dfba94e052
Alerting: Limit redis pool size to 5 and make configurable ( #74057 )
...
* Limit redis pool size to 5 and expose it in config ini
* Coerce negative pool sizes to the default
2023-08-29 14:59:12 -05:00
2f22946f06
RBAC: Enable permission validation by default ( #73804 )
2023-08-25 14:07:40 +02:00
779e0fe311
Feature Toggles: Create API for updating feature toggle state from the feature toggle admin page ( #73022 )
...
* create roles for writing feature toggles
* create update endpoint / handler
* api changes
* add feature toggle validations
* hide toggles based on their state
* make FlagFeatureToggle read only
* add username log
* add username string
* refactor for better readability
* refactor unit tests so we can do more validations
* some skeletoning for the set tests
* write unit tests for updater
* break helper functions out
* update sample ini to match defaults
* add more logic to ReadOnly label
* add user documentation
* fix lint issue
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com>
---------
Co-authored-by: IbrahimCSAE <ibrahim.mdev@gmail.com>
Co-authored-by: J Stickler <julie.stickler@grafana.com>
2023-08-09 11:32:28 -04:00
afb59af79b
Usage stats: Tune collector execution startup and interval ( #72688 )
...
* Do not update statistics at service collector startup
* Configurable collector interval
* Introduce initial random delay
* Prevent reporting metrics until the stats have been collected
* Apply suggestion from code review
2023-08-03 11:01:44 +03:00
bba11d04cb
Auth: Add key_id config param to auth.jwt ( #72711 )
...
* Specify keyID for public key provided in PEM format for JWT Auth
* Update docs
* Update sample.ini
2023-08-03 09:13:23 +02:00
9ff193f692
Docs: update GitLab OAuth2 documentation ( #71834 )
...
* gitlab doc update and update the default scopes
* small fixes
* fix a reference
* update another reference
* PR feedback: fix numbering of bulletpoints, reorder config options
* linting
2023-07-25 19:46:46 +03:00
4ba83173ea
Feature toggles management: Define get feature toggles api ( #72106 )
...
* Feature Toggle Management: Define get feature toggles api
* lint
2023-07-24 16:12:59 -04:00
e8093cb11a
Config: Add [aws][external_id] to ini files ( #72026 )
...
add mention of aws external id to ini files
2023-07-20 10:37:41 -04:00
0ffd359801
Auth: Enforce role sync except if skip org role sync is enabled ( #70766 )
...
* enforce role sync except if skip org role sync is enabled
* move errors to errors file and set codes
* fix docs and defaults
* remove legacy parameter
* support fall through token-api in generic oauth
* fix error handling for generic_oauth
* Update pkg/login/social/generic_oauth.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
2023-07-17 15:58:16 +02:00
dcf26564db
OAuth: Introduce user_refresh_token setting and make it default for the selected providers ( #71533 )
...
* First changes
* WIP docs
* Align current tests
* Add test for UseRefreshToken
* Update docs
* Fix
* Remove unnecessary AuthCodeURL from generic_oauth
* Change GitHub to disable use_refresh_token by default
2023-07-14 14:03:01 +02:00
cb695cef8e
Auth: update GitHub OAuth documentation ( #70459 )
...
* github oauth doc improvements
* add skip_org_role_sync to config for github provider
* update links and section headings
* update the docs based on the first PR
* update references
2023-07-12 15:25:46 +02:00
ff6d6659fb
Query: Fix concurrency handling for mixed datasource queries ( #70100 )
...
* split queries and merge responses
* increase concurrency again
* update unit test to verify the headers are merged
* fix lint issue
* fix race condition in unit test
* Fix function name and add a bit more documentation about how the func should be used
* update function call after rename
* check for duplicate header vals
* make concurrent query limit configurable
* Update conf/sample.ini
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com>
---------
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com>
2023-07-06 17:15:43 +03:00
d618bc46d1
Plugins: Add config option to exclude specific plugins from frontend sandbox ( #70899 )
2023-07-05 11:16:56 +02:00
e313db386a
Auth: adds missing default in [auth.azuread] skip_org_role_sync config ( #70690 )
...
adds default false skip org role sync
2023-06-26 17:54:32 +03:00
11d196eb6e
Auth: Support google OIDC and group fetching ( #70140 )
...
* Auth: Update Google OAuth default configuration based on /.well-known/openid-configuration #69520
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* add id_token parsing
add legacy API distinction
use google auth oidc connectors
add group fetching support and tests
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* implement review feedback
* indent docs
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2023-06-26 09:44:57 +02:00
7edbe72483
Alerting: Support concurrent queries for saving alert instances ( #70525 )
...
This commit adds support for concurrent queries when saving alert
instances to the database. This is an experimental feature in
response to some customers experiencing delays between rule evaluation
and sending alerts to Alertmanager, resulting in flapping. It is
disabled by default.
2023-06-23 11:36:07 +01:00
4821175d40
Auth: Add auth.azure_ad security improvements ( #912 )
...
* security improvements id_token
* add audience validation
* add allowOrganizations
* add allowOrganizations tests and documentation
* add log warn on no configuration
* anonymize tenant id
* Apply suggestions from code review
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* optimize key validation and add mising fields
* fix missing key_id
* lint
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
* lint docs
---------
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2023-06-23 09:13:38 +02:00
87b127e073
Add and document option for enabling email lookup ( #913 )
...
* Docs: Document option for enabling email lookup
* Add the new config in the config files
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Don't capitalize identity providers
* Apply suggestions from code review
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-06-23 09:08:04 +02:00
66d2214c3b
Config: Add configuration option to define custom user-facing general error message for certain error types ( #70023 )
...
---------
Co-authored-by: Summer Wollin <summer.wollin@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Arati R. <33031346+suntala@users.noreply.github.com>
2023-06-16 10:46:47 -05:00
7c1c196031
Plugins: Periodically update public signing key ( #70080 )
2023-06-16 11:20:30 +02:00
b1d997d1e8
Navigation: Add navigation customization options to config documentation ( #70072 )
...
update config documentation to mention navigation customization options
2023-06-15 16:17:48 +01:00
936e62ca43
Secure socks proxy: update show_ui default in default.ini ( #69417 )
2023-06-02 07:23:05 -06:00
29a4e3d7da
Secure socks proxy: allow for UI to be disabled ( #69408 )
2023-06-01 12:58:51 -06:00
778963849e
News: Expose config option to disable News feed ( #69365 )
...
* customize news feed
* remove url customisation
2023-06-01 13:35:05 +01:00
e7e70dbac6
Chore: Adding "allowed_groups" Configuration Parameter to Generic OAuth Method ( #69025 )
...
* feat: add allowed_groups for Generic OAuth
* docs: add allowed_groups more docs for Generic OAuth
2023-05-30 11:07:04 +02:00
d208bf3345
Auth: Add tls_client_cert to OAuth section in defaults.ini. #64746 ( #68228 )
...
* Auth: Add tls_client_cert to defaults.ini #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add tls_client_cert to docs #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add more `tls_client_cert` for docs
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Revert "Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md"
This reverts commit f4f1fda7526bf4af05507bc0dc26e808687514eb.
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-26 14:15:19 +02:00
eafba8fa69
Azure: Configuration for user identity authentication in datasources (Experimental) ( #50277 )
...
* Configuration for user identity authentication
* Use token endpoint form Azure AD settings
* Documentation update
* Update Grafana Azure SDK
* Fix secret override
* Fix lint
* Fix doc wording
2023-05-15 18:00:54 +01:00
f79654feb3
Auth: Use PKCE by default (If OAuth provider supports PKCE) ( #68095 )
...
OAuth: change use_pkce = true to defaults.ini/sample.ini #68073
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-12 09:37:29 +02:00
8bb62a8316
Alerting: Add option for memberlist label ( #67982 )
2023-05-09 10:32:23 +02:00
a58de1f8d2
Chore: Add missing tls_skip_verify_insecure for GitLab Oauth ( #64649 )
...
fixes https://github.com/grafana/grafana/issues/64648
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-08 17:33:11 +02:00
b9e53f628f
HTTP: Add TLS version configurability for Grafana server ( #67482 )
...
Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-08 17:11:36 +02:00
3644ea6556
ServiceAccounts: Add secret scan service docs ( #57926 )
...
* add secret scanning docs
* update docs
* fix merge
* add revoke to docs
* add revoke to docs
* typo fix
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* add step by step instructions
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* prettier
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* feedback
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Victor Cinaglia <victor@grafana.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-05-04 10:36:51 +02:00
15d4169813
Frontend logging: Remove Sentry javascript agent support ( #67493 )
...
* remove Sentry
* fix sourcemap resolve
2023-05-02 12:10:56 +03:00
932136807b
Chore: Allow to force the download of the public key ( #67486 )
2023-04-28 16:00:48 +02:00
692bb9ed1a
Instrumentation: Add support for instrumenting database queries ( #66022 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-28 15:19:06 +02:00
d4715a6f04
CSRF middleware: Add flag to skip login cookie check ( #66806 )
...
* CSRF middleware: add flag to skip login cookie check
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-24 10:11:08 -03:00
bc11a484ed
Alerting: Add support for running HA using Redis ( #65267 )
...
Co-authored-by: Steve Simpson <steve.simpson@grafana.com>
2023-04-19 17:05:26 +02:00
92d92187d9
SQL Datasources: Update Max Connection and Max Idle Connection Defaults to 100 and add auto mode ( #65834 )
...
* Update connection configuration for SQL datasources
* Working auto state for connection numbers
* Add migration
* Use defaults from constants file
* Remove dead code
* Add tests and restructure useMigrateDatabaseField
* Update function names
* Update docs
* Make sure we don't continually issue updates
* Update docs
* Use onOptionsChnage in ConnectionLimits
* Update docs
* Clean up docs
* Update migration
* Fix default values in docs
* Fix spacing issue
* Fix test
* Update default values for SQL connections
* Include consts
* Allow override for default SQL datasource connection parameters
* Fix linter errors
* Remove extra @ts-ignore
* Centralize logic for default values
* Remove debugging
* Remove unecessary function
* Update configuration docs
* minor suggested change
* Fix comment misspelling
* Remove unecessary default setting code
* Update docs to indicate that code was included for backport version
* Remove dead code
---------
Co-authored-by: lwandz13 <larissa.wandzura@grafana.com>
2023-04-17 11:44:05 +03:00
9f0d44d176
GRPC: Document GRPC flags to allow overriding env vars ( #66628 )
2023-04-15 14:01:34 +03:00
4abe0249ba
Chore: Clean up old navigation ( #66287 )
...
* remove code outside of the topnav feature flag
* delete NavBar folder
* remove topnav toggle from backend
* restructure AppChrome folder
* fix utils mock
* fix applinks tests
* remove tests since they're covered in e2e
* fix 1 of the approotpage tests
* Fix another dashboardpage test
* remove reverse portalling + test for plugins using deprecated onNavChanged method
* kick drone
* handle correlations
2023-04-14 09:43:11 +01:00
2136e680c4
Previews: remove dashboard previews backend ( #66176 )
...
* remove dashboard previews backend
* remove dashboard previews backend
* bring back the migration
* bring back the migration
* bring back the migration
2023-04-13 21:42:24 +04:00
1791c6043f
Alerting: Document state history config options in default and sample configuration files ( #65748 )
...
* Document configuration options
* Improve documentation
2023-04-11 14:38:06 -05:00
702ec59cc4
Add quota setting for correlations ( #65076 )
...
* Add quota setting for correlations
* Fix linter
2023-03-21 15:27:25 -05:00
634955c3f2
OAuth: Add tls_skip_verify_insecure to defaults.ini ( #64679 )
...
OAuth: add tls_skip_verify_insecure to defaults.ini
2023-03-13 16:26:05 +01:00
d61bcdf4ca
Chore: Pass signed user_hash to Intercom via Rudderstack ( #63921 )
...
* move analytics identifiers to backend
* implement hash function
* grab secret from env
* expose and retrieve intercom secret from config
* concat email with appUrl to ensure uniqueness
* revert to just using email
* Revert "revert to just using email"
This reverts commit 8f10f9b1bcb6da80c8002cd8e402217cf455634b.
* add docstring
2023-03-03 14:39:53 +00:00
c323a7cb13
Login: Allow custom name and icon for social providers ( #63297 )
2023-03-03 09:17:43 +01:00
3c218d742f
Datasources: Add user_agent header customization for outgoing HTTP requests ( #63769 )
2023-02-28 14:10:05 +01:00
7e97dbde65
LDAP: Allow setting minimum TLS version and accepted ciphers ( #63646 )
...
* update ldap library and use go module path
* add TLS min version and accepted min TLS version
* set default min ver to library default
* set default min ver to library default
* add cipher list to toml
* Update pkg/services/ldap/settings.go
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* lint
---------
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-28 12:13:46 +01:00
af987ae636
SupportBundles: Add bundle encryption based on age ( #62501 )
...
* add bundle encryption based on age
* undo changes to grafana-data
* sort deps
* test bundle creation and encryption
* use whitespace separator
* add support bundle config documentation
* Update docs/sources/troubleshooting/support-bundles/index.md
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* touch up docs
* extract encrypt
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-24 09:24:44 -06:00
5687d23b52
Docs: Disambiguate auto_assign_org_role configuration option descriptions ( #61827 )
2023-02-23 18:20:43 +00:00
