Adam Ierymenko
|
7c3166e9be
|
Add a bit of hardening in the network certificate of membership by incorporating a full hash of the identity to which it is issued. This means the recipient need not depend entirely on the root verifying identities properly to make sure impersonation is not occurring.
|
2021-09-20 18:26:49 -04:00 |
|
Grant Limberg
|
a20a290836
|
ifdef this out
|
2021-09-15 15:27:29 -07:00 |
|
Grant Limberg
|
83265768c1
|
ensure count > 0
|
2021-09-15 09:45:10 -07:00 |
|
Grant Limberg
|
c3a42bf590
|
remove heartbeat log
|
2021-09-02 16:46:42 -07:00 |
|
Grant Limberg
|
8b95afa96a
|
logging
|
2021-09-02 16:32:40 -07:00 |
|
Grant Limberg
|
6a49a766ca
|
logging
|
2021-09-02 16:22:59 -07:00 |
|
Grant Limberg
|
16ff14bda7
|
identify controller in pool stats
|
2021-09-02 13:48:08 -07:00 |
|
Grant Limberg
|
57c1d96b71
|
math
|
2021-09-02 12:48:49 -07:00 |
|
Grant Limberg
|
40f376e2b9
|
print db pool stats periodically
|
2021-09-02 12:45:26 -07:00 |
|
Grant Limberg
|
dc61f78916
|
set psql application_name in startup script
|
2021-09-02 11:24:07 -07:00 |
|
Grant Limberg
|
a2ffe8c05e
|
dont generate nonce for deleted members
|
2021-09-02 11:24:04 -07:00 |
|
Grant Limberg
|
d0f4cfe6b4
|
print load status messages a little less often now that things go brrrrrrrrr
|
2021-08-20 10:34:00 -07:00 |
|
Grant Limberg
|
3ec23f92ec
|
helps to add part of the query
|
2021-08-20 10:30:37 -07:00 |
|
Grant Limberg
|
6baac1b4e0
|
more query optimizations
|
2021-08-20 10:27:45 -07:00 |
|
Grant Limberg
|
50b0b2e2e9
|
query optimization
|
2021-08-19 17:55:30 -07:00 |
|
Grant Limberg
|
20721491e8
|
kill some noisy logs
|
2021-08-19 13:03:56 -07:00 |
|
Grant Limberg
|
eec46a137e
|
optimize data loading from psql on startup
|
2021-08-19 12:44:02 -07:00 |
|
Grant Limberg
|
9eae444104
|
kill some verbose logs
|
2021-08-19 09:21:52 -07:00 |
|
Adam Ierymenko
|
576b4f03a5
|
Adjust deauth time window and send revocation when SSO members expire.
|
2021-08-18 12:17:40 -04:00 |
|
Adam Ierymenko
|
461810b06a
|
Move return so record gets created before URL.
|
2021-08-10 11:22:29 -04:00 |
|
Grant Limberg
|
613d7b5ece
|
fix backwards logic
|
2021-08-04 09:16:04 -07:00 |
|
Adam Ierymenko
|
c101d71d7c
|
Tweak auth timeout notify.
|
2021-07-30 18:44:34 -04:00 |
|
Adam Ierymenko
|
663e748b8d
|
Deauth expiring members right away.
|
2021-07-26 23:45:18 -04:00 |
|
Adam Ierymenko
|
0cf62d334d
|
Remove pointless check.
|
2021-07-26 13:38:35 -04:00 |
|
Adam Ierymenko
|
0872012cd9
|
small fix
|
2021-07-26 13:11:01 -04:00 |
|
Adam Ierymenko
|
c2d8fe46d5
|
About ready to test notify of SSO timeout...
|
2021-07-23 19:20:10 -04:00 |
|
Adam Ierymenko
|
0310bfa3e3
|
Include authentication URL in config
|
2021-07-23 19:17:42 -04:00 |
|
Adam Ierymenko
|
efe0e8aa7b
|
Notification of about-to-expire status... almost there.
|
2021-07-23 19:05:59 -04:00 |
|
Adam Ierymenko
|
5c7e51feaf
|
Merge branch 'dev' of github.com:zerotier/ZeroTierOne into dev
|
2021-07-23 18:49:05 -04:00 |
|
Adam Ierymenko
|
34de579c91
|
Handling of soon-to-expire members
|
2021-07-23 18:49:00 -04:00 |
|
Grant Limberg
|
73ddea8864
|
use network ID, not controller ID for looking up network data
|
2021-07-06 14:15:01 -07:00 |
|
Grant Limberg
|
10215af96d
|
whoops
|
2021-07-06 13:18:08 -07:00 |
|
Grant Limberg
|
e67fee0264
|
debug logging
|
2021-07-06 13:08:21 -07:00 |
|
Grant Limberg
|
5ece4f734a
|
fix error message
|
2021-07-06 13:08:16 -07:00 |
|
Grant Limberg
|
f8ea7fdc2b
|
Fix for GitHub #859
Wrong DB::get() method being called to look up the network member for deletes
|
2021-06-24 10:32:21 -07:00 |
|
Grant Limberg
|
364ad87e2b
|
add ssoEnabled flag to network config
|
2021-06-05 13:44:45 -07:00 |
|
Grant Limberg
|
9380ef708a
|
debug strings & query fixes
|
2021-06-05 13:44:07 -07:00 |
|
Grant Limberg
|
fd174b3459
|
fix auth time lookup
|
2021-06-04 20:55:22 -07:00 |
|
Grant Limberg
|
21d27c314c
|
HMACSHA384 the nonce bytes, not the hex encoded nonce bytes
|
2021-06-04 20:06:04 -07:00 |
|
Grant Limberg
|
0b89a49201
|
typo
|
2021-06-04 16:56:28 -07:00 |
|
Grant Limberg
|
e6b4fb5af7
|
add "ssoRedirectURL" to local.conf
plumbed it through to the central controller code
|
2021-06-04 16:29:03 -07:00 |
|
Grant Limberg
|
c227330d09
|
fix redirect_uri substitution
|
2021-06-04 15:58:38 -07:00 |
|
Grant Limberg
|
b16f40c0de
|
.
|
2021-06-04 15:18:18 -07:00 |
|
Grant Limberg
|
fd85f87ade
|
handle null in result set
|
2021-06-04 15:15:42 -07:00 |
|
Grant Limberg
|
add33f1ab3
|
cast to bigint in query
|
2021-06-04 14:48:41 -07:00 |
|
Grant Limberg
|
3bfc438ae8
|
null handling
|
2021-06-04 14:40:14 -07:00 |
|
Adam Ierymenko
|
1dfe909bab
|
Increase authentication URL sizes.
|
2021-06-04 16:46:56 -04:00 |
|
Grant Limberg
|
75d17ea3c8
|
Helps to commit when trying to write a change to the db
|
2021-06-04 13:20:03 -07:00 |
|
Grant Limberg
|
96d15337bb
|
default 0
|
2021-06-04 13:19:39 -07:00 |
|
Grant Limberg
|
74a678c1e1
|
chicken or egg problem.
member must exist in the database before we can generate a nonce & SSO URL
|
2021-06-04 12:49:26 -07:00 |
|