icinga2

Commit Graph

Author	SHA1	Message	Date
Michael Friedrich	fd9887c5af	API: Harden default cipher list According to https://www.acunetix.com/blog/articles/tls-ssl-cipher-hardening/	2019-06-05 09:55:43 +02:00
Michael Friedrich	d82c067555	Require TLS 1.2 for Cluster & REST API refs #7041	2019-05-29 17:08:36 +02:00
Michael Insel	7963881715	Add documentaion for GelfWriter TLS support This adds the documentation for the GelfWriter TLS support.	2019-05-16 17:49:40 +02:00
Michael Friedrich	d0e94c8efc	Docs: Fix formatting in object type chapter	2019-04-23 15:33:28 +02:00
Michael Friedrich	b906714254	Fix that MaxConcurrentChecks constant is overridden from 'checker' feature Note: This drops the deprecated concurrent_checks setting from the checker feature entirely and refactors the underlaying code handling. Also affects ReloadTimeout which is new for 2.11. fixes #7111	2019-04-16 15:04:57 +02:00
Michael Friedrich	2ce82b56d4	Docs: Improve config object types chapter	2019-04-03 15:22:08 +02:00
Michael Friedrich	c785a0678f	Deprecate ExternalCommandListener feature ('command') and adjust log warnings to the roadmap They won't be removed with 2.11 thus far. Users should be guided to the roadmap which holds all details instead of hardcoding a version in the code.	2019-04-03 14:39:10 +02:00
Alexander A. Klimov	915525dbcd	Doc: adjust default of ApiListener#bind_host	2019-04-01 13:31:16 +02:00
Michael Friedrich	149f640fd8	Improve DB IDO HA failover behaviour - Decrease Object Authority updates to 10s (was 30s) - Decrease failover timeout to 30s (was 60s) - Decrease cold startup (after (re)start) with no OA updates to 30s (was 60s) - Immediately connect on Resume() - Fix query priority which got broken with #6970 - Add more logging when a failover is in progress ``` [2019-03-29 16:13:53 +0100] information/IdoMysqlConnection: Last update by endpoint 'master1' was 8.33246s ago (< failover timeout of 30s). Retrying. [2019-03-29 16:14:23 +0100] information/IdoMysqlConnection: Last update by endpoint 'master1' was 38.3288s ago. Taking over 'ido-mysql' in HA zone 'master'. ``` - Add more logging for reconnect and disconnect handling - Add 'last_failover' attribute to IDO*Connection objects refs #6970	2019-04-01 08:50:00 +02:00
Michael Friedrich	c2bf4cca9f	Disable feature HA by default (InfluxDB, Graphite, Gelf, Elasticsearch, OpenTSDB, Perfdata)	2019-03-27 15:29:47 +01:00
Michael Insel	081d88436f	Unify documentation code formatting This unifies the documentation code formatting to use only backticks.	2019-03-26 09:11:03 +01:00
Max Rosin	00757919b3	Document that retry_interval is only used after an active check result fixes #6795	2018-12-06 11:24:57 +01:00
Michael Friedrich	a47044fa08	Merge pull request #6731 from Icinga/bugfix/doc-comment Fix typo	2018-10-30 13:43:31 +01:00
Alexander A. Klimov	4f5d735f7f	Doc: warn about not setting Comment#entry_time	2018-10-26 11:33:06 +02:00
Alexander A. Klimov	3db2031435	Fix typo	2018-10-25 12:05:45 +02:00
Michael Friedrich	83b5119bb6	Update docs for HA-aware features	2018-10-24 14:42:52 +02:00
Jack	99a4ee0ad9	Extend 09-object-types.md with argument array Add a small snippet demonstrating how to define an argument array instead of a simple string.	2018-10-16 11:40:00 +02:00
Jean-Louis Dupond	e8ecc770d0	Extend upgrade docs	2018-10-12 10:05:20 +02:00
Michael Friedrich	29701b4db5	Add ApiListener#tls_handshake_timeout option This allows to specify the previously hardcoded timeout of 10s. refs #6517	2018-09-14 09:20:09 +02:00
Michael Friedrich	7e0f2f07a1	Merge pull request #6595 from Icinga/feature/limit-anonymous-rpc-connections Allow to configure anonymous clients limit inside the ApiListener object	2018-09-06 13:26:46 +02:00
Michael Friedrich	9a75f47fc5	Allow to configure anonymous clients limit inside the ApiListener object Previously this was hardcoded, and for security reasons users might want to adjust this value. This affects CSR signing requests as well as clients which have not yet been configured as endpoints on the current node. refs #6566	2018-09-05 17:45:35 +02:00
dominik-r-s	4afeda4758	09-object-types: notifications: states filter ignored for Acknowledgements!	2018-09-05 16:46:36 +02:00
Michael Friedrich	2372abb49a	Add upgrading docs for API schedule-downtime 'child_options'	2018-08-24 14:56:04 +02:00
Noah Hilverling	01fea22c77	Add child_options to ScheduledDowntime refs #3935	2018-08-24 14:29:39 +02:00
Michael Friedrich	02009525a1	Update documentation and add upgrading notes	2018-08-10 12:53:06 +02:00
Markus Frosch	eb02d9041d	Refactor environment for API connections * Const renamed to `ApiEnvironment` * Handling moved to ApiListener * Now a property of ApiListener	2018-08-09 13:19:33 +02:00
Michael Friedrich	a80c825921	Merge pull request #6506 from Icinga/feature/improved-paths Improve path handling in cmake and daemon	2018-08-08 09:48:30 +02:00
Markus Frosch	9fbc40615a	Improve path handling in cmake and daemon	2018-08-07 14:10:26 +02:00
Alexander A. Klimov	8c3d9ca111	Document default of User#enable_notifications	2018-08-07 13:37:57 +02:00
Michael Friedrich	2fd6709952	Remove ApiUser password_hash functionality This affects and fixes - Windows reload - Config validation - RHEL 7.5 OpenSSL memory corruption - Hash algorithm, requested changes refs #6378 refs #6279 refs #6278	2018-06-19 11:32:03 +02:00
Michael Friedrich	e390962fb6	Drop command template imports for versions < 2.6 in the docs Such versions are out of support, so there's no need to keep track in the docs for 2.9.	2018-06-15 10:55:51 +02:00
Michael Friedrich	0bcda04171	Remove the import of 'legacy-timeperiod' in the docs 2.6.0 introduced default template imports for config objects where this isn't necessary anymore. It also confuses the reader.	2018-06-15 10:48:19 +02:00
Michael Friedrich	43cd7489ee	Update docs to reflect required user* attributes for notification objects fixes #6265	2018-04-27 11:40:03 +02:00
Michael Friedrich	fe0bf161cb	Add TLS support for DB IDO PostgreSQL feature fixes #6211	2018-04-18 15:30:06 +02:00
Jean Flach	b15203e878	Update volatile docs	2018-04-12 18:09:40 +02:00
Maurice Meyer	d0949fc6e3	hashed_password -> password_hash. Fixes #6175 Signed-off-by: Maurice Meyer <morre@mor.re>	2018-03-22 20:40:46 +01:00
Noah Hilverling	186cad9872	Clean up CORS implementation	2018-03-01 14:04:56 +01:00
Jean Flach	92e2faaa08	Hash API password and comparison fixes #4920	2018-02-15 13:09:22 +01:00
Noah Hilverling	e1e06ce767	Merge pull request #5988 from Icinga/fix/concurrent-checks-limit-cluster Fix concurrent checks limit while using command_endpoint	2018-02-06 14:13:49 +01:00
Noah Hilverling	6df6f72a35	Add documentation for remote check queue refs #4841	2018-02-05 11:53:34 +01:00
Max Rosin	2850030bd4	Fix the explanation of `types` and `states` for user objects	2018-02-05 00:55:33 +01:00
Noah Hilverling	06e381ceea	Add metrics about RemoteCheckQueue to Icinga check, API and logs refs #4841	2018-01-29 16:07:35 +01:00
Noah Hilverling	d8c31353e4	Update documentation for MaxConcurrentChecks and concurrent_checks refs #4841	2018-01-29 14:50:24 +01:00
Gunnar Beutner	6506a89db3	Update default config and documentation for the "library" keyword	2018-01-22 08:18:05 +01:00
noobahoi	5f6f5fb194	Update 09-object-types.md object Downtime "localhost!my-downtime" should be object Downtime "my-downtime" The host_name configuration attribute adds the localhost name automatically.	2017-11-21 16:22:58 +01:00
noobahoi	890ebbe9c2	Update 09-object-types.md 'TicketSalt' instead of 'NodeName'	2017-11-21 16:17:58 +01:00
Dirk Goetz	c0c3b70a11	Improve documentation of cipher_list refs #5690	2017-11-14 10:04:58 +01:00
Michael Friedrich	7c0a09cfb6	Rename ElasticWriter to ElasticsearchWriter This better reflects its purpose as otherwise it would imply that you need Elastic Stack for it. Graylog also reads from Elasticsearch instances, this could serve as additional integration here.	2017-11-09 15:33:10 +01:00
Robin O'Brien	31a35a5966	Fixed grammer and spelling mistakes	2017-10-30 18:02:42 +02:00
Jean Flach	a21ffd6fe4	Fix flapping Re-implement flapping following the 'old way' of just observing the last 20 stage changes. refs #4982	2017-10-24 15:54:05 +02:00

1 2

66 Commits