREDENTIALS/
2023-01-14 17:03:57 +01:00
Motiejus Jakštys
6edac4863a
Makefile: remove a missing target
...
test_integration_oidc was removed in 0525bea593
2023-01-14 13:42:48 +01:00
Even Holthe
e27e01c09f
nodes list: expose expiration time
2023-01-12 13:43:21 +01:00
Even Holthe
dd173ecc1f
Refresh machines with correct new expiry
2023-01-12 13:43:21 +01:00
Kristoffer Dalby
8ca0fb7ed0
update ip_prefixes docs
...
we cant actually have arbitrary ip ranges, add a note about that.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-12 11:39:39 +01:00
Juan Font
6c714e88ee
Added entry for performance improvements in ACLs
2023-01-11 08:58:03 +01:00
Allen
a6c8718a97
ToStringSlice will lead to high CPU usage, early conversion can reduce cpu usage
2023-01-11 08:45:54 +01:00
Even Holthe
26282b7a54
Fix SIGSEGV crash related to map of state changes
...
See https://github.com/juanfont/headscale/issues/1114#issuecomment-1373698441
2023-01-10 22:26:21 +01:00
Kristoffer Dalby
93aca81c1c
Read integration test config from Env
...
This commit sets the Headscale config from env instead of file for
integration tests, the main point is to make sure that when we add per
test config, it properly replaces the config key and not append it or
something similar.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 23:06:43 +01:00
Kristoffer Dalby
81254cdf7a
Limit run regex for generated workflows
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 18:36:31 +01:00
Kristoffer Dalby
b3a0c4a63b
Add integration readme
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 12:32:24 +01:00
Kristoffer Dalby
376235c9de
make prettier ignore generated test flows
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 12:32:24 +01:00
Kristoffer Dalby
7274fdacc6
Generate github action jobs for integration tests
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 12:32:24 +01:00
Kristoffer Dalby
91c1f54b49
Remove "run all v2 job"
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 12:32:24 +01:00
Kristoffer Dalby
efd0f79fbc
Add script to generate integration test gitjobs
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-06 12:32:24 +01:00
Juan Font
2084464225
Update CHANGELOG.md
...
Co-authored-by: Kristoffer Dalby <kristoffer@dalby.cc>
2023-01-05 14:59:02 +01:00
Juan Font
66ebbf3ecb
Preload AuthKey in machine getters
2023-01-05 14:59:02 +01:00
Juan Font
55a3885614
Added integration tests for ephemeral nodes
...
Fetch the machines from headscale
2023-01-05 14:59:02 +01:00
Juan Font
afae1ff7b6
Delete ephemeral machines on logout
...
Update changelog
Use dedicated method to delete
2023-01-05 14:59:02 +01:00
Juan Font
4de49f5f49
Add isEphemeral() method to Machine
2023-01-05 14:59:02 +01:00
Even Holthe
6db9656008
oidc: update changelog
2023-01-04 09:23:52 +01:00
Even Holthe
fecb13b24b
oidc: add basic docs
2023-01-04 09:23:52 +01:00
Even Holthe
23a595c26f
oidc: add test for expiring nodes after token expiration
2023-01-04 09:23:52 +01:00
Even Holthe
085912cfb4
expire machines after db expiry
2023-01-04 09:23:52 +01:00
Even Holthe
7157e14aff
add expiration from OIDC token to machine
2023-01-04 09:23:52 +01:00
Allen
4e2c4f92d3
reflect.DeepEqual is a value copy that causes golang to continuously allocate memory
2023-01-03 18:09:18 +01:00
Juan Font
893b0de8fa
Added tests on allowedip field for routing
2023-01-03 13:34:55 +01:00
Juan Font
9b98c3b79f
Send in AllowedIPs both primary routes AND enabled exit routes
2023-01-03 13:34:55 +01:00
Even Holthe
6de26b1d7c
Remove Tailscale v1.18.2 from test matrix
2023-01-02 16:06:12 +01:00
Christian Heusel
1f1931fb00
fix spelling mistakes
2023-01-01 22:45:16 +01:00
Christian Heusel
1f4efbcd3b
add changelog entry
2023-01-01 22:45:16 +01:00
Christian Heusel
711fe1d806
enumerate the config
2023-01-01 22:45:16 +01:00
Christian Heusel
e2c62a7b0c
document how to add new DNS records via extra_records
2023-01-01 22:45:16 +01:00
Christian Heusel
ab6565723e
add the possibility for custom DNS records
...
related to https://github.com/juanfont/headscale/issues/762
Co-Authored-By: Jamie Greeff <jamie@greeff.me>
Signed-off-by: Christian Heusel <christian@heusel.eu>
2023-01-01 22:45:16 +01:00
John Axel Eriksson
7bb6f1a7eb
domains/restricted_nameservers: check dnsConfig.Resolvers instead of dnsConfig.Nameservers
2022-12-31 19:06:32 +01:00
Avirut Mehta
549b82df11
Add Caddy instructions to reverse_proxy.md
2022-12-27 23:08:34 +01:00
Marc
036cdf922f
templates: fix typo "custm" -> "custom"
2022-12-27 12:02:33 +01:00
jimyag
b4ff22935c
update macos check
2022-12-25 15:45:45 +01:00
ma6174
5feadbf3fc
fix goroutine leak
2022-12-25 14:11:16 +01:00
Juan Font
3e9ee816f9
Add integration tests for logout with authkey
2022-12-22 20:02:18 +01:00
Juan Font
2494e27a73
Make WaitForTailscaleLogout a Scenario method
2022-12-22 20:02:18 +01:00
Juan Font
8e8b65bb84
Add ko-fi sponsor button
2022-12-22 17:25:49 +01:00
Juan Font
b7d7fc57c4
Add logout method to tsic
2022-12-22 00:09:21 +01:00
Juan Font
b54c0e3d22
Add integration tests that check logout and relogin
2022-12-21 20:52:08 +01:00
Juan Font
593040b73d
Run the Noise handlers under a new struct so we can access the noiseConn from the handlers
...
In TS2021 the MachineKey can be obtained from noiseConn.Peer() - contrary to what I thought before,
where I assumed MachineKey was dropped in TS2021.
By having a ts2021App and hanging from there the TS2021 handlers, we can fetch again the MachineKey.
2022-12-21 20:52:08 +01:00
Juan Font
6e890afc5f
Minor linting fixes
2022-12-21 08:28:53 +01:00
Fatih Acar
2afba0233b
fix(routes): ensure routes are correctly propagated
...
When using Tailscale v1.34.1, enabling or disabling a route does not
effectively add or remove the route from the node's routing table.
We must restart tailscale on the node to have a netmap update.
Fix this by refreshing last state change so that a netmap diff is sent.
Also do not include secondary routes in allowedIPs, otherwise secondary
routes might be used by nodes instead of the primary route.
Signed-off-by: Fatih Acar <facar@scaleway.com>
2022-12-20 15:39:59 +01:00