grafana

Commit Graph

Author	SHA1	Message	Date
Ieva	9ff193f692	Docs: update GitLab OAuth2 documentation (#71834 ) * gitlab doc update and update the default scopes * small fixes * fix a reference * update another reference * PR feedback: fix numbering of bulletpoints, reorder config options * linting	2 years ago
João Calisto	4ba83173ea	Feature toggles management: Define get feature toggles api (#72106 ) * Feature Toggle Management: Define get feature toggles api * lint	2 years ago
Michael Mandrus	e8093cb11a	Config: Add [aws][external_id] to ini files (#72026 ) add mention of aws external id to ini files	2 years ago
Jo	0ffd359801	Auth: Enforce role sync except if skip org role sync is enabled (#70766 ) * enforce role sync except if skip org role sync is enabled * move errors to errors file and set codes * fix docs and defaults * remove legacy parameter * support fall through token-api in generic oauth * fix error handling for generic_oauth * Update pkg/login/social/generic_oauth.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * Update pkg/login/social/gitlab_oauth_test.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * Update pkg/login/social/gitlab_oauth_test.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> --------- Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	2 years ago
Ieva	cb695cef8e	Auth: update GitHub OAuth documentation (#70459 ) * github oauth doc improvements * add skip_org_role_sync to config for github provider * update links and section headings * update the docs based on the first PR * update references	2 years ago
Michael Mandrus	ff6d6659fb	Query: Fix concurrency handling for mixed datasource queries (#70100 ) * split queries and merge responses * increase concurrency again * update unit test to verify the headers are merged * fix lint issue * fix race condition in unit test * Fix function name and add a bit more documentation about how the func should be used * update function call after rename * check for duplicate header vals * make concurrent query limit configurable * Update conf/sample.ini Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com> --------- Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com>	2 years ago
Esteban Beltran	d618bc46d1	Plugins: Add config option to exclude specific plugins from frontend sandbox (#70899 )	2 years ago
Jo	11d196eb6e	Auth: Support google OIDC and group fetching (#70140 ) * Auth: Update Google OAuth default configuration based on /.well-known/openid-configuration #69520 Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> * add id_token parsing add legacy API distinction use google auth oidc connectors add group fetching support and tests * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * implement review feedback * indent docs --------- Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> Co-authored-by: junya koyama <arukiidou@yahoo.co.jp> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>	2 years ago
Jo	4821175d40	Auth: Add auth.azure_ad security improvements (#912 ) * security improvements id_token * add audience validation * add allowOrganizations * add allowOrganizations tests and documentation * add log warn on no configuration * anonymize tenant id * Apply suggestions from code review Co-authored-by: Misi <mgyongyosi@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update pkg/login/social/azuread_oauth_test.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update pkg/login/social/azuread_oauth_test.go Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * optimize key validation and add mising fields * fix missing key_id * lint * Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md Co-authored-by: Misi <mgyongyosi@users.noreply.github.com> * lint docs --------- Co-authored-by: Misi <mgyongyosi@users.noreply.github.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>	2 years ago
Vardan Torosyan	87b127e073	Add and document option for enabling email lookup (#913 ) * Docs: Document option for enabling email lookup * Add the new config in the config files * Apply suggestions from code review Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Don't capitalize identity providers * Apply suggestions from code review Co-authored-by: Jo <joao.guerreiro@grafana.com> * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> --------- Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> Co-authored-by: Jo <joao.guerreiro@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Michael Mandrus	66d2214c3b	Config: Add configuration option to define custom user-facing general error message for certain error types (#70023 ) --------- Co-authored-by: Summer Wollin <summer.wollin@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Arati R. <33031346+suntala@users.noreply.github.com>	2 years ago
Andres Martinez Gotor	7c1c196031	Plugins: Periodically update public signing key (#70080 )	2 years ago
Ashley Harrison	b1d997d1e8	Navigation: Add navigation customization options to config documentation (#70072 ) update config documentation to mention navigation customization options	2 years ago
Stephanie Hingtgen	29a4e3d7da	Secure socks proxy: allow for UI to be disabled (#69408 )	2 years ago
Ashley Harrison	778963849e	News: Expose config option to disable News feed (#69365 ) * customize news feed * remove url customisation	2 years ago
arukiidou	d208bf3345	Auth: Add tls_client_cert to OAuth section in defaults.ini. #64746 (#68228 ) * Auth: Add tls_client_cert to defaults.ini #64746 Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> * Auth: Add tls_client_cert to docs #64746 Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> * Auth: Add more `tls_client_cert` for docs Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> * Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Revert "Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md" This reverts commit f4f1fda7526bf4af05507bc0dc26e808687514eb. Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> --------- Signed-off-by: junya koyama <arukiidou@yahoo.co.jp> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Sergey Kostrukov	eafba8fa69	Azure: Configuration for user identity authentication in datasources (Experimental) (#50277 ) * Configuration for user identity authentication * Use token endpoint form Azure AD settings * Documentation update * Update Grafana Azure SDK * Fix secret override * Fix lint * Fix doc wording	2 years ago
arukiidou	f79654feb3	Auth: Use PKCE by default (If OAuth provider supports PKCE) (#68095 ) OAuth: change use_pkce = true to defaults.ini/sample.ini #68073 Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>	2 years ago
Jean-Philippe Quéméner	8bb62a8316	Alerting: Add option for memberlist label (#67982 )	2 years ago
arukiidou	a58de1f8d2	Chore: Add missing tls_skip_verify_insecure for GitLab Oauth (#64649 ) fixes https://github.com/grafana/grafana/issues/64648 Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>	2 years ago
venkatbvc	b9e53f628f	HTTP: Add TLS version configurability for Grafana server (#67482 ) Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Jo	3644ea6556	ServiceAccounts: Add secret scan service docs (#57926 ) * add secret scanning docs * update docs * fix merge * add revoke to docs * add revoke to docs * typo fix * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * add step by step instructions * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * prettier * Update docs/sources/setup-grafana/configure-security/secret-scan.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * feedback * Update docs/sources/setup-grafana/configure-security/secret-scan.md * Update docs/sources/setup-grafana/configure-security/secret-scan.md * Update docs/sources/setup-grafana/configure-security/secret-scan.md Co-authored-by: Victor Cinaglia <victor@grafana.com> --------- Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Victor Cinaglia <victor@grafana.com>	2 years ago
Domas	15d4169813	Frontend logging: Remove Sentry javascript agent support (#67493 ) * remove Sentry * fix sourcemap resolve	2 years ago
Andres Martinez Gotor	932136807b	Chore: Allow to force the download of the public key (#67486 )	2 years ago
Carl Bergquist	692bb9ed1a	Instrumentation: Add support for instrumenting database queries (#66022 ) Signed-off-by: bergquist <carl.bergquist@gmail.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Bruno	d4715a6f04	CSRF middleware: Add flag to skip login cookie check (#66806 ) * CSRF middleware: add flag to skip login cookie check * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> --------- Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Jean-Philippe Quéméner	bc11a484ed	Alerting: Add support for running HA using Redis (#65267 ) Co-authored-by: Steve Simpson <steve.simpson@grafana.com>	2 years ago
gotjosh	9f0d44d176	GRPC: Document GRPC flags to allow overriding env vars (#66628 )	2 years ago
Ashley Harrison	4abe0249ba	Chore: Clean up old navigation (#66287 ) * remove code outside of the topnav feature flag * delete NavBar folder * remove topnav toggle from backend * restructure AppChrome folder * fix utils mock * fix applinks tests * remove tests since they're covered in e2e * fix 1 of the approotpage tests * Fix another dashboardpage test * remove reverse portalling + test for plugins using deprecated onNavChanged method * kick drone * handle correlations	2 years ago
Alexander Weaver	1791c6043f	Alerting: Document state history config options in default and sample configuration files (#65748 ) * Document configuration options * Improve documentation	2 years ago
Kristina	702ec59cc4	Add quota setting for correlations (#65076 ) * Add quota setting for correlations * Fix linter	2 years ago
Ashley Harrison	d61bcdf4ca	Chore: Pass signed `user_hash` to Intercom via Rudderstack (#63921 ) * move analytics identifiers to backend * implement hash function * grab secret from env * expose and retrieve intercom secret from config * concat email with appUrl to ensure uniqueness * revert to just using email * Revert "revert to just using email" This reverts commit `8f10f9b1bc`. * add docstring	2 years ago
Jan-Otto Kröpke	c323a7cb13	Login: Allow custom name and icon for social providers (#63297 )	2 years ago
zhichli	3c218d742f	Datasources: Add user_agent header customization for outgoing HTTP requests (#63769 )	2 years ago
Jo	af987ae636	SupportBundles: Add bundle encryption based on age (#62501 ) * add bundle encryption based on age * undo changes to grafana-data * sort deps * test bundle creation and encryption * use whitespace separator * add support bundle config documentation * Update docs/sources/troubleshooting/support-bundles/index.md * Apply suggestions from code review Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * touch up docs * extract encrypt * Update docs/sources/troubleshooting/support-bundles/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/troubleshooting/support-bundles/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> --------- Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
zsrv	5687d23b52	Docs: Disambiguate auto_assign_org_role configuration option descriptions (#61827 )	2 years ago
Eric Leijonmarck	7019287f88	Auth: Add deprecation notice for oauth_skip_org_role_update_sync (#62712 ) * add: deprecaation notice for overall setting * add: deprecation notice for configuration files * chore: update docs with deprecation notice * refactor: change to note the new setting instead * Update pkg/setting/setting.go Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * refactor: based on review comments --------- Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	2 years ago
Carl Bergquist	2a29a07465	Plugins: Add optional logger for plugin requests sent to backend plugins (#62981 ) Signed-off-by: bergquist <carl.bergquist@gmail.com>	2 years ago
Eric Leijonmarck	a232e7ceca	Auth: Add skip_org_role_sync for Okta (#62106 ) * WIP * Update pkg/services/login/authinfo.go * fix: merge * change order to internal last * adds: docs * add: configuration for defaults and sample * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Jo <joao.guerreiro@grafana.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> --------- Co-authored-by: Jo <joao.guerreiro@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
lean.dev	7d8ec6199d	Snapshots: Add snapshot enable config (#61587 ) * Add config to remove Snapshot functionality (frontend is hidden and validation in the backend) * Add test cases * Remove unused mock on the test * Moving Snapshot config from globar variables to settings.Cfg * Removing warnings on code	2 years ago
Eric Leijonmarck	143ee0c49f	Auth: Add skip_org_role_sync to GitLab OAuth (#62055 ) * Auth: Add skip_org_role_sync to GitLab OAuth - add: tests - docs added * Update pkg/login/social/gitlab_oauth.go Co-authored-by: Karl Persson <kalle.persson@grafana.com> * fix: for import Co-authored-by: Karl Persson <kalle.persson@grafana.com>	2 years ago
Alexander Zobnin	60ef88c918	SAML: Support auto login (#61685 ) * SAML: Support auto login * Add individual auto_login option for each OAuth provider * Docs: Describe new auto_login option * Minor refactor	2 years ago
Eric Leijonmarck	0d42edddbf	Auth: Add skip_org_role_sync setting to OAuth integration Google (#61572 ) * WIP * Add: skip_org_role_sync for Google OAuth - add setting for frontend - add read of config - add config to sample and default * add: docs * spelling * Update pkg/login/social/social.go * Apply suggestions from code review Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * removed unnessecary line Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
linoman	4d095547f8	Auth: Implement skip org role sync for jwt (#61647 ) * Add new config option * Add frontend control * Condition new auth broker with config option * Condition old auth broker with config option Co-authored-by: Jo <joao.guerreiro@grafana.com> Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	2 years ago
Eric Leijonmarck	c5e74ee607	Auth: Add skip_org_role_sync for AzureAD OAuth (#60322 ) * [WIP] Auth: add backend skipOrgRoleSync to AzureAD OAuth - add: skipOrgRoleSync - rename: skipOrgRoleSync to skipOrgRoleSyncBase (to make it clear that it is the base version of SocialBase) - add: tests for skipOrgRoleSync in AzureAD TODO: - [ ] frontend changes * add: docs * refactor: remove role from basicinfo * add: settings for grafanacom * add: settigns for frontend * add: logic for azureAD user skip org role * add: docs for skip_org_role_sync * refactor: docs a bit * add: tests for userinfo * refactor: to only extract if skiporgrolesync false * refactor: based on review comments * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>	2 years ago
Eric Leijonmarck	91322bebb5	Auth: Add skip_org_role_sync setting for GrafanaCom (#60553 ) * add frontend settings and setting for grafanacom * removed println * add skip-org-role-sync on login * add deprecation notice for this field * remove println * remove newline * change and renamed variables * fix for reconfiguring the settings for grafanacom * add documentationf or grafanacom setup * WIP tests * added tests * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * updated steps * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> * doc: updated the docs to reflect what happens to grafana.com users * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Jo <joao.guerreiro@grafana.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Jo <joao.guerreiro@grafana.com> * Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md Co-authored-by: Jo <joao.guerreiro@grafana.com> * add blankline * rephrase of doc improvements for explaing of the settings * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Jo <joao.guerreiro@grafana.com> * add frontend setting for grafanacom. * WIP tests * refactor docs * frontend to adhere to skipping org role sync for GrafanaCom users * update docs to reflect desired behavior * tests: added test for skip and nonskip * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> * Update docs/sources/setup-grafana/configure-grafana/_index.md Co-authored-by: Ieva <ieva.vasiljeva@grafana.com> Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com> Co-authored-by: Jo <joao.guerreiro@grafana.com> Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>	2 years ago
Serge Zaitsev	f1fb202284	Chore: Add encryption codec to the remote cache (#59871 ) * add encryption codec to the remote cache * change config files too * fix test constructor * pass codec into the test cache	2 years ago
Serge Zaitsev	3978502d83	Chore: Remote cache key prefix (#59838 ) * attempt to implement a remote cache key prefix * add a test for the prefix store * oh, linter	2 years ago
Ben Sully	632ca67e3f	Add a separate grafana.com API URL setting (#59506 ) The GrafanaComURL setting is currently used in two places: - the /api/gnet endpoint, which proxies all requests to the URL configured in GrafanaComURL - OAuth logins using grafana.com, where the auth URL, token URL and redirect URL are all configured to use the GrafanaComURL. This has worked fine until now because almost all Grafana instances have just used the default value, https://grafana.com. However, we now have a few different grafana.com's, some of which are behind IAP. The IAP causes the /api/gnet proxy to fail because the required cookies are not present in the request (how could they be?). Setting the [grafana_net.url] setting to an internal-only URL improves the situation slightly - the proxy works again just fine - but breaks any OAuth logins using grafana.com, because the user must be redirected to a publicly accessible URL. This commit adds an additional setting, `[grafana_com.api_url]`, which can be used to tell Grafana to use the new API URL when proxying requests to the grafana.com API, while still using the existing `GrafanaComURL` setting for other things. The setting will fall back to the GrafanaComURL setting + "/api" if unset.	3 years ago
Gabriel MABILLE	8e929163a8	RBAC: Add config option to reset basic roles on start up (#59598 ) * RBAC: add config option to reset basic roles on start up Co-authored-by: Jguer <joao.guerreiro@grafana.com> * Update docs Co-authored-by: Jguer <joao.guerreiro@grafana.com> * Add to sample.ini as well Co-authored-by: Jguer <joao.guerreiro@grafana.com> Co-authored-by: Jguer <joao.guerreiro@grafana.com>	3 years ago

1 2 3 4 5 ...

409 Commits (9ff193f6928956bd8f1d0586792e3760fceffe58)