public/headscale
1
0
Fork 0
mirror of https://github.com/juanfont/headscale.git synced 2026-05-31 14:36:38 +09:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 19d5a835f4 flake.lock: Update update_flake_lock_action github-actions[bot] 2026-05-31 00:56:04 +00:00
  • 171fd7a3c5 policy: key autogroup:self invalidation on UserID not User view main v0.29.0-beta.2 Kristoffer Dalby 2026-05-29 10:06:02 +00:00
  • ea8fc72570 db: backfill zero-time node expiry to NULL Shourya Gautam 2026-05-22 21:56:30 +05:30
  • 77ba225cdb db: treat Go module pseudo-versions as dev builds Kristoffer Dalby 2026-05-26 13:55:07 +00:00
  • 4483fd0cad tsic, gh: keep unstable on Docker Hub Kristoffer Dalby 2026-05-22 10:35:20 +00:00
  • 66a5f99bfa gh: pre-pull released tailscale images for fork-PR CI Kristoffer Dalby 2026-05-22 09:45:38 +00:00
  • 2e49f3dc67 tsic: pull tailscale images from ghcr.io Kristoffer Dalby 2026-05-22 09:45:22 +00:00
  • 79562b9782 hi: add list-versions subcommand Kristoffer Dalby 2026-05-22 09:44:58 +00:00
  • 58a85b68b3 CHANGELOG: bump 0.29.0 minimum tailscale client to v1.80.0 v0.29.0-beta.1 Kristoffer Dalby 2026-05-22 07:36:39 +00:00
  • eb23c125fa capver, types: bump to tailscale v1.98, drop LegacyDERPString Kristoffer Dalby 2026-05-22 08:02:13 +00:00
  • 570735f204 gen: regenerate grpc stubs with protoc-gen-go-grpc v1.6.2 Kristoffer Dalby 2026-05-19 09:37:40 +00:00
  • 78570c754f Dockerfile: bump base images Kristoffer Dalby 2026-05-19 09:12:01 +00:00
  • 25adfaf341 flake.nix, flake.lock: bump nixpkgs and pinned tools Kristoffer Dalby 2026-05-19 09:11:51 +00:00
  • be90910d33 go.mod, go.sum: bump dependencies for v0.29.0 Kristoffer Dalby 2026-05-19 09:11:15 +00:00
  • 575d8ecbfd changelog: normalise 0.29.0 BREAKING and Changes sections Kristoffer Dalby 2026-05-20 10:23:23 +00:00
  • e4e742c776 noise: pin outer RemoteAddr onto tunnel requests Kristoffer Dalby 2026-05-20 08:48:35 +00:00
  • 4cca63155d all: apply godoc [Name] link conventions across comments Kristoffer Dalby 2026-05-18 18:35:53 +00:00
  • 17236fd284 all: annotate complex functions with gocyclo rationale Kristoffer Dalby 2026-05-18 18:35:23 +00:00
  • 3e2aa5814e all: annotate gosec false positives with rationale Kristoffer Dalby 2026-05-18 18:34:58 +00:00
  • f905d58292 all: mechanical lint fixes Kristoffer Dalby 2026-05-18 18:34:27 +00:00
  • e00c899219 cmd, templates, integration: extract shared production constants Kristoffer Dalby 2026-05-18 18:33:40 +00:00
  • 64c398f2c2 metrics, policy/v2: drop unused scaffolding + nil-error returns Kristoffer Dalby 2026-05-18 18:32:58 +00:00
  • 7f02210863 .golangci: ignore tests for goconst, raise occurrence threshold Kristoffer Dalby 2026-05-18 18:26:01 +00:00
  • 08f80bbcb7 Deployed e07b3910 to development with ProperDocs 1.6.7 and mike 2.2.0 gh-pages github-actions 2026-05-18 15:32:47 +00:00
  • f990e1fa11 Deployed 963daf89 to development with ProperDocs 1.6.7 and mike 2.2.0 github-actions 2026-05-18 15:24:05 +00:00
  • e07b39108f Quote autogroup:self in the CHANGELOG Florian Preinstorfer 2026-05-17 15:47:04 +02:00
  • e285f3c932 The headscale service is enabled by default Florian Preinstorfer 2026-05-16 11:02:19 +02:00
  • 355733342f Update config-example links Florian Preinstorfer 2026-05-16 10:55:01 +02:00
  • f3f84a5a63 Add docs for policy-wide options and node attributes Florian Preinstorfer 2026-05-15 17:36:47 +02:00
  • 4eb5899154 Add taildrive, tests, sshTests as supported features Florian Preinstorfer 2026-05-12 17:48:30 +02:00
  • e2f2f9211f state, servertest: property-test HA election + invariant catalogue Kristoffer Dalby 2026-05-17 20:32:53 +00:00
  • c7630b505b state: leave prefix unmapped when all primary candidates unhealthy Kristoffer Dalby 2026-05-17 17:08:40 +00:00
  • de6be71a86 state: batch HA probe results so dual-disconnect cannot flap primary Kristoffer Dalby 2026-05-14 17:04:12 +00:00
  • fb8eecae25 state: defer HA failover when probe target reconnected mid-cycle Kristoffer Dalby 2026-05-13 13:20:22 +00:00
  • a345a22a3b mapper, app: ship MagicDNS Routes as empty slices, not nil Kristoffer Dalby 2026-05-13 13:20:04 +00:00
  • dfcc96d808 integration: harden ACL test ergonomics Kristoffer Dalby 2026-05-13 13:19:49 +00:00
  • 78fd6efb38 integration: replace ad-hoc test timeouts with named constants Kristoffer Dalby 2026-05-13 13:18:52 +00:00
  • eec3844f24 integration/dockertestutil: wait for libnetwork settle on reconnect Kristoffer Dalby 2026-05-13 13:16:48 +00:00
  • 98e9ff4d36 integration: authenticate Docker Hub pulls and retry transient errors Kristoffer Dalby 2026-05-13 13:16:24 +00:00
  • 4d3b567149 ci: use overlay2 storage driver instead of pinning docker v28 Kristoffer Dalby 2026-05-13 13:17:37 +00:00
  • 963daf8908 docs: document trusted_proxies config option Kristoffer Dalby 2026-05-18 09:22:52 +00:00
  • c6c29c05e5 hscontrol: gate proxy header trust on trusted_proxies Kristoffer Dalby 2026-05-18 09:21:32 +00:00
  • 1f48ebb376 go.mod: add github.com/realclientip/realclientip-go Kristoffer Dalby 2026-05-18 09:21:05 +00:00
  • b5b786f519 servertest: cover broader-dst via grant in filter test Kristoffer Dalby 2026-05-18 09:43:13 +00:00
  • 2cb914df59 policy/v2: add SaaS goldens for via-grant prefix containment Kristoffer Dalby 2026-05-18 09:42:59 +00:00
  • e5fcd01ee6 policy/v2: match via-grant destinations by prefix overlap Kristoffer Dalby 2026-05-18 09:42:28 +00:00
  • af7e7a4560 db: remove unused SetApprovedRoutes and SetTags helpers Kristoffer Dalby 2026-05-13 09:53:21 +00:00
  • b1196baf6d state: add regression test for Node slice persistence Kristoffer Dalby 2026-05-13 09:53:11 +00:00
  • 7a20db9f49 types: persist Node JSON slices via named IsZero types Kristoffer Dalby 2026-05-13 09:53:01 +00:00
  • e78a24b892 CHANGELOG: document sshTests evaluation (beta) Kristoffer Dalby 2026-05-13 14:21:26 +00:00
  • 574a61852a integration: reject failing sshTests at headscale policy set Kristoffer Dalby 2026-05-13 14:21:21 +00:00
  • 92a9accfcb cmd/headscale/cli: mention sshTests in policy check help Kristoffer Dalby 2026-05-13 14:21:17 +00:00
  • 26eebcea5a policy/v2: add sshtester compat runner Kristoffer Dalby 2026-05-13 14:17:51 +00:00
  • 013dea4f40 policy/v2: evaluate sshTests at write boundary Kristoffer Dalby 2026-05-13 14:17:04 +00:00
  • 6a0a297c7f policy/v2: validate sshTests at parse Kristoffer Dalby 2026-05-13 14:11:48 +00:00
  • d600090f2c policy/v2: align SSH rule validation with Tailscale Kristoffer Dalby 2026-05-13 14:09:17 +00:00
  • 4ad200ab73 hscontrol: preserve nil expiry on tailscaled restart Kristoffer Dalby 2026-04-16 14:48:26 +00:00
  • 10a51cfe70 policy/v2: tighten comments and CHANGELOG style on sshTests sshtests-with-followup-1778680862 Kristoffer Dalby 2026-05-13 13:56:55 +00:00
  • 2b4485ee32 CHANGELOG: document sshTests evaluation (beta) Kristoffer Dalby 2026-05-13 12:58:22 +00:00
  • 1768268e84 integration: reject failing sshTests at headscale policy set Kristoffer Dalby 2026-05-13 12:50:32 +00:00
  • e265a46c9e cmd/headscale/cli: mention sshTests in policy check help Kristoffer Dalby 2026-05-13 12:49:19 +00:00
  • 81246bde16 policy/v2: add sshtester compat runner Kristoffer Dalby 2026-05-13 12:48:43 +00:00
  • 2f7f90529a policy/v2: evaluate sshTests at write boundary Kristoffer Dalby 2026-05-13 12:47:04 +00:00
  • 295716bcca policy/v2: validate sshTests at parse Kristoffer Dalby 2026-05-13 12:41:42 +00:00
  • e4a1171ba4 policy/v2: align SSH rule validation with Tailscale Kristoffer Dalby 2026-05-13 12:40:50 +00:00
  • e007ce2ffa policy/v2: rewrite tag-name first-letter check via De Morgan sshtests-source-e007ce2f Kristoffer Dalby 2026-05-13 12:05:47 +00:00
  • 87c6d9b68e policy/v2: accept bare-IP sshTests dst, reject only explicit CIDR Kristoffer Dalby 2026-05-13 10:56:24 +00:00
  • 2865926028 policy/v2: use Alias and SSHUser types in SSHPolicyTest Kristoffer Dalby 2026-05-13 10:45:03 +00:00
  • b94936e129 CHANGELOG: rewrite sshTests entry to match policy tests style Kristoffer Dalby 2026-05-13 10:27:55 +00:00
  • c0a087461e policy/v2: drop useless comment on checkPeriod parse Kristoffer Dalby 2026-05-13 10:27:18 +00:00
  • 2b61b26772 policy/v2: match SaaS wording for group nesting rejection Kristoffer Dalby 2026-05-13 10:19:09 +00:00
  • 079dca8924 policy/v2: reject non-ASCII tag names Kristoffer Dalby 2026-05-13 10:11:55 +00:00
  • a79fb20372 policy/v2: reject hosts-table aliases as SSH dst Kristoffer Dalby 2026-05-13 10:04:39 +00:00
  • aea64b34de policy/v2: tolerate tag-owner cycles by resolving to empty Kristoffer Dalby 2026-05-13 09:57:54 +00:00
  • 9f362d5be9 policy/v2: trim whitespace in SSH src and dst aliases Kristoffer Dalby 2026-05-13 09:51:57 +00:00
  • 76ba2de85a policy/v2: add ssh-edges captures from Tailscale SaaS Kristoffer Dalby 2026-05-13 09:46:30 +00:00
  • f8aa6c46ef policy/v2: trim whitespace and reject negative checkPeriod Kristoffer Dalby 2026-05-13 08:17:11 +00:00
  • 2180380fc1 policy/v2: align SSH rule validation with Tailscale SaaS Kristoffer Dalby 2026-05-13 08:17:01 +00:00
  • 9026f810fe policy/v2: branch tailscale_ssh_data_compat_test on APIResponseCode Kristoffer Dalby 2026-05-12 22:22:51 +00:00
  • 4c4cebdc29 cmd/headscale/cli: mention sshTests in policy check help Kristoffer Dalby 2026-05-12 21:05:25 +00:00
  • 3eff2d5d0f policy/v2: address review on sshTests engine Kristoffer Dalby 2026-05-12 21:05:18 +00:00
  • 48900f6c1a CHANGELOG: document sshTests evaluation (beta) Kristoffer Dalby 2026-05-12 21:05:13 +00:00
  • 1d477f4b8b integration: regenerate workflow for sshTests integration test Kristoffer Dalby 2026-05-13 08:16:40 +00:00
  • 4b79b03858 integration: reject failing sshTests at headscale policy set Kristoffer Dalby 2026-05-13 08:16:28 +00:00
  • 9e15565056 policy/v2: add sshtester captures from Tailscale SaaS Kristoffer Dalby 2026-05-12 21:04:58 +00:00
  • 6f93e3b010 policy/v2: add sshtester compat runner Kristoffer Dalby 2026-05-12 21:04:50 +00:00
  • 59755d496d policy/v2: evaluate sshTests at write boundary Kristoffer Dalby 2026-05-12 21:04:42 +00:00
  • 9205b02044 policy/v2: validate sshTests at parse Kristoffer Dalby 2026-05-12 21:04:34 +00:00
  • 5d502bfb88 types/node, mapper: strip own IPv4 from emission when node has disable-ipv4 cap Kristoffer Dalby 2026-05-13 09:58:11 +00:00
  • 64d13f77e8 types/config, types/node: model default-auto-update from auto_update.enabled Kristoffer Dalby 2026-05-11 16:28:09 +00:00
  • 408f4022e4 CHANGELOG: document nodeAttrs feature and migrations Kristoffer Dalby 2026-05-11 14:54:34 +00:00
  • 8ea4cd3faa types/node, policy/v2: drop taildrive caps from baseline emission Kristoffer Dalby 2026-05-11 14:54:03 +00:00
  • 5ebc53c29e types/node, mapper, policy/v2: assemble self CapMap inside TailNode Kristoffer Dalby 2026-05-11 14:53:09 +00:00
  • b3f795f0b4 mapper, policy/v2: stamp suggest-exit-node on Peer.CapMap when exit routes approved Kristoffer Dalby 2026-05-11 14:52:04 +00:00
  • 078b9e308f policy/v2: SaaS-derived compat tests for nodeAttrs Kristoffer Dalby 2026-05-11 14:51:09 +00:00
  • 3f73ed5404 config, types: move randomize_client_port from server config to policy file Kristoffer Dalby 2026-05-11 14:49:36 +00:00
  • 6fcff9e352 mapper, state: deliver nodeAttrs through MapResponse and harden nextdns DoH rewrite Kristoffer Dalby 2026-05-11 14:47:58 +00:00
  • a4f05b0962 policy/v2: parse, validate, and compile nodeAttrs Kristoffer Dalby 2026-05-11 14:46:38 +00:00
  • 48e22ab769 policy/v2: rewrite tag-name first-letter check via De Morgan sshtests-prerebase-1778675224 Kristoffer Dalby 2026-05-13 12:05:47 +00:00
  • d32d91d9fb policy/v2: accept bare-IP sshTests dst, reject only explicit CIDR Kristoffer Dalby 2026-05-13 10:56:24 +00:00