Kristoffer Dalby
735b185e7f
use IPSet in acls instead of string slice
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-05-03 18:43:57 +02:00
Juan Font
80772033ee
Improvements on Noise implementation ( #1379 )
2023-05-02 08:15:33 +02:00
Jonathan Wright
744e5a11b6
Update CHANGELOG.md
...
Co-authored-by: Juan Font <juanfontalonso@gmail.com>
2023-04-30 18:25:43 +02:00
Jonathan Wright
3ea1750ea0
Update CHANGELOG.md
2023-04-30 18:25:43 +02:00
Kristoffer Dalby
56dd734300
Add go profiling flag, and enable on integration tests ( #1382 )
2023-04-27 16:57:11 +02:00
Kristoffer Dalby
a5afe4bd06
Add more capabilities for systemd
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-20 15:53:19 +02:00
Kristoffer Dalby
64ebe6b0c8
change date in changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-20 08:13:38 +02:00
Kristoffer Dalby
b2e2b02210
set release date
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:47:31 +02:00
Kristoffer Dalby
2abff4bb08
update changelog for #1339
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:45:27 +02:00
Kristoffer Dalby
54c00645d1
update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-19 20:04:58 +02:00
Juan Font
353f191e4f
Update changelog
2023-04-07 13:25:34 +02:00
Kristoffer Dalby
b684ac0668
Simplify goreleaser, package deb and rpm
...
This commit simplifies the goreleaser configuration and then adds nfpm
support which allows us to build .deb and .rpm for each of the ARCH we
support.
The deb and rpm packages adds systemd services and users, creates
directories etc and should in general give the user a working
environment. We should be able to remove a lot of the complicated,
PEBCAK inducing documentation after this.
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-04-07 11:06:42 +02:00
Kristoffer Dalby
c7b459b615
Fix issue where ACL * would filter out returning connections ( #1279 )
2023-03-27 19:19:32 +02:00
Juan Font
248abcf353
Add missing entry to changelog and prepare for 0.22
...
Add missing entry to changelog
2023-03-20 13:48:56 +01:00
nicholas-yap
003036a779
Update iOS compatibility and added iOS docs ( #1264 )
2023-03-17 15:56:15 +01:00
Kristoffer Dalby
8012e1cbd2
Add instructions on how to login to iOS ( #1261 )
2023-03-15 11:31:38 +00:00
Sean Reifschneider
f49930c514
Add "configtest" CLI command. ( #1230 )
...
Co-authored-by: Kristoffer Dalby <kristoffer@dalby.cc>
Fixes https://github.com/juanfont/headscale/issues/1229
2023-03-03 14:55:29 +01:00
Kristoffer Dalby
2baeb79aa0
changelog: prep for 0.21 ( #1246 )
2023-03-03 13:42:45 +01:00
Kristoffer Dalby
3c20d2a178
Update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-02-03 09:26:22 +01:00
Kristoffer Dalby
da48cf64b3
Set OpenID Connect Expiry
...
This commit adds a default OpenID Connect expiry to 180d to align with
Tailscale SaaS (previously infinite or based on token expiry).
In addition, it adds an option use the expiry time from the Token sent
by the OpenID provider. This will typically cause really short expiry
and you should only turn on this option if you know what you are
desiring.
This fixes #1176 .
Co-authored-by: Even Holthe <even.holthe@bekk.no>
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-31 18:55:16 +01:00
Dominic Bevacqua
385fd93e73
Update changelog
2023-01-31 00:15:48 +01:00
Juan Font
640bb94119
Do not show IsPrimary field as false in exit nodes
2023-01-29 14:54:09 +01:00
Juan Font
b322cdf251
Updated changelog for v0.20.0
2023-01-29 11:46:37 +01:00
Kristoffer Dalby
8dadb045cf
Mark -n and --namespace as deprecated
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-26 10:22:38 +01:00
Kristoffer Dalby
86a7129027
Update changelog, more explicit backup note
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-19 12:54:34 +01:00
Kristoffer Dalby
81441afe70
update changelog
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2023-01-18 15:40:04 +01:00
Motiejus Jakštys
bafb6791d3
oidc: allow reading the client secret from a file
...
Currently the most "secret" way to specify the oidc client secret is via
an environment variable `OIDC_CLIENT_SECRET`, which is problematic[1].
Lets allow reading oidc client secret from a file. For extra convenience
the path to the secret will resolve the environment variables.
[1]: https://systemd.io/CREDENTIALS/
2023-01-14 17:03:57 +01:00
Juan Font
6c714e88ee
Added entry for performance improvements in ACLs
2023-01-11 08:58:03 +01:00
Juan Font
2084464225
Update CHANGELOG.md
...
Co-authored-by: Kristoffer Dalby <kristoffer@dalby.cc>
2023-01-05 14:59:02 +01:00
Juan Font
afae1ff7b6
Delete ephemeral machines on logout
...
Update changelog
Use dedicated method to delete
2023-01-05 14:59:02 +01:00
Even Holthe
6db9656008
oidc: update changelog
2023-01-04 09:23:52 +01:00
Christian Heusel
1f4efbcd3b
add changelog entry
2023-01-01 22:45:16 +01:00
Juan Font
593040b73d
Run the Noise handlers under a new struct so we can access the noiseConn from the handlers
...
In TS2021 the MachineKey can be obtained from noiseConn.Peer() - contrary to what I thought before,
where I assumed MachineKey was dropped in TS2021.
By having a ts2021App and hanging from there the TS2021 handlers, we can fetch again the MachineKey.
2022-12-21 20:52:08 +01:00
Juan Font
ca37dc6268
Update changelog
2022-12-15 00:13:53 -08:00
Kristoffer Dalby
134c72f4fb
Set db_ssl to false by default, fixes #1043
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-07 14:58:47 +01:00
Zachary Newell
70f2f5d750
Added an OIDC AllowGroups option for authorization.
2022-12-07 08:53:16 +01:00
Juan Font
34107f9a0f
Updated changelog
2022-12-06 08:17:14 +01:00
Kristoffer Dalby
68c72d03b5
Prep changelog for new release
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Kristoffer Dalby
bd4b2da06e
Add changelog entry to correct version
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Kristoffer Dalby
a58a552f0e
Update macos/windows doc
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-05 20:41:15 +01:00
Juan Font
89c12072ba
added changelog for 0.17.1
2022-12-03 16:34:23 +01:00
Kristoffer Dalby
63cd3122e6
Add breaking change about noise private path
...
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2022-12-01 14:47:19 +01:00
Kristoffer Dalby
eb072a1a74
mark some changes as more important
...
Signed-off-by: Kristoffer Dalby <kradalby@kradalby.no>
2022-11-26 12:01:12 +01:00
Kristoffer Dalby
36b8862e7c
Add notes about current ssh status
...
Signed-off-by: Kristoffer Dalby <kradalby@kradalby.no>
2022-11-26 11:53:31 +01:00
Even Holthe
c28ca27133
Add SSH ACL to changelog
2022-11-26 11:53:31 +01:00
Orville Q. Song
25195b8d73
Update CHANGELOG.md
2022-11-24 16:13:47 +01:00
Arnar Gauti Ingason
6d3ede1367
Add support for NextDNS resolver
2022-11-18 09:38:46 +01:00
Juan Font Alonso
2d79179141
Updated changelog
2022-11-15 21:28:26 +01:00
Juan Font
6391555dab
Updated changelog
2022-11-15 08:42:29 +01:00
Kristoffer Dalby
527b580f5e
Add build flag to enable TS2019 ( #928 )
2022-11-04 11:26:33 +01:00