* feat: add ability to authenticate single superadmin user
This short-circuits any configured authentication, allowing a user
with the correctly signed message to act against the api.
* Present an expiring message to be signed/verified
* Add chronoctl command to ouput token for use in auth header
* Add command to generate and store RSA keypair
* Test new superadmin token checks
* Bolt to kv/bolt
* Remove unused code
* Remove unused roles code
* Remove unused duplicate Makefile
* Clean up bolt implementation and start layering in an interface for another store
* Layer in kv interface
* Continue layering in kv interface
* Remove circuitbreaker things
* Move cell stuff out
* Convert cell logic to kv interface
* Start adding config logic to kv interface, likely will remain bolt only
* Get to compile with bolt kv before moving too far forward
* Start removing dead dashboard code
* Add generic kv implementation for dashboards
* Convert layouts to kv interface
* Migrate mappings to kv layer
* Migrate org_config to kv layer
* Migrate organizations to kv layer
* Migrate servers to kv layer
* Migrate sources to kv layer
* Migrate users to kv layer
* Start removing unused migration logic
Since there is a migration path for users via updating to 1.7.x line then to 1.8, there isn't any real reason to continue supporting migrating from a version ~2 years old.
* Cleaning up bolt dead codes
* Re-add disabled code
* Migrate tests over to kv layer
* Migrate config to kv layer
* Create default organization
* Remove etcd for now
* Improve new client and new service implementations
* Uncomment bolt build tests
* Add layouts test
* Add more dashboard tests to kv
This commit improves the loading performance of static assets on devices
with low CPU, such as Pies or other embedded devices.
One characteristic of these devices is that they don't often have the
intrinsics available used in gzip compression.
This commit does two things:
(1) Adds an option to explicitly disable gzip compression of requested
assets.
(2) Avoids the very expensive URL prefix Handler wrapper if no base
path has been set.
As previously implemented, OrganizationConfig was a global
object. This refactor adds the organization id to context for
every request, even when auth is disabled, so that org id
can be used to get/update an organization config.
Along those lines, this also removes OrganizationConfigStore
.Initialize and replaces .Get with .FindOrCreate, handling
the creation of organization configs upon first attempted
access.
Co-authored-by: Jared Scheib <jared.scheib@gmail.com>
Pavel Zavora
Gregory Eremin
Greg
Russ Savage
greg linton
Christopher Henn
Deniz Kusefoglu
Edd Robinson
Jared Scheib
Michael Desa
Brandon Farmer
Benjamin Schweizer