empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-07 09:18:59 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
5,105 Commits 3 Branches 0 Tags 561 MiB
a26e5002a3
Commit Graph

89 Commits

Author SHA1 Message Date
Michal Nicpon
e3e17f3389
Fix double quote usage in sql query (#6707) 2022-07-20 10:10:03 -06:00
Eng Zer Jun
1ab171faf3
test: use T.Setenv to set env vars in tests (#6714) 
This commit replaces `os.Setenv` with `t.Setenv` in tests. The
environment variable is automatically restored to its original value
when the test and all its subtests complete.

Reference: https://pkg.go.dev/testing#T.Setenv
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2022-07-18 14:22:28 -03:00
Roberto Dip
69f8f2a73b
add API endpoints to retrieve pre-built installers (#6672) 
Rel: #6365, this adds a new endpoint to check and download pre-built installers.
 2022-07-18 13:44:30 -03:00
Roberto Dip
7e68ee2253
add configuration to retrieve installers from S3 (#6630) 
Related to #6365, this adds relevant configuration to the packaging key to retrieve installers from S3.
 2022-07-13 09:34:25 -03:00
Roberto Dip
6faee84f57
allow to configure a default global enroll secret (#6609) 
Related to #6365 this adds a new config to set a global enroll token that will be used by the server.
 2022-07-12 19:12:10 -03:00
Tomas Touceda
7f8099db57
Add sandbox fleet serve config (#6619) 
* Add sandbox fleet serve config

* Update docs

* Maybe fix lint issues

* Add lint dep
 2022-07-12 18:21:15 -03:00
Martin Angers
81f0e0ccfa
Track active hosts count and enforce limit (#6099) 2022-06-13 16:29:32 -04:00
Desmi-Dizney
f648949ebe
Editor pass - Support per-task configuration for async host processing configuration (#5810) 
* Editor pass - Support per-task configuration for async host processing configuration #

Editor pass for:
-  https://github.com/fleetdm/fleet/pull/5700

* Update Configuration.md

* Update config.go
 2022-05-20 12:07:32 -05:00
Martin Angers
e6b90ca8b9
Support per-task configuration for async host processing configuration (#5700) 2022-05-16 09:44:50 -04:00
Martin Angers
0d0c17e0c6
Add osquery.min_software_last_opened_at_diff configuration option (#5394) 2022-04-27 09:47:09 -04:00
Martin Angers
36702ede8d
Make recent vulnerabilities max age configurable. (#5081) 2022-04-12 14:48:15 -04:00
Lucas Manuel Rodriguez
60b7425bef
Add http basic auth to /metrics (#4974) 
* Add http basic auth to /metrics

* Fixes after testing applying of a --config sample.yml

* Add unit test
 2022-04-07 09:40:53 -03:00
Michal Nicpon
7b671ac2a3
Add team failing policies webhook (#4633) 
* add config to teams
* update api docs
* update tests
 2022-03-21 13:16:47 -06:00
Benjamin Edwards
74bb559645
Add public ip to hosts & derive geolocation when rendering host (#4652) 
* geoip wip
* return nil if ip is empty string or if ParseIP returns nil
* add ui component to render geolocation if available, address PR feedback
* render public ip if available
* add changes file, document geoip in deployment guide
* update rest-api docs
 2022-03-21 12:29:52 -04:00
Benjamin Edwards
f8cf6ea91c
make context type value header configurable (#4441) 
* make context type value header configurable
* populate config
 2022-03-09 17:22:29 -05:00
Michal Nicpon
1aa7b96837
change session duration to 5 days (#4480) 2022-03-07 15:37:54 -07:00
Zachary Winnerman
c5c72ed713
Add apm for testing apm (#4053) 
* Add apm for testing apm

* Testing opentracing

* testing

* Testing

* go fmt

* Add config switch for tracing.

* fixup

* Update cmd/fleet/serve.go

Co-authored-by: Tomas Touceda <chiiph@gmail.com>

* Add support for both elasticapm and opentelemetry

* Fix driver stuff and config options

* Fixup

* fixup

* Add changes file

* Add config for sql driver

* fixup

* Add doc to exported field

* testing

* fixup

* fixup

* Testing again

* fixup

* testing

* Undo

Co-authored-by: Tomas Touceda <chiiph@gmail.com>
 2022-02-15 12:42:22 -05:00
Tomas Touceda
11887f87f7
Add enable scheduled query stats to fleet config (#4066) 
* Add enable scheduled query stats to fleet config as well

* Add documentation

* Revert "Allow disabling scheduled query stats via app config (#4049)"

This reverts commit f98fd4d331.

* Add changes file

* Update ref

* Add missing docs
 2022-02-09 08:20:29 -03:00
Martin Angers
a6f3f02a85
Cleanup unused software after calculating the count of hosts (#3887) 2022-01-26 11:32:42 -05:00
Tomas Touceda
9d572309ae
Add sentry (#3669) 
* Add sentry

* Fix gosum

* More gosum fixes

* Add missing def for config

* Enrich sentry scope a bit

* Add changes file

* Add goroutine safe scope to errors

* Encapsulate sentry logic

* Add documentation for new flag

* Add sentry capturing to crons and other background tasks

* Only send to sentry when enabled
 2022-01-20 16:41:02 -03:00
Martin Angers
f14f97156c
Add read and write timeout options for redis (#3624) 2022-01-11 17:08:39 -05:00
Martin Angers
4143a37056
Fix redis scan keys issue for live queries (#3107) 2021-12-14 16:30:26 -05:00
Zach Wasserman
ac3d8ddf02
Increase default login session length to 24 hours (#3340) 2021-12-13 20:42:30 -08:00
Tomas Touceda
142006cbdd
Issue 2099 enable vulnerability processing new installs (#3104) 
* Enable vulnerability processing by default

* Add changes file

* Remove wrong env var

* Fix import

* Fix tests

* Update log line

* Remove unneeded import
 2021-12-03 14:44:57 -03:00
Lucas Manuel Rodriguez
028c2643f7
Fleet serve to exit if migrations are missing (default) (#2803) 
* Add option to fleet to exit if migrations are missing

* Reverse serve exit migrations logic

* Fix typo
 2021-11-22 14:47:24 -03:00
Martin Angers
69a4985cac
Use new error handling approach in other packages (#2954) 2021-11-22 09:13:26 -05:00
Tomas Touceda
2902da76ca
Issue 2027 better error visibility (#2069) 2021-11-02 13:35:57 -04:00
Martin Angers
a8735d55bb
Implement async processing of hosts for label queries (#2288) 2021-11-01 14:13:16 -04:00
dsbaha
51e35e1ba0
Implementation of a Kafka REST Proxy logging plugin (#2534) 
This PR implements the status/result logger functions necessary interface with a Kafka REST Proxy service.  

Specifically, this is compatible with the [Confluent KAFKA Rest Proxy Service ](https://docs.confluent.io/1.0/kafka-rest/docs/intro.html).
 2021-10-27 21:51:17 -07:00
Martin Angers
c0e0e461e6
Allow empty TLS CA for Redis TLS connections (#2668) 2021-10-25 14:47:53 -04:00
Martin Angers
07cf136d03
Add TLS support to Redis connections (#2568) 2021-10-20 10:09:18 -04:00
Martin Angers
057d4e8b2e
Add configuration and support for Redis to read from replicas (#2509) 2021-10-18 09:32:17 -04:00
Benjamin Edwards
16c5823692
add support for minio backend file carving (#2448) 
* add support for minio backend file carving
* add changes file
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
 2021-10-12 15:32:06 -04:00
Tomas Touceda
2033d8208c
Add policy updated at (#2246) 
* wip

* Add policy updated at interval and update the UI to use that

* Update rest api

* Fix tests
 2021-09-27 16:27:38 -03:00
Tomas Touceda
1f324339f8
Add jitter to intervals (#2158) 
* Add max jitter percent config

* Fix jitter calc

* Remove comment

* Reduce test jitter to make tests less flaky

* Remove jitter entirely

* Document new config

* Fix doc link
 2021-09-21 14:21:44 -03:00
Martin Angers
1fa5ce16b8
Add configurable Redis connection retries and following of cluster redirections (#2045) 
Closes #1969
 2021-09-15 08:50:32 -04:00
Tomas Touceda
429af72b69
Issue 1963 vulnerabilities no sync (#1976) 
* wip

* Add tests for skip sync

* Add changes file

* Fix lint
 2021-09-14 10:58:35 -03:00
Tomas Touceda
b2efc9f51c
Make redis conn timeout and keep alive configurable (#1968) 
* Make redis conn timeout and keep alive configurable

* Document new configs

* Correct config name
 2021-09-08 17:55:12 -03:00
Tomas Touceda
6d2ae02efd
Rename core->free and basic->premium (#1870) 
* Rename core->free and basic->premium

* Fix lint js

* Comment out portion of test that seems to timeout

* Rename tier  to premium if basic is still loaded
 2021-09-03 13:05:23 -03:00
Martin Angers
3755a58070
Add support for MySQL read replicas (#1786) 
Adds configuration options to use a read-only MySQL replica,
and uses it instead of the primary for reads.
 2021-09-01 15:50:52 -04:00
Tomas Touceda
70f728fe84
Make vulnerability processing more configurable (#1718) 
* Make vulnerability processing more configurable

* Simplify leader selection
 2021-08-18 17:25:14 -03:00
Benjamin Edwards
c18214be37
add logging settings to config api response (#1467) 
- add docker-compose file for locally testing aws dependencies
- update firehose & kinesis configs to optionally supply endpoint url override
- serialize `logging` field in appconfig api response
 2021-07-30 11:45:49 -04:00
Benjamin Edwards
799243ffb5
Windows friendly changes after walking through getting started guide (#1441) 
* update .gitattributes to be explicit about line endings with regards to the test certs
* update building-fleet guide to include python2 dependency on windows
* update configuration to default to OS specific temporary directories
 2021-07-21 20:49:44 -04:00
Zach Wasserman
6013194c1d
Reduce default session duration to 4 hours (#981) 2021-06-06 18:28:47 -07:00
Zach Wasserman
0356115b03
Remove JWT in Fleet session management (#979) 
See #978 for motivations for this change.

Closes #978.
 2021-06-06 18:10:58 -07:00
Zach Wasserman
fb32f0cf40
Remove kolide types and packages from backend (#974) 
Generally renamed `kolide` -> `fleet`
 2021-06-06 15:07:29 -07:00
Zach Wasserman
08d57b40d1
Remove deprecated kolide names from API routes and configuration (#957) 
Closes #260
 2021-06-04 16:51:18 -07:00
Zach Wasserman
16a8e13f85
Fix tls_compatibility key in yaml config (#955) 
Closes #271
 2021-06-04 08:44:36 -07:00
Zach Wasserman
83b7f79699
Stub out licensing API (#810) 
- Add config option for license key.
- Define license details data structure.
- Include license details in app config API responses.

Currently any non-empty value for `--license_key` behaves as though the
installation is licensed for `basic`. If the license key is empty,
`core` is returned.

Still to come is the appropriate parsing for the license key.
 2021-05-19 17:29:38 -07:00
Josh Brower
86745ba2dc
Add ability to duplicate live query results in Redis (#762) 
This feature enables a new config option (redis.duplicate_results). When set to true, all Live Query results will be copied to an additional Redis pubsub channel named LQDuplicate

This is useful in a scenario that would involve shipping the Live Query results outside of Fleet, near-realtime.
 2021-05-13 16:01:31 -07:00