* 0.6.0
* Make OIDC and SAML user provisioning configurable per-provider (#1015)
* Got ugly migration to work
* Move auto_create_users to per-provider config
* Update deps to bust cache
* Update Process sleep
* Update docs with Auto create users
* working migration script (#1013)
* Add telem for Docker and SAML (#1020)
* Add telem for Docker and SAML
* Omit unneeded format
* Test docker prod build in CI
* Need uses
* Set build-args
* Split builds
* Fix build-args format
* wtf
* hmmm
* Jeebus
* build version based on drafted release
* Build multi-platform images
* Only build for supported platforms
* Use newer OTP fingers crossed
* Use OTP 24 for arm64
* Finalize test build of Docker image
* Update comment
* Bump to OTP 25.1
* Use proper ver
* D'oh proper sha
* Use OTP 24 and install python for node build
* Use new Docker base
* Use python3
* Use newly-built base images with other platform support
* Don't build for ppc64le and s390x
* Build only for amd64/arm64
* Don't rebuild on publish; simply copy
* See where the image is being pushed
* Remove echo
* Add docker updates
* Match platforms from base image
* Use docker-compose over docker compose
* Use our own base
* we need python3
* use consistent service name
* trim trailing slash from external_url
* Build for latest tag in staging
* Update install script to setup and install firezone from cloudsmith repo
* silence source repo file not found when removing
* Update docs with cloudsmith repo instructions, add feedback message to uninstall
* Fix supported platforms link
* add upgrade note to post install pkg script & only grep config file for check if it exists
* Clean up install server doc links
* use apt-get instead of apt, add RHEL 7,8,9 & OLS 7,8,9
* Use more cross platform compatible terminal text styles
* checkpoint
* Docker dev environment final root cause analysis
* Update CONTRIBUTING.md
* Update apps/fz_common/lib/fz_net.ex
Co-authored-by: Po Chen <chenpaul914@gmail.com>
Co-authored-by: Po Chen <chenpaul914@gmail.com>
* issue-187: getting some POC in for feedback 🐼
* updating install script
* install condition for dep|rpm 🐉🔧
* ci checks looks like whitespace :ruby: :police:
* linter hrm maybe I run that locally
* :retab and match file extensions with neiborhing scripts
* using hostnamectl data to help determine which release to download
* self review
* testing on ubuntu reveals some logic to fix
* not sure if wireguard is on any of these images using this find process
* changes based on testing feedback
* using curl over wget to download the package
* applying changes from the test branch
* updating kernel check logic
* removing debugging code
* adding -r option when displaying kernal info
* Add install script polish (#493)
* Add install script polish
* don't remove firewall table
Co-authored-by: Debian <admin@ip-172-31-5-138.us-west-2.compute.internal>
Co-authored-by: Rob Ortiz <rob@dragonwrench.com>
Co-authored-by: Ubuntu <ubuntu@ip-172-31-1-124.us-west-2.compute.internal>
Co-authored-by: Rob Ortiz <robert.ortiz@gmail.com>
Co-authored-by: Rob Ortiz <robert.a.ortiz@gmail.com>
* Found endpoint empty bug
* Fix use_site_ bugs
* Generate private keys client-side instead of on the Firezone server (#451)
* Rename events; add crypto lib
* seemingly working keygen
* Checkpoint
* Remove private key from devices; make tests pass
* Refactor auth to use simplified new router helper
* Fix js bundle
* Refactor event listeners into their own file
* Refactor settings
* Fix JS
* Working live views in unprivileged sections
* Rough draft working
* Checkpoint before fixing tests
* Tests passing
* Max devices per user configuration option (#471)
* Max tunnels per user configuration option
* Clean up remaining tunnel references
* Replace local auth system with Ueberauth / Guardian (#475)
* Checkpoint working authentication
* Working admin and unprivileged auth using Guardian
* Remove Sessions cruft
* More cleanup
* load new secrets
* Remove firezone tmp dirs
* Okta and Google Oauth (#485)
* working oauth!
* Remove keycloak; working google
* Ensure nil to_s
* Passing tests
* Add compile-time prod config
* Fix live_view typo
* Revert key_ttl to vpn_session_duration
* print logs after first configure
* Use get_env/1 for fetching optional config vars
* Disable telemetry from config
* miss the to_s
* Fix sign in page
* add tunnel admin guide
* auth path
* Fix tests
* Device editing no more (#491)
