Kristoffer Dalby
05db1b7109
Formatting and improving logs for config loading
2022-01-25 22:11:15 +00:00
Kristoffer Dalby
b4f8961e44
Make Unix socket permissions configurable
2022-01-28 18:58:22 +00:00
Kristoffer Dalby
25b5eb8d7f
Update tests to aline with new config example
2022-01-02 23:17:42 +00:00
Kristoffer Dalby
db8be91d8b
Add and fix forbidigo
2021-11-15 18:36:02 +00:00
Kristoffer Dalby
c4d4c9c4e4
Add and fix gosec
2021-11-15 18:31:52 +00:00
Kristoffer Dalby
03b7ec62ca
Go format with shorter lines
2021-11-13 08:36:45 +00:00
Kristoffer Dalby
7da3d4ba50
Resolve merge conflict
2021-10-24 21:21:01 +01:00
Kristoffer Dalby
b85adbc40a
Remove the need for multiple config files
...
This commit removes the almost a 100% redundant tests (two fields were
checked differently) and makes a single example configuration for users.
2021-10-22 18:14:29 +01:00
Kristoffer Dalby
57f46ded83
Split derp into its own config struct
2021-10-22 16:55:14 +00:00
Juan Font Alonso
6b0f5da113
Separate config examples for sqlite and postgres for the time being
2021-10-20 23:27:59 +02:00
Juan Font Alonso
5dbf6b5127
Extended DNS config unit tests
2021-10-02 11:14:18 +02:00
Kristoffer Dalby
8735e5675c
Add a test for the getdnsconfig function
2021-08-25 19:03:04 +01:00
Kristoffer Dalby
e77c16b55a
Add DNSConfig to example and setup test
2021-08-24 07:10:09 +01:00
Juan Font Alonso
4fb55e1684
Use 8080 as default port, like in the Kubernetes yamls
2021-07-30 17:07:19 +02:00
Aaron Bieber
69d77f6e9d
Add a 'tls_letsencrypt_listen' config option
...
Currently the default (and non-configurable) Let's Encrypt listener will
bind to all IPs. This isn't ideal if we want to run headscale on a specific
IP only.
This also allows for one to set the listener to something other than
port 80. This is useful for OSs like OpenBSD which only allow root to
bind the lower port ranges (and don't have `setcap`) as we can now run
`headscale` as a non-privileged user while still using the baked in ACME
magic. Obviously this configuration would also require a reverse proxy
or firewall rule to redirect traffic. I attempted to outline that in the
README change.
2021-07-23 16:12:01 -06:00
Ward Vandewege
9a24340bd4
Turn the combination of TLS-ALPN-01 and listen_addr on a port other than
...
443 into a warning, not an error, refs #53 .
2021-07-16 22:02:05 -04:00
Juan Font Alonso
0fcd92fcce
Minor fix to help testing
2021-06-05 11:13:28 +02:00
Juan Font Alonso
13b7b3ee8a
Fix tests
2021-05-18 23:33:18 +02:00
Juan Font Alonso
da9a07ddf3
Added tests for the sqlite-based config
2021-05-15 14:36:13 +02:00
Ward Vandewege
491fb0adb3
Fix a few linter errors.
2021-04-29 21:14:50 -04:00
Ward Vandewege
f5010fd75b
Add test for our config validation rules.
2021-04-26 20:30:06 -04:00
Ward Vandewege
37601f6b4d
Add a very simple test.
2021-04-26 19:22:28 -04:00