self-hosted/teleport
self-hosted/teleport
1
0
Fork 0
mirror of https://github.com/gravitational/teleport synced 2024-10-23 02:32:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
1542 commits 3232 branches 4179 tags 1.3 GiB
Commit graph

1542 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ev Kontsevoy 741a70ae17 Merge pull request #453 from gravitational/sasha/vars 
add support for passing env variables, fixes #451
 2016-06-10 11:03:12 -07:00
Alexander Klizhentas b3a105ed00 Merge branch 'master' into sasha/vars 2016-06-10 09:45:20 -07:00
Alexander Klizhentas a637a7d347 Merge pull request #452 from gravitational/roman/addr 
Add marshalling function to NetAddr
 2016-06-10 09:38:49 -07:00
Sasha Klizhentas fba07c4f17 add support for passing env variables, fixes #451 2016-06-10 09:38:19 -07:00
Roman Tkachenko a44dca17e4 Add marshalling function to NetAddr 2016-06-10 00:11:31 -07:00
Ev Kontsevoy 126a9e9ff8 Minor bugs regarding reverse tunnels 
- Friendly error messages when parsing configuration and establishing
  connection

- Bugs related to "first start" vs subsequent starts (reverse tunnells
  added to YAML file won't be seen upon restart)

- Nicer logging
 2016-06-09 19:17:07 -07:00
Ev Kontsevoy 95961a37b7 Merge pull request #449 from gravitational/sasha/envar 
use config string as optional envar param
 2016-06-09 15:52:49 -07:00
Ev Kontsevoy e6efb87126 Merge branch 'master' into ev/tunnels 2016-06-09 12:19:32 -07:00
Sasha Klizhentas be7abac22d use config string as optional envar param 2016-06-08 22:01:34 -07:00
Ev Kontsevoy bc4c8f4cba Merge pull request #448 from gravitational/sasha/identity 
recover back AuthIdentityEvent
 2016-06-08 17:15:28 -07:00
Sasha Klizhentas 235fc6427c update retry strategy 2016-06-08 17:05:12 -07:00
Sasha Klizhentas 84c12af433 address code review comments 2016-06-08 16:57:40 -07:00
Taylor Wakefield 5d91a1422e removed warnings from .md files 2016-06-08 16:16:18 -07:00
Sasha Klizhentas 2773a68da5 recover back AuthIdentityEvent 2016-06-08 13:08:41 -07:00
Alexander Klizhentas 0676993482 Merge pull request #446 from gravitational/ev/445 
No need to read local agent keys if SkipLocalAuth=true
 2016-06-08 12:07:59 -07:00
Ev Kontsevoy 86399296f9 No need to read local agent keys if SkipLocalAuth=true 
Fixes #445
 2016-06-08 11:48:31 -07:00
Ev Kontsevoy 6deab48ab6 Cluster certificate import/export work... 
1. tctl auth export now dumps both user&host keys if --type key is missing
2. created fixtures for testing key imports: they're in
   fixtures/trusted_clusters
3. configuration parser reads "trusted_clusters" files expecting the
   output of tctl auth export
 2016-06-07 18:57:54 -07:00
Ev Kontsevoy 7c0897ac79 Merge remote-tracking branch 'origin/master' into ev/tunnels 2016-06-07 13:52:01 -07:00
Roman Tkachenko 213edbf699 Merge pull request #442 from gravitational/roman/error 
Do not lose an error on reverse tunnel startup
 2016-06-06 21:59:28 -07:00
Roman Tkachenko 38470803cc Do not lose an error on reverse tunnel startup 2016-06-06 21:43:29 -07:00
Alexander Klizhentas 75c864b063 Merge pull request #441 from ernado/ernado/linguist 
fix linguist stats for project
 2016-06-02 11:23:51 -07:00
Aleksandr Razumov 43735d4040 fix linguist stats for project 2016-06-02 20:50:30 +03:00
Ev Kontsevoy d928ff02b8 Intermediate commit 2016-06-01 18:56:48 -07:00
Ev Kontsevoy f75a1c8356 Merge remote-tracking branch 'origin/master' into ev/tunnels 2016-06-01 17:12:49 -07:00
Alexander Klizhentas b0ff554d83 Merge pull request #439 from gravitational/ev/logout 
tsh logout implementation
 2016-06-01 17:05:56 -07:00
Ev Kontsevoy 029233b11f tsh logout implementation 
Fixes #420
 2016-06-01 17:02:39 -07:00
Alexander Klizhentas e546e0b815 Merge pull request #438 from gravitational/ev/296 
Proxy HTTPS fixes
 2016-06-01 15:00:39 -07:00
Ev Kontsevoy 44ff78af9f Merge branch 'ev/296' into ev/tunnels 2016-06-01 14:39:21 -07:00
Ev Kontsevoy 0ae6270c05 Proxy HTTPS fixes 
- Self-signed cert is now compatible with Golang HTTP client
- Fixes #296
- Changed the expiration date for self-signed cert
  from 1 to 10 years.
 2016-06-01 14:38:27 -07:00
Ev Kontsevoy f4a4fa628a Intermediate commit 2016-06-01 13:22:00 -07:00
Ev Kontsevoy b7a24e24f2 Merge pull request #436 from gravitational/ev/tunnels 
Some minor improvements
 2016-06-01 12:46:47 -07:00
Ev Kontsevoy cd135b899e Merge remote-tracking branch 'origin/master' into ev/tunnels 
Conflicts:
	tool/tctl/main.go
 2016-06-01 12:39:36 -07:00
Ev Kontsevoy 3b5231da85 Minor changes 
- some unused code removal
- better error messages
 2016-06-01 00:20:58 -07:00
Ev Kontsevoy cddaf6e5c8 Some minor improvements 
- `tctl auth ls` lists all CAs by default
- Documented `authorize_ip` better
 2016-05-31 18:59:07 -07:00
Alexander Klizhentas 5cb821e6d0 Merge pull request #435 from gravitational/ev/https 
Changed how self-signed HTTPS cert is generated
 2016-05-31 18:42:41 -07:00
Ev Kontsevoy ed0948659b Changed how self-signed HTTPS cert is generated 
Fixes #434

Changes:

- Certificate is not "CA" anymore
- Added "*" for CN field
 2016-05-31 18:36:51 -07:00
Alexander Klizhentas afc6f1a549 Merge pull request #433 from gravitational/ev/tctl 
A bunch of configuration fixes.
 2016-05-31 15:45:09 -07:00
Ev Kontsevoy 92b30c3c77 Configuration changes 
1. data_dir is now a global setting in teleport.yaml (instead of being
   inside of "storage" sub-section)

2. changing data_dir in one place causes all of teleport to use it,
   not just bolt backends.

3. moving auth server to listen on non-default ports properly adjusts
   the global auth_servers setting

4. `tctl` now accepts -c flag just like Teleport, so you can pass
   `teleprot.yaml` to it.

Fixes #432
Fixes #431
Fixes #430
 2016-05-31 14:58:55 -07:00
Ev Kontsevoy 721b0af4a5 tctl "clusters" command to control reverse tunnels 
It always existed as undocumentd 'rts' command.
Making it more user friendly and visible

Refs #309
 2016-05-31 12:39:45 -07:00
Ev Kontsevoy 06fa66b574 Removed debugging panics from the code 2016-05-31 11:22:35 -07:00
Alexander Klizhentas 032e743ca6 Merge pull request #428 from gravitational/ev/lock 
Account lock after N unsuccessful login attempts
 2016-05-30 20:31:49 -07:00
Ev Kontsevoy f74cbde928 Replaced "upssert" with "compare & swap" 
...for login attempt counting
 2016-05-30 20:29:48 -07:00
Ev Kontsevoy 0720fbc8c2 Improvements to "max login attempts" feature 
- increasing login attempt is now atomic within a process
- renamed some functions to be less confusing
 2016-05-30 19:11:14 -07:00
Ev Kontsevoy 9f9c586989 Account lock after N unsuccessful login attempts 2016-05-30 16:17:47 -07:00
Alexander Klizhentas c430ea4e5a Merge pull request #427 from gravitational/ev/var 
Permissions adjustment for data dir
 2016-05-30 14:45:34 -07:00
Ev Kontsevoy 9b9c6901a5 Permissions adjustment for data dir 
Teleport's data dir (`/var/lib/teleport` by default) was created using
umask.

Now it's created with `0600` (readable only by Teleport user).
 2016-05-30 14:23:58 -07:00
Alexander Klizhentas e727a2625c Merge pull request #426 from gravitational/ev/c 
SSH to HTTP tunnel improvements
 2016-05-30 14:11:34 -07:00
Ev Kontsevoy c7902c6afe Cleaned up SSH-HTTP tunnel auth integration 2016-05-30 13:52:23 -07:00
Ev Kontsevoy 3f0ba645a2 1st draft at passing SSH user into auth HTTP API 2016-05-30 01:27:33 -07:00
Alexander Klizhentas 1ae4778214 Merge pull request #424 from gravitational/ev/scp 
PR comments - implemented!
 2016-05-27 11:42:50 -07:00