3ee40d3a5a
Azure: Settings for Azure AD Workload Identity ( #75283 )
...
* Settings for Azure AD Workload Identity
* Update dependency on Grafana Azure SDK
* Documentation
* Fix JS code
* Cleanup Prometheus backend code
* Making prettier happy
2023-09-28 12:05:16 +01:00
7e1b45ba31
Feature Toggles API: Trigger webhook call when updating ( #75254 )
...
* Feature Toggles API: Trigger webhook call when updating
* update status code error check
* lint - handle Close() error
* Rename update webhook config
* fix tests
2023-09-25 19:11:24 +01:00
96b55ea37c
Feature: Allow to skip plugin loading ( #74840 )
2023-09-14 12:58:12 +02:00
ce1169f8b7
Tracing: Support remote, rate-limited, and probabilistic sampling in tracing.opentelemetry config section ( #73587 )
...
* tracing: Support remote sampling server
Signed-off-by: Dave Henderson <dave.henderson@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
* Update docs/sources/setup-grafana/configure-grafana/_index.md
* Update docs/sources/setup-grafana/configure-grafana/_index.md
* Satisfying the doc-validator check
* satisfy prettier
Signed-off-by: Dave Henderson <dave.henderson@grafana.com >
* back out unnecessary change
Signed-off-by: Dave Henderson <dave.henderson@grafana.com >
---------
Signed-off-by: Dave Henderson <dave.henderson@grafana.com >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-09-11 12:13:29 -04:00
7a34cdb3a2
Alerting: Add configuration options to migrate to an external Alertmanager ( #71318 )
...
* add configuration options to .ini file and parse them
* updates on config options, add external AM config to the main config struct
* separate external AM configs from general alerting configs, naming
* comments about usage of tenantID in basic auth & not using config options yet
2023-09-05 11:24:35 -03:00
dfba94e052
Alerting: Limit redis pool size to 5 and make configurable ( #74057 )
...
* Limit redis pool size to 5 and expose it in config ini
* Coerce negative pool sizes to the default
2023-08-29 14:59:12 -05:00
2f22946f06
RBAC: Enable permission validation by default ( #73804 )
2023-08-25 14:07:40 +02:00
779e0fe311
Feature Toggles: Create API for updating feature toggle state from the feature toggle admin page ( #73022 )
...
* create roles for writing feature toggles
* create update endpoint / handler
* api changes
* add feature toggle validations
* hide toggles based on their state
* make FlagFeatureToggle read only
* add username log
* add username string
* refactor for better readability
* refactor unit tests so we can do more validations
* some skeletoning for the set tests
* write unit tests for updater
* break helper functions out
* update sample ini to match defaults
* add more logic to ReadOnly label
* add user documentation
* fix lint issue
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: J Stickler <julie.stickler@grafana.com >
---------
Co-authored-by: IbrahimCSAE <ibrahim.mdev@gmail.com >
Co-authored-by: J Stickler <julie.stickler@grafana.com >
2023-08-09 11:32:28 -04:00
afb59af79b
Usage stats: Tune collector execution startup and interval ( #72688 )
...
* Do not update statistics at service collector startup
* Configurable collector interval
* Introduce initial random delay
* Prevent reporting metrics until the stats have been collected
* Apply suggestion from code review
2023-08-03 11:01:44 +03:00
bba11d04cb
Auth: Add key_id config param to auth.jwt ( #72711 )
...
* Specify keyID for public key provided in PEM format for JWT Auth
* Update docs
* Update sample.ini
2023-08-03 09:13:23 +02:00
9ff193f692
Docs: update GitLab OAuth2 documentation ( #71834 )
...
* gitlab doc update and update the default scopes
* small fixes
* fix a reference
* update another reference
* PR feedback: fix numbering of bulletpoints, reorder config options
* linting
2023-07-25 19:46:46 +03:00
4ba83173ea
Feature toggles management: Define get feature toggles api ( #72106 )
...
* Feature Toggle Management: Define get feature toggles api
* lint
2023-07-24 16:12:59 -04:00
e8093cb11a
Config: Add [aws][external_id] to ini files ( #72026 )
...
add mention of aws external id to ini files
2023-07-20 10:37:41 -04:00
0ffd359801
Auth: Enforce role sync except if skip org role sync is enabled ( #70766 )
...
* enforce role sync except if skip org role sync is enabled
* move errors to errors file and set codes
* fix docs and defaults
* remove legacy parameter
* support fall through token-api in generic oauth
* fix error handling for generic_oauth
* Update pkg/login/social/generic_oauth.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
* Update pkg/login/social/gitlab_oauth_test.go
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
---------
Co-authored-by: Gabriel MABILLE <gamab@users.noreply.github.com >
2023-07-17 15:58:16 +02:00
dcf26564db
OAuth: Introduce user_refresh_token setting and make it default for the selected providers ( #71533 )
...
* First changes
* WIP docs
* Align current tests
* Add test for UseRefreshToken
* Update docs
* Fix
* Remove unnecessary AuthCodeURL from generic_oauth
* Change GitHub to disable use_refresh_token by default
2023-07-14 14:03:01 +02:00
cb695cef8e
Auth: update GitHub OAuth documentation ( #70459 )
...
* github oauth doc improvements
* add skip_org_role_sync to config for github provider
* update links and section headings
* update the docs based on the first PR
* update references
2023-07-12 15:25:46 +02:00
ff6d6659fb
Query: Fix concurrency handling for mixed datasource queries ( #70100 )
...
* split queries and merge responses
* increase concurrency again
* update unit test to verify the headers are merged
* fix lint issue
* fix race condition in unit test
* Fix function name and add a bit more documentation about how the func should be used
* update function call after rename
* check for duplicate header vals
* make concurrent query limit configurable
* Update conf/sample.ini
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com >
---------
Co-authored-by: Sofia Papagiannaki <1632407+papagian@users.noreply.github.com >
2023-07-06 17:15:43 +03:00
d618bc46d1
Plugins: Add config option to exclude specific plugins from frontend sandbox ( #70899 )
2023-07-05 11:16:56 +02:00
e313db386a
Auth: adds missing default in [auth.azuread] skip_org_role_sync config ( #70690 )
...
adds default false skip org role sync
2023-06-26 17:54:32 +03:00
11d196eb6e
Auth: Support google OIDC and group fetching ( #70140 )
...
* Auth: Update Google OAuth default configuration based on /.well-known/openid-configuration #69520
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
* add id_token parsing
add legacy API distinction
use google auth oidc connectors
add group fetching support and tests
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* implement review feedback
* indent docs
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
Co-authored-by: junya koyama <arukiidou@yahoo.co.jp >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
2023-06-26 09:44:57 +02:00
7edbe72483
Alerting: Support concurrent queries for saving alert instances ( #70525 )
...
This commit adds support for concurrent queries when saving alert
instances to the database. This is an experimental feature in
response to some customers experiencing delays between rule evaluation
and sending alerts to Alertmanager, resulting in flapping. It is
disabled by default.
2023-06-23 11:36:07 +01:00
4821175d40
Auth: Add auth.azure_ad security improvements ( #912 )
...
* security improvements id_token
* add audience validation
* add allowOrganizations
* add allowOrganizations tests and documentation
* add log warn on no configuration
* anonymize tenant id
* Apply suggestions from code review
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com >
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* Update pkg/login/social/azuread_oauth_test.go
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* optimize key validation and add mising fields
* fix missing key_id
* lint
* Update docs/sources/setup-grafana/configure-security/configure-authentication/azuread/index.md
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com >
* lint docs
---------
Co-authored-by: Misi <mgyongyosi@users.noreply.github.com >
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
2023-06-23 09:13:38 +02:00
87b127e073
Add and document option for enabling email lookup ( #913 )
...
* Docs: Document option for enabling email lookup
* Add the new config in the config files
* Apply suggestions from code review
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
* Don't capitalize identity providers
* Apply suggestions from code review
Co-authored-by: Jo <joao.guerreiro@grafana.com >
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
---------
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com >
Co-authored-by: Jo <joao.guerreiro@grafana.com >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-06-23 09:08:04 +02:00
66d2214c3b
Config: Add configuration option to define custom user-facing general error message for certain error types ( #70023 )
...
---------
Co-authored-by: Summer Wollin <summer.wollin@grafana.com >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
Co-authored-by: Arati R. <33031346+suntala@users.noreply.github.com >
2023-06-16 10:46:47 -05:00
7c1c196031
Plugins: Periodically update public signing key ( #70080 )
2023-06-16 11:20:30 +02:00
936e62ca43
Secure socks proxy: update show_ui default in default.ini ( #69417 )
2023-06-02 07:23:05 -06:00
29a4e3d7da
Secure socks proxy: allow for UI to be disabled ( #69408 )
2023-06-01 12:58:51 -06:00
778963849e
News: Expose config option to disable News feed ( #69365 )
...
* customize news feed
* remove url customisation
2023-06-01 13:35:05 +01:00
e7e70dbac6
Chore: Adding "allowed_groups" Configuration Parameter to Generic OAuth Method ( #69025 )
...
* feat: add allowed_groups for Generic OAuth
* docs: add allowed_groups more docs for Generic OAuth
2023-05-30 11:07:04 +02:00
d208bf3345
Auth: Add tls_client_cert to OAuth section in defaults.ini. #64746 ( #68228 )
...
* Auth: Add tls_client_cert to defaults.ini #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
* Auth: Add tls_client_cert to docs #64746
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
* Auth: Add more `tls_client_cert` for docs
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
* Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Revert "Update docs/sources/setup-grafana/configure-security/configure-authentication/gitlab/index.md"
This reverts commit f4f1fda7526bf4af05507bc0dc26e808687514eb.
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
---------
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-05-26 14:15:19 +02:00
eafba8fa69
Azure: Configuration for user identity authentication in datasources (Experimental) ( #50277 )
...
* Configuration for user identity authentication
* Use token endpoint form Azure AD settings
* Documentation update
* Update Grafana Azure SDK
* Fix secret override
* Fix lint
* Fix doc wording
2023-05-15 18:00:54 +01:00
f79654feb3
Auth: Use PKCE by default (If OAuth provider supports PKCE) ( #68095 )
...
OAuth: change use_pkce = true to defaults.ini/sample.ini #68073
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp >
2023-05-12 09:37:29 +02:00
8bb62a8316
Alerting: Add option for memberlist label ( #67982 )
2023-05-09 10:32:23 +02:00
b9e53f628f
HTTP: Add TLS version configurability for Grafana server ( #67482 )
...
Co-authored-by: Rao B V Chalapathi <b_v_chalapathi.rao@nokia.com >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-05-08 17:11:36 +02:00
3644ea6556
ServiceAccounts: Add secret scan service docs ( #57926 )
...
* add secret scanning docs
* update docs
* fix merge
* add revoke to docs
* add revoke to docs
* typo fix
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* add step by step instructions
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* Apply suggestions from code review
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* prettier
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
* feedback
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
* Update docs/sources/setup-grafana/configure-security/secret-scan.md
Co-authored-by: Victor Cinaglia <victor@grafana.com >
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
Co-authored-by: Victor Cinaglia <victor@grafana.com >
2023-05-04 10:36:51 +02:00
15d4169813
Frontend logging: Remove Sentry javascript agent support ( #67493 )
...
* remove Sentry
* fix sourcemap resolve
2023-05-02 12:10:56 +03:00
932136807b
Chore: Allow to force the download of the public key ( #67486 )
2023-04-28 16:00:48 +02:00
692bb9ed1a
Instrumentation: Add support for instrumenting database queries ( #66022 )
...
Signed-off-by: bergquist <carl.bergquist@gmail.com >
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-04-28 15:19:06 +02:00
d4715a6f04
CSRF middleware: Add flag to skip login cookie check ( #66806 )
...
* CSRF middleware: add flag to skip login cookie check
* Update docs/sources/setup-grafana/configure-grafana/_index.md
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
---------
Co-authored-by: Christopher Moyer <35463610+chri2547@users.noreply.github.com >
2023-04-24 10:11:08 -03:00
bc11a484ed
Alerting: Add support for running HA using Redis ( #65267 )
...
Co-authored-by: Steve Simpson <steve.simpson@grafana.com >
2023-04-19 17:05:26 +02:00
92d92187d9
SQL Datasources: Update Max Connection and Max Idle Connection Defaults to 100 and add auto mode ( #65834 )
...
* Update connection configuration for SQL datasources
* Working auto state for connection numbers
* Add migration
* Use defaults from constants file
* Remove dead code
* Add tests and restructure useMigrateDatabaseField
* Update function names
* Update docs
* Make sure we don't continually issue updates
* Update docs
* Use onOptionsChnage in ConnectionLimits
* Update docs
* Clean up docs
* Update migration
* Fix default values in docs
* Fix spacing issue
* Fix test
* Update default values for SQL connections
* Include consts
* Allow override for default SQL datasource connection parameters
* Fix linter errors
* Remove extra @ts-ignore
* Centralize logic for default values
* Remove debugging
* Remove unecessary function
* Update configuration docs
* minor suggested change
* Fix comment misspelling
* Remove unecessary default setting code
* Update docs to indicate that code was included for backport version
* Remove dead code
---------
Co-authored-by: lwandz13 <larissa.wandzura@grafana.com >
2023-04-17 11:44:05 +03:00
9f0d44d176
GRPC: Document GRPC flags to allow overriding env vars ( #66628 )
2023-04-15 14:01:34 +03:00
4abe0249ba
Chore: Clean up old navigation ( #66287 )
...
* remove code outside of the topnav feature flag
* delete NavBar folder
* remove topnav toggle from backend
* restructure AppChrome folder
* fix utils mock
* fix applinks tests
* remove tests since they're covered in e2e
* fix 1 of the approotpage tests
* Fix another dashboardpage test
* remove reverse portalling + test for plugins using deprecated onNavChanged method
* kick drone
* handle correlations
2023-04-14 09:43:11 +01:00
2136e680c4
Previews: remove dashboard previews backend ( #66176 )
...
* remove dashboard previews backend
* remove dashboard previews backend
* bring back the migration
* bring back the migration
* bring back the migration
2023-04-13 21:42:24 +04:00
1791c6043f
Alerting: Document state history config options in default and sample configuration files ( #65748 )
...
* Document configuration options
* Improve documentation
2023-04-11 14:38:06 -05:00
702ec59cc4
Add quota setting for correlations ( #65076 )
...
* Add quota setting for correlations
* Fix linter
2023-03-21 15:27:25 -05:00
634955c3f2
OAuth: Add tls_skip_verify_insecure to defaults.ini ( #64679 )
...
OAuth: add tls_skip_verify_insecure to defaults.ini
2023-03-13 16:26:05 +01:00
d61bcdf4ca
Chore: Pass signed user_hash to Intercom via Rudderstack ( #63921 )
...
* move analytics identifiers to backend
* implement hash function
* grab secret from env
* expose and retrieve intercom secret from config
* concat email with appUrl to ensure uniqueness
* revert to just using email
* Revert "revert to just using email"
This reverts commit 8f10f9b1bc
2023-03-03 14:39:53 +00:00
c323a7cb13
Login: Allow custom name and icon for social providers ( #63297 )
2023-03-03 09:17:43 +01:00
3c218d742f
Datasources: Add user_agent header customization for outgoing HTTP requests ( #63769 )
2023-02-28 14:10:05 +01:00
Sergey Kostrukov
João Calisto
Andres Martinez Gotor
Dave Henderson
Santiago
Alexander Weaver
Misi
Michael Mandrus
Sofia Papagiannaki
Ieva
Jo
Esteban Beltran
Eric Leijonmarck
George Robinson
Vardan Torosyan
Stephanie Hingtgen
Ashley Harrison
MichaelKo
arukiidou
Jean-Philippe Quéméner
venkatbvc
Domas
Carl Bergquist
Bruno
Kyle Cunningham
gotjosh
Artur Wierzbicki
Kristina
Karl Persson
Jan-Otto Kröpke
zhichli