gfwleak/zhangyang-zerotierone
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,526 Commits 2 Branches 0 Tags
c09010c25aae7f05a87b6c6c9b022ff3ed3e7fc8
Commit Graph

625 Commits

Author SHA1 Message Date
Grant Limberg
c09010c25a handle nonce rotation in controller better 
Won't generate new nonces until there are no active ones.
 2022-01-20 15:14:29 -08:00
Grant Limberg
b3fbbd3124 refresh tokens now working 
Still investigating the best way to do a couple things, but we have something working
 2021-12-07 16:29:50 -08:00
Grant Limberg
730482e62f encode network ID into sso state param 2021-12-01 15:02:21 -08:00
Grant Limberg
663a09b38d oidc stuff coming across the wire properly and generating a working login URL 2021-12-01 13:01:32 -08:00
Grant Limberg
7cce23ae79 wip 2021-12-01 10:44:29 -08:00
Grant Limberg
dfdac7adbd iomanip 2021-11-30 17:31:46 -08:00
Grant Limberg
a33d7c64fe more fixin 2021-11-30 17:27:13 -08:00
Grant Limberg
d15516f0ef query fix & controller build fix 2021-11-30 16:18:34 -08:00
Grant Limberg
fa21fdc1cc rename stuff for clarity 
authenticationURL will still be used by the client for v1 and v2 of sso
 2021-11-11 16:19:26 -08:00
Grant Limberg
43433cdb5a integrate rust build of zeroidc to linux 2021-11-04 17:16:23 -07:00
Grant Limberg
8d39c9a861 plumbing full flow from controller -> client network 2021-11-04 15:40:08 -07:00
Grant Limberg
3818351287 use pqxx::pipeline for online update thread 2021-10-06 09:39:30 -07:00
Grant Limberg
4d26b5a868 no reason for this to be a pointer 2021-10-05 17:02:50 -07:00
Grant Limberg
ac0dc7844f rework commit thread & some connection pool borrowing issues 2021-10-05 09:25:24 -07:00
Adam Ierymenko
134d33c218 Add a bit of hardening in the network certificate of membership by incorporating a full hash of the identity to which it is issued. This means the recipient need not depend entirely on the root verifying identities properly to make sure impersonation is not occurring. 2021-09-20 15:40:55 -07:00
Grant Limberg
46adc1f059 ifdef this out 2021-09-20 15:39:53 -07:00
Grant Limberg
9002555596 ensure count > 0 2021-09-20 15:39:44 -07:00
Grant Limberg
c3a42bf590 remove heartbeat log 2021-09-02 16:46:42 -07:00
Grant Limberg
8b95afa96a logging 2021-09-02 16:32:40 -07:00
Grant Limberg
6a49a766ca logging 2021-09-02 16:22:59 -07:00
Grant Limberg
16ff14bda7 identify controller in pool stats 2021-09-02 13:48:08 -07:00
Grant Limberg
57c1d96b71 math 2021-09-02 12:48:49 -07:00
Grant Limberg
40f376e2b9 print db pool stats periodically 2021-09-02 12:45:26 -07:00
Grant Limberg
dc61f78916 set psql application_name in startup script 2021-09-02 11:24:07 -07:00
Grant Limberg
a2ffe8c05e dont generate nonce for deleted members 2021-09-02 11:24:04 -07:00
Grant Limberg
d0f4cfe6b4 print load status messages a little less often now that things go brrrrrrrrr 2021-08-20 10:34:00 -07:00
Grant Limberg
3ec23f92ec helps to add part of the query 2021-08-20 10:30:37 -07:00
Grant Limberg
6baac1b4e0 more query optimizations 2021-08-20 10:27:45 -07:00
Grant Limberg
50b0b2e2e9 query optimization 2021-08-19 17:55:30 -07:00
Grant Limberg
20721491e8 kill some noisy logs 2021-08-19 13:03:56 -07:00
Grant Limberg
eec46a137e optimize data loading from psql on startup 2021-08-19 12:44:02 -07:00
Grant Limberg
9eae444104 kill some verbose logs 2021-08-19 09:21:52 -07:00
Adam Ierymenko
576b4f03a5 Adjust deauth time window and send revocation when SSO members expire. 2021-08-18 12:17:40 -04:00
Adam Ierymenko
461810b06a Move return so record gets created before URL. 2021-08-10 11:22:29 -04:00
Grant Limberg
613d7b5ece fix backwards logic 2021-08-04 09:16:04 -07:00
Adam Ierymenko
c101d71d7c Tweak auth timeout notify. 2021-07-30 18:44:34 -04:00
Adam Ierymenko
663e748b8d Deauth expiring members right away. 2021-07-26 23:45:18 -04:00
Adam Ierymenko
0cf62d334d Remove pointless check. 2021-07-26 13:38:35 -04:00
Adam Ierymenko
0872012cd9 small fix 2021-07-26 13:11:01 -04:00
Adam Ierymenko
c2d8fe46d5 About ready to test notify of SSO timeout... 2021-07-23 19:20:10 -04:00
Adam Ierymenko
0310bfa3e3 Include authentication URL in config 2021-07-23 19:17:42 -04:00
Adam Ierymenko
efe0e8aa7b Notification of about-to-expire status... almost there. 2021-07-23 19:05:59 -04:00
Adam Ierymenko
5c7e51feaf Merge branch 'dev' of github.com:zerotier/ZeroTierOne into dev 2021-07-23 18:49:05 -04:00
Adam Ierymenko
34de579c91 Handling of soon-to-expire members 2021-07-23 18:49:00 -04:00
Grant Limberg
73ddea8864 use network ID, not controller ID for looking up network data 2021-07-06 14:15:01 -07:00
Grant Limberg
10215af96d whoops 2021-07-06 13:18:08 -07:00
Grant Limberg
e67fee0264 debug logging 2021-07-06 13:08:21 -07:00
Grant Limberg
5ece4f734a fix error message 2021-07-06 13:08:16 -07:00
Grant Limberg
f8ea7fdc2b Fix for GitHub #859 
Wrong DB::get() method being called to look up the network member for deletes
 2021-06-24 10:32:21 -07:00
Grant Limberg
364ad87e2b add ssoEnabled flag to network config 2021-06-05 13:44:45 -07:00