grafana

Commit Graph

Author	SHA1	Message	Date
Gabriel MABILLE	20fc0cbf35	Chore: Allow env overrides for the `extended_jwt` config (#77132 ) Chore: Allow env overrides for the extended_jwt config	2 years ago
Hugo Kiyodi Oshiro	dfc1875061	Plugins: Add managed instance installation resources (#76767 ) * Plugins: Add configs to allow managed install * Expose methods to use with cloud plugin installer * Change plugins installer bind to OSS	2 years ago
William Assis	65a7bddcee	Analytics: Add option to pass destSDKBaseURL to rudderstack load method (#74926 ) * Add option to pass destSDKBaseURL to rudderstack load method * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> --------- Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
João Calisto	d5691e6dd1	Live: Allow setting the engine password (#76289 )	2 years ago
Jo	cada1f040a	Auth: Add support for role mapping and allowed groups in Google OIDC (#76266 ) * support google oauth allowed_groups. unify allowed groups logic * add role mapping for google oauth * add documentation * add addendums * remove extra isGroupMember * add to sample ini * Apply suggestions from code review Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> --------- Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	2 years ago
Jo	40a1f8434d	Anon: Scaffold anon service (#74744 ) * remove API tagging method and authed tagging * add anonstore move debug to after cache change test order fix issue where mysql trims to second * add old device cleanup lint utc-ize everything trim whitespace * remove dangling setting * Add delete devices * Move anonymous authnclient to anonimpl * Add simple post login hook * move registration of Background Service cleanup * add updated_at index * do not untag device if login err * add delete device integration test	2 years ago
Ezequiel Victorero	4cfc834c08	HealthCheck: show enterprise commit (#75242 )	2 years ago
Will Browne	de2a107efa	Chore: Fix slug cfg name (#75235 ) fix cfg name	2 years ago
Will Browne	e9e0e321b6	Chore: Add stack ID + slug to cfg (#75227 ) * add stack ID + slug to cfg * add to environment section	2 years ago
Andres Martinez Gotor	96b55ea37c	Feature: Allow to skip plugin loading (#74840 )	2 years ago
Ieva	58efa49933	Chore: remove `IsDisabled` method for access control (#74340 ) remove IsDisabled method for access control, clean up tests	2 years ago
Kristin Laemmert	d1876b68bc	Chore: refactor grafana-apiserver a bit (#74177 )	2 years ago
Ryan McKinley	025b2f3011	Chore: use any rather than interface{} (#74066 )	2 years ago
venkatbvc	7c98678188	Auth: Add support for OIDC RP-Initiated Logout (#70357 ) * Fix signout redirect_uri issue * Fix signout redirect_uri issue * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * remove signout url global * style alignment * remove legacy handlers for devenv * Update pkg/api/login.go --------- Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: jguer <me@jguer.space>	2 years ago
linoman	2e050f25bf	Auth: Allow to auto-assign empty role (#73326 ) Allow to auto-assign empty role	2 years ago
Carl Bergquist	243b757168	Middleware: Add team metadata to HTTP handlers (#71010 ) Signed-off-by: bergquist <carl.bergquist@gmail.com>	2 years ago
Sarah Zinger	09d5483c6c	Cloudwatch: Upgrade aws-sdk and display external ids for temporary credentials (#72821 ) (under a feature toggle, not yet ready for public testing)	2 years ago
Karl Persson	2c57bca176	Auth: Remove auth broker flag and clean up login handlers (#73109 ) * Auth: Remove auth broker flag and clean up login handlers	2 years ago
Karl Persson	144e4887ee	Auth: Use authn.Service for all tests (#72921 ) * Dashboards: Fix tests when authn broker is enabled. StarService was not configured for tests, the call was guarded by !c.IsSignedIn * Change default to be anon user to match expectations from tests * OAuth: rewrite tests to work with authn.Service * Setup template renderer by default * Extract cookie options from cfg instead of relying on global variables * Fix test to work with authn service * Middleware: rewrite auth tests * Remvoe session cookie if we cannot refresh access token	2 years ago
Sarah Zinger	deeb1d85f8	Config: making [aws][external_id] part of env (#72062 ) * Config: making [aws][external_id] part of env * Fix go.sum * Add a test	2 years ago
Eric Leijonmarck	95760cb021	Auth: OAuth sets `skip_org_role_sync = true` for auth.google by default (#72819 ) * sets skip_org_role_sync to true for google * add google skiporgrolesync and sets to true always * add field * Update docs/sources/setup-grafana/configure-security/configure-authentication/google/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * add AKS to words * script back to mina --------- Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Ieva	3a2538c2ca	Auth: lock down Grafana admin sync for SAML (#72828 ) lock down Grafana admin sync for SAML	2 years ago
Todd Treece	f3ffc850aa	Chore: Revert dskit service additions (#72608 )	2 years ago
Sofia Papagiannaki	afb59af79b	Usage stats: Tune collector execution startup and interval (#72688 ) * Do not update statistics at service collector startup * Configurable collector interval * Introduce initial random delay * Prevent reporting metrics until the stats have been collected * Apply suggestion from code review	2 years ago
Misi	bba11d04cb	Auth: Add key_id config param to auth.jwt (#72711 ) * Specify keyID for public key provided in PEM format for JWT Auth * Update docs * Update sample.ini	2 years ago
Ieva	1fa4f4bc57	Chore: remove `DisableSyncLock` setting, as it's not used anymore (#72680 ) * rmeove DisableSyncLock setting, as it's not used anymore * remove unused import	2 years ago
Jo	3353b1a8aa	Auth: Add authed device tagging (#72442 ) * add authed device tagging * fix config * implement feedback * implement feedback * add reverse untag behavior * remove duplicate stat * Update pkg/services/anonymous/anonimpl/impl.go	2 years ago
João Calisto	4ba83173ea	Feature toggles management: Define get feature toggles api (#72106 ) * Feature Toggle Management: Define get feature toggles api * lint	2 years ago
Ieva	59eb2f68b7	AuthN: Lock down manual role updates for users synced through Grafana Com portal (#72044 ) take into account auth.grafananet config section when checking if gcom auth is enabled	2 years ago
Jo	0ffd359801	Auth: Enforce role sync except if skip org role sync is enabled (#70766 ) * enforce role sync except if skip org role sync is enabled * move errors to errors file and set codes * fix docs and defaults * remove legacy parameter * support fall through token-api in generic oauth * fix error handling for generic_oauth * Update pkg/login/social/generic_oauth.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * Update pkg/login/social/gitlab_oauth_test.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * Update pkg/login/social/gitlab_oauth_test.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> --------- Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	2 years ago
Esteban Beltran	d618bc46d1	Plugins: Add config option to exclude specific plugins from frontend sandbox (#70899 )	2 years ago
Jo	b8a336c9d7	Auth: Remove Email Lookup from oauth integrations (#894 ) Remove email lookup from oauth integrations Co-authored-by: ievaVasiljeva <ieva.vasiljeva@grafana.com>	3 years ago
Michael Mandrus	66d2214c3b	Config: Add configuration option to define custom user-facing general error message for certain error types (#70023 ) --------- Co-authored-by: Summer Wollin <summer.wollin@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Arati R. <33031346+suntala@users.noreply.github.com>	3 years ago
Andres Martinez Gotor	7c1c196031	Plugins: Periodically update public signing key (#70080 )	3 years ago
Jo	aee5c6dea0	Auth: Use auth broker by default (#69620 ) remove authnservice toggle	3 years ago
Ashley Harrison	778963849e	News: Expose config option to disable News feed (#69365 ) * customize news feed * remove url customisation	3 years ago
Gabriel MABILLE	edf1775d49	AuthN: Embed an OAuth2 server for external service authentication (#68086 ) * Moving POC files from #64283 to a new branch Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * Adding missing permission definition Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * Force the service instantiation while client isn't merged Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * Merge conf with main Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * Leave go-sqlite3 version unchanged Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * tidy Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * User SearchUserPermissions instead of SearchUsersPermissions * Replace DummyKeyService with signingkeys.Service * Use user🆔<id> as subject * Fix introspection endpoint issue * Add X-Grafana-Org-Id to get_resources.bash script * Regenerate toggles_gen.go * Fix basic.go * Add GetExternalService tests * Add GetPublicKeyScopes tests * Add GetScopesOnUser tests * Add GetScopes tests * Add ParsePublicKeyPem tests * Add database test for GetByName * re-add comments * client tests added * Add GetExternalServicePublicKey tests * Add other test case to GetExternalServicePublicKey * client_credentials grant test * Add test to jwtbearer grant * Test Comments * Add handleKeyOptions tests * Add RSA key generation test * Add ECDSA by default to EmbeddedSigningKeysService * Clean up org id scope and audiences * Add audiences to the DB * Fix check on Audience * Fix double import * Add AC Store mock and align oauthserver tests * Fix test after rebase * Adding missing store function to mock * Fix double import * Add CODEOWNER * Fix some linting errors * errors don't need type assertion * Typo codeowners * use mockery for oauthserver store * Add feature toggle check * Fix db tests to handle the feature flag * Adding call to DeleteExternalServiceRole * Fix flaky test * Re-organize routes comments and plan futur work * Add client_id check to Extended JWT client * Clean up * Fix * Remove background service registry instantiation of the OAuth server * Comment cleanup * Remove unused client function * Update go.mod to use the latest ory/fosite commit * Remove oauth2_server related configs from defaults.ini * Add audiences to DTO * Fix flaky test * Remove registration endpoint and demo scripts. Document code * Rename packages * Remove the OAuthService vs OAuthServer confusion * fix incorrect import ext_jwt_test * Comments and order * Comment basic auth * Remove unecessary todo * Clean api * Moving ParsePublicKeyPem to utils * re ordering functions in service.go * Fix comment * comment on the redirect uri * Add RBAC actions, not only scopes * Fix tests * re-import featuremgmt in migrations * Fix wire * Fix scopes in test * Fix flaky test * Remove todo, the intersection should always return the minimal set * Remove unecessary check from intersection code * Allow env overrides on settings * remove the term app name * Remove app keyword for client instead and use Name instead of ExternalServiceName * LogID remove ExternalService ref * Use Name instead of ExternalServiceName * Imports order * Inline * Using ExternalService and ExternalServiceDTO * Remove xorm tags * comment * Rename client files * client -> external service * comments * Move test to correct package * slimmer test * cachedUser -> cachedExternalService * Fix aggregate store test * PluginAuthSession -> AuthSession * Revert the nil cehcks * Remove unecessary extra * Removing custom session * fix typo in test * Use constants for tests * Simplify HandleToken tests * Refactor the HandleTokenRequest test * test message * Review test * Prevent flacky test on client as well * go imports * Revert changes from `526e48ad45` * AuthN: Change the External Service registration form (#68649) * AuthN: change the External Service registration form * Gen default permissions * Change demo script registration form * Remove unecessary comment * Nit. * Reduce cyclomatic complexity * Remove demo_scripts * Handle case with no service account * Comments * Group key gen * Nit. * Check the SaveExternalService test * Rename cachedUser to cachedClient in test * One more test case to database test * Comments * Remove last org scope Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com> * Update pkg/services/oauthserver/utils/utils_test.go * Update pkg/services/sqlstore/migrations/oauthserver/migrations.go Remove comment * Update pkg/setting/setting.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> --------- Co-authored-by: Mihály Gyöngyösi <mgyongyosi@users.noreply.github.com>	3 years ago
Eric Leijonmarck	1a79c8a601	Settings: Add ability to override `skip_org_role_sync` with Env variables (#68364 ) Switch to using the SectionsWithOverride for settings for skip org role sync	3 years ago
Misi	43be4f095a	Auth: Add alpha version of the Extended JWT client (#67999 ) * initial commit * Add tests, add configuration options * Extend signingkeys.Service with GetServerPublicKey method * Add, cleanup tests * Add tests for entitlements claim * Fix linting errors * Suggestion to use a struct to extend the claims (cherry picked from commit 8078b99f1d57c9426a15693d850c1ca5f0432cbe) * Add requested changes Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * Add test for orgID check * Cleanup --------- Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	3 years ago
Alexander Zobnin	0b6ae0d119	Settings: Do not hide sensitive values if it's empty (#68088 ) * Settings: Do not hide sensitive values if it's empty * Fix implementation * Add tests for RedactedValue function	3 years ago
venkatbvc	b9e53f628f	HTTP: Add TLS version configurability for Grafana server (#67482 ) Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	3 years ago
Domas	15d4169813	Frontend logging: Remove Sentry javascript agent support (#67493 ) * remove Sentry * fix sourcemap resolve	3 years ago
Jo	8df54a6daa	Users: Enable case insensitive login by default (#66134 ) * enable case insensitive by default * fix missing case-insensitive query * fix missing case insensitive query * fix missing case insensitive query in temp_user * skip integration testing in mysql * skip integration testing in mysql * use t.cleanup * lowercase only once * aligned to only using sql as that is what we do in other parts --------- Co-authored-by: Eric Leijonmarck <eric.leijonmarck@gmail.com>	3 years ago
Andres Martinez Gotor	932136807b	Chore: Allow to force the download of the public key (#67486 )	3 years ago
Carl Bergquist	692bb9ed1a	Instrumentation: Add support for instrumenting database queries (#66022 ) Signed-off-by: bergquist <carl.bergquist@gmail.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	3 years ago
Ieva	533f8caafd	SAML: change the config option for making SAML UI accessible to org Admins (#67399 ) * change from role grant overrides to SAML UI specific config option * update permissions needed to access SAML UI * PR feedback: change config name, change required perms to write, add a comment	3 years ago
Ryan McKinley	e1ab9cc9d8	Chore: Remove test type app mode (#66987 )	3 years ago
Ieva	035bf29146	RBAC: Remove the option to disable RBAC and add automated permission migrations for instances that had RBAC disabled (#66652 ) * RBAC: Stop reading enabeld from ini file and always set to true * Migrations: Add a migration for rbac to reset data migrations if rbac was disabled * If rbac was disabled we reset the data and data migrations that rbac has to perform to get it to a correct state * Migrator: Store migration logs on migrator and add function to clear it from the in-memory stored logs * update tests --------- Co-authored-by: Karl Persson <kalle.persson@grafana.com>	3 years ago
Kyle Cunningham	92d92187d9	SQL Datasources: Update Max Connection and Max Idle Connection Defaults to 100 and add auto mode (#65834 ) * Update connection configuration for SQL datasources * Working auto state for connection numbers * Add migration * Use defaults from constants file * Remove dead code * Add tests and restructure useMigrateDatabaseField * Update function names * Update docs * Make sure we don't continually issue updates * Update docs * Use onOptionsChnage in ConnectionLimits * Update docs * Clean up docs * Update migration * Fix default values in docs * Fix spacing issue * Fix test * Update default values for SQL connections * Include consts * Allow override for default SQL datasource connection parameters * Fix linter errors * Remove extra @ts-ignore * Centralize logic for default values * Remove debugging * Remove unecessary function * Update configuration docs * minor suggested change * Fix comment misspelling * Remove unecessary default setting code * Update docs to indicate that code was included for backport version * Remove dead code --------- Co-authored-by: lwandz13 <larissa.wandzura@grafana.com>	3 years ago
Gabriel MABILLE	3b63844390	RBAC: Feature to override default assignments (#66561 ) * RBAC: Feature to override default assignments Co-authored-by: Kalle Persson <kalle.persson@grafana.com> * Add test and trim spaces * Pass linting * Apply the rbac overrides to fixed_authentication.config_writer * Removing from the default ini file for now * Add grants overrides section to cfg * slimmer handleGrantOverrides function --------- Co-authored-by: Kalle Persson <kalle.persson@grafana.com>	3 years ago

1 2 3 4 5 ...

608 Commits (41e4b95b51a00f44facbde969efe9a6229107a54)