grafana

Commit Graph

Author	SHA1	Message	Date
Eric Leijonmarck	fb24ff3081	Auth: Add prometheus metrics for case insensitive ids (#52162 ) * rename file * add promstats for authinfostore every 4h * add mixed cased users * cherry pick and cleanup * fix: query login,email instead of count() * FIX: mysql missing alias to subquery * fix: query working on mysql, sqllite3, and pg	3 years ago
idafurjes	d3d8fdd878	Chore: Move user errors to user service (#52460 ) * Move user not found err to user service * User ErrCaseInsensitive from user pkg * User ErrUserAlreadyExists from user pkg * User ErrLastGrafanaAdmin from user pkg * Remove errors from model	3 years ago
idafurjes	6c43eb0b4d	Split Create User (#50502 ) * Split Create User * Use new create user and User from package user * Add service to wire * Making create user work * Replace user from user pkg * One more * Move Insert to orguser Service/Store * Remove unnecessary conversion * Cleaunp * Fix Get User and add fakes * Fixing get org id for user logic, adding fakes and other adjustments * Add some tests for ourguser service and store * Fix insert org logic * Add comment about deprecation * Fix after merge with main * Move orguser service/store to org service/store * Remove orguser from wire * Unimplement new Create user and use User from pkg user * Fix wire generation * Fix lint * Fix lint - use only User and CrateUserCommand from user pkg * Remove User and CreateUserCommand from models * Fix lint 2	3 years ago
Joan López de la Franca Beltran	73a729bbe8	Login: Fix AuthInfo update process (#49556 ) * Login: Fix AuthInfo update process * Fix GoDoc * Add regression test for oauth info overwrite Co-authored-by: jguer <joao.guerreiro@grafana.com>	3 years ago
Jguer	86962dc9bd	Login: Fix mismatching label on auth_module in user list (#49177 ) * Login: Fix mismatching label on user auth_module * Login: ensure previous auth was set to differing * Login: ensure only one entry of auth is updated * compare both entries Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com> * remove noop Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>	3 years ago
Serge Zaitsev	e86b6662a1	Chore: Remove bus.Bus field (#47695 ) * Chore: Remove bus.Bus field * fix integration test	3 years ago
Serge Zaitsev	18e93c7077	Chore: Remove bus (#47511 ) * Chore: Remove bus * remove unused const	3 years ago
Jguer	04267a66ec	Service Accounts: Refactor login service to use sqlstore methods (#46585 ) * refactor login service to use sqlstore methods * trailing newline	3 years ago
Serge Zaitsev	c1239ee67c	Chore: Remove bus from authinfoservice (#45787 )	3 years ago
ying-jeanne	016fa77460	remove bus from loginservice (#44907 )	3 years ago
Selene	3ce0730558	AuthService: Move database logic to its own class and package (#44835 ) * Move database logic to its own class and package * Fix lint	3 years ago
Dimitris Sotirakis	c1ba0afdc7	GetUserInfo: Return an error if no user was found (#44169 ) * return an error if no user was found * Update database.go Co-authored-by: Kevin Minehart <kmineh0151@gmail.com>	3 years ago
idafurjes	8e6d6af744	Rename DispatchCtx to Dispatch (#43563 )	3 years ago
idafurjes	56c3875bb9	Chore: Remove context.TODO (#43458 ) * Remove context.TODO() from services * Fix live test	3 years ago
Leonard Gram	5d18834deb	OAuth: persisting the id token (#42938 ) * OAuth: persisting the id token * OAuth: verifies that the idtoken gets persistet in the database	4 years ago
idafurjes	ac6867c3bb	Chore: Add context to authinfo (#42096 ) * Add context to authinfo * Replace Dispatch with DispatchCtx	4 years ago
Joan López de la Franca Beltran	d3e19b1b3b	Encryption: Improve the DX of encryption operations within database transactions (#41654 ) * Move user oauth info encryption away from db transaction * Add encryption methods with support for db session reusability	4 years ago
Katarina Yang	c4306f9b3e	Chore: add context to login (#41316 ) * Chore: add context to login attempt file and tests * Chore: add context * Chore: add context to login and login tests * Chore: continue adding context to login * Chore: add context to login query	4 years ago
Tania B	5652bde447	Encryption: Use secrets service (#40251 ) * Use secrets service in pluginproxy * Use secrets service in pluginxontext * Use secrets service in pluginsettings * Use secrets service in provisioning * Use secrets service in authinfoservice * Use secrets service in api * Use secrets service in sqlstore * Use secrets service in dashboardshapshots * Use secrets service in tsdb * Use secrets service in datasources * Use secrets service in alerting * Use secrets service in ngalert * Break cyclic dependancy * Refactor service * Break cyclic dependancy * Add FakeSecretsStore * Setup Secrets Service in sqlstore * Fix * Continue secrets service refactoring * Fix cyclic dependancy in sqlstore tests * Fix secrets service references * Fix linter errors * Add fake secrets service for tests * Refactor SetupTestSecretsService * Update setting up secret service in tests * Fix missing secrets service in multiorg_alertmanager_test * Use fake db in tests and sort imports * Use fake db in datasources tests * Fix more tests * Fix linter issues * Attempt to fix plugin proxy tests * Pass secrets service to getPluginProxiedRequest in pluginproxy tests * Fix pluginproxy tests * Revert using secrets service in alerting and provisioning * Update decryptFn in alerting migration * Rename defaultProvider to currentProvider * Use fake secrets service in alert channels tests * Refactor secrets service test helper * Update setting up secrets service in tests * Revert alerting changes in api * Add comments * Remove secrets service from background services * Convert global encryption functions into vars * Revert "Convert global encryption functions into vars" This reverts commit `498eb19859`. * Add feature toggle for envelope encryption * Rename toggle Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> Co-authored-by: Joan López de la Franca Beltran <joanjan14@gmail.com>	4 years ago
Joan López de la Franca Beltran	722c414fef	Encryption: Refactor securejsondata.SecureJsonData to stop relying on global functions (#38865 ) * Encryption: Add support to encrypt/decrypt sjd * Add datasources.Service as a proxy to datasources db operations * Encrypt ds.SecureJsonData before calling SQLStore * Move ds cache code into ds service * Fix tlsmanager tests * Fix pluginproxy tests * Remove some securejsondata.GetEncryptedJsonData usages * Add pluginsettings.Service as a proxy for plugin settings db operations * Add AlertNotificationService as a proxy for alert notification db operations * Remove some securejsondata.GetEncryptedJsonData usages * Remove more securejsondata.GetEncryptedJsonData usages * Fix lint errors * Minor fixes * Remove encryption global functions usages from ngalert * Fix lint errors * Minor fixes * Minor fixes * Remove securejsondata.DecryptedValue usage * Refactor the refactor * Remove securejsondata.DecryptedValue usage * Move securejsondata to migrations package * Move securejsondata to migrations package * Minor fix * Fix integration test * Fix integration tests * Undo undesired changes * Fix tests * Add context.Context into encryption methods * Fix tests * Fix tests * Fix tests * Trigger CI * Fix test * Add names to params of encryption service interface * Remove bus from CacheServiceImpl * Add logging * Add keys to logger Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> * Add missing key to logger Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com> * Undo changes in markdown files * Fix formatting * Add context to secrets service * Rename decryptSecureJsonData to decryptSecureJsonDataFn * Name args in GetDecryptedValueFn * Add template back to NewAlertmanagerNotifier * Copy GetDecryptedValueFn to ngalert * Add logging to pluginsettings * Fix pluginsettings test Co-authored-by: Tania B <yalyna.ts@gmail.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com>	4 years ago
Tania B	bfde29d107	Chore: Remove global encryption calls from authinfoservice (#38591 ) * Add encryption service * Add tests for encryption service * Inject encryption service into http server * Replace encryption global function usage in login tests * Migrate to Wire * Refactor authinfoservice to use encryption service Co-authored-by: Joan López de la Franca Beltran <joanjan14@gmail.com> Co-authored-by: Joan López de la Franca Beltran <5459617+joanlopez@users.noreply.github.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com>	4 years ago
Leonard Gram	8ebba0a93d	Auth: refactor to not use the global bus (#37345 )	4 years ago
Leonard Gram	d51b2630c7	Auth: creates a hook in the user mapping flow (#37190 ) * wip * Auth Info: refactored out into it's own service * Auth: adds extension point where users are being mapped * Update pkg/services/login/authinfoservice/service.go Co-authored-by: Joan López de la Franca Beltran <joanjan14@gmail.com> * Update pkg/services/login/authinfoservice/service.go Co-authored-by: Joan López de la Franca Beltran <joanjan14@gmail.com> * Auth: simplified code * moved most authinfo stuff to its own package * added back code * linter * simplified Co-authored-by: Joan López de la Franca Beltran <joanjan14@gmail.com>	4 years ago
Dimitris Sotirakis	b867ceda9b	Generic OAuth: Prevent adding duplicated users (#32286 ) * Add special check for generic oauth case * Converted from Convey to testify * Fix according to reviewer's comments * More changes according to reviewer's comments * Handle error if user is not found * Move generic oauth test from user_test.go to user_auth_test.go * Update pkg/services/sqlstore/user_auth_test.go Co-authored-by: Marcus Efraimsson <marcus.efraimsson@gmail.com> * Created genericOAuthModule const Co-authored-by: Marcus Efraimsson <marcus.efraimsson@gmail.com>	4 years ago
Arve Knudsen	9593d57914	Chore: Enable errorlint linter (#29227 ) * Enable errorlint linter * Handle wrapped errors Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: Emil Tullstedt <emil.tullstedt@grafana.com>	5 years ago
Maxim Ivanov	151fe240fc	OAuth: Fix for wrong user token updated on OAuth refresh in DS proxy (#17541 )	6 years ago
Alexander Zobnin	2d03815770	Users: Disable users removed from LDAP (#16820 ) * Users: add is_disabled column * Users: disable users removed from LDAP * Auth: return ErrInvalidCredentials for failed LDAP auth * User: return isDisabled flag in user search api * User: mark disabled users at the server admin page * Chore: refactor according to review * Auth: prevent disabled user from login * Auth: re-enable user when it found in ldap * User: add api endpoint for disabling user * User: use separate endpoints to disable/enable user * User: disallow disabling external users * User: able do disable users from admin UI * Chore: refactor based on review * Chore: use more clear error check when disabling user * Fix login tests * Tests for disabling user during the LDAP login * Tests for disable user API * Tests for login with disabled user * Remove disable user UI stub * Sync with latest LDAP refactoring	6 years ago
Sean Lafferty	b3461c9806	Remove sleeps in test code by overriding time.Now()	6 years ago
Sean Lafferty	3b9b6c571a	Abstract encrypt/encode and decode/decrypt into their own functions	6 years ago
Sean Lafferty	de338338bf	Remove todo about index on user_id in user_auth because it exists	6 years ago
Sean Lafferty	f17307bb97	Always return most recently used auth_module from GetAuthInfo	6 years ago
Sean Lafferty	fa22311a95	base64 encode encrypted oauth token fields	6 years ago
Sean Lafferty	5a59cdf0ef	Add oauth pass-thru option for datasources	6 years ago
Dan Cech	52503d9cb5	refactor authproxy & ldap integration, address comments	7 years ago
Dan Cech	e53e039b1b	restructure GetUserByAuthInfo	7 years ago
Dan Cech	c4168c2396	error handling	7 years ago
Dan Cech	65847da1df	use Result in GetAuthInfoQuery	7 years ago
Dan Cech	e53315dce8	cleanup	7 years ago
Dan Cech	23f163e8cf	fixes	7 years ago
Dan Cech	1c5afa731f	shared library for managing external user accounts	7 years ago

11 Commits (fb24ff308119bd9561588dd33bb9e07bd063114b)