github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-02-14 17:49:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
594 Commits 37 Branches 21 Tags
trivy
Commit Graph

594 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
niravparikh05
4fcdeaf4bf added security vulnerability scanning using trivy and updated release workflow 
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
 2023-05-16 13:17:28 +05:30
Akshay Gaikwad
222cf9d317 docs(changelog): add breaking change for v0.2.2 (#211) 
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-05-16 13:00:45 +05:30
Nirav Parikh
a09f73e946 chore: update changelog for v0.2.3 (#207) 
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
v0.2.3 		2023-04-28 15:19:04 +05:30
Akshay Gaikwad
d88c82e0df fix: re-running admindb migration fails (#205) 
Make all admindb migration queries re-entrance so re-running migration
would not fail.

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-04-28 14:21:32 +05:30
Atulpriya Sharma
343fc381d3 Fixing link issues. (#206) 
Signed Off: sharma.atulpriya@gmail.com

Signed-off-by: Atulpriya Sharma <sharma.atulpriya@gmail.com>
 2023-04-28 10:03:59 +05:30
Nirav Parikh
e203d15b8f fix: remove references to admindbuser user in admindb migrations (#200) 
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
Signed-off-by: Nirav Parikh <52062717+niravparikh05@users.noreply.github.com>
Co-authored-by: Akshay Gaikwad <akshay196@users.noreply.github.com>
 2023-04-27 20:17:31 +05:30
dependabot[bot]
c21c927068 chore(deps): Bump docker/metadata-action from 4.3.0 to 4.4.0 (#204) 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](507c2f2dc5...c4ee3adeed)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-04-27 11:12:05 +05:30
甜瓜
da418fd3d5 fix: incorrect number of wg.add (#203) 
The work-group numbers is unequal to number of go routines spin-up by main function. It's a bug that affects the graceful shutdown. This commit fixed the number of work-group being added.

Signed-off-by: 甜瓜 <42953016+tyut22316@users.noreply.github.com>
 2023-04-23 10:19:31 +05:30
Nirav Parikh
0e084929ea chore: update kratos to 0.11.1 in initialize dockerfile and updated changelog (#195) 
* chore: updated changelog for v0.2.2 release
* updated kratos to v0.11.1 used by helm to complete migrations

Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
v0.2.2 		2023-03-31 16:01:29 +05:30
Akshay Gaikwad
6ece49cd38 chore: Update Dockerfile.initialize to new Kratos version (#194) 
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-03-31 11:36:45 +05:30
dependabot[bot]
b9dcf3b7cb chore(deps): Bump docker/build-push-action from 2.5.0 to 4.0.0 (#193) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.5.0 to 4.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](ad44023a93...3b5e8027fc)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-31 08:30:09 +05:30
dependabot[bot]
6734b05fdb chore(deps): Bump docker/metadata-action from 3.3.0 to 4.3.0 (#192) 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.3.0 to 4.3.0.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](98669ae865...507c2f2dc5)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-31 08:28:49 +05:30
dependabot[bot]
932478a647 chore(deps): Bump docker/login-action from 1.10.0 to 2.1.0 (#190) 
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.10.0 to 2.1.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](f054a8b539...f4ef78c080)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-31 08:27:04 +05:30
Abhijit Mukherjee
6b8cc3163d docs: added api keys as headers for all grpc messages (#163) 
* added api keys as headers for all grpc messages

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* changes to have multiple api keys for auth in partner swagger docs

Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>

---------

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
Co-authored-by: niravparikh05 <nir.parikh05@gmail.com>
 2023-03-30 15:20:58 +05:30
Akshay Gaikwad
c4ac043b5e feat: Support more than one IdP groups mapping (#172) 
Allow mapping more than one IdP groups to an OIdC identity. This
commit upgrades the kratos version (v0.11.0). Kratos v0.11.0 parses
all id token claims into `raw_claims`. The `raw_claims` can be used in
JsonNet mapper to map non-standard claims like `groups` to identity
traits.

Fixes #109

This also includes:
* Remove verbose bug debug logs
* Removes elasticsearch service from docker compose file

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-03-30 12:43:57 +05:30
Nirav Parikh
c645d2398d fix: multiple bootstrap requests using same cluster bootstrap yaml 
multiple bootstrap requests and separated the fingerprint mismatch error which binds a target cluster with bootstrap yaml

Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
 2023-03-30 12:30:12 +05:30
Akshay Gaikwad
ffb78940e2 fix: cluster description ignored by server issue (#187) 
Server was ignoring cluster description of a request. This commit is
persisting cluster description to db.

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-03-30 12:26:26 +05:30
Akshay Gaikwad
53d3298daf chore: Add dependabot.yml (#181) 
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-03-30 12:24:52 +05:30
Om Aximani
dc3ac2b81e Action update (#185) 
* Update go.yml

Updated action version to latest 

Signed-off-by: Om Aximani <75031769+OmAximani0@users.noreply.github.com>

* Update release.yml

Updated action version to latest 

Signed-off-by: Om Aximani <75031769+OmAximani0@users.noreply.github.com>

* Updated setup-go action version

Signed-off-by: OmAxiani0 <aximaniom@gmail.com>

---------

Signed-off-by: Om Aximani <75031769+OmAximani0@users.noreply.github.com>
Signed-off-by: OmAxiani0 <aximaniom@gmail.com>
 2023-03-28 14:12:55 +05:30
Akshay Gaikwad
dd7e7a8602 chore: Add CODEOWNERS file (#186) 
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-03-28 14:12:35 +05:30
dependabot[bot]
aba1dd8147 chore(deps): Bump mellium.im/sasl from 0.2.1 to 0.3.1 (#161) 
Bumps mellium.im/sasl from 0.2.1 to 0.3.1.

---
updated-dependencies:
- dependency-name: mellium.im/sasl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-26 13:52:59 +05:30
dependabot[bot]
fd38abed5d chore(deps): Bump github.com/crewjam/saml from 0.4.6 to 0.4.13 (#179) 
Bumps [github.com/crewjam/saml](https://github.com/crewjam/saml) from 0.4.6 to 0.4.13.
- [Release notes](https://github.com/crewjam/saml/releases)
- [Commits](https://github.com/crewjam/saml/compare/v0.4.6...v0.4.13)

---
updated-dependencies:
- dependency-name: github.com/crewjam/saml
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-26 13:51:37 +05:30
dependabot[bot]
340557db68 chore(deps): Bump github.com/prometheus/client_golang from 1.11.0 to 1.11.1 (#159) 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-23 21:04:46 +05:30
hiteshwani29
1e7b2eaf63 fix: add validation for project name (#166) 
Signed-off-by: hiteshwani29 <hiteshwani29@gmail.com>
 2023-03-23 19:08:47 +05:30
Akshay Gaikwad
ce9202fbeb All dependabot open PRs (#176) 
* Bump github.com/crewjam/saml from 0.4.6 to 0.4.9

Bumps [github.com/crewjam/saml](https://github.com/crewjam/saml) from 0.4.6 to 0.4.9.
- [Release notes](https://github.com/crewjam/saml/releases)
- [Commits](https://github.com/crewjam/saml/compare/v0.4.6...v0.4.9)

---
updated-dependencies:
- dependency-name: github.com/crewjam/saml
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump github.com/prometheus/client_golang from 1.11.0 to 1.11.1

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump mellium.im/sasl from 0.2.1 to 0.3.1

Bumps mellium.im/sasl from 0.2.1 to 0.3.1.

---
updated-dependencies:
- dependency-name: mellium.im/sasl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump golang.org/x/text from 0.3.7 to 0.3.8

Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.7 to 0.3.8.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](https://github.com/golang/text/compare/v0.3.7...v0.3.8)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump golang.org/x/crypto from 0.0.0-20220214200702-86341886e292 to 0.1.0

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.0.0-20220214200702-86341886e292 to 0.1.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump golang.org/x/net from 0.0.0-20220127200216-cd36cc0744dd to 0.7.0

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220127200216-cd36cc0744dd to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/commits/v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore: run go mod tidy

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-23 10:50:46 +05:30
Abhijit Mukherjee
de448a8cb3 handled no record found during connect cluster with no org setting set (#168) 
Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
v0.2.1 		2023-02-27 15:06:57 +05:30
Nirav Parikh
74f1928e45 updates to changelog for v0.2.1 release (#165) 2023-02-24 14:30:28 +05:30
Abhijit Mukherjee
a211287670 Fix: validate non empty projects for delete (#154) 
fix: validate non empty projects for delete

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
 2023-02-20 11:50:00 +05:30
Abhijit Mukherjee
0971def3b3 Feature: Add the ability to configure the SA account lifetime (#139) 
added ability to conifigure SA account lifetime with validation

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
 2023-02-17 15:07:55 +05:30
Akshay Gaikwad
f3cc93083b Add needs-triage label to issue templates (#155) 
Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>
 2023-02-14 17:32:51 +05:30
Abhijit Mukherjee
99cb3765dd Fix: namespace limitation (#138) 
fix namespace validation with allowed characters

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
 2023-02-14 12:56:34 +05:30
Nirav Parikh
f9a0792362 updated changelog for v0.2.0 release (#129) 
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
v0.2.0 		2023-01-27 18:59:27 +05:30
Nirav Parikh
80f7a148b0 fix project id is recorded as part of cluster related auditlogs (#128) 
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
 2023-01-27 18:44:19 +05:30
Akshay Gaikwad
1f64d80729 Auto-generate password and force reset (#124) 
* Upgrade kratos service to v0.10.1

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* Upgrade kratos-client-go to v0.10.1

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* generate password feature for kratos admin creation

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* Add forceReset property in user spec

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* added forcereset in the init script

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* Resolve conflicts

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* Stdout default admin password in initialize script

Signed-off-by: Akshay Gaikwad <akgaikwad001@gmail.com>

* setting password for new user and sending default password in create user response

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* added new endpoint to service force reset flag update after resetting complete outside authz

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* removed unnecessary overhead in the forcereset endpoint and updated user type proto to remove unused fields

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
 2023-01-27 18:32:11 +05:30
nirav-rafay
aa99f2ef0d Merge pull request #122 from paralus/v0.1.9_chglog 
updated changelog for v0.1.9 release
v0.1.9 		2022-12-29 14:58:06 +05:30
nirparikh05
60d40a174e updated changelog for v0.1.9 release 
Signed-off-by: nirparikh05 <nir.parikh05@gmail.com>
 2022-12-29 14:00:59 +05:30
Nirav Parikh
f4a8a69c7d Delete relay agent from target cluster while cluster deletion (#120) 
* updated reconciler to handle delete events

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* fix to ensure relay agent is deleted from taget cluster

Signed-off-by: Nirav Parikh <nir.parikh05@gmail.com>

* updated changelog

Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
Signed-off-by: Nirav Parikh <nir.parikh05@gmail.com>
Signed-off-by: niravparikh05 <nir.parikh05@gmail.com>
Co-authored-by: mabhi <abhijit.mukherjee@infracloud.io>
 2022-12-29 13:15:08 +05:30
Abhijit Mukherjee
cd55d2d1da record user.login event by kratos hooks (#111) 
* record user.login event by kratos hooks

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* added test case for create login auditlog

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>

* updated change log

Signed-off-by: mabhi <abhijit.mukherjee@infracloud.io>
 2022-12-26 11:55:19 +05:30
Atulpriya Sharma
f5cbe6ca1e Changes for Sandbox Onboarding (#112) 
* Added Maintainers.md & OSSF Stats
Signed-off-by: Atulpriya Sharma <sharma.atulpriya@gmail.com>

* Fixed typo, added maintainers link in readme
Signed-off-by: Atulpriya Sharma <sharma.atulpriya@gmail.com>

* Updated maintainers
Signed-off-by: Atulpriya Sharma <sharma.atulpriya@gmail.com>
 2022-12-23 12:59:36 +05:30
nirav-rafay
dd426e59c8 added details around dco (#114) 
added details around dco
 2022-12-22 10:43:35 +05:30
Abhijit Mukherjee
d7d57cb2d0 Fix modify userinfo service to include scope in response (#108) 
Fix modify userinfo service to include scope in response
 2022-12-05 15:33:16 +05:30
Nirav Parikh
610dc58550 Merge pull request #100 from paralus/v0.1.8-release 
updated changelog for v0.1.8 release
v0.1.8 		2022-11-25 17:10:02 +05:30
Nirav Parikh
6d61876c48 updated changelog for v0.1.8 release 2022-11-25 11:48:29 +05:30
Akshay Gaikwad
1d90b2e972 Merge pull request #95 from paralus/audit-logs-to-postgres 
initial commit for changes to support database as backend for audit logs
 2022-11-24 12:52:49 +05:30
Nirav Parikh
d8f449a98e added order by time desc for auditlogs 2022-11-24 12:38:55 +05:30
Nirav Parikh
c30a765daa update timestamp for kubectl_api audit logs as well 2022-11-23 15:23:39 +05:30
Nirav Parikh
2c1d053396 updated query to use time column instead of timestamp from data 2022-11-23 14:11:30 +05:30
Nirav Parikh
319f778e7e added test cases 2022-11-22 19:01:26 +05:30
Nirav Parikh
6465afed9b initial commit for changes to support database as backend for audit logs 2022-11-16 19:05:38 +05:30
Akshay Gaikwad
5e8bbffb05 Merge pull request #93 from paralus/v0.1.7-changelog 
updated changelog for v0.1.7 release
v0.1.7 		2022-11-04 15:00:54 +05:30