netmaker

mirror of https://github.com/gravitl/netmaker.git synced 2025-09-07 13:44:17 +08:00

Author	SHA1	Message	Date
Abhishek K	7093373c77	NET-1784: Migrate All Policies (#3245 ) * migrate all policies * migrate all policies * add acl policy type for any traffic * use any service type for migration	2024-12-10 11:55:37 +04:00
Abhishek K	f124b10c35	NET-1784: Adv Acl Rules (#3239 ) * define direction on acl req * define protocol types and rule model * get rules for node * fetch acl rule for a node * redine acl firewall model * add json tags * update port,protocol, and direction * add json tags to acl options * convert protocol to string * simplify acl map * add json tags to acl rules * add networks to fw update * add acls rules * NET-1784: add allow all field * add allow all field on fw udpate * remove debug logs * fix port and protocol types * migrate default acl policies * define constants for service types * add adv options for user rules on ingress gw * debug log * allow whole network * add static nodes to acl rules * replace peers on acl updates * initiliase rule map * add user acl rules on target node * revert acl check on extclient * handle static node rules on ingress gw * update multiple policies for users * check allowed direction * remove debug logs	2024-12-10 11:21:14 +04:00
Yabin Ma	5f21c8bb1d	NET-1778: scale test code changes (#3203 ) * comment ACL call and add debug message * add cache for network nodes * fix load node to network cache issue * add peerUpdate call 1 min limit * add debug log for scale test * release maps * avoid default policy for node * 1 min limit for peerUpdate trigger * mq options * Revert "mq options" This reverts commit `10b93d0118`. * set peerUpdate run in sequence * update for emqx 5.8.2 * remove batch peer update * change the sleep to 10 millisec to avoid timeout * add compress and change encrypt for peerUpdate message * add mem profiling and automaxprocs * add failover ctx mutex * ignore request to failover peer * remove code without called * remove debug logs * update emqx to v5.8.2 * change broker keepalive * add OLD_ACL_SUPPORT setting * add host version check for message encrypt * remove debug message * remove peerUpdate call control --------- Co-authored-by: abhishek9686 <abhi281342@gmail.com>	2024-12-10 10:15:31 +04:00
Max Ma	e8d3e80b08	initialize cache in startup	2024-11-29 11:35:34 +01:00
abhishek9686	64f730f6f0	list cache	2024-11-27 15:05:08 +04:00
abhishek9686	698032a4dc	load acls into cache	2024-11-27 12:57:48 +04:00
abhishek9686	7df8196aba	initiliase acl cache	2024-11-27 12:28:08 +04:00
abhishek9686	8a948187bb	block tag deletion if used by a acl policy	2024-11-15 15:39:36 +04:00
abhishek9686	574598a2a3	fix acls cache	2024-11-07 21:55:19 +04:00
abhishek9686	163bc9e620	cache new acls	2024-11-07 19:32:20 +04:00
abhishek9686	f973d3d9e1	cache acls v1	2024-11-07 18:25:26 +04:00
abhishek9686	16b693815f	add cpu profiling endpoint	2024-11-07 18:18:08 +04:00
abhishek9686	c07b32d167	fix all networks user grp	2024-11-04 16:58:03 +04:00
abhishek9686	df3662f0cc	check for custom all policies	2024-10-31 15:13:29 +04:00
abhishek9686	7fa87219c1	fix static check	2024-10-30 20:41:56 +04:00
abhishek9686	b85585ab9e	check for custom allow all	2024-10-30 19:40:41 +04:00
abhishek9686	167d29a96b	remove * on default grp, add admins to admin net groups by default	2024-10-30 19:22:05 +04:00
abhishek9686	ebc3e90301	add extclient egress ranges	2024-10-29 12:41:40 +04:00
abhishek9686	2cc54d949c	remove user role from policy types	2024-10-29 08:51:27 +04:00
abhishek9686	f7b78ccad6	remove user role from acl policy types	2024-10-28 11:39:16 +04:00
abhishek9686	20302f7701	fix default policy check on static node network	2024-10-28 09:41:09 +04:00
abhishek9686	541bec71de	fix default policy check	2024-10-23 15:55:04 +04:00
abhishek9686	d4da1774ff	check default user policy	2024-10-23 15:29:47 +04:00
abhishek9686	c0f107b302	remove userips usage, add allow all to fwupdate	2024-10-23 14:15:13 +04:00
abhishek9686	ffb75fa6c1	add allow rules for nodes	2024-10-23 13:19:16 +04:00
abhishek9686	6c52b68214	fix ingress firewall updates	2024-10-22 19:54:23 +04:00
abhishek9686	3994183fe8	implement extclient to extclient acls	2024-10-21 16:49:30 +04:00
abhishek9686	6b93163bd5	fix user policy acls	2024-10-19 13:50:54 +04:00
abhishek9686	57378d255a	fix user policies	2024-10-19 13:16:52 +04:00
abhishek9686	c37cf2b7e3	create default user policies	2024-10-18 16:53:39 +04:00
abhishek9686	f347ca1121	user policy acl func	2024-10-18 14:16:05 +04:00
abhishek9686	aea26dfdf6	check acl policy on ext client	2024-10-18 11:21:32 +04:00
abhishek9686	4e4ffac787	fix acls peer update logic	2024-10-17 13:07:46 +04:00
abhishek9686	be086ee872	update traffic direction of default remote access acl to Bi	2024-10-17 11:37:32 +04:00
abhishek9686	7d80274ff8	create default acl for remote access gw	2024-10-17 11:04:43 +04:00
abhishek9686	f3b0bb60f0	fix acl update	2024-09-28 19:40:26 +04:00
abhishek9686	928bbbfc42	resolve merge conflicts	2024-09-28 18:13:28 +04:00
abhishek9686	6f12dde94b	check id syntax	2024-09-28 18:02:28 +04:00
abhishek9686	5a7e1f3aff	upsert acl on tag deletion	2024-09-28 17:20:17 +04:00
abhishek9686	9deac0ad2d	sync tag updates with acl policies	2024-09-28 17:19:01 +04:00
abhishek9686	5b49872d5d	fix update acl policy	2024-09-26 21:00:04 +04:00
abhishek9686	940ed8b2f0	remove uuid on id type	2024-09-26 18:45:54 +04:00
abhishek9686	dfed77906a	create default acl policies on network creation	2024-09-25 20:24:04 +04:00
abhishek9686	3d327bb89e	fetch user gw via access policy	2024-09-25 18:18:23 +04:00
abhishek9686	fcd3325173	enforce new acl policy access check	2024-09-25 16:06:08 +04:00
abhishek9686	00b082d11c	add validation check for tags	2024-09-25 13:01:40 +04:00
abhishek9686	630928b4f7	add acl policy checker	2024-09-25 10:37:44 +04:00
abhishek9686	6bc59adb2c	add acls api handlers	2024-09-24 19:45:45 +04:00
abhishek9686	e258f12ecb	set Acl DB crud	2024-09-24 19:09:15 +04:00

1 2

99 commits