Proto commits in openziti/ziti

These commits are when the Protocol Buffers files have changed: (only the last 100 relevant commits are shown)

2025-05-07

Start on circuit scale test

2025-05-01

fix #2996 add ability to flag cert authenticators for extension/key roll (#3025) * fix #2996 add ability to flag cert authenticators for extension/key roll

The documentation is generated from this commit.

2025-04-08

Initial pass at loop4 sim. Fixes #2978

2025-02-25

Cache ER/T terminator ids for faster restarts. Fixes #2807 (#2815)

ER/T Hosting HA chaos test and fixes (#2806) * Add ERT hosting chaos test. Also add ert terminator validation utility. Fixes #2288 * Rework ER/T terminator management based on SDK terminator management code * Update deps * Make sdk/ert-terminators into a constant

2025-02-07

fixes #2681 adds targetToken support for ext jwt signers (#2686) * fixes #2681 adds targetToken support for ext jwt signers - adds targetToken of values ACCESS, ID for management API CRUD - adds targetToken to client API reads - adds --target-token to external jwt signers CLI - updates/adds tests - update client test

2025-01-31

Ensure restores and migrations work properly with RDM. Add restore from db for HA Clusters. Fixes #2549. Fixes #2649. Fixes #2707

2025-01-24

Experimental support for accessing ziti components over the mgmt/ctrl channels. Fixes #2439

2025-01-09

Separate leader updates from controller cluster member updates

2025-01-08

Switch router storage to serialized protobuf, rather than json

Add router data model chaos test. Fixes #2550

Move routers to a subscription model where they subcribe to model data from one controller for a limited time. Fixes #2599

2024-11-14

Add cluster id, to prevent merging disparate clusters. Fixes #2541

2024-11-12

HA SDK terminators test. Fixes #2217. Fixes #2533

2024-11-01

Add controller connect events. Fixes #1835. Fixes #2234

2024-08-29

updates authenticator/api session logic for isCertExtendable - updates legacy and oidc authentication for isCertExtendable - updates authenticators REST responses to include isIsssuedByNetwork

2024-08-21

fixes #2091 adds scope and client id configuration to ext jwt signers

2024-07-26

Migrated edge router tunneler code to use the router data model. Fixes #2121

2024-07-17

Enhance the router data model with config information, fixes #2010 Add subscription model to router data model, fixes #1990

2024-04-23

Implement router data model changesets. Fixes #1966

2024-04-17

Update router data model with: add service policy type, flesh out identity. Fixes #1950 Fixes #1951

2024-04-16

Allow ER/T to intercept services w/out sessions when in HA mode. Fixes #1942

2024-03-26

reduces prerms from admin to authenticated on list controllers - updated public key sync to use controller list data instead of mesh peer - fixes perms on controller list to not be admin only

2024-03-14

Merge branch 'main' into ha-staging

2024-03-12

Add terminator chaos testing and fix issues found. Fixes #1794 Fixes #1369

2024-02-29

consolidated ha changes

2024-02-22

fixes 1354 adds hostname/domain to env info

2024-02-09

Refactor terminator state machine to be more like links state machine. Fixes #1733 Fixes #1734

Fix controller crash. Fixes #1736

2024-01-25

fixes 1691 multiple er re-enrolls creates multiple enrollments - ers do not support having multiple enrollments, detail returns 1 - re-enrolling now clears existing enrollments - adds test to re-enroll twice - encapsulates all er re-enrollment logic as a single atomic command

2024-01-19

Link management fixes. Fixes #1692 Fixes #1693

2024-01-05

Add initial router link validation utility. Fixes #1678

2023-12-08

Add service max idle time. Fixes #1496. Add decomission router support. Fixes #1402

2023-12-01

Implement idempotency for sdk terminators. Fixes #1446

2023-11-13

add api session token to dial/bind requests

2023-11-01

fix index boot strapping, nil pointer panic, ha controller certs

2023-10-18

adds defautling for OIDC settings Also removes unused posture response protobuffs

2023-10-16

pr fixes

2023-10-02

adds sync capabilities for HA

2023-09-29

adds router data model sync and save - adds a router data model that is sync'ed to each router - controllers w/o raft use a synthetic index for events that alter the router data model - controller w/ raft use raft's index for events that alter the router data model - fixes issues with the OIDC authentication flows other than UPDB

Merge remote-tracking branch 'fabric/main' into merge-fabric

2023-09-27

Add CreateTerminatorV2 flow for edge terminators. Fixes #1619

Merge remote-tracking branch 'edge/main' into merge-edge Updated package names Merged golangci-lint configurations

2023-09-26

Add capabilities to hello. Fixes openziti/fabric#799

2023-08-12

Move ziti-fabric-test to zititest

2023-08-10

Move protobuf definitions to common

2023-08-08

Remove old utilities in test dir Fix more linter errors Add some test documentation. Add golangci-lint workflow Update dependencies and fix imports for edge package changes Update doc

2023-08-04

Move protobufs to common

2023-08-03

Add some more config value validation and guardrails

Move link calculation to routers. Fixes #692, fixes #749, fixes openziti/fabric#343

2023-07-20

adds support OIDC authentication, api access, and ER connections

2023-06-05

Add support for quiescing and dequiescing routers. Fixes openziti/fabric#538 Quiesce marks all terminators as failed and stores the previous state. Dequiesce restores all terminators with failed state and stored previous state to their previous state

2023-05-25

Notify controller of forward faults on links. Fixes #724. If reroute fails, circuit should be torn down. Fixes openziti/fabric#725

2023-05-11

Add config support for link groups. Doesn't use group config yet.

2023-04-25

Updated model for storage api changes

Update for storage API changes.

2023-03-28

Add support disabling routers. Fixes #1373

Implement batched terminator deletes

2023-03-27

Add router disable flag. Fixes openziti/fabric#651

2023-02-17

Add transfer-leadership command. Fixes openziti/fabric#599

2023-02-16

Add more raft configuration options. Fixes openziti/fabric#597 Add more raft config knobs Refactor peer handles to be consistent with other handlers Allow inspect to work across controllers Add config and clusterconfig inspect support

2023-01-18

Router controller updates (#537) * progress on controller communication * added yaml encoding/decoding * move dispatch callbacks to be more consistent * update unit tests * small cleaups * Add new datadir to unit tests * fix linter * Was able to use FSM hooks to get configuration updates to show raft state * Send index to prevent older versions from being applied and added leader override * pr comments and added/removed ctrl connections * added error logging * pr comments * spelling and bad log newlines * added delete from the toconnect map and added end case to the background connect * reordered removal from map * added mtx around access. Forgot that was changed to be unsopported.

2023-01-12

Added raft leave and raft list members (#580) * Added raft leave and raft list members * reordered agent raft leave to only check address if is is not found * instead of adding second raft ctrl, just cast the dispatcher

2023-01-11

Update enable/disable ctrl ch to allow specifying controller. Update to use channel ops. Fix openziti/fabric#508

2022-12-28

Support auto-migrate and agent initiated migration. Fixes openziti/fabric#569

2022-12-20

Merge pull request openziti/fabric#564 from openziti/stream-events Support streaming all events to websocket. Remove stream metrics and …

Support streaming all events to websocket. Remove stream metrics and cicuits. Fixes openziti/fabric#563

2022-12-16

Allow terminators to be marked as system entities. Fixes openziti/fabric#558

2022-12-15

xgress_edge_tunnel create terminator perf improvements. Fixes #1270 * Make terminator creation asynchronous * Make terminator creation idempotent * Improve logging * Add some timer logging and metrics. * controller and router will both log their respective views of how long the terminator create took * the router has a new xgress_edge_tunnel.terminator.create_time timer metric

2022-09-16

Update to usage v3

2022-09-15

Update to usage v3. Adds circuit tags to usage. Fixes openziti/fabric#496

2022-09-07

Add remote addr to circuit events. Fixes openziti/fabric#459

2022-08-22

Use one port for ctrl channel to router and controllers. Allow syncing existing DB to raft. Fixes #471. Fixes openziti/fabric#479.

2022-08-18

Fixes for raft command encoding and decoding

2022-08-10

Convert posture checks to use raft commands. Fixes #1125

2022-08-09

Update identities to use raft commands. Fixes #1131

Convert transit routers to use raft commands. Fixes #1132

2022-08-04

Update edge routers to use raft commands. Fixes #1107

Update enrollments to use raft commands. Fixes #1130

Update authenticators to use raft commands. Fixes #1099

2022-08-02

Update MFA to use raft commands. Closes #1128

2022-07-29

Update edge services to use raft commands. Fixes #1118

Convert external jwt signers to raft commands. Fixes #1116

Add flags to create/update commands. allows some lightweight logic specialization (eg priveleged vs non-priveleged updates)

2022-07-28

Update service policies to use raft commands. Fixes #1111

Update service edge router policies to use raft commands. Fixes #1110

Convert edge router policies to raft commands. Fixes #1108

2022-07-27

Merge pull request #1109 from openziti/raft-cas Convert CAs to use raft style commands. Fixes #1100

Merge pull request #1106 from openziti/raft-config-types Raft config types

Convert CAs to use raft style commands. Fixes #1100

Update config types to use raft style commands. Fixes #1101

2022-07-26

fixes #1103 allow multiple advertise hostnames for listeners

2022-07-20

Convert auth policies to use raft commands. Fixes #1097

2022-07-19

Merge pull request openziti/fabric#448 from openziti/link-events Refactor events subsystem. Add link events. Fixes openziti/fabric#415

2022-07-16

Add host id to terminator. This will allow tracking usage to hosting entities. Fixes openziti/fabric#440

2022-07-15

Refactor events subsystem. Add link events. Fixes openziti/fabric#415 Previously we often had two sets of events, one in the network package, and then another in the events package. We now only have one, in the events package. Events now have a public API, with minimal deps. There's an implementation package which has the dependencies. This allows the network package to generate events, without have a circular dependency on the events implementation package.

2022-06-22

Update for terminator terminology changes

Circuit failed events and rename terminator identity -> instanceId

2022-06-09

move terminator address to seperate field (#412) * move terminator address to seperate field * update circuit streaming to handle dedicated terminator address field * Added circuit event terminator local address

2022-06-03

Initial support for distributed model via RAFT