936e62ca43
Secure socks proxy: update show_ui default in default.ini ( #69417 )
2023-06-02 07:23:05 -06:00
29a4e3d7da
Secure socks proxy: allow for UI to be disabled ( #69408 )
2023-06-01 12:58:51 -06:00
778963849e
News: Expose config option to disable News feed ( #69365 )
...
* customize news feed
* remove url customisation
2023-06-01 13:35:05 +01:00
e7e70dbac6
Chore: Adding "allowed_groups" Configuration Parameter to Generic OAuth Method ( #69025 )
...
* feat: add allowed_groups for Generic OAuth
* docs: add allowed_groups more docs for Generic OAuth
2023-05-30 11:07:04 +02:00
d208bf3345
Auth: Add tls_client_cert to OAuth section in defaults.ini. #64746 ( #68228 )
...
* Auth: Add tls_client_cert to defaults.ini #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add tls_client_cert to docs #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Auth: Add more `tls_client_cert` for docs
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Revert "Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md"
This reverts commit f4f1fda7526bf4af05507bc0dc26e808687514eb.
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-26 14:15:19 +02:00
eafba8fa69
Azure: Configuration for user identity authentication in datasources (Experimental) ( #50277 )
...
* Configuration for user identity authentication
* Use token endpoint form Azure AD settings
* Documentation update
* Update Grafana Azure SDK
* Fix secret override
* Fix lint
* Fix doc wording
2023-05-15 18:00:54 +01:00
f79654feb3
Auth: Use PKCE by default (If OAuth provider supports PKCE) ( #68095 )
...
OAuth: change use_pkce = true to defaults.ini/sample.ini #68073
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-12 09:37:29 +02:00
8bb62a8316
Alerting: Add option for memberlist label ( #67982 )
2023-05-09 10:32:23 +02:00
a58de1f8d2
Chore: Add missing tls_skip_verify_insecure for GitLab Oauth ( #64649 )
...
fixes https://github.com/grafana/grafana/issues/64648
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
2023-05-08 17:33:11 +02:00
b9e53f628f
HTTP: Add TLS version configurability for Grafana server ( #67482 )
...
Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-05-08 17:11:36 +02:00
3644ea6556
ServiceAccounts: Add secret scan service docs ( #57926 )
...
* add secret scanning docs
* update docs
* fix merge
* add revoke to docs
* add revoke to docs
* typo fix
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* add step by step instructions
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* prettier
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* feedback
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Victor Cinaglia <victor@grafana.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Victor Cinaglia <victor@grafana.com>
2023-05-04 10:36:51 +02:00
15d4169813
Frontend logging: Remove Sentry javascript agent support ( #67493 )
...
* remove Sentry
* fix sourcemap resolve
2023-05-02 12:10:56 +03:00
932136807b
Chore: Allow to force the download of the public key ( #67486 )
2023-04-28 16:00:48 +02:00
692bb9ed1a
Instrumentation: Add support for instrumenting database queries ( #66022 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-28 15:19:06 +02:00
d4715a6f04
CSRF middleware: Add flag to skip login cookie check ( #66806 )
...
* CSRF middleware: add flag to skip login cookie check
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-04-24 10:11:08 -03:00
bc11a484ed
Alerting: Add support for running HA using Redis ( #65267 )
...
Co-authored-by: Steve Simpson <steve.simpson@grafana.com>
2023-04-19 17:05:26 +02:00
92d92187d9
SQL Datasources: Update Max Connection and Max Idle Connection Defaults to 100 and add auto mode ( #65834 )
...
* Update connection configuration for SQL datasources
* Working auto state for connection numbers
* Add migration
* Use defaults from constants file
* Remove dead code
* Add tests and restructure useMigrateDatabaseField
* Update function names
* Update docs
* Make sure we don't continually issue updates
* Update docs
* Use onOptionsChnage in ConnectionLimits
* Update docs
* Clean up docs
* Update migration
* Fix default values in docs
* Fix spacing issue
* Fix test
* Update default values for SQL connections
* Include consts
* Allow override for default SQL datasource connection parameters
* Fix linter errors
* Remove extra @ts-ignore
* Centralize logic for default values
* Remove debugging
* Remove unecessary function
* Update configuration docs
* minor suggested change
* Fix comment misspelling
* Remove unecessary default setting code
* Update docs to indicate that code was included for backport version
* Remove dead code
---------
Co-authored-by: lwandz13 <larissa.wandzura@grafana.com>
2023-04-17 11:44:05 +03:00
9f0d44d176
GRPC: Document GRPC flags to allow overriding env vars ( #66628 )
2023-04-15 14:01:34 +03:00
4abe0249ba
Chore: Clean up old navigation ( #66287 )
...
* remove code outside of the topnav feature flag
* delete NavBar folder
* remove topnav toggle from backend
* restructure AppChrome folder
* fix utils mock
* fix applinks tests
* remove tests since they're covered in e2e
* fix 1 of the approotpage tests
* Fix another dashboardpage test
* remove reverse portalling + test for plugins using deprecated onNavChanged method
* kick drone
* handle correlations
2023-04-14 09:43:11 +01:00
2136e680c4
Previews: remove dashboard previews backend ( #66176 )
...
* remove dashboard previews backend
* remove dashboard previews backend
* bring back the migration
* bring back the migration
* bring back the migration
2023-04-13 21:42:24 +04:00
1791c6043f
Alerting: Document state history config options in default and sample configuration files ( #65748 )
...
* Document configuration options
* Improve documentation
2023-04-11 14:38:06 -05:00
702ec59cc4
Add quota setting for correlations ( #65076 )
...
* Add quota setting for correlations
* Fix linter
2023-03-21 15:27:25 -05:00
634955c3f2
OAuth: Add tls_skip_verify_insecure to defaults.ini ( #64679 )
...
OAuth: add tls_skip_verify_insecure to defaults.ini
2023-03-13 16:26:05 +01:00
d61bcdf4ca
Chore: Pass signed user_hash to Intercom via Rudderstack ( #63921 )
...
* move analytics identifiers to backend
* implement hash function
* grab secret from env
* expose and retrieve intercom secret from config
* concat email with appUrl to ensure uniqueness
* revert to just using email
* Revert "revert to just using email"
This reverts commit 8f10f9b1bcb6da80c8002cd8e402217cf455634b.
* add docstring
2023-03-03 14:39:53 +00:00
c323a7cb13
Login: Allow custom name and icon for social providers ( #63297 )
2023-03-03 09:17:43 +01:00
3c218d742f
Datasources: Add user_agent header customization for outgoing HTTP requests ( #63769 )
2023-02-28 14:10:05 +01:00
7e97dbde65
LDAP: Allow setting minimum TLS version and accepted ciphers ( #63646 )
...
* update ldap library and use go module path
* add TLS min version and accepted min TLS version
* set default min ver to library default
* set default min ver to library default
* add cipher list to toml
* Update pkg/services/ldap/settings.go
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* lint
---------
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-28 12:13:46 +01:00
af987ae636
SupportBundles: Add bundle encryption based on age ( #62501 )
...
* add bundle encryption based on age
* undo changes to grafana-data
* sort deps
* test bundle creation and encryption
* use whitespace separator
* add support bundle config documentation
* Update docs/sources/troubleshooting/support-bundles/index.md
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* touch up docs
* extract encrypt
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/troubleshooting/support-bundles/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-02-24 09:24:44 -06:00
5687d23b52
Docs: Disambiguate auto_assign_org_role configuration option descriptions ( #61827 )
2023-02-23 18:20:43 +00:00
005f5ca1df
Alerting: Fix confusing comment about screenshots in default.ini and docs ( #63346 )
2023-02-20 09:59:45 +00:00
7019287f88
Auth: Add deprecation notice for oauth_skip_org_role_update_sync ( #62712 )
...
* add: deprecaation notice for overall setting
* add: deprecation notice for configuration files
* chore: update docs with deprecation notice
* refactor: change to note the new setting instead
* Update pkg/setting/setting.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
* refactor: based on review comments
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
2023-02-07 15:28:40 +00:00
2a29a07465
Plugins: Add optional logger for plugin requests sent to backend plugins ( #62981 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com>
2023-02-07 12:49:16 +01:00
8ff19bd901
Auth: Add Generic oauth skip org role sync setting ( #62418 )
...
* add: generic oauth skip org role sync
* add: docs
* add: backend login skip sync
* fix: docs typo
* add: tests
* remove public key
* fix markdown for generic oauth
* add: generic oauth to the configuration
* refactor: change debug to warn
2023-02-01 16:27:53 +00:00
91221bc436
Expressions: Fixes the issue showing expressions editor ( #62510 )
...
* Use suggested value for uid
* update the snapshot
* use __expr__
* replace all -100 with __expr__
* update snapshot
* more changes
* revert redundant change
* Use expr.DatasourceUID where it's possible
* generate files
2023-01-31 18:50:10 +01:00
7a465f42a6
Alerting: Allow pausing alerts from provisioning ( #62263 )
...
* Allow pausing alerts from provisioning
* Update swagger
* Add IsPaused to provision export endpoints
* Add pause field in sample.yml
* Add exception for reset state in first loop iteration of scheduler if rule is paused
* Update provision definition and swagger docs
* Fix provisioning export tests
* Suggestion: Simplify if condition
* Add more context to a comment
2023-01-30 16:29:05 +01:00
a232e7ceca
Auth: Add skip_org_role_sync for Okta ( #62106 )
...
* WIP
* Update pkg/services/login/authinfo.go
* fix: merge
* change order to internal last
* adds: docs
* add: configuration for defaults and sample
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
---------
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-01-30 10:54:14 +00:00
d51e7ec7ef
Preferences: Add theme preference to match system theme ( #61986 )
...
* user essentials mob! 🔱
lastFile:pkg/api/preferences.go
* user essentials mob! 🔱
* user essentials mob! 🔱
lastFile:packages/grafana-data/src/types/config.ts
* user essentials mob! 🔱
lastFile:public/app/core/services/echo/utils.test.ts
* user essentials mob! 🔱
* user essentials mob! 🔱
lastFile:public/views/index-template.html
* user essentials mob! 🔱
* Restore currentUser.lightTheme for backwards compat
* fix types
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* cleanup
* cleanup
---------
Co-authored-by: Ashley Harrison <ashley.harrison@grafana.com>
Co-authored-by: Joao Silva <joao.silva@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-01-30 10:51:51 +01:00
7d8ec6199d
Snapshots: Add snapshot enable config ( #61587 )
...
* Add config to remove Snapshot functionality (frontend is hidden and validation in the backend)
* Add test cases
* Remove unused mock on the test
* Moving Snapshot config from globar variables to settings.Cfg
* Removing warnings on code
2023-01-26 10:28:11 -03:00
143ee0c49f
Auth: Add skip_org_role_sync to GitLab OAuth ( #62055 )
...
* Auth: Add skip_org_role_sync to GitLab OAuth
- add: tests
- docs added
* Update pkg/login/social/gitlab_oauth.go
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
* fix: for import
Co-authored-by: Karl Persson <kalle.persson@grafana.com>
2023-01-25 13:39:54 +01:00
60ef88c918
SAML: Support auto login ( #61685 )
...
* SAML: Support auto login
* Add individual auto_login option for each OAuth provider
* Docs: Describe new auto_login option
* Minor refactor
2023-01-19 15:53:02 +01:00
0d42edddbf
Auth: Add skip_org_role_sync setting to OAuth integration Google ( #61572 )
...
* WIP
* Add: skip_org_role_sync for Google OAuth
- add setting for frontend
- add read of config
- add config to sample and default
* add: docs
* spelling
* Update pkg/login/social/social.go
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* removed unnessecary line
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-01-19 09:54:22 +01:00
4d095547f8
Auth: Implement skip org role sync for jwt ( #61647 )
...
* Add new config option
* Add frontend control
* Condition new auth broker with config option
* Condition old auth broker with config option
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com>
2023-01-18 13:59:50 +01:00
c5e74ee607
Auth: Add skip_org_role_sync for AzureAD OAuth ( #60322 )
...
* [WIP] Auth: add backend skipOrgRoleSync to AzureAD OAuth
- add: skipOrgRoleSync
- rename: skipOrgRoleSync to skipOrgRoleSyncBase (to make it clear that
it is the base version of SocialBase)
- add: tests for skipOrgRoleSync in AzureAD
TODO:
- [ ] frontend changes
* add: docs
* refactor: remove role from basicinfo
* add: settings for grafanacom
* add: settigns for frontend
* add: logic for azureAD user skip org role
* add: docs for skip_org_role_sync
* refactor: docs a bit
* add: tests for userinfo
* refactor: to only extract if skiporgrolesync false
* refactor: based on review comments
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
2023-01-16 13:16:01 +01:00
91322bebb5
Auth: Add skip_org_role_sync setting for GrafanaCom ( #60553 )
...
* add frontend settings and setting for grafanacom
* removed println
* add skip-org-role-sync on login
* add deprecation notice for this field
* remove println
* remove newline
* change and renamed variables
* fix for reconfiguring the settings for grafanacom
* add documentationf or grafanacom setup
* WIP tests
* added tests
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* updated steps
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
* doc: updated the docs to reflect what happens to grafana.com users
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* Update docs/sources/setup-grafana/configure-security/configure-authentication/grafana-com/index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* add blankline
* rephrase of doc improvements for explaing of the settings
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Jo <joao.guerreiro@grafana.com>
* add frontend setting for grafanacom.
* WIP tests
* refactor docs
* frontend to adhere to skipping org role sync for GrafanaCom users
* update docs to reflect desired behavior
* tests: added test for skip and nonskip
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com>
Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
2023-01-12 16:44:08 +01:00
8c3a5f6da0
Alerting: Allow state history to be disabled through configuration ( #61006 )
...
* Add configuration option for if state history should be enabled
* Inject no-op when history is disabled
2023-01-05 12:21:07 -06:00
9af7adef76
Alerting: Support customizable timeout for screenshots ( #60981 )
...
This commit adds a customizable timeout for screenshots called
capture_timeout. The default value is 10 seconds, and the maximum
value is 30 seconds. This timeout should be less than the minimum
Interval of all Evaluation Groups to avoid back pressure on alert
rule evaluation.
2023-01-05 16:07:46 +00:00
f1fb202284
Chore: Add encryption codec to the remote cache ( #59871 )
...
* add encryption codec to the remote cache
* change config files too
* fix test constructor
* pass codec into the test cache
2022-12-06 15:12:27 +01:00
3978502d83
Chore: Remote cache key prefix ( #59838 )
...
* attempt to implement a remote cache key prefix
* add a test for the prefix store
* oh, linter
2022-12-06 13:20:49 +01:00
632ca67e3f
Add a separate grafana.com API URL setting ( #59506 )
...
The GrafanaComURL setting is currently used in two places:
- the /api/gnet endpoint, which proxies all requests to the URL
configured in GrafanaComURL
- OAuth logins using grafana.com, where the auth URL, token URL and
redirect URL are all configured to use the GrafanaComURL.
This has worked fine until now because almost all Grafana instances have
just used the default value, https://grafana.com . However, we now have a
few different grafana.com's, some of which are behind IAP. The IAP
causes the /api/gnet proxy to fail because the required cookies are not
present in the request (how could they be?). Setting the
[grafana_net.url] setting to an internal-only URL improves the situation
slightly - the proxy works again just fine - but breaks any OAuth logins
using grafana.com, because the user must be redirected to a publicly
accessible URL.
This commit adds an additional setting, `[grafana_com.api_url]`,
which can be used to tell Grafana to use the new API URL when proxying
requests to the grafana.com API, while still using the existing
`GrafanaComURL` setting for other things.
The setting will fall back to the GrafanaComURL setting + "/api" if unset.
2022-12-01 18:06:12 +01:00
b537acab49
FeatureFlags: enable i18n flag in the registry ( #59662 )
2022-12-01 08:27:52 -08:00
