Karl Persson
3bcbf231ee
IDToken: fix namespace format ( #95341 )
...
* Bump authlib version
* Remove temporary formatter and start signing tokens with `stacks-` prefix
* update workspace
2024-11-04 09:33:03 +01:00
Todd Treece
003b2f14db
K8s: Add tracing to apiserver startup ( #95744 )
...
Co-authored-by: Stephanie Hingtgen <stephanie.hingtgen@grafana.com >
2024-11-02 00:44:40 +01:00
Todd Treece
403b60723d
Playlist: Add watch feature toggle ( #95730 )
2024-11-01 13:47:24 -04:00
owensmallwood
0eb7b755e2
Unified Storage Indexer: Add integration tests ( #95687 )
...
* indexer integration tests WIP
* make protobuf
* Adds a few more integration test cases to cover the basics. Use Limit instead of Size param from SearchRequest.
* skip if testing.Short()
* adds test comments
2024-11-01 07:58:10 -06:00
Todd Treece
30b1e3b289
K8s: APIGroupBuilder App SDK Support ( #95638 )
2024-11-01 08:28:56 -04:00
Dana Axinte
2ba1740698
CloudMigrations: increase size of resource_uid column ( #95684 )
...
* len 255
* comment
* Update pkg/services/sqlstore/migrations/cloud_migrations.go
* comment on sqlite
* postgres varchar
---------
Co-authored-by: Michael Mandrus <41969079+mmandrus@users.noreply.github.com >
2024-11-01 09:09:50 +00:00
Jo
9f43724b57
AccessControl: Use UIDs for Resource permissions frontend ( #95552 )
...
* frontend can use uids to set resource permissions
* lint
* add uids to folder acl
* Update public/app/core/components/Select/UserPicker.tsx
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* simplify conditions
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
2024-10-31 16:17:13 +01:00
Ida Štambuk
8f2893edd3
Features: Move cloudwatchMetricInsightsCrossAccount toggle to GA and enabled by deafault ( #94985 )
2024-10-31 13:58:09 +00:00
Syerikjan Kh
35697381d2
fix: make org_id not nullable and set default value ( #95610 )
2024-10-31 09:53:33 -04:00
Karl Persson
dfa8f786d2
Zanzana: fix generic schema ( #95648 )
...
* Change schema so that resource checks on a folder walks the tree
2024-10-31 14:34:48 +01:00
kay delaney
db5f893ea6
Chore: Remove code related to viz/widget split feature ( #95614 )
2024-10-30 16:12:03 +00:00
Jo
90d2f4659e
Users: Allow specifying user UIDs in params ( #95424 )
...
* add user ID API translation
* add uid to user frontend
* use users' UIDs in admin pages
* fix ldapSync page
* use global user search for user by UID
* remove active org filtering
* remove orgID params
2024-10-30 14:14:42 +01:00
Syerikjan Kh
f0391e31d2
Revert "fix: make org_id not nullable and provide default value" ( #95606 )
...
Revert "fix: make org_id not nullable and provide default value (#95556 )"
This reverts commit 261b4a5564
2024-10-30 08:55:02 -04:00
Syerikjan Kh
261b4a5564
fix: make org_id not nullable and provide default value ( #95556 )
2024-10-29 13:21:48 -04:00
Alexa V
f062c66f89
Dashboard: Add new dashboardSchemaV2 feature toggle ( #95536 )
...
Dashboard Scene: Add new dashboardSchemaV2 feature toggle
2024-10-29 11:35:18 +01:00
Jo
2b867d9850
AccessControl: Resource permission translator ( #95423 )
...
* Standardize Resource Translator in options
* Add resource UID translator for resource permissions
* fix comments
* fix comments
2024-10-29 10:21:39 +01:00
Ryan McKinley
2f40fd6741
Dashboards: Remove unique name constraints ( #90687 )
2024-10-29 08:58:39 +03:00
Todd Treece
c8238c7914
K8s: Add admission mutation support to builder ( #95526 )
2024-10-29 03:14:07 +02:00
Todd Treece
4508d6c143
Chore: Add additional builder validation tests ( #95518 )
2024-10-28 20:42:10 -04:00
Todd Treece
5533b30135
K8s: Add validation support to builder ( #95502 )
2024-10-28 11:40:25 -04:00
Karl Persson
e0163c93c2
Zanzana: reconcile generic schema ( #95492 )
...
* Rename to CheckObject
* Implement authz.AccessClient
* Move folder tree to reconciler and use new schema
* Move shared functionality to common package
* Add reconciler for managed permissions and resource translations
* Add support for folder resources
2024-10-28 16:32:16 +01:00
Gabriel MABILLE
5a0ef46280
Add tracing to the gRPC Authentication flow ( #94466 )
...
commit ad4df4b3f63bdf3e16423ac8c3fdb1a7fae5582e
Author: gamab <gabriel.mabille@grafana.com >
Date: Thu Oct 24 10:24:04 2024 +0200
nit
commit eb8b9cf2f3e27cae258b3ae310f1584da5ba36b5
Author: gamab <gabriel.mabille@grafana.com >
Date: Thu Oct 24 10:23:25 2024 +0200
miss
commit aab1aed204a5dedcc6dd187b2f636995bbe2c5c6
Merge: 5aafdec9233 7fe710b141gabriel.mabille@grafana.com >
Date: Thu Oct 24 10:22:05 2024 +0200
Merge remote-tracking branch 'origin/main' into gamab/resourcestore/tracing
commit 5aafdec9233d6824cba977b069d71eabc3d21a8d
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 16 18:03:56 2024 +0200
Did not fix the issue
commit 20522a7f64222fad27268ac640d4b4fb9259c748
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 16 17:42:35 2024 +0200
Test
commit b45199a341b6a57e93927c9eb7de8d7758ed7619
Merge: c0fbbdb95d4 e9e2b11ba2gabriel.mabille@grafana.com >
Date: Wed Oct 16 17:31:59 2024 +0200
Merge remote-tracking branch 'origin/drclau/unistor/replace-authenticators-3' into gamab/resourcestore/tracing
commit e9e2b11ba2claudiu.dragalina@grafana.com >
Date: Wed Oct 16 18:28:31 2024 +0300
PR feedback: simplified fallback implementation
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit b5209dba64drclau@users.noreply.github.com >
Date: Wed Oct 16 18:03:06 2024 +0300
Update pkg/services/authn/grpcutils/grpc_authenticator.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
commit c0fbbdb95d4605f349b902ca8698e7b560433867
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 16 10:32:52 2024 +0200
Add traces to fallback
commit 75aa8dcbd49288f1dca53cdf6e9a7b41688dff38
Merge: d92fafcaf0d 562d499e85gabriel.mabille@grafana.com >
Date: Wed Oct 16 10:29:41 2024 +0200
Merge remote-tracking branch 'origin/drclau/unistor/replace-authenticators-3' into gamab/resourcestore/tracing
commit 562d499e85claudiu.dragalina@grafana.com >
Date: Wed Oct 16 11:05:01 2024 +0300
switched to features.IsEnabledGlobally()
commit addc6aaca4claudiu.dragalina@grafana.com >
Date: Wed Oct 16 10:21:31 2024 +0300
imports cleanup
commit 7c6d80f6aa64a5e55d619dc2ccdbfdclaudiu.dragalina@grafana.com >
Date: Wed Oct 16 10:18:54 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 64a5e55d61claudiu.dragalina@grafana.com >
Date: Tue Oct 15 11:01:54 2024 +0300
cleanup
commit 4fe2c03457claudiu.dragalina@grafana.com >
Date: Tue Oct 15 10:31:06 2024 +0300
always enable FlagAppPlatformGrpcClientAuth for k8s int tests
commit c7e36759cdclaudiu.dragalina@grafana.com >
Date: Tue Oct 15 10:30:43 2024 +0300
use sync.Once as it's more idiomatic
commit f5c2c79981claudiu.dragalina@grafana.com >
Date: Mon Oct 14 20:43:48 2024 +0300
remove client side namespace extractor
commit 742295c89aclaudiu.dragalina@grafana.com >
Date: Mon Oct 14 20:04:11 2024 +0300
avoid double registration of metrics (fallbackCounter)
commit a45998c8d3claudiu.dragalina@grafana.com >
Date: Mon Oct 14 19:03:41 2024 +0300
use FlagAppPlatformGrpcClientAuth to enable new behavior, instead of legacy
commit ffdc301718claudiu.dragalina@grafana.com >
Date: Mon Oct 14 18:37:22 2024 +0300
remove the NamespaceAuthorizer
The NamespaceAuthorizer would fail in legacy mode. It will be added back in the future.
commit 4a03ed7d7dclaudiu.dragalina@grafana.com >
Date: Mon Oct 14 15:59:08 2024 +0300
allow using the legacy resource client via
commit a2c30f5328ead390f6082f3c539d9bclaudiu.dragalina@grafana.com >
Date: Mon Oct 14 14:08:32 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit ead390f608claudiu.dragalina@grafana.com >
Date: Fri Oct 11 09:38:49 2024 +0300
added server side gRPC authn fallback-to-legacy mechanism
- brought back the old gRPC authenticator
- added `grpc_server_authentication.legacy_fallback` config option
- introduced `AuthenticatorWithFallback`
- added telemetry to track fallbacks
commit d92fafcaf0db9c8d97a5d071759fc21ede7d8848
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 9 14:58:25 2024 +0200
Fix test
commit 54f05ff0fecf3d696a0e98621db6991282503917
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 9 14:42:18 2024 +0200
Forgot the tracer 😁
commit 3948048880c7a0eb2360a35b0cc9f3686f2edfef
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 9 14:02:41 2024 +0200
Add traces to NamespaceAuthorizer
commit cc695bb77c37a097174556303721fbc48b9464a0
Author: gamab <gabriel.mabille@grafana.com >
Date: Wed Oct 9 13:56:48 2024 +0200
Add traces to authentication flow
commit 8686c46be508c3d237dc4a3ce66193gabriel.mabille@grafana.com >
Date: Wed Oct 9 13:56:26 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 08c3d237dc33fd104cfd84d580179dgabriel.mabille@grafana.com >
Date: Wed Oct 9 12:41:57 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 33fd104cfd68af25fbc338f57d270agabriel.mabille@grafana.com >
Date: Wed Oct 9 12:13:25 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 68af25fbc3gamab@users.noreply.github.com >
Date: Mon Oct 7 16:31:09 2024 +0200
Update pkg/services/authz/config.go
commit 4fba5c9b32gabriel.mabille@grafana.com >
Date: Fri Oct 4 15:17:41 2024 +0200
PR Feedback
commit 86867a14cagamab@users.noreply.github.com >
Date: Fri Oct 4 15:13:06 2024 +0200
Update pkg/services/authn/grpcutils/config.go
Co-authored-by: Dan Cech <dcech@grafana.com >
commit c591631135c80c46ca6ae37b43117bgabriel.mabille@grafana.com >
Date: Fri Oct 4 13:07:48 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit c80c46ca6a3acada9d474224d05934gabriel.mabille@grafana.com >
Date: Thu Oct 3 14:58:51 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 3acada9d47claudiu.dragalina@grafana.com >
Date: Fri Sep 27 17:39:59 2024 +0300
introducing `mode` config for gRPC auth server & client side
commit 914ca237e2claudiu.dragalina@grafana.com >
Date: Thu Sep 26 20:47:57 2024 +0300
Fixed integration tests
commit 71c33dcbe352f248eebb920d79680dclaudiu.dragalina@grafana.com >
Date: Thu Sep 26 19:25:33 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 52f248eebbclaudiu.dragalina@grafana.com >
Date: Tue Sep 24 18:44:38 2024 +0300
updated namespace extractor usage
commit a6c977ba4dfb7bbf743b8da1d78c92claudiu.dragalina@grafana.com >
Date: Tue Sep 24 17:35:03 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit fb7bbf743bclaudiu.dragalina@grafana.com >
Date: Tue Sep 24 17:34:36 2024 +0300
unistor client side updates
commit a28440c40b79d9969aa8a8b07b0c81claudiu.dragalina@grafana.com >
Date: Tue Sep 24 10:45:09 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 79d9969aa8gabriel.mabille@grafana.com >
Date: Mon Sep 9 16:14:02 2024 +0200
Rename NewResourceClient funcs
commit 36b37524908ce354bb06b89f3f8115gabriel.mabille@grafana.com >
Date: Mon Sep 9 16:00:54 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 8ce354bb06gabriel.mabille@grafana.com >
Date: Mon Sep 9 10:40:06 2024 +0200
Align
commit bdf79f3b2f8f4df8973d8eb7e55f8fgabriel.mabille@grafana.com >
Date: Mon Sep 9 10:38:45 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 8f4df8973d2441cd8d539338e40dc3gabriel.mabille@grafana.com >
Date: Thu Sep 5 11:26:39 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 2441cd8d532904074a2f2bbce8a7f7claudiu.dragalina@grafana.com >
Date: Tue Sep 3 17:31:36 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 2904074a2fclaudiu.dragalina@grafana.com >
Date: Tue Sep 3 16:35:25 2024 +0300
refactoring
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit 125cb3c834claudiu.dragalina@grafana.com >
Date: Tue Sep 3 16:34:18 2024 +0300
refactoring (aesthetics)
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit 499a31df53claudiu.dragalina@grafana.com >
Date: Tue Sep 3 15:59:09 2024 +0300
update usage of ReadGprcServerConfig()
commit f5d383644dclaudiu.dragalina@grafana.com >
Date: Tue Sep 3 15:44:09 2024 +0300
make update-workspace
commit 755485751egabriel.mabille@grafana.com >
Date: Tue Sep 3 14:43:22 2024 +0200
Fix trace
commit d09e14c26aclaudiu.dragalina@grafana.com >
Date: Tue Sep 3 15:42:50 2024 +0300
removed WithIDTokenExtractorOption, and other PR feedback
commit 21220c2ccagabriel.mabille@grafana.com >
Date: Tue Sep 3 14:36:59 2024 +0200
Else statement
commit 6cf1efdcc4gabriel.mabille@grafana.com >
Date: Tue Sep 3 14:35:02 2024 +0200
Mod update
commit 4b73a93883gabriel.mabille@grafana.com >
Date: Tue Sep 3 14:32:20 2024 +0200
Add Auth func overrides
commit 6032ab3ae1gabriel.mabille@grafana.com >
Date: Tue Sep 3 14:26:18 2024 +0200
Use NamespaceAuthorizer
commit 601beb5327gabriel.mabille@grafana.com >
Date: Tue Sep 3 14:20:47 2024 +0200
Update authlib
commit a1b64081270d70225c1a1128c417d8gabriel.mabille@grafana.com >
Date: Tue Sep 3 14:18:49 2024 +0200
Merge remote-tracking branch 'origin/main' into drclau/unistor/replace-authenticators-3
commit 0d70225c1adrclau@users.noreply.github.com >
Date: Tue Sep 3 15:15:54 2024 +0300
Update pkg/services/authn/grpcutils/grpc_authenticator.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
commit 62f165f6f9claudiu.dragalina@grafana.com >
Date: Tue Sep 3 10:55:45 2024 +0300
refactoring NamespaceAccessChecker usage and use CloudNamespaceFormatter in Cloud
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit bb5ee88d4fclaudiu.dragalina@grafana.com >
Date: Tue Sep 3 10:39:11 2024 +0300
added stackIdExtractor for cloud mode
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit 84866a8a51claudiu.dragalina@grafana.com >
Date: Tue Sep 3 10:38:19 2024 +0300
authz client cfg changes
- removed ModeCloud, relying on ModeGrpc and stackID instead to discover if we're running in Cloud
- reusing settings from "grpc_client_authentication", instead of duplicating in "authorization" section
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
commit 14a1021605claudiu.dragalina@grafana.com >
Date: Mon Sep 2 21:44:35 2024 +0300
make update-workspace
commit 84f8c9be94claudiu.dragalina@grafana.com >
Date: Mon Sep 2 21:36:10 2024 +0300
cleanup: refactoring leftover
commit 7fe8d62304claudiu.dragalina@grafana.com >
Date: Mon Sep 2 19:30:51 2024 +0300
update authlib version (small fix)
commit 7c2353ae25claudiu.dragalina@grafana.com >
Date: Mon Sep 2 19:17:11 2024 +0300
cleanup: remove unused `GrpcServerConfig.Mode`
commit 52b7cf8550claudiu.dragalina@grafana.com >
Date: Mon Sep 2 19:06:59 2024 +0300
make update-workspace
commit 14ddfbd8fbclaudiu.dragalina@grafana.com >
Date: Mon Sep 2 19:02:40 2024 +0300
finalize authlib grpc interceptors usage
commit 884c4a8c240fd1988beda1190b165bclaudiu.dragalina@grafana.com >
Date: Mon Sep 2 19:00:07 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 0fd1988bedb766bfb24fe0950a1283claudiu.dragalina@grafana.com >
Date: Fri Aug 30 10:45:51 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit b766bfb24f6993f108a268751ed310claudiu.dragalina@grafana.com >
Date: Wed Aug 28 15:46:04 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 6993f108a25f073b04d0f1ba609b34claudiu.dragalina@grafana.com >
Date: Tue Aug 27 12:51:07 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 5f073b04d00620891d45ac5ebe6e4dclaudiu.dragalina@grafana.com >
Date: Mon Aug 19 21:09:44 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 0620891d456a272e8e2a15f2b08f00claudiu.dragalina@grafana.com >
Date: Mon Aug 12 14:14:44 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 6a272e8e2aclaudiu.dragalina@grafana.com >
Date: Thu Aug 8 18:53:43 2024 +0300
allow insecure conns in dev mode + refactoring
commit 31c7b030baclaudiu.dragalina@grafana.com >
Date: Thu Aug 8 10:31:13 2024 +0300
allow insecure connections (for testing purposes); remove audience checks
audience checks will still need to be done for Access tokens, but not for ID tokens
commit 0fdd2ff802763961210cf384759ad1claudiu.dragalina@grafana.com >
Date: Wed Aug 7 14:42:39 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 763961210cclaudiu.dragalina@grafana.com >
Date: Fri Aug 2 18:54:29 2024 +0300
wip
commit c46b42a59592aba937a90145b0fe70claudiu.dragalina@grafana.com >
Date: Fri Aug 2 14:44:06 2024 +0300
Merge branch 'main' into drclau/unistor/replace-authenticators-3
commit 92aba937a9claudiu.dragalina@grafana.com >
Date: Thu Aug 1 18:32:19 2024 +0300
authn: client side updates
Co-Authored-By: Gabriel MABILLE <gamab@users.noreply.github.com >
2024-10-28 14:35:30 +02:00
Matheus Macabu
69f185b459
CloudMigrations: handle provisioned data source error ( #95473 )
2024-10-28 12:02:46 +01:00
Jo
ed1ad34f9b
ServiceAccounts: Allow use of UIDs for Service Account routes ( #95401 )
2024-10-28 10:49:48 +01:00
Matheus Macabu
b2de69d741
CloudMigrations: create snapshot for Alert Rules ( #95404 )
...
* CloudMigrations: create snapshot for Alert Rules
* CloudMigrations: display Alert Rules in resource list summary
2024-10-25 17:20:05 +02:00
Gabriel MABILLE
2788817107
AuthZ: Implement Check ( #95162 )
...
* AuthZ: Implement Check
---------
Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com >
2024-10-25 14:57:39 +02:00
Bogdan Matei
97c0ff2ae4
Dashboards: Reload the dashboard based on time range and filters changes ( #94190 )
2024-10-25 15:56:54 +03:00
Karl Persson
bdbe12e980
Zanzana: Implement initial check and list with schema for generic resources ( #95056 )
...
* Implement initial check with schema for generic resources
* Implement List and add tests
* Add namespace type and change to folder_resource name
* Handle namespace grants for typed resources
* Run tests as integration tests
* Add support for verb in list requests
2024-10-25 14:19:11 +02:00
Eric Leijonmarck
b1e1297bb3
LBAC for datasources: Move validation of rules from datasources to LBAC Rules ( #94622 )
...
* FIX: Remove the checks for lbac rules inside of datasources
* Remove json validation for lbac rules
* Preserve lbac rules in updates
* Refactored test to remove the table structure
* refactor: change to allow naming and concise override instead of complex branching
* refactor to make sure we set an empty field for updates
* bugfix
* check for datasources.JsonData
* fix merge
* add datasource to check for field presence only
* add function call for readability
2024-10-25 10:07:53 +01:00
Karl Persson
beaac3c885
Zanzana: Remove model and store initiation from client ( #95328 )
...
* Remove model and store initiation from client
2024-10-25 09:31:27 +02:00
Yuri Tseretyan
2deced7d40
Alerting: Notifications Routes API ( #91550 )
...
* Introduce new models RoutingTree, RouteDefaults and Route and api-server to serve them that is backed by provisioning notification policy service.
* update method UpdatePolicyTree of notification policy service to return route and new version
* declare new actions alert.notifications.routes:read and alert.notifications.routes:write and two corresponding fixed roles.
---------
Co-authored-by: Tom Ratcliffe <tom.ratcliffe@grafana.com >
Co-authored-by: Matthew Jacobson <matthew.jacobson@grafana.com >
2024-10-24 13:53:03 -04:00
Misi
b8b7c7901c
Auth: Increase name_id and session_id length to 1024 in user_external_session ( #95352 )
...
Increase name_id and session_id length to 1024
2024-10-24 17:14:38 +02:00
Matheus Macabu
152b83b3fb
CloudMigrations: handle more error codes from GMS backend ( #95257 )
...
* CloudMigrations: remove unnecessary if feature toggle gating
* CloudMigrations: handle new error codes from backend
2024-10-24 15:55:02 +02:00
Andreas Christou
2a65de8aaa
Azure Monitor: Limit the log rows to 30000 ( #93901 )
...
* Limit the amount of rows to 30000
* Lint
* Remove unneeded goldenframe check
* Add feature toggle
* Update toggles
* Use rowLimit variable
2024-10-24 16:32:09 +03:00
Will Browne
a2868fdb14
Plugins: Replace references of plugin SDK backend.Logger with Grafana logger ( #95235 )
...
replace references
2024-10-24 12:00:40 +01:00
Claudiu Dragalina-Paraipan
830600dab0
AuthN: Optionally use tokens for unified storage client authentication ( #91665 )
...
* extracted in-proc mode to #93124
* allow insecure conns in dev mode + refactoring
* removed ModeCloud, relying on ModeGrpc and stackID instead to discover if we're running in Cloud
* remove the NamespaceAuthorizer would fail in legacy mode. It will be added back in the future.
* use FlagAppPlatformGrpcClientAuth to enable new behavior, instead of legacy
* extracted authz package changes in #95120
* extracted server side changes in #95086
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
Co-authored-by: gamab <gabriel.mabille@grafana.com >
Co-authored-by: Dan Cech <dcech@grafana.com >
2024-10-24 09:12:37 +02:00
Aaron Godin
d89235aa8c
IAM: fix GetSearchPermissionCacheKey uniqueness ( #95192 )
...
* fix: Change users permissions search to use a consistent key without collisions
* Move HashString to cacheutils
* Change error handling logic for what to do with a cache key
* Add a test that confirms search cache key consistency
2024-10-23 15:37:30 -05:00
Gabriel MABILLE
b68b69c2b4
AuthN: Use tokens for unified storage server authentication ( #95086 )
...
* Extract server code
---------
Co-authored-by: Claudiu Dragalina-Paraipan <drclau@users.noreply.github.com >
2024-10-23 15:04:15 +02:00
Eric Leijonmarck
9ab064bfc5
Folders: Add admin permissions upon creation of a folder w. SA ( #95072 )
...
* add admin permissions upon creation of a folder w. SA
* Update pkg/services/folder/folderimpl/folder.go
Co-authored-by: Karl Persson <kalle.persson@grafana.com >
* Grant service account permissions for creation of dashboards
* Grant service account admin permissions upon creating a datasource
* fetch user using the userservice with the userid
* Revert "fetch user using the userservice with the userid"
This reverts commit 23cba78752kalle.persson@grafana.com >
2024-10-23 14:02:22 +01:00
Matias Chomicki
2573cbec08
Loki: Added support to split queries by stream shard ( #94245 )
...
* Add shard query splitting implementation
* Shard query splitting: reuse function from query splitting
* Shard query splitting: remove max line limit
* Shard query splitting: update test
* Shard query splitting: fix types and non-sharded queries
* Merge responses: fix log merging
* Merge responses: remove legacy code
* Query splitting: add support to retry failed requests
* Query splitting: unit test request retrying
* Query splitting: add unsubscriptions
* Shard query splitting: fix retrying
* Shard query splitting: switch to dynamic grouping
* Shard query splitting: update group size thresholds and fix -1 query
* Shard query splitting: update initial group size + don't retry parse errors
* Shard query splitting: update unit test
* chore: update mock value
* Shard query splitting: add support for multiple targets
* chore: update description
* Shard query splitting: use group targets
* chore: filter hidden queries
* Shard query splitting: issue initial log query without sharding
* Splitting: fix retrying in both methods
* Merge responses: keep execution time
* Shard query splitting: remove no-shard attempt
* Shard query splitting: adjust groups based on rate of change
* chore: clean up experiments
* Shard query splittng: remove log query restrictions
* Shard query splitting: remove fallback to time splitting
* Loki: add new query direction
* Missing generated file
* LokiOptionField: integrate new query direction
* Shard query splitting: delegate non-scan queries to time splitting
* Query splitting: do not retry queries with parse errors
* Loki datasource: add placeholder for feature flag
* Shard query splitting: add function with support criteria
* Shard query splitting: refactor query modification and shard logs volume
* Shard query splitting: update unit tests
* chore: Update scan direction tooltip
* chore: formatting
* LogsVolumePanel: fix missing state in logs volume panel data
* Merge responses: better handle missing nanoseconds
* LokiQueryOptionFields: display query direction for log queries
* loki: process scan direction as backward
* Loki datasource: restrict sharding to Explore
* Retrying: invert criteria and move to response utils
* Formatting
* Use log volume refId constant
* Fix import order
* Create feature flag
* Use feature toggle
* LogsVolumePanel: prevent flashing no data while streaming
2024-10-23 14:21:03 +03:00
Josh Hunt
2cf6a6388b
Combobox: Add prometheusUsesCombobox feature toggle ( #95238 )
...
Add prometheusUsesCombobox feature toggle
2024-10-23 12:18:33 +01:00
Torkel Ödegaard
b700de8122
Dashboard: New layouts feature toggle and basic skeleton for a responsive grid layout ( #94805 )
...
* Wip
* Update
* Fix adding new panels
* reuse fromVizPanels
* Fixes
* Update
* Update
* Update
* Fixes
* Update
2024-10-23 10:55:45 +02:00
Gábor Farkas
1dbbbd9ca7
query: handle the x-rule-uid header ( #95223 )
2024-10-23 10:49:54 +02:00
Karl Persson
6f7528f896
Migration: Remove table aliasing in delete statement to make it work for mariadb ( #95226 )
...
Migration: remove table aliasing in delete statement to make it work in mariadb
2024-10-23 10:49:20 +02:00
Gábor Farkas
3a719a2cfd
api: use alerting headers ( #95118 )
...
* api: use alerting headers
* improve code, add integration test
* better comment
* fixed test
* merged tests
2024-10-23 09:39:22 +02:00
Matthew Jacobson
26162a53e6
Alerting: Allow config api receiver create/delete with alertingApiServer ( #95207 )
...
Previously all receiver modifications were denied with alertingApiServer
enabled. This allows pure creates and deletes through as these specific
cases can be handled simply and without risk of rbac shenanigans.
2024-10-22 16:54:05 -04:00
Gabriel MABILLE
7aeb1adff2
Fix: Check JSON data is not nil ( #95189 )
...
* Fix: Fix panic when json data are nil
* Use Interface()
* Feedback
Co-authored-by: Eric Leijonmarck <eric.leijonmarck@gmail.com >
* Need to check inside the if statement
---------
Co-authored-by: Eric Leijonmarck <eric.leijonmarck@gmail.com >
2024-10-22 18:09:44 +01:00
Will Browne
25abd57029
Plugins: Update to latest go plugin SDK (0.256.0) ( #95065 )
...
* update to latest go plugin SDK
* make update-workspace
* update alerting tests
2024-10-22 15:44:53 +01:00
Matthew Jacobson
4aad44e848
Alerting: Fix per-receiver RBAC for receivers with long names ( #95084 )
...
* Implement uidToResourceID
* add middleware
* Move uidToResourceID to alerting package
* Only hash uid if it's too long
* Use hashed uid in access control
* Move ReceiverUidToResourceId to ScopeProvider
* resolve uid in middleware only if param exists
* Tests
* Linting
---------
Co-authored-by: Yuri Tseretyan <yuriy.tseretyan@grafana.com >
2024-10-22 10:04:13 -04:00
Alexander Zobnin
e709de603d
Chore: Init auth model on server side ( #95142 )
...
* Chore: Init auth model on server side
* fix linter
2024-10-22 14:50:52 +02:00
