Nick Khyl 874db2173b ipn/{ipnauth,ipnlocal,ipnserver}: send the auth URL to the user who started interactive login ... We add the ClientID() method to the ipnauth.Actor interface and updated ipnserver.actor to implement it. This method returns a unique ID of the connected client if the actor represents one. It helps link a series of interactions initiated by the client, such as when a notification needs to be sent back to a specific session, rather than all active sessions, in response to a certain request. We also add LocalBackend.WatchNotificationsAs and LocalBackend.StartLoginInteractiveAs methods, which are like WatchNotifications and StartLoginInteractive but accept an additional parameter specifying an ipnauth.Actor who initiates the operation. We store these actor identities in watchSession.owner and LocalBackend.authActor, respectively,and implement LocalBackend.sendTo and related helper methods to enable sending notifications to watchSessions associated with actors (or, more broadly, identifiable recipients). We then use the above to change who receives the BrowseToURL notifications: - For user-initiated, interactive logins, the notification is delivered only to the user who initiated the process. If the initiating actor represents a specific connected client, the URL notification is sent back to the same LocalAPI client that called StartLoginInteractive. Otherwise, the notification is sent to all clients connected as that user. Currently, we only differentiate between users on Windows, as it is inherently a multi-user OS. - In all other cases (e.g., node key expiration), we send the notification to all connected users. Updates tailscale/corp#18342 Signed-off-by: Nick Khyl <nickk@tailscale.com>		2024-10-18 15:10:02 -05:00
..
conffile	ipn/conffile: don't depend on hujson on iOS/Android	2024-10-10 09:14:36 -07:00
ipnauth	ipn/{ipnauth,ipnlocal,ipnserver}: send the auth URL to the user who started interactive login	2024-10-18 15:10:02 -05:00
ipnlocal	ipn/{ipnauth,ipnlocal,ipnserver}: send the auth URL to the user who started interactive login	2024-10-18 15:10:02 -05:00
ipnserver	ipn/{ipnauth,ipnlocal,ipnserver}: send the auth URL to the user who started interactive login	2024-10-18 15:10:02 -05:00
ipnstate	cmd/tl-longchain: tool to re-sign nodes with long rotation signatures	2024-08-21 18:22:22 +01:00
localapi	ipn/{ipnauth,ipnlocal,ipnserver}: send the auth URL to the user who started interactive login	2024-10-18 15:10:02 -05:00
policy	ipn,tailconfig: clean up unreleased and removed app connector service	2023-11-09 22:36:52 -08:00
store	kube,cmd/{k8s-operator,containerboot},envknob,ipn/store/kubestore,*/depaware.txt: rename packages (#13418)	2024-09-08 20:57:29 +01:00
backend.go	util/syspolicy, ipn: add "tailscale debug component-logs" support	2024-10-08 18:11:23 -05:00
conf.go	ipn,wgengine/magicsock: allow setting static node endpoints via tailscaled configfile (#12882)	2024-07-23 16:50:55 +01:00
doc.go	all: update copyright and license headers	2023-01-27 15:36:29 -08:00
ipn_clone.go	cmd/tailscale,ipn,tailcfg: add tailscale advertise subcommand behind envknob (#13734)	2024-10-16 19:08:06 -04:00
ipn_test.go	all: do not depend on the testing package	2024-05-24 05:23:36 -07:00
ipn_view.go	cmd/tailscale,ipn,tailcfg: add tailscale advertise subcommand behind envknob (#13734)	2024-10-16 19:08:06 -04:00
prefs_test.go	cmd/tailscale,ipn,tailcfg: add tailscale advertise subcommand behind envknob (#13734)	2024-10-16 19:08:06 -04:00
prefs.go	cmd/tailscale,ipn,tailcfg: add tailscale advertise subcommand behind envknob (#13734)	2024-10-16 19:08:06 -04:00
serve_test.go	cmd/serve: don't convert localhost to 127.0.0.1	2024-06-26 20:57:19 -07:00
serve.go	cmd/serve: don't convert localhost to 127.0.0.1	2024-06-26 20:57:19 -07:00
store_test.go	ipn: avoid useless no-op WriteState calls	2023-08-07 08:44:24 -07:00
store.go	ipn: add comment about thread-safety to StateStore	2024-03-06 12:42:18 -06:00