tyler.durden/icinga2
1
0
Fork 0
mirror of https://github.com/Icinga/icinga2.git synced 2025-08-26 03:58:17 +02:00
Code Issues Packages Projects Releases Wiki Activity
11,555 Commits 275 Branches 124 Tags
Commit Graph

79 Commits

Author SHA1 Message Date
Julian Brost
8da90d44fa InfluxdbWriter: actually verify TLS server certificates 
And add a new option ssl_insecure_noverify to explicitly disable it if desired.
 2021-08-17 18:49:36 +02:00
Julian Brost
037944a51b GelfWriter: actually verify TLS server certificates 
And add a new option insecure_noverify to explicitly disable it if desired.
 2021-08-17 18:49:35 +02:00
Julian Brost
78aa348e6a ElasticsearchWriter: actually verify TLS server certificates 
And add a new option insecure_noverify to explicitly disable it if desired.
 2021-08-17 18:49:35 +02:00
Julian Brost
2131318c48 Add timeout for all new connections 
This commit adds a timeout for both establishing new outgoing and incoming
connections. This timeout applies to everything until the connection is in a
state where either JsonRpcConnection or HttpServerConnection takes over.
 2021-07-06 11:33:48 +02:00
Michael Friedrich
d3eb62301e API: Add AES128-GCM-SHA256 compatible cipher for el6 
fixes #7501
 2019-09-16 14:19:22 +02:00
Michael Friedrich
ebd6735c70 TLS Ciphers: Add compatibility suites for older agents (el7) 2019-07-30 10:55:29 +02:00
Michael Friedrich
274511ba6d Docs: Better explanation of command arguments 
refs #7326
 2019-07-22 16:33:58 +02:00
Michael Friedrich
125fafeb08 Docs: Rename client to agent, step 1 2019-07-19 14:53:30 +02:00
Michael Friedrich
5aa07b51a2 Docs: Rename 'custom attribute' to 'custom variable' 
refs #6830
 2019-07-19 14:38:59 +02:00
Michael Friedrich
36140fd17e Docs: Update URLs from rename 2019-07-18 16:34:36 +02:00
Janne Heß
1d714395a6 doc: Add notes about the instance_name IDO field 
Related to #7292
 2019-07-08 12:18:41 +02:00
Alexander A. Klimov
bb8ff9f595 Clarify "Not set by default" of config object attributes referring to a time period 2019-07-03 11:27:26 +02:00
Michael Friedrich
8d86360db4 Docs: Add new runtime checkable attributes and explain severity in tech concepts 
fixes #7100
 2019-06-06 11:09:08 +02:00
Michael Friedrich
fd9887c5af API: Harden default cipher list 
According to https://www.acunetix.com/blog/articles/tls-ssl-cipher-hardening/
 2019-06-05 09:55:43 +02:00
Michael Friedrich
d82c067555 Require TLS 1.2 for Cluster & REST API 
refs #7041
 2019-05-29 17:08:36 +02:00
Michael Insel
7963881715 Add documentaion for GelfWriter TLS support 
This adds the documentation for the GelfWriter TLS support.
 2019-05-16 17:49:40 +02:00
Michael Friedrich
d0e94c8efc Docs: Fix formatting in object type chapter 2019-04-23 15:33:28 +02:00
Michael Friedrich
b906714254 Fix that MaxConcurrentChecks constant is overridden from 'checker' feature 
Note: This drops the deprecated concurrent_checks setting from the checker feature
entirely and refactors the underlaying code handling.

Also affects ReloadTimeout which is new for 2.11.

fixes #7111
 2019-04-16 15:04:57 +02:00
Michael Friedrich
2ce82b56d4 Docs: Improve config object types chapter 2019-04-03 15:22:08 +02:00
Michael Friedrich
c785a0678f Deprecate ExternalCommandListener feature ('command') and adjust log warnings to the roadmap 
They won't be removed with 2.11 thus far. Users should
be guided to the roadmap which holds all details instead
of hardcoding a version in the code.
 2019-04-03 14:39:10 +02:00
Alexander A. Klimov
915525dbcd Doc: adjust default of ApiListener#bind_host 2019-04-01 13:31:16 +02:00
Michael Friedrich
149f640fd8 Improve DB IDO HA failover behaviour 
- Decrease Object Authority updates to 10s (was 30s)
- Decrease failover timeout to 30s (was 60s)
- Decrease cold startup (after (re)start) with no OA updates to 30s (was 60s)
- Immediately connect on Resume()
- Fix query priority which got broken with #6970
- Add more logging when a failover is in progress

```
[2019-03-29 16:13:53 +0100] information/IdoMysqlConnection: Last update by endpoint 'master1' was 8.33246s ago (< failover timeout of 30s). Retrying.

[2019-03-29 16:14:23 +0100] information/IdoMysqlConnection: Last update by endpoint 'master1' was 38.3288s ago. Taking over 'ido-mysql' in HA zone 'master'.
```

- Add more logging for reconnect and disconnect handling
- Add 'last_failover' attribute to IDO*Connection objects

refs #6970
 2019-04-01 08:50:00 +02:00
Michael Friedrich
c2bf4cca9f Disable feature HA by default (InfluxDB, Graphite, Gelf, Elasticsearch, OpenTSDB, Perfdata) 2019-03-27 15:29:47 +01:00
Michael Insel
081d88436f Unify documentation code formatting 
This unifies the documentation code formatting to use only backticks.
 2019-03-26 09:11:03 +01:00
Max Rosin
00757919b3 Document that retry_interval is only used after an active check result 
fixes #6795
 2018-12-06 11:24:57 +01:00
Michael Friedrich
a47044fa08
Merge pull request #6731 from Icinga/bugfix/doc-comment 
Fix typo
 2018-10-30 13:43:31 +01:00
Alexander A. Klimov
4f5d735f7f Doc: warn about not setting Comment#entry_time 2018-10-26 11:33:06 +02:00
Alexander A. Klimov
3db2031435 Fix typo 2018-10-25 12:05:45 +02:00
Michael Friedrich
83b5119bb6 Update docs for HA-aware features 2018-10-24 14:42:52 +02:00
Jack
99a4ee0ad9
Extend 09-object-types.md with argument array 
Add a small snippet demonstrating how to define an argument array instead of a simple string.
 2018-10-16 11:40:00 +02:00
Jean-Louis Dupond
e8ecc770d0 Extend upgrade docs 2018-10-12 10:05:20 +02:00
Michael Friedrich
29701b4db5 Add ApiListener#tls_handshake_timeout option 
This allows to specify the previously hardcoded
timeout of 10s.

refs #6517
 2018-09-14 09:20:09 +02:00
Michael Friedrich
7e0f2f07a1
Merge pull request #6595 from Icinga/feature/limit-anonymous-rpc-connections 
Allow to configure anonymous clients limit inside the ApiListener object
 2018-09-06 13:26:46 +02:00
Michael Friedrich
9a75f47fc5 Allow to configure anonymous clients limit inside the ApiListener object 
Previously this was hardcoded, and for security reasons users might want
to adjust this value. This affects CSR signing requests as well as
clients which have not yet been configured as endpoints on the current
node.

refs #6566
 2018-09-05 17:45:35 +02:00
dominik-r-s
4afeda4758
09-object-types: notifications: states filter ignored for Acknowledgements! 2018-09-05 16:46:36 +02:00
Michael Friedrich
2372abb49a Add upgrading docs for API schedule-downtime 'child_options' 2018-08-24 14:56:04 +02:00
Noah Hilverling
01fea22c77 Add child_options to ScheduledDowntime 
refs #3935
 2018-08-24 14:29:39 +02:00
Michael Friedrich
02009525a1 Update documentation and add upgrading notes 2018-08-10 12:53:06 +02:00
Markus Frosch
eb02d9041d Refactor environment for API connections 
* Const renamed to `ApiEnvironment`
* Handling moved to ApiListener
* Now a property of ApiListener
 2018-08-09 13:19:33 +02:00
Michael Friedrich
a80c825921
Merge pull request #6506 from Icinga/feature/improved-paths 
Improve path handling in cmake and daemon
 2018-08-08 09:48:30 +02:00
Markus Frosch
9fbc40615a Improve path handling in cmake and daemon 2018-08-07 14:10:26 +02:00
Alexander A. Klimov
8c3d9ca111 Document default of User#enable_notifications 2018-08-07 13:37:57 +02:00
Michael Friedrich
2fd6709952 Remove ApiUser password_hash functionality 
This affects and fixes

- Windows reload
- Config validation
- RHEL 7.5 OpenSSL memory corruption
- Hash algorithm, requested changes

refs #6378
refs #6279
refs #6278
 2018-06-19 11:32:03 +02:00
Michael Friedrich
e390962fb6 Drop command template imports for versions < 2.6 in the docs 
Such versions are out of support, so there's no need to keep
track in the docs for 2.9.
 2018-06-15 10:55:51 +02:00
Michael Friedrich
0bcda04171 Remove the import of 'legacy-timeperiod' in the docs 
2.6.0 introduced default template imports for config objects
where this isn't necessary anymore. It also confuses the reader.
 2018-06-15 10:48:19 +02:00
Michael Friedrich
43cd7489ee Update docs to reflect required user* attributes for notification objects 
fixes #6265
 2018-04-27 11:40:03 +02:00
Michael Friedrich
fe0bf161cb Add TLS support for DB IDO PostgreSQL feature 
fixes #6211
 2018-04-18 15:30:06 +02:00
Jean Flach
b15203e878 Update volatile docs 2018-04-12 18:09:40 +02:00
Maurice Meyer
d0949fc6e3
hashed_password -> password_hash. Fixes #6175 
Signed-off-by: Maurice Meyer <morre@mor.re>
 2018-03-22 20:40:46 +01:00
Noah Hilverling
186cad9872 Clean up CORS implementation 2018-03-01 14:04:56 +01:00