da4efc11c2
chore: log authn-http parsing failed reason
2022-09-06 15:38:32 +08:00
d4785553b9
Merge pull request #8872 from JimMoen/fix-mqtt-bridge-fields
...
Fix mqtt bridge fields.
- Show ssl file path in Dashboard.
- MQTT bridge `payload` field not required.
merge `v5.0.7` into `master`.
2022-09-05 09:46:45 +08:00
d533e35df0
chore: update app vsn
2022-09-02 22:26:21 +08:00
a41461ac93
chore: update apps/emqx_authn/src/simple_authn/emqx_authn_jwt.erl
2022-09-02 16:17:25 +08:00
8b9494cf4b
fix(jwt): support non-integer timestamp claims
...
fix #8825
2022-09-02 10:17:47 +08:00
5a3fb4a011
Merge remote-tracking branch 'origin/master' into dev/ee5.0
2022-08-31 17:11:15 +02:00
2eb078ff3b
chore: bump changed app versions
2022-08-26 14:32:28 +02:00
9449e3cb32
refactor(auth_mnesia): Export transaction funs
2022-08-22 19:52:37 +02:00
45352206a3
fix(auth): remove emqx_connector from testcases of authz/authn
2022-08-22 20:20:45 +08:00
b3162fe5ff
fix: conflicts between master and ee5.0
2022-08-14 22:24:09 +08:00
0cdf4b47f1
feat: add more resource creation opts
2022-08-12 13:47:45 +08:00
64aa30ec63
chore(authn/authz): better handling of placeholder interpolation errors
2022-08-10 18:22:37 +03:00
35fe70b887
feat: support aysnc callback to connector modules
2022-08-10 00:34:35 +08:00
d3950b9534
fix(resource): make option 'queue_enabled' disabled by default
2022-08-10 00:34:35 +08:00
0377d3cf61
fix: update existing testcases for new emqx_resource
2022-08-10 00:34:35 +08:00
2fb42e4d37
refactor: create emqx_resource_worker_sup for resource workers
2022-08-10 00:34:35 +08:00
79d6613a18
Merge pull request #8531 from HJianBo/fix-authn-cndn
...
fix(authn): fix cert_subject and cert_common_name placeholder
2022-07-26 09:09:34 +08:00
2f470b8878
Merge pull request #8554 from savonarola/authn-logging
...
Add more tracing for authentication
2022-07-25 17:43:00 +03:00
1a236db91b
chore(log): add authentication tracing
2022-07-25 17:14:19 +03:00
2466881460
chore: Update apps/emqx_authn/src/emqx_authn_user_import_api.erl
...
Co-authored-by: zhouzb <zhouzb@emqx.io>
2022-07-25 17:45:38 +08:00
7261fbaa6b
chore: Update apps/emqx_authn/src/emqx_authn_user_import_api.erl
...
Co-authored-by: zhouzb <zhouzb@emqx.io>
2022-07-25 17:45:28 +08:00
a3296078c3
chore: make sure swagger's tags always titlecase 2
2022-07-25 16:55:38 +08:00
dd59c850e0
chore: make sure swagger's tags always titlecase
2022-07-25 16:09:17 +08:00
f8f4ad3e5b
fix(authn): fix cert_subject and cert_common_name placeholder
2022-07-25 09:28:28 +08:00
a12478225a
fix: fix bad swagger format
2022-07-20 16:56:07 +08:00
994a76510d
fix(authn): jwt ssl opts use emqx_schema:ssl_clients_opts
2022-07-13 10:37:16 +08:00
b55048f705
chore: update app versions
2022-07-08 16:29:07 +08:00
9ca5927b88
fix: issue in test cases
2022-07-08 14:07:28 +08:00
841f816e39
refactor: improve the health_check for webhook bridges
2022-07-08 09:17:23 +08:00
dbe806d950
fix: allow for exp field to optional to keep backwards compat with 4.X
2022-07-07 10:18:52 +02:00
2ad99fca7a
chore: update appup.src
2022-07-01 21:07:33 +08:00
b88796518e
fix(authn): authn http `is_superuser` field
...
only support true|false|[num]
and for [num]: zero => false | non-zero => true
other type and string will fallback to default vaule => false
i.e null|undefined|[empty string]
2022-07-01 20:55:39 +08:00
f8c90452cc
chore: auto retry disconnected authn/authz resources
2022-07-01 12:01:39 +08:00
9acfd0ff9e
chore: update emqx_authn.appup.src
2022-06-30 15:23:09 +08:00
7de23f5863
chore(authn-redis): checking password field
2022-06-30 13:26:58 +08:00
8f696b6f8c
fix(authn): correct peerhost placeholder rendering
2022-06-30 12:50:56 +08:00
d7c21020f6
feat(authn-redis): needs to compatible with 4.x auth data
2022-06-30 11:26:56 +08:00
a9ec193ef8
fix(prometheus): Disable authorization for metrics scraping endpoint
2022-06-23 00:31:53 +02:00
51efe22e57
chore: update the appup files for authz/authn
2022-06-22 15:54:37 +08:00
defacb97df
fix: disabled resources for authz/authn started after emqx reboot
2022-06-22 14:34:30 +08:00
cc25f92273
feat: add start_after_created option to resource:create/4
2022-06-16 23:34:52 +08:00
73dd969843
Merge pull request #8210 from savonarola/jwt-authn-add-from
...
feat(jwt authn): allow to specify JWT field
2022-06-15 14:56:04 +03:00
ec840222cd
Merge pull request #8192 from HJianBo/authn-fuzzy-searching
...
fix(authn): fix enhance_authn fuzzy searching not working
2022-06-15 10:20:49 +08:00
d0f686d19d
feat(jwt authn): allow to specify JWT field
2022-06-14 14:34:45 +03:00
2ad2da082b
Merge pull request #8139 from savonarola/authn-jwt-test
...
chore(jwt authn): improve tests
2022-06-14 14:23:23 +08:00
29baf0f68a
fix(authn): fix enhance_authn fuzzy searching not working
2022-06-13 13:38:06 +08:00
7301009b8e
chore(jwt authn): improve tests, add pool_size to schema
2022-06-10 14:28:43 +03:00
c7cc2e85b2
fix: add default&example for schema
2022-06-06 09:52:10 +08:00
92145d0275
fix(metrics): make metric id unique for authn provider instances
2022-06-02 14:03:19 +03:00
d32b2ecd81
fix(authn api): update removing listener-specific chain logic
2022-06-02 14:03:14 +03:00
1bad5f8b7c
Merge pull request #8088 from savonarola/authn-import-users-request
...
feat(authn api): add method for user file upload
2022-06-02 13:51:46 +03:00
2d53c21d45
chore(authn api): replace user import api with upload api
2022-06-01 19:56:23 +03:00
efc0ca2b62
Merge branch 'master' into changes-enable_pipelining-type
2022-05-31 20:49:10 +08:00
f0ddac63cb
chore: change the enable_pipelining default value
2022-05-31 19:32:53 +08:00
e258409a8f
Merge pull request #8071 from savonarola/mongodb-authn-defaults
...
chore(mongodb authn): add defaults for field names
2022-05-31 13:21:27 +03:00
96f58d0ec8
Merge remote-tracking branch 'ce/master' into authn-import-users-request
2022-05-31 10:11:21 +08:00
3be617cf40
feat(authn api): add method for user file upload
2022-05-31 00:40:10 +03:00
4cae80c8d2
fix(authn api): add method for removing listener-specific chains
2022-05-30 15:33:21 +03:00
fdee23f492
chore(mongodb authn): add defaults for field names
2022-05-27 13:21:16 +03:00
5dba01b8fa
fix(authn): fix user search API
2022-05-25 15:50:20 +03:00
2eb621ba57
fix: hint metrics merge errors
2022-05-13 21:38:51 +02:00
91da451803
feat(authz): add default authn-based authz source
2022-05-13 12:51:10 +03:00
ca0c80965a
Merge pull request #7890 from savonarola/fix-jwt-acl-v5
...
fix(jwt auth): improve JWT handling
2022-05-12 19:48:37 +03:00
e0fa07b679
fix(jwt auth): improve JWT handling
2022-05-12 12:10:47 +03:00
87af77ec35
refactor: do not destory resource when update authn/authz resource
2022-05-12 14:19:57 +08:00
60ca1cb2a5
refactor(authn): use hocon enum type for user_id_type
2022-05-11 09:02:55 +02:00
57c1c418d6
docs(authn): use a string alias for user_id_type
2022-05-10 18:28:16 +02:00
841acb7828
Merge pull request #7783 from emqx/EMQX-4199-introduce-a-new-emqx-resource-manager-module
...
feat: isolate resource manager processes
2022-05-09 18:33:01 +02:00
0b3e30e813
feat: isolate resource manager processes
2022-05-09 13:24:34 +02:00
6e03a7c686
fix(authn): use a random group id to void data overlap
2022-05-07 10:16:58 +08:00
30b3060327
fix: improve authn, authz metrics
2022-05-05 18:53:31 +08:00
4744e4a5e4
fix(authn): make sure http headers are bin
2022-04-29 19:44:49 +08:00
344a754674
Merge pull request #7817 from JimMoen/fix-auth-http
2022-04-29 16:36:10 +08:00
7bbed713f4
Merge pull request #7835 from JimMoen/fix-mongo-require-fields
...
fix(auth): mongo field `filter` not required and have default value
2022-04-29 15:38:54 +08:00
ad4b70c27e
fix(auth): mongo field `filter` not required and have default value
2022-04-29 13:37:29 +08:00
15ef9892c5
fix(auth): authn & authz http support placeholder in HTTP path
2022-04-29 12:48:00 +08:00
dae418ae4a
fix(auth): authn & authz http not required `body` field
2022-04-29 12:47:56 +08:00
e4826400b8
fix(auth): authn & authz HTTP haeders without `content-type` via GET method
2022-04-29 12:47:52 +08:00
4e65322667
refactor: move emqx_plugin_libs_metrics to emqx app
...
because it can not depend on other apps
2022-04-29 12:41:36 +08:00
afe526ba67
Merge pull request #7789 from tigercl/chore/authn-fields
...
chore: rename certificate in jwt and selector in mongodb, remove pool_size in jwks
2022-04-29 10:14:06 +08:00
778973b2de
Merge pull request #7791 from DDDHuang/auto_failed_connector
...
fix: disconnected status in auto_reconnect = false
2022-04-29 09:30:16 +08:00
638b7195d4
Merge pull request #7804 from HJianBo/not-allow-empty-claims
...
fix(authn-jwt): avoid to save empty claim name
2022-04-28 14:10:45 +01:00
56761ecb74
fix: remove duplicated create_metrics
2022-04-28 16:20:38 +08:00
51e025f075
fix: remove duplicated code
2022-04-28 16:10:47 +08:00
4365de9ad5
fix: format code
2022-04-28 15:39:08 +08:00
2a2308bbf8
refactor: resource check & connector status
2022-04-28 15:32:35 +08:00
6530604f40
fix: add authn authz metrics supervisor
2022-04-28 14:38:45 +08:00
098598a0be
fix: add resource_metrics, node_resource_metrics
2022-04-28 12:43:55 +08:00
2a7bd74ef1
feat: authn add new metrics
2022-04-28 11:16:45 +08:00
6535eb879c
fix(authn-jwt): avoid to save empty claim name
...
An empty claim_name has not a real meaning and will result in a
syntax error cluster_override.conf. i.e:
```
authentication {
mechanism = "jwt"
verify_claims { = "22"}
...
}
```
2022-04-28 08:34:04 +08:00
fa9bd74595
chore: rename selector to filter and fix spellcheck
2022-04-27 11:29:18 +08:00
c384ae2534
chore: rename certificate in jwt to public_key, delete pool_size in jwks authn
2022-04-27 11:29:16 +08:00
2e3033c539
fix(authn): Add support for query by is_superuser to the mensia backend
2022-04-26 14:29:48 +08:00
fc2ea9e484
feat(emqx_auth_jwt): use JWT for ACL checks
2022-04-25 11:59:04 +03:00
2d553d711f
fix: 'ComFun' missing parameter
2022-04-25 11:38:48 +08:00
e9843aa225
fix(doc): html line break use `</br>`
2022-04-24 18:56:21 +08:00
4a43a10296
Merge pull request #7701 from EMQ-YangM/improve_docs
...
fix: improve document quality
2022-04-22 16:52:09 +08:00
86c38d283d
docs: authn i18n zh_CN support
2022-04-22 10:40:34 +08:00
ad2ed178a6
test: fix authn redis_type field
2022-04-21 22:56:27 +08:00
7417e5070d
fix: perpare sql when connector doing init; add prepare statement field; bad log path
2022-04-21 16:00:15 +08:00
365ca67078
fix: auth mysql prepare query
2022-04-21 16:00:15 +08:00
039619ee23
feat: authz & authn mysql resource support prepare sql query
2022-04-21 16:00:15 +08:00
99bcf5a69f
Merge pull request #7656 from HJianBo/support-disable-salt
...
feat(authn): support disable salt
2022-04-20 15:29:22 +08:00
c67e565755
fix(authn): merge default header after check config
2022-04-19 18:57:01 +08:00
88c98bb310
fix(authn): api required fields
2022-04-19 18:57:01 +08:00
93dd7d46c5
refactor: fields `meta` ref to dashboard_swagger
2022-04-19 18:57:01 +08:00
fb7c7dffb7
Merge pull request #7527 from zmstone/0405-5.0-provide-defaults-for-ssl-files
...
5.0 provide defaults for ssl files
2022-04-19 11:51:39 +01:00
ef83a80234
Merge pull request #7613 from savonarola/fetch-jwk-safe
...
chore(emqx_authn_jwt): wrap JWKS connector into emqx_resourse
2022-04-19 13:48:51 +03:00
c71302ae27
refactor(ssl): show file paths for SSL certs in dashboard
2022-04-19 08:43:37 +02:00
75f6484032
feat(authn): support disable salt
2022-04-19 09:29:56 +08:00
9e4b9c6689
refactor: mgmt rm `generate_response/1`
2022-04-19 01:20:57 +08:00
e5f04f3bf7
chore(emqx_authn_jwt): wrap JWKS connector into emqx_resourse
2022-04-18 15:47:33 +03:00
c777759707
chore: some code format
2022-04-16 16:37:10 +08:00
e22d01d25f
fix: page & limit & pool_size pos_integer; some bad spelling
2022-04-16 16:37:10 +08:00
bf827cffa8
fix: authn bad examples
2022-04-13 16:16:13 +08:00
7954f32858
chore: remove scram authenticator for all gateway
2022-04-12 16:13:55 +08:00
f5d0e8ce84
chore(emqx_authn): update examples
2022-04-11 14:42:17 +03:00
0fb758916f
Merge pull request #7492 from lafirest/test/gateway_authn
...
test(gateway): integration gateway test with authn
2022-04-08 16:05:36 +08:00
786be82d07
test(gateway): optimize test codes organization
2022-04-07 16:53:10 +08:00
356fbf6ce1
Merge pull request #7519 from zmstone/0405-5.0-sync-ssl-lib-from-4.3
...
5.0 refactor: delete deprecated emqx_plugin_libs_ssl module
2022-04-05 22:57:56 +01:00
bc5692efd4
fix(emqx_authn_api): return file path if does not exist
2022-04-05 23:02:14 +02:00
8df76da9ac
chore(formatting): Fix formatting of modules, authz and authn
2022-04-05 11:01:53 +02:00
99b3f2f83e
docs(schema): Document missing records and fields
2022-04-04 23:58:43 +02:00
c0d2243e72
refactor(telemetry): move authn/authz info fns to their own apps
2022-04-01 09:27:52 -03:00
3022ee081d
style(authn): reformat authn subdir source files
2022-04-01 09:55:02 +08:00
aae2d01582
style: erlfmt apps/emqx_authn
2022-04-01 02:19:46 +08:00
edb91e2e4a
docs(schema): Add descriptions for authZ and connector
2022-03-30 13:01:01 +02:00
9554255449
fix(authn): fix delete authn redis crashed
2022-03-28 10:56:11 +08:00
a34e750ebe
fix: unify http response code for auhtn & authz
2022-03-21 14:16:52 +08:00
339e459589
fix(emqx_authn): disable invalid_dynamic_call
...
cc
aa
2022-03-18 17:07:56 +08:00
d1857ba454
feat: add authn, authz status api
2022-03-18 14:36:33 +08:00
37c4d68f40
fix: ignore authn, authz status and metrics
2022-03-16 11:14:21 +08:00
eb5570dd07
fix: disable authn_api, authz_api_sources swagger spec
2022-03-16 10:16:50 +08:00
a084376f3d
feat(authn): enhanced authn users fuzzy searching
2022-03-15 15:14:14 +08:00
02ed2148d7
refactor: move api `top` -> `front`, `bottom` -> `rear`
2022-03-15 10:28:46 +08:00
e96bbf5c8b
refactor(authn_api): add 'after related' for move api
2022-03-15 10:28:46 +08:00
b33b3f6eee
fix: reduce status_and_metrics
2022-03-14 10:21:51 +08:00
3cf18a293d
Merge pull request #7271 from EMQ-YangM/add_metrics_and_status_to_authn
...
feat(emqx_authn_api): add metrics and status to authn
2022-03-11 19:21:44 +08:00
b7a9f1e087
fix(emqx_map_lib): fix static checks errors
2022-03-11 15:56:14 +08:00
85d1a4f9bf
Merge pull request #7263 from HJianBo/fix-auth-jwt
...
fix(authn-jwt): accept the pem conntet to create jwk authenticator
2022-03-11 15:06:43 +08:00
8af7131a49
fix(emqx_autn_api): wo do not need fixpoint
2022-03-11 14:18:50 +08:00
7165fbc5ca
fix(emqx_authn_api): fix elvis error
2022-03-11 14:18:50 +08:00
48b167bf46
test(emqx_authn): add status and metrics test to emqx_authn_api
2022-03-11 14:18:50 +08:00
dce602c251
fix(emqx_authn_api): format metrics and status
2022-03-11 14:18:15 +08:00
a03f324010
feat(emqx_authn_api): add metrics and status to authn
2022-03-11 14:18:15 +08:00
f5caf66253
refactor(api): unified api name style
2022-03-11 11:07:55 +08:00
333f170a30
fix(authn-jwt): accept the pem conntet to create jwk authenticator
2022-03-11 09:19:24 +08:00
93c74bd645
Merge pull request #7225 from JimMoen/authn-authz-mnesia-fuzzy-searching
...
authn and authz mnesia searching by `clientid` or `username`
2022-03-10 17:00:36 +08:00
1d023b541f
refactor(connnector): rename waiting_connect_complete -> wait_for_resource_ready
...
Rename the option to wait_for_resource_ready and defaults to 5s.
2022-03-10 10:46:57 +08:00
593e1a3efb
feat(authn): authn mnesia rows fuzzy searching by `clientid` or `username`
2022-03-10 10:01:40 +08:00
JianBo He