9f6fb4f1ce
Merge branch 'master' into fix-coap-topic
2022-09-07 17:48:44 +08:00
befc4acced
Merge remote-tracking branch 'origin/master' into merge-master-to-ee50-a
2022-09-06 20:31:38 +02:00
f785da075b
ci: only start required docker for integration tests
2022-09-06 19:25:53 +02:00
da4efc11c2
chore: log authn-http parsing failed reason
2022-09-06 15:38:32 +08:00
09d640c1b6
Merge pull request #8887 from thalesmg/bugfix-will-msg-not-connected
...
bugfix: do not publish last will when authentication failed
2022-09-05 10:38:47 -03:00
e0fcf07cf9
fix: do not publish last will when authentication failed
...
fixes #8886
2022-09-05 08:55:47 -03:00
d4785553b9
Merge pull request #8872 from JimMoen/fix-mqtt-bridge-fields
...
Fix mqtt bridge fields.
- Show ssl file path in Dashboard.
- MQTT bridge `payload` field not required.
merge `v5.0.7` into `master`.
2022-09-05 09:46:45 +08:00
d533e35df0
chore: update app vsn
2022-09-02 22:26:21 +08:00
a41461ac93
chore: update apps/emqx_authn/src/simple_authn/emqx_authn_jwt.erl
2022-09-02 16:17:25 +08:00
8b9494cf4b
fix(jwt): support non-integer timestamp claims
...
fix #8825
2022-09-02 10:17:47 +08:00
5a3fb4a011
Merge remote-tracking branch 'origin/master' into dev/ee5.0
2022-08-31 17:11:15 +02:00
2eb078ff3b
chore: bump changed app versions
2022-08-26 14:32:28 +02:00
9449e3cb32
refactor(auth_mnesia): Export transaction funs
2022-08-22 19:52:37 +02:00
45352206a3
fix(auth): remove emqx_connector from testcases of authz/authn
2022-08-22 20:20:45 +08:00
b3162fe5ff
fix: conflicts between master and ee5.0
2022-08-14 22:24:09 +08:00
0cdf4b47f1
feat: add more resource creation opts
2022-08-12 13:47:45 +08:00
64aa30ec63
chore(authn/authz): better handling of placeholder interpolation errors
2022-08-10 18:22:37 +03:00
35fe70b887
feat: support aysnc callback to connector modules
2022-08-10 00:34:35 +08:00
d3950b9534
fix(resource): make option 'queue_enabled' disabled by default
2022-08-10 00:34:35 +08:00
0377d3cf61
fix: update existing testcases for new emqx_resource
2022-08-10 00:34:35 +08:00
2fb42e4d37
refactor: create emqx_resource_worker_sup for resource workers
2022-08-10 00:34:35 +08:00
79d6613a18
Merge pull request #8531 from HJianBo/fix-authn-cndn
...
fix(authn): fix cert_subject and cert_common_name placeholder
2022-07-26 09:09:34 +08:00
2f470b8878
Merge pull request #8554 from savonarola/authn-logging
...
Add more tracing for authentication
2022-07-25 17:43:00 +03:00
1a236db91b
chore(log): add authentication tracing
2022-07-25 17:14:19 +03:00
2466881460
chore: Update apps/emqx_authn/src/emqx_authn_user_import_api.erl
...
Co-authored-by: zhouzb <zhouzb@emqx.io>
2022-07-25 17:45:38 +08:00
7261fbaa6b
chore: Update apps/emqx_authn/src/emqx_authn_user_import_api.erl
...
Co-authored-by: zhouzb <zhouzb@emqx.io>
2022-07-25 17:45:28 +08:00
a3296078c3
chore: make sure swagger's tags always titlecase 2
2022-07-25 16:55:38 +08:00
dd59c850e0
chore: make sure swagger's tags always titlecase
2022-07-25 16:09:17 +08:00
1c8defeeda
chore: make elvis happy
2022-07-25 13:17:54 +08:00
ba1347513e
test(authn): test cert_subject/cert_common_name placeholder
2022-07-25 09:28:28 +08:00
f8f4ad3e5b
fix(authn): fix cert_subject and cert_common_name placeholder
2022-07-25 09:28:28 +08:00
a12478225a
fix: fix bad swagger format
2022-07-20 16:56:07 +08:00
994a76510d
fix(authn): jwt ssl opts use emqx_schema:ssl_clients_opts
2022-07-13 10:37:16 +08:00
b55048f705
chore: update app versions
2022-07-08 16:29:07 +08:00
9ca5927b88
fix: issue in test cases
2022-07-08 14:07:28 +08:00
841f816e39
refactor: improve the health_check for webhook bridges
2022-07-08 09:17:23 +08:00
dbe806d950
fix: allow for exp field to optional to keep backwards compat with 4.X
2022-07-07 10:18:52 +02:00
2ad99fca7a
chore: update appup.src
2022-07-01 21:07:33 +08:00
7b825fe4bd
test(authn): authn `is_superuser` default value false.
2022-07-01 21:07:26 +08:00
f0c783b260
test(authn): emqx_authn and gateway_athn http `content-type`
2022-07-01 20:55:39 +08:00
b88796518e
fix(authn): authn http `is_superuser` field
...
only support true|false|[num]
and for [num]: zero => false | non-zero => true
other type and string will fallback to default vaule => false
i.e null|undefined|[empty string]
2022-07-01 20:55:39 +08:00
f8c90452cc
chore: auto retry disconnected authn/authz resources
2022-07-01 12:01:39 +08:00
9acfd0ff9e
chore: update emqx_authn.appup.src
2022-06-30 15:23:09 +08:00
7de23f5863
chore(authn-redis): checking password field
2022-06-30 13:26:58 +08:00
8f696b6f8c
fix(authn): correct peerhost placeholder rendering
2022-06-30 12:50:56 +08:00
d7c21020f6
feat(authn-redis): needs to compatible with 4.x auth data
2022-06-30 11:26:56 +08:00
a9ec193ef8
fix(prometheus): Disable authorization for metrics scraping endpoint
2022-06-23 00:31:53 +02:00
51efe22e57
chore: update the appup files for authz/authn
2022-06-22 15:54:37 +08:00
defacb97df
fix: disabled resources for authz/authn started after emqx reboot
2022-06-22 14:34:30 +08:00
cc25f92273
feat: add start_after_created option to resource:create/4
2022-06-16 23:34:52 +08:00
2c5450e7f6
chore(authn): fix raw authn configs
2022-06-15 22:26:08 +03:00
e381e3698f
feat(authn): add enable_authn flag for listeners
2022-06-15 22:26:08 +03:00
73dd969843
Merge pull request #8210 from savonarola/jwt-authn-add-from
...
feat(jwt authn): allow to specify JWT field
2022-06-15 14:56:04 +03:00
ec840222cd
Merge pull request #8192 from HJianBo/authn-fuzzy-searching
...
fix(authn): fix enhance_authn fuzzy searching not working
2022-06-15 10:20:49 +08:00
d0f686d19d
feat(jwt authn): allow to specify JWT field
2022-06-14 14:34:45 +03:00
2ad2da082b
Merge pull request #8139 from savonarola/authn-jwt-test
...
chore(jwt authn): improve tests
2022-06-14 14:23:23 +08:00
29baf0f68a
fix(authn): fix enhance_authn fuzzy searching not working
2022-06-13 13:38:06 +08:00
7301009b8e
chore(jwt authn): improve tests, add pool_size to schema
2022-06-10 14:28:43 +03:00
c7cc2e85b2
fix: add default&example for schema
2022-06-06 09:52:10 +08:00
0893a36dec
fix(authn): removed explicit chain creation for security reasons
2022-06-02 14:03:19 +03:00
92145d0275
fix(metrics): make metric id unique for authn provider instances
2022-06-02 14:03:19 +03:00
d32b2ecd81
fix(authn api): update removing listener-specific chain logic
2022-06-02 14:03:14 +03:00
1bad5f8b7c
Merge pull request #8088 from savonarola/authn-import-users-request
...
feat(authn api): add method for user file upload
2022-06-02 13:51:46 +03:00
2d53c21d45
chore(authn api): replace user import api with upload api
2022-06-01 19:56:23 +03:00
efc0ca2b62
Merge branch 'master' into changes-enable_pipelining-type
2022-05-31 20:49:10 +08:00
f0ddac63cb
chore: change the enable_pipelining default value
2022-05-31 19:32:53 +08:00
8aa60cc0a5
feat: generate a minimized emqx.conf
2022-05-31 19:20:27 +08:00
e258409a8f
Merge pull request #8071 from savonarola/mongodb-authn-defaults
...
chore(mongodb authn): add defaults for field names
2022-05-31 13:21:27 +03:00
96f58d0ec8
Merge remote-tracking branch 'ce/master' into authn-import-users-request
2022-05-31 10:11:21 +08:00
3be617cf40
feat(authn api): add method for user file upload
2022-05-31 00:40:10 +03:00
4cae80c8d2
fix(authn api): add method for removing listener-specific chains
2022-05-30 15:33:21 +03:00
fdee23f492
chore(mongodb authn): add defaults for field names
2022-05-27 13:21:16 +03:00
5dba01b8fa
fix(authn): fix user search API
2022-05-25 15:50:20 +03:00
3524fb6994
Merge pull request #7775 from zmstone/0426-5.0-hint-metrics-merge-errors
...
fix: hint metrics merge errors
2022-05-16 07:42:01 +01:00
ed0ab70aaf
test: fix flaky-ness of authn api tests
...
if api test suite runs after the JWT suite, it failes as
the config is not clean
2022-05-15 09:19:31 +02:00
2eb621ba57
fix: hint metrics merge errors
2022-05-13 21:38:51 +02:00
99d50d2455
Merge pull request #7496 from zmstone/0401-5.0-add-parallel-map-lib
...
refactor: refine pmap with nolink_apply
2022-05-13 18:40:36 +01:00
4013dd2f14
refactor: refine pmap implementation
2022-05-13 15:22:42 +02:00
91da451803
feat(authz): add default authn-based authz source
2022-05-13 12:51:10 +03:00
ca0c80965a
Merge pull request #7890 from savonarola/fix-jwt-acl-v5
...
fix(jwt auth): improve JWT handling
2022-05-12 19:48:37 +03:00
e0fa07b679
fix(jwt auth): improve JWT handling
2022-05-12 12:10:47 +03:00
4fa84cce29
test(authn): test unsupported redis CMD
2022-05-12 14:19:57 +08:00
87af77ec35
refactor: do not destory resource when update authn/authz resource
2022-05-12 14:19:57 +08:00
60ca1cb2a5
refactor(authn): use hocon enum type for user_id_type
2022-05-11 09:02:55 +02:00
57c1c418d6
docs(authn): use a string alias for user_id_type
2022-05-10 18:28:16 +02:00
841acb7828
Merge pull request #7783 from emqx/EMQX-4199-introduce-a-new-emqx-resource-manager-module
...
feat: isolate resource manager processes
2022-05-09 18:33:01 +02:00
0b3e30e813
feat: isolate resource manager processes
2022-05-09 13:24:34 +02:00
8db8598622
fix(mgmt): fix test case crash
2022-05-07 10:16:58 +08:00
6e03a7c686
fix(authn): use a random group id to void data overlap
2022-05-07 10:16:58 +08:00
30b3060327
fix: improve authn, authz metrics
2022-05-05 18:53:31 +08:00
4744e4a5e4
fix(authn): make sure http headers are bin
2022-04-29 19:44:49 +08:00
344a754674
Merge pull request #7817 from JimMoen/fix-auth-http
2022-04-29 16:36:10 +08:00
7bbed713f4
Merge pull request #7835 from JimMoen/fix-mongo-require-fields
...
fix(auth): mongo field `filter` not required and have default value
2022-04-29 15:38:54 +08:00
ad4b70c27e
fix(auth): mongo field `filter` not required and have default value
2022-04-29 13:37:29 +08:00
5f75f6e3be
docs: refine auth http i18n description
2022-04-29 12:48:21 +08:00
c1dfd0aa36
test(auth): authn & authz http placeholder in HTTP path
2022-04-29 12:48:17 +08:00
15ef9892c5
fix(auth): authn & authz http support placeholder in HTTP path
2022-04-29 12:48:00 +08:00
dae418ae4a
fix(auth): authn & authz http not required `body` field
2022-04-29 12:47:56 +08:00
e4826400b8
fix(auth): authn & authz HTTP haeders without `content-type` via GET method
2022-04-29 12:47:52 +08:00
fc73f96aeb
fix(test): use different http port for testing authz and authn
2022-04-29 12:41:36 +08:00
4e65322667
refactor: move emqx_plugin_libs_metrics to emqx app
...
because it can not depend on other apps
2022-04-29 12:41:36 +08:00
afe526ba67
Merge pull request #7789 from tigercl/chore/authn-fields
...
chore: rename certificate in jwt and selector in mongodb, remove pool_size in jwks
2022-04-29 10:14:06 +08:00
778973b2de
Merge pull request #7791 from DDDHuang/auto_failed_connector
...
fix: disconnected status in auto_reconnect = false
2022-04-29 09:30:16 +08:00
638b7195d4
Merge pull request #7804 from HJianBo/not-allow-empty-claims
...
fix(authn-jwt): avoid to save empty claim name
2022-04-28 14:10:45 +01:00
56761ecb74
fix: remove duplicated create_metrics
2022-04-28 16:20:38 +08:00
51e025f075
fix: remove duplicated code
2022-04-28 16:10:47 +08:00
4365de9ad5
fix: format code
2022-04-28 15:39:08 +08:00
2a2308bbf8
refactor: resource check & connector status
2022-04-28 15:32:35 +08:00
5b0ee30d72
fix: ignore unwanted results
2022-04-28 15:02:07 +08:00
6530604f40
fix: add authn authz metrics supervisor
2022-04-28 14:38:45 +08:00
098598a0be
fix: add resource_metrics, node_resource_metrics
2022-04-28 12:43:55 +08:00
2a7bd74ef1
feat: authn add new metrics
2022-04-28 11:16:45 +08:00
e216e0f17f
test(authn): add test for verifing claim name
2022-04-28 09:14:28 +08:00
6535eb879c
fix(authn-jwt): avoid to save empty claim name
...
An empty claim_name has not a real meaning and will result in a
syntax error cluster_override.conf. i.e:
```
authentication {
mechanism = "jwt"
verify_claims { = "22"}
...
}
```
2022-04-28 08:34:04 +08:00
7ddd020dd2
docs: improve desc for filter field
2022-04-27 11:29:18 +08:00
fa9bd74595
chore: rename selector to filter and fix spellcheck
2022-04-27 11:29:18 +08:00
c384ae2534
chore: rename certificate in jwt to public_key, delete pool_size in jwks authn
2022-04-27 11:29:16 +08:00
a75f42d629
docs: add missing i18n trans and make spellcheck happy
2022-04-27 11:00:22 +08:00
a7354401df
Merge pull request #7758 from lafirest/fix/authn_user_search
...
fix(authn): Add support for query by is_superuser to the mensia backend
2022-04-26 18:27:53 +08:00
a863dcb61d
docs(authn): optimize i18n in authn
2022-04-26 15:15:47 +08:00
43c096ecbc
test(authn): add is_superuser query test case
2022-04-26 14:29:48 +08:00
2e3033c539
fix(authn): Add support for query by is_superuser to the mensia backend
2022-04-26 14:29:48 +08:00
9f35dd7f80
Merge pull request #7730 from savonarola/jwt-authz
...
feat(emqx_auth_jwt): use JWT for ACL checks
2022-04-26 14:18:50 +08:00
a58b88aeec
chore(i18n): fix more and more typos
2022-04-26 09:28:05 +08:00
a4feb3e6e9
style: reformat emqx_auto_subscribe and emqx_conf
2022-04-25 18:05:10 +02:00
fc2ea9e484
feat(emqx_auth_jwt): use JWT for ACL checks
2022-04-25 11:59:04 +03:00
2d553d711f
fix: 'ComFun' missing parameter
2022-04-25 11:38:48 +08:00
e9843aa225
fix(doc): html line break use `</br>`
2022-04-24 18:56:21 +08:00
4a43a10296
Merge pull request #7701 from EMQ-YangM/improve_docs
...
fix: improve document quality
2022-04-22 16:52:09 +08:00
86c38d283d
docs: authn i18n zh_CN support
2022-04-22 10:40:34 +08:00
9088752afa
fix: bad return in retry prepare
2022-04-22 00:20:13 +08:00
ad2ed178a6
test: fix authn redis_type field
2022-04-21 22:56:27 +08:00
75f612a449
fix: bad SUITE & bad code
2022-04-21 18:30:51 +08:00
7417e5070d
fix: perpare sql when connector doing init; add prepare statement field; bad log path
2022-04-21 16:00:15 +08:00
365ca67078
fix: auth mysql prepare query
2022-04-21 16:00:15 +08:00
039619ee23
feat: authz & authn mysql resource support prepare sql query
2022-04-21 16:00:15 +08:00
99bcf5a69f
Merge pull request #7656 from HJianBo/support-disable-salt
...
feat(authn): support disable salt
2022-04-20 15:29:22 +08:00
c67e565755
fix(authn): merge default header after check config
2022-04-19 18:57:01 +08:00
88c98bb310
fix(authn): api required fields
2022-04-19 18:57:01 +08:00
93dd7d46c5
refactor: fields `meta` ref to dashboard_swagger
2022-04-19 18:57:01 +08:00
fb7c7dffb7
Merge pull request #7527 from zmstone/0405-5.0-provide-defaults-for-ssl-files
...
5.0 provide defaults for ssl files
2022-04-19 11:51:39 +01:00
ef83a80234
Merge pull request #7613 from savonarola/fetch-jwk-safe
...
chore(emqx_authn_jwt): wrap JWKS connector into emqx_resourse
2022-04-19 13:48:51 +03:00
c71302ae27
refactor(ssl): show file paths for SSL certs in dashboard
2022-04-19 08:43:37 +02:00
75f6484032
feat(authn): support disable salt
2022-04-19 09:29:56 +08:00
9e4b9c6689
refactor: mgmt rm `generate_response/1`
2022-04-19 01:20:57 +08:00
e5f04f3bf7
chore(emqx_authn_jwt): wrap JWKS connector into emqx_resourse
2022-04-18 15:47:33 +03:00
c777759707
chore: some code format
2022-04-16 16:37:10 +08:00
e22d01d25f
fix: page & limit & pool_size pos_integer; some bad spelling
2022-04-16 16:37:10 +08:00
bf827cffa8
fix: authn bad examples
2022-04-13 16:16:13 +08:00
7954f32858
chore: remove scram authenticator for all gateway
2022-04-12 16:13:55 +08:00
JianBo He