Mirrors/juanfont.headscale
1
0
Fork 0
mirror of https://github.com/juanfont/headscale.git synced 2025-11-10 01:20:58 +01:00
Code Issues Projects Releases Wiki Activity
3,608 Commits 69 Branches 147 Tags 53 MiB
ba6be353d1
Commit Graph

3608 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Teej
ba6be353d1
Merge 7fb1a25441 into 2024219bd1 2025-11-05 18:34:08 +00:00
TeejMcSteez
7fb1a25441 Changed favicon to only dots 2025-11-05 13:34:01 -05:00
TeejMcSteez
822021360d Update CHANGELOG 2025-11-03 15:53:02 -05:00
Teej
b291baef44
Merge branch 'juanfont:main' into swagger-favicon 2025-11-02 23:42:29 -05:00
Kristoffer Dalby
2024219bd1 types: Distinguish subnet and exit node access 
When we fixed the issue of node visibility of nodes
that only had access to eachother because of a subnet
route, we gave all nodes access to all exit routes by
accident.

This commit splits exit nodes and subnet routes in the
access.

If a matcher indicates that the node should have access to
any part of the subnet routes, we do not remove it from the
node list.

If a matcher destination is equal to the internet, and the
target node is an exit node, we also do not remove the access.

Fixes #2784
Fixes #2788

Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Kristoffer Dalby
d9c3eaf8c8 matcher: Add func for comparing Dests and TheInternet 
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Kristoffer Dalby
bd9cf42b96 types: NodeView CanAccess uses internal 
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Kristoffer Dalby
d7a43a7cf1 state: use AllApprovedRoutes instead of SubnetRoutes 
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Kristoffer Dalby
1c0bb0338d types: split SubnetRoutes and ExitRoutes 
There are situations where the subnet routes and exit nodes
must be treated differently. This splits it so SubnetRoutes
only returns routes that are not exit routes.

It adds `IsExitRoutes` and `AllApprovedRoutes` for convenience.

Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Kristoffer Dalby
c649c89e00 policy: Reproduce exit node visibility issues 
Reproduces #2784 and #2788

Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2025-11-02 13:19:59 +01:00
Vitalij Dovhanyc
af2de35b6c
chore: fix autogroup:self with other acl rules (#2842) 2025-11-02 10:48:27 +00:00
Kristoffer Dalby
02c7c1a0e7
cli: only validate bypass-grpc set policy (#2854) 2025-11-02 09:42:59 +00:00
Copilot
d23fa26395
Fix flaky TestShuffleDERPMapDeterministic by ensuring deterministic map iteration (#2848) 
Co-authored-by: kradalby <98431+kradalby@users.noreply.github.com>
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
 2025-11-02 10:05:23 +01:00
Teej
aa314f44ef
Merge branch 'juanfont:main' into swagger-favicon 2025-11-02 00:09:48 -04:00
TeejMcSteez
b319f19b6d Update general template to include favicon link 2025-11-02 00:09:03 -04:00
Andrey
f9bb88ad24
expire nodes with a custom timestamp (#2828) 2025-11-01 08:09:13 +01:00
Kristoffer Dalby
456a5d5cce
db: ignore _litestream tables when validating (#2843) 2025-11-01 07:08:22 +00:00
Kristoffer Dalby
ddbd3e14ba
db: remove all old, unused tables (#2844) 2025-11-01 08:03:37 +01:00
TeejMcSteez
1f35939bcb Undo make fmt, will break a lot of code 2025-10-31 04:10:17 -04:00
TeejMcSteez
4f05974d86 Update after running make fmt 2025-10-31 03:36:04 -04:00
TeejMcSteez
29f4fb91e8 Update after running make fmt 2025-10-31 03:22:59 -04:00
TeejMcSteez
903351d44f Change content type to match actual file type 2025-10-31 03:10:51 -04:00
TeejMcSteez
a96d3300de Linked favicon.ico to base template 2025-10-31 03:05:10 -04:00
TeejMcSteez
6783132c00 Added favicon to assets, downloaded from GitHub README 2025-10-31 03:04:32 -04:00
TeejMcSteez
f00af9ee26 Changed root route to use BlankHandler instead of 404 handler 2025-10-31 03:03:39 -04:00
TeejMcSteez
5888e5896f Added route for /favicon.ico to createRouter 2025-10-31 03:02:22 -04:00
TeejMcSteez
19b36c5adc Added blank page handler, return blank html linking favicon 2025-10-31 03:00:36 -04:00
TeejMcSteez
a594f9be98 Added favicon handler to serve favicon.png 2025-10-31 02:59:57 -04:00
Florian Preinstorfer
0a43aab8f5 Use Debian 12 as minimum version for the deb package 2025-10-28 05:55:26 +01:00
Florian Preinstorfer
4bd614a559 Use current stable base images for Debian and Alpine 2025-10-28 05:55:26 +01:00
Kristoffer Dalby
19a33394f6
changelog: set 0.27 date (#2823) 2025-10-27 12:14:02 +01:00
Kristoffer Dalby
84fe3de251
integration: reduce TestAutoApproveMultiNetwork matrix to 3 tests (#2815) 2025-10-27 11:08:52 +00:00
Paarth Shah
450a7b15ec #2796: Add creation_time and ko_data_creation_time to goreleaser.yml kos 2025-10-27 11:18:57 +01:00
Kristoffer Dalby
64b7142e22
.goreleaser: add upgrade section (#2820) 2025-10-27 10:41:52 +01:00
Kristoffer Dalby
52d27d58f0
hscontrol: add /version HTTP endpoint (#2821) 2025-10-27 10:41:34 +01:00
Kristoffer Dalby
e68e2288f7
gen: test-integration (#2814) 2025-10-24 17:22:53 +02:00
Kristoffer Dalby
c808587de0
cli: do not show new pre-releases on stable (#2813) 2025-10-24 13:15:53 +02:00
Kristoffer Dalby
2bf1200483
policy: fix autogroup:self propagation and optimize cache invalidation (#2807) 2025-10-23 17:57:41 +02:00
Kristoffer Dalby
66826232ff
integration: add tests for api bypass (#2811) 2025-10-22 16:30:25 +02:00
Kristoffer Dalby
1cdea7ed9b
stricter hostname validation and replace (#2383) 2025-10-22 13:50:39 +02:00
Elyas Asmad
2c9e98d3f5
fix: guard every error statement with early return (#2810) 2025-10-22 13:48:07 +02:00
Florian Preinstorfer
8becb7e54a Mention explicitly that @ is only required in policy 2025-10-21 14:28:03 +02:00
Florian Preinstorfer
ed38d00aaa Fix autogroup:self alternative example 
Also indent and split the comment into two lines to avoid horizontal
scrolling.
 2025-10-21 14:28:03 +02:00
Florian Preinstorfer
8010cc574e Remove outdated hint about an empty config file 2025-10-19 17:14:15 +02:00
Juanjo Presa
c97d0ff23d Fix fatal error on missing config file by handling viper.ConfigFileNotFoundError 
Correctly identify Viper's ConfigFileNotFoundError in LoadConfig to log a warning and use defaults, unifying behavior with empty config files. Fixes fatal error when no config file is present for CLI commands relying on environment variables.
 2025-10-19 15:29:47 +02:00
Florian Preinstorfer
047dbda136 Add FAQ on how to disable log submission 
Fixes: #2793
 2025-10-19 08:24:23 +02:00
Florian Preinstorfer
2a1392fb5b Add healthcheck to container docs 2025-10-19 08:22:30 +02:00
Florian Preinstorfer
46477b8021 Downgrade completed broadcast message to debug 2025-10-18 07:56:59 +02:00
Kristoffer Dalby
c87471136b
integration: eventually fixups (#2799) 2025-10-17 08:28:30 +02:00
Kristoffer Dalby
e7a28a14af
changelog: prepare for 0.27.0 (#2797) 2025-10-16 19:04:07 +02:00