Kristoffer Dalby
9c425a1c08
Finish SSH
...
This commit allows SSH rules to be assigned to each relevant not and
by doing that allow SSH to be rejected, completing the initial SSH
support.
This commit enables SSH by default and removes the experimental flag.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-06-21 10:31:48 +02:00
Viacheslav Sychov
36c9b5ce74
Adjust the template for the OIDC callback login page
2023-06-14 18:08:49 +02:00
Juan Font
c027ef0f6c
Added changelog for 0.22.3
2023-05-12 10:09:36 +02:00
Kristoffer Dalby
cdf3c47d63
changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-05-10 20:47:51 +02:00
Juan Font
c7db99d6ca
Update changelog + prepare for 0.22.2
2023-05-10 18:18:04 +02:00
Juan Font
997e93455d
Added web ui section
...
Added discord
2023-05-10 16:16:12 +02:00
Juan Font
526e568e1e
Update changelog
2023-05-07 15:27:30 +02:00
Maja Bojarska
6c5723a463
Update CHANGELOG.md
...
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2023-05-04 22:54:32 +02:00
Maja Bojarska
57fd5cf310
Update CHANGELOG.md
2023-05-04 22:54:32 +02:00
Kristoffer Dalby
735b185e7f
use IPSet in acls instead of string slice
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-05-03 18:43:57 +02:00
Juan Font
80772033ee
Improvements on Noise implementation ( #1379 )
2023-05-02 08:15:33 +02:00
Jonathan Wright
744e5a11b6
Update CHANGELOG.md
...
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2023-04-30 18:25:43 +02:00
Jonathan Wright
3ea1750ea0
Update CHANGELOG.md
2023-04-30 18:25:43 +02:00
Kristoffer Dalby
56dd734300
Add go profiling flag, and enable on integration tests ( #1382 )
2023-04-27 16:57:11 +02:00
Kristoffer Dalby
a5afe4bd06
Add more capabilities for systemd
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-20 15:53:19 +02:00
Kristoffer Dalby
64ebe6b0c8
change date in changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-20 08:13:38 +02:00
Kristoffer Dalby
b2e2b02210
set release date
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:47:31 +02:00
Kristoffer Dalby
2abff4bb08
update changelog for #1339
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:45:27 +02:00
Kristoffer Dalby
54c00645d1
update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:04:58 +02:00
Juan Font
353f191e4f
Update changelog
2023-04-07 13:25:34 +02:00
Kristoffer Dalby
b684ac0668
Simplify goreleaser, package deb and rpm
...
This commit simplifies the goreleaser configuration and then adds nfpm
support which allows us to build .deb and .rpm for each of the ARCH we
support.
The deb and rpm packages adds systemd services and users, creates
directories etc and should in general give the user a working
environment. We should be able to remove a lot of the complicated,
PEBCAK inducing documentation after this.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-07 11:06:42 +02:00
Kristoffer Dalby
c7b459b615
Fix issue where ACL * would filter out returning connections ( #1279 )
2023-03-27 19:19:32 +02:00
Juan Font
248abcf353
Add missing entry to changelog and prepare for 0.22
...
Add missing entry to changelog
2023-03-20 13:48:56 +01:00
nicholas-yap
003036a779
Update iOS compatibility and added iOS docs ( #1264 )
2023-03-17 15:56:15 +01:00
Kristoffer Dalby
8012e1cbd2
Add instructions on how to login to iOS ( #1261 )
2023-03-15 11:31:38 +00:00
Sean Reifschneider
f49930c514
Add "configtest" CLI command. ( #1230 )
...
Co-authored-by: Kristoffer Dalby <kristoffer@dalby.cc>
Fixes https://github.com/juanfont/headscale/issues/1229
2023-03-03 14:55:29 +01:00
Kristoffer Dalby
2baeb79aa0
changelog: prep for 0.21 ( #1246 )
2023-03-03 13:42:45 +01:00
Kristoffer Dalby
3c20d2a178
Update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-02-03 09:26:22 +01:00
Kristoffer Dalby
da48cf64b3
Set OpenID Connect Expiry
...
This commit adds a default OpenID Connect expiry to 180d to align with
Tailscale SaaS (previously infinite or based on token expiry).
In addition, it adds an option use the expiry time from the Token sent
by the OpenID provider. This will typically cause really short expiry
and you should only turn on this option if you know what you are
desiring.
This fixes #1176 .
Co-authored-by: Even Holthe <even.holthe@bekk.no>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-31 18:55:16 +01:00
Dominic Bevacqua
385fd93e73
Update changelog
2023-01-31 00:15:48 +01:00
Juan Font
640bb94119
Do not show IsPrimary field as false in exit nodes
2023-01-29 14:54:09 +01:00
Juan Font
b322cdf251
Updated changelog for v0.20.0
2023-01-29 11:46:37 +01:00
Kristoffer Dalby
8dadb045cf
Mark -n and --namespace as deprecated
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-26 10:22:38 +01:00
Kristoffer Dalby
86a7129027
Update changelog, more explicit backup note
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-19 12:54:34 +01:00
Kristoffer Dalby
81441afe70
update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-18 15:40:04 +01:00
Motiejus Jakštys
bafb6791d3
oidc: allow reading the client secret from a file
...
Currently the most "secret" way to specify the oidc client secret is via
an environment variable `OIDC_CLIENT_SECRET`, which is problematic[1].
Lets allow reading oidc client secret from a file. For extra convenience
the path to the secret will resolve the environment variables.
[1]: https://systemd.io/CREDENTIALS/
2023-01-14 17:03:57 +01:00
Juan Font
6c714e88ee
Added entry for performance improvements in ACLs
2023-01-11 08:58:03 +01:00
Juan Font
2084464225
Update CHANGELOG.md
...
Co-authored-by: Kristoffer Dalby <kristoffer@dalby.cc>
2023-01-05 14:59:02 +01:00
Juan Font
afae1ff7b6
Delete ephemeral machines on logout
...
Update changelog
Use dedicated method to delete
2023-01-05 14:59:02 +01:00
Even Holthe
6db9656008
oidc: update changelog
2023-01-04 09:23:52 +01:00
Christian Heusel
1f4efbcd3b
add changelog entry
2023-01-01 22:45:16 +01:00
Juan Font
593040b73d
Run the Noise handlers under a new struct so we can access the noiseConn from the handlers
...
In TS2021 the MachineKey can be obtained from noiseConn.Peer() - contrary to what I thought before,
where I assumed MachineKey was dropped in TS2021.
By having a ts2021App and hanging from there the TS2021 handlers, we can fetch again the MachineKey.
2022-12-21 20:52:08 +01:00
Juan Font
ca37dc6268
Update changelog
2022-12-15 00:13:53 -08:00
Kristoffer Dalby
134c72f4fb
Set db_ssl to false by default, fixes #1043
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-07 14:58:47 +01:00
Zachary Newell
70f2f5d750
Added an OIDC AllowGroups option for authorization.
2022-12-07 08:53:16 +01:00
Juan Font
34107f9a0f
Updated changelog
2022-12-06 08:17:14 +01:00
Kristoffer Dalby
68c72d03b5
Prep changelog for new release
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Kristoffer Dalby
bd4b2da06e
Add changelog entry to correct version
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Kristoffer Dalby
a58a552f0e
Update macos/windows doc
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Juan Font
89c12072ba
added changelog for 0.17.1
2022-12-03 16:34:23 +01:00
Kristoffer Dalby
63cd3122e6
Add breaking change about noise private path
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-01 14:47:19 +01:00
Kristoffer Dalby
eb072a1a74
mark some changes as more important
...
Signed-off-by: Kristoffer Dalby <kradalby@kradalby.no>
2022-11-26 12:01:12 +01:00
Kristoffer Dalby
36b8862e7c
Add notes about current ssh status
...
Signed-off-by: Kristoffer Dalby <kradalby@kradalby.no>
2022-11-26 11:53:31 +01:00
Even Holthe
c28ca27133
Add SSH ACL to changelog
2022-11-26 11:53:31 +01:00
Orville Q. Song
25195b8d73
Update CHANGELOG.md
2022-11-24 16:13:47 +01:00
Arnar Gauti Ingason
6d3ede1367
Add support for NextDNS resolver
2022-11-18 09:38:46 +01:00
Juan Font Alonso
2d79179141
Updated changelog
2022-11-15 21:28:26 +01:00
Juan Font
6391555dab
Updated changelog
2022-11-15 08:42:29 +01:00
Kristoffer Dalby
527b580f5e
Add build flag to enable TS2019 ( #928 )
2022-11-04 11:26:33 +01:00
Benjamin Roberts
8a07381e3a
Fix prefix length comparison bug in AutoApprovers route evaluation ( #862 )
2022-11-01 12:00:40 +01:00
Kristoffer Dalby
ca8bca98ed
Add support for "override local DNS" ( #905 )
...
* Add support for "override local DNS"
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* Update changelog
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* Update cli dump test
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-10-31 16:26:18 +01:00
Jiang Zhu
4e8b95e6cd
Fix issue 660 ( #874 )
...
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2022-10-31 15:59:50 +01:00
Kristoffer Dalby
94ad0a1555
Remove ip_prefix, its been deprecated for a long time ( #899 )
...
* Remove ip_prefix, its been deprecated for a long time
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
* update changelog
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2022-10-30 22:31:18 +01:00
Kristoffer Dalby
03194e2d66
Merge branch 'main' into feature-random-suffix-on-collision
2022-10-11 08:24:21 +02:00
Juan Font
5333df283a
Merge branch 'main' into sanitise-machine-key-url
2022-10-04 14:31:28 +02:00
=
2aebd2927d
Random suffix only on collision.
...
0.16.0 introduced random suffixes to all machine given names
(DNS hostnames) regardless of collisions within a namespace.
This commit brings Headscale more inline with Tailscale by only
adding a suffix if the hostname will collide within the namespace.
The suffix generation differs from Tailscale.
See https://tailscale.com/kb/1098/machine-names/
2022-10-03 09:13:56 +02:00
Kristoffer Dalby
6b4d53315b
Update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-09-26 10:01:01 +02:00
Kristoffer Dalby
d06ba7b522
Merge branch 'main' into sanitise-machine-key-url
2022-09-23 11:09:23 +02:00
Benjamin George Roberts
6d2cfd52c5
Merge branch 'main' into autoapprovers
2022-09-23 18:44:36 +10:00
Kristoffer Dalby
75a8fc8b3e
Update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-09-23 10:44:29 +02:00
Benjamin George Roberts
d764f52f24
Update changelog
2022-09-23 18:16:16 +10:00
Benjamin George Roberts
e5decbd0fa
Update changelog
2022-09-23 18:13:48 +10:00
Juan Font
397754753f
Merge branch 'main' into feature/json-logs
2022-09-20 23:11:29 +02:00
Kristoffer Dalby
f2da1a1665
Add comment and update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@dalby.cc>
2022-09-18 12:14:49 +02:00
Igor Perepilitsyn
874d6aaf6b
Make styling fixes
2022-09-11 21:44:28 +02:00
Igor Perepilitsyn
ae4f2cc4b5
Update changelog
2022-09-11 21:37:38 +02:00
Juan Font Alonso
c28e559da4
Updated changelog
2022-09-04 16:23:46 +02:00
Juan Font Alonso
30c0fdb38d
Update changelog
2022-09-03 23:19:07 +02:00
Juan Font Alonso
2c5bf6982c
Updated changelog
2022-09-03 12:24:22 +02:00
Jiang Zhu
a81a4d274f
Update CHANGELOG.md
2022-08-22 20:20:20 +08:00
Jiang Zhu
35dd9209b9
update CHANGELOG.md
2022-08-21 23:51:04 +08:00
Juan Font Alonso
4aafe6c9d1
Added line in CHANGELOG
2022-08-21 12:32:01 +02:00
Juan Font Alonso
6fe895fd22
Updated changelog for 0.16.4
2022-08-21 10:51:58 +02:00
Laurent Marchaud
a31432ee7b
Fix changelog
...
Signed-off-by: Laurent Marchaud <laurent@marchaud.com>
2022-08-19 14:14:30 +02:00
Laurent Marchaud
0c66590108
Update changelog
...
Signed-off-by: Laurent Marchaud <laurent@marchaud.com>
2022-08-19 14:11:19 +02:00
Azz
b6d324be69
Merge branch 'main' of https://github.com/juanfont/headscale
...
# Conflicts:
# CHANGELOG.md
2022-08-17 19:31:26 +01:00
Juan Font
287309b65c
Update changelog
2022-08-17 15:08:29 +00:00
azz
701ad3e017
chore: update CHANGELOG.md
2022-08-16 09:09:28 +01:00
Juan Font
7197ade4b4
Merge branch 'main' into postgres-connection-string
2022-08-15 13:37:09 +02:00
Juan Font Alonso
8557bcedae
Added changelog entries for 0.16.x
2022-08-14 23:22:41 +02:00
Victor Freire
ec5acf7be2
Add ability to connect to PostgreSQL via unix socket
2022-08-13 11:34:12 -03:00
Juan Font Alonso
a9b9a2942d
Update changelog
2022-08-12 09:31:11 +02:00
Adrien Raffin-Caboisse
110b01befa
Merge remote-tracking branch 'origin/main' into fix-bug-in-excludecorrectlytaggednodes
2022-08-11 12:49:26 +02:00
Juan Font Alonso
84f66090fd
Updated CHangelog and flake
2022-08-10 11:04:42 +02:00
Adrien Raffin-Caboisse
bce59345e4
docs: add entry in changelog
2022-08-04 10:51:06 +02:00
Juan Font Alonso
6f4d5a532e
fixed linting errors
2022-07-26 11:25:20 +02:00
Juan Font Alonso
693f59ba2f
Prepare changelog structure for 0.17.0
2022-07-25 10:35:21 +02:00
Jiang Zhu
49354f678e
update CHANGELOG
2022-07-23 04:47:37 +08:00
Juan Font Alonso
6c9f3420e2
Updated changelog
2022-07-21 23:59:44 +02:00
Jiang Zhu
b755d47652
update CHANGELOG
2022-07-19 20:45:23 +08:00