self-hosted/teleport
self-hosted/teleport
1
0
Fork 0
mirror of https://github.com/gravitational/teleport synced 2024-10-22 10:13:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
657 commits 3221 branches 4173 tags 1.3 GiB
Commit graph

159 commits

Author SHA1 Message Date
klizhentas 6cdaba2ef6 user mappings should be deleted if user is deleted, fixes #116 
This commit includes refactoring and cleanup of cert authority sybsystem:

* User keys methods are deleted
* Authorities CRUD is simplified
* Lots of code removed
 2016-02-17 15:29:01 -08:00
Alex Lyulkov bcb6411a7b merged from alex/sharing 2016-02-17 22:58:28 +03:00
Alex Lyulkov caee704e83 changes for rebase 2016-02-17 21:59:18 +03:00
Alex Lyulkov 2fb458ca2c Changed hangout authentication and url 2016-02-17 21:24:11 +03:00
Ev Kontsevoy 206d503f3a Added more configuration settins via a config file 2016-02-16 19:34:12 -08:00
Ev Kontsevoy 0a1bb00cc1 Changed the format of the configuration 
Instead of providing a token per auth server, it's now one global token
for all.

Also added a check for unknown config values to the config file parsing
code.
 2016-02-16 18:50:08 -08:00
Ev Kontsevoy e3e9a59337 Started to work on a new YAML confinguration 
1. Persistence layer is done
2. Tests are done
 2016-02-16 16:15:25 -08:00
Ev Kontsevoy e0f5696743 Wrote tests for configuration defaults 2016-02-16 13:18:58 -08:00
Ev Kontsevoy ad001cc0a7 Merge remote-tracking branch 'origin/master' into ev/133-newconf 2016-02-16 11:09:24 -08:00
Alex Lyulkov ed430daaa9 Minor code style fixes 2016-02-16 21:07:21 +03:00
Alex Lyulkov d0fd7b26d3 Hangouts: everything works 2016-02-16 20:06:25 +03:00
Alex Lyulkov 66dd4436e9 working hangouts 2016-02-16 15:51:33 +03:00
Ev Kontsevoy b0aa774178 Intermediate commit 
- Removed gravitational/configure
- Played with different ideas for YAML persistence
 2016-02-15 22:24:56 -08:00
klizhentas 9fa5b3f281 fix users API, cleanup unused code, fixes #118 2016-02-15 17:51:23 -08:00
Alexander Klizhentas ad435d6acd Merge pull request #128 from gravitational/ev/126 
Fixed issue #126
 2016-02-14 00:01:17 -08:00
Alexander Klizhentas 0fd6ca035b Merge pull request #132 from gravitational/ev/110 
This closes #110
 2016-02-13 23:54:45 -08:00
Ev Kontsevoy 4d6800623c Removed old configuration persistence 
- Removed `yaml` structure attributes
- Removed "LoadFromYAML()" routine
- Removed YAML persistence tests

References #133
 2016-02-13 21:17:30 -08:00
Ev Kontsevoy bfa3f9d300 This closes #110 
- Tests can be enabled in Jenkins
- Unused tctl/command code is removed
- Fixed one broken test
 2016-02-13 20:31:56 -08:00
Ev Kontsevoy bcfcefa8e5 Fixed issue #126 
Summary:

Sasha proposed to use the certificate principal instead of the host name
when establishing new SSH connections.

What I did:

Replaced `ReadKeys()` function in `auth/init.go` with `ReadIdentity()`
which, instead of a simple "key signer" returns a more comprehensive
structure called "Identity"

The structure has the `Cert` field which can be used to obtain "valid
principals".

The first principal is used as an SSH username, instead of the hostname
like before.
 2016-02-13 18:47:58 -08:00
Ev Kontsevoy b2499b4514 Usability improvements 
- Tidier CLI help/usage messages
- Overly annoying log.Info() replaced with log.Debug()
 2016-02-13 14:38:22 -08:00
Ev Kontsevoy bf52d61157 Joining cluster via nodes invite works (kinda) 2016-02-12 17:33:10 -08:00
Ev Kontsevoy f95eb92f46 Two minor things: 
1. Created Vagrant file to play with Teleport
2. Nicer CLI UI for 'nodes add'
 2016-02-12 16:29:33 -08:00
Alex Lyulkov f35f74cb46 working on tsh share 2016-02-12 18:25:54 +03:00
Ev Kontsevoy c52bfc9fd0 Adding node via invite token 2016-02-11 12:23:37 -08:00
Ev Kontsevoy 1b7ccb5c46 Added stubs for tctl commands 
- node add
- node add help
- node ls
- node ls help
 2016-02-10 13:52:29 -08:00
Ev Kontsevoy f0ffca0bb9 Added 'users rm' and 'users list' but they do not work 2016-02-09 22:58:40 -08:00
Ev Kontsevoy 640c6cf772 Removed excessive INFO logging and fixed a bug 
The bug was 'missing default shell'
 2016-02-09 21:50:06 -08:00
Ev Kontsevoy 82595955e0 Wrote 'usage' for tctl users add 2016-02-09 21:03:20 -08:00
Ev Kontsevoy 05a719b70d Adding users works with mappings via new CLI 2016-02-09 18:28:38 -08:00
Ev Kontsevoy b3d4f079d5 Added "connect to auth server" routine to tctl 2016-02-09 16:37:24 -08:00
Ev Kontsevoy 68badf4bc2 Moved the default build output from ./ to out/ 
Otherwise tctl, teleport and tsh binaries were causing issues with
.gitignore conflicts (we have directories with these names in tool)
 2016-02-09 15:05:02 -08:00
Ev Kontsevoy d88a44a3d5 hoho 2016-02-09 14:54:18 -08:00
Ev Kontsevoy 7592e974cf Merge branch 'ev/105' into ev/105-tctl 
Conflicts:
	tool/tctl/main.go
 2016-02-09 14:47:59 -08:00
Ev Kontsevoy 2db4d98213 Incorporated PR comments from here: 
https://github.com/gravitational/teleport/pull/115
 2016-02-09 13:46:34 -08:00
Ev Kontsevoy 1610105910 Started work on simplifying tctl CLI 2016-02-08 22:29:15 -08:00
Ev Kontsevoy d6d5cb7d9c Added support for auth-server and tokens 2016-02-08 21:33:46 -08:00
Ev Kontsevoy 058f6eb9cf Added rudimentary logging control via --debug flag 2016-02-08 17:28:03 -08:00
Ev Kontsevoy 5b5dd5b306 Intermediate commit: 
- Reverse tunnel service is now configurable
- Separated logging output from the console UI output
 2016-02-08 15:02:20 -08:00
Ev Kontsevoy 5d6f8ecf89 Removed old default configuration 2016-02-08 11:50:09 -08:00
Ev Kontsevoy 458d8984a1 Fixed Build errors... 2016-02-08 10:41:25 -08:00
Ev Kontsevoy 47f95c0f9e Got the basics done for 'teleport' 2016-02-07 23:35:34 -08:00
Ev Kontsevoy cfa2997671 Merge branch 'master' into ev/105 2016-02-07 11:45:41 -08:00
Alex Lyulkov c2b6d96485 Fixed OS username in tests 2016-02-06 15:15:01 +03:00
Ev Kontsevoy b5fd2e1253 Merge branch 'master' into ev/105 
Conflicts:
	tool/tsh/main.go
 2016-02-05 15:35:19 -08:00
Ev Kontsevoy 7829880507 Moved to a forked kingpin for CLI arg parsing 2016-02-05 11:44:46 -08:00
Alex Lyulkov d2f50cf4b6 Fixed tests logging 2016-02-05 17:09:21 +03:00
alexlyulkov e5cb47e168 Merge pull request #108 from gravitational/alexander/env 
Alexander/env
 2016-02-05 15:46:03 +03:00
Alex Lyulkov ed3a5088e8 Merged: added user mapping 2016-02-05 03:29:49 +03:00
Ev Kontsevoy 7bf35b02a8 Fixed log-related errors in tests 2016-02-04 15:39:50 -08:00
Alex Lyulkov 566933b541 Fixed code style 2016-02-05 02:03:05 +03:00
klizhentas b72c76ea41 use environment variables 2016-02-04 13:45:59 -08:00
alexlyulkov 470b185bd0 Merge pull request #83 from gravitational/alex/fast-login 
Added precompiled auth key-pairs to reduce login time
 2016-02-04 20:42:55 +03:00
Alex Lyulkov acd9cf4943 Added user mapping, web shell restarts after exit 2016-02-04 20:19:42 +03:00
Ev Kontsevoy 60b009c83a Applied new kingpin UsageTemplate to tctl and teleport 
Initially only `tsh` used the new UsageTemplate
See [this PR](/gravitational/teleport/pull/104)

This commit applies the same change to `tctl` and `teleport`
Now all 3 tools:

* Use the same logger initialization procedure
* Use the same command line argument parsing/reporting
 2016-02-03 22:00:54 -08:00
Ev Kontsevoy 4262ad693f Updated kingpin to the latest version 
It had features we need, namely customization of --help flag
 2016-02-03 17:37:51 -08:00
Ev Kontsevoy 128d6fc8a1 Added our own custom kingpin usage template 2016-02-03 17:34:05 -08:00
Ev Kontsevoy 31893e7f61 Removed gravitational/log from Godeps 2016-02-02 18:14:43 -08:00
Ev Kontsevoy 83f2d30d12 Replaced our own logger with logrus 2016-02-02 17:53:21 -08:00
Ev Kontsevoy 91288d01e5 Added Logrus initialization 2016-02-02 12:14:59 -08:00
alexlyulkov ff8c8c4dd6 Merge pull request #95 from gravitational/alex/connected-auth 
Added init encryption keys for auth backend config, backend configs a…
 2016-02-01 16:53:00 +03:00
Alex Lyulkov e87fbfb720 Now tsh client closes on 'exit' command 2016-01-29 22:24:04 +03:00
Alex Lyulkov 40a77cfe06 tsh: added -p and -P flags, ssh command now argument not flag 2016-01-29 20:26:47 +03:00
Alex Lyulkov 67bcda7b82 Added init encryption keys for auth backend config, backend configs are JSON now, all complex env configs are JSON now 2016-01-29 19:17:12 +03:00
Alex Lyulkov b38a6236ef Fixed precalculation, fixed the tests affected by additional parallel calculations 2016-01-26 20:29:45 +03:00
Alex Lyulkov 2b1a05f53c Added provisioning token role information inside the output token string 2016-01-26 03:16:58 +03:00
Alex Lyulkov ebb25f0f88 Fixed new account creation, added Error page for website 2016-01-22 22:05:46 +03:00
Alex Lyulkov 1cb498fbe1 Fixed code style 2016-01-21 22:41:04 +03:00
Alex Lyulkov 0def2900a3 Added new account creation via website 2016-01-21 21:18:59 +03:00
Alex Lyulkov a56b5236ac Moved to go1.5 vendoring 2016-01-20 18:52:25 +03:00
Alex Lyulkov e9a1a04ddf Added parallel scp, moved Download and Upload functions from client app to api 2016-01-19 23:54:46 +03:00
Alex Lyulkov 20e15fe7c6 Client app: added scp command, added multiplexing 2016-01-18 20:09:37 +03:00
Alex Lyulkov 17d120bde8 Moved multi authMethod and local certificates management to client lib 2016-01-12 19:21:09 +03:00
Alex Lyulkov 67d3d61e3f Added embedded agent 2016-01-10 01:33:30 +03:00
Alex Lyulkov fc7cfdc026 Changed client GetServers formatting 2015-12-30 17:23:19 +03:00
Alex Lyulkov 4c02338225 Tsh client. Everything works. 2015-12-25 02:24:47 +03:00
Alex Lyulkov a952217066 Client application draft 2015-12-23 02:33:56 +03:00
Alex Lyulkov c6ed9ba9f9 Added scp for client, fixed scp receiveDir handler, made utils.NetAddr implement net.Addr 2015-12-18 00:40:42 +03:00
Alex Lyulkov 0a7e6fdfbe Refactoring 2015-12-03 12:26:34 +03:00
Alex Lyulkov 91bfd6e719 Added rate limiter, connection limiter 2015-12-02 21:51:32 +03:00
Alex Lyulkov 18c8ff180a Refactored: renamed fqdn to domainName, renaimed CAservice names 2015-11-20 13:15:48 -08:00
Alex Lyulkov 3f2ab06e40 Refactored CertificateAuthority service, added getTrustedKeys function 2015-11-17 20:39:19 -08:00
Alex Lyulkov ddd625035b Added reconnections, added certificates cache in nodes and proxy 2015-11-16 20:50:48 -08:00
Alex Lyulkov 0e7de32e61 Cleaned up 2015-11-15 21:21:34 -08:00
Alex Lyulkov dfb80c8347 Cleaned up 2015-11-14 23:52:37 -08:00
Alex Lyulkov 8c7f849805 Added tests for permissions, everythink works 2015-11-13 19:47:59 -08:00
Alex Lyulkov 390714b842 Integrated permissions checker, replaced special tun requests by API calls. 2015-11-12 17:32:45 -08:00
Alex Lyulkov 15e80c0a4f Deleted http api, added api via memory pipe, added permissions checker 2015-11-11 14:21:11 -08:00
Alex Lyulkov 850a113e98 Now ssh servers check certificates ttl 2015-11-08 19:11:16 -08:00
Alex Lyulkov e94152b6f6 Added hostname to presence service(Now auth knows hostname of each node) 2015-11-04 21:02:58 -08:00
Alex Lyulkov e3073a57c5 Merge branch 'alex/ssh-agent' 
Conflicts:
	lib/auth/srv_test.go
 2015-11-04 17:38:53 -08:00
Alex Lyulkov 074807012c Cleaned up, added checking that server is known 2015-11-04 16:49:38 -08:00
Alex Lyulkov 01cef17bd3 Cleaned up 2015-11-03 19:53:44 -08:00
Alex Lyulkov 6a3e2f621e Added ssh agent tests 2015-11-03 18:28:20 -08:00
Alex Lyulkov 7b67556c1e Cleaned up 2015-11-02 13:02:34 -08:00
klizhentas 00ef621e6b Apply apache license to teleport 2015-10-31 11:56:49 -07:00
Alex Lyulkov 821e16ae8b Added proxy, needs more test and cleaning up 2015-10-30 18:17:37 -07:00
alexlyulkov 23fa57dde1 Merge pull request #44 from gravitational/master 
Merged from master
 2015-10-30 17:54:23 -07:00
Alex Lyulkov f19dca656e Added teleport ssh agent - teleagent 2015-10-28 11:07:00 -07:00
klizhentas 655328d03d rename supervisor and export a couple of functions 2015-10-26 17:11:57 -07:00
klizhentas 53127b9021 add command line helper tool and support for using passed CA keys in configuration 2015-10-26 09:41:37 -07:00