projects/graylog-groups
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
24 commits 1 branch 0 tags 71 KiB
Commit graph

14 commits

Author SHA1 Message Date
Emmanuel BENOîT
484323c943 Note about permissions not being visible in the UI 2021-05-11 13:44:45 +02:00
Emmanuel BENOîT
ff27f05df9 Support for saved searches 
The "search" type has been added to support granting permissions on
saved searches. This should solve GitHub issue #1.
 2021-05-11 13:44:45 +02:00
Emmanuel BENOîT
50723668e6 Documentation - Command line flags 2021-02-14 10:47:26 +01:00
Emmanuel BENOîT
f012a16f05 Logging to a Graylog server 
Added the --log-graylog command line argument which sends logs to a
Graylog server using GELF/UDP.
 2021-02-13 23:42:32 +01:00
Emmanuel BENOîT
d3466b9609 Fixed -q command line argument 
With logrus' default formatter it boils down to a choice between the
colored version OR the human-unreadable list of fields, so the latter is
preferable.
 2021-02-13 23:09:26 +01:00
Emmanuel BENOîT
50233827b6 Quiet mode flag 
The -q command line flag disables stderr output. However it causes file
logging to change format.
 2021-02-11 23:37:13 +01:00
Emmanuel BENOîT
30cae773cf Logging to a file 
Command line argument -log-file will add a logging hook that writes to a
file in addition to the standard error stream.
 2021-02-11 23:30:36 +01:00
Emmanuel BENOîT
31cb613822 Added traces to privilege computations and Graylog API calls 2021-02-11 23:05:48 +01:00
Emmanuel BENOîT
c84f52b012 Cache for LDAP username lookups 
It is unnecessary to request the same user's username attribute more
than once.
 2021-02-11 22:46:29 +01:00
Emmanuel BENOîT
dcd3f920c9 Improved logging 
* Added dependency on logrus.
* Command line flags are parsed in order to obtain the name of the
  configuration file, the log level and the instance identifier.
* Logging in various places : configuration loader, API, data access.
  Privilege computations and subsequent actions do not write proper logs
  yet.
 2021-02-10 23:58:14 +01:00
Emmanuel BENOîT
e065dab3a2 ToDo list update 2021-02-09 23:19:01 +01:00
Emmanuel BENOîT
5c014aa951 Read username from referenced LDAP record 
* The `username_attribute` configuration value was added to the `ldap`
  section. When this value is set, the program will not try to extract the
  username from DNs; instead, it will look them up and extract the
  username from the referenced record, using the specified attribute.

* The program will no longer exit in error when a group listed in the
  mapping doesn't exist.
 2021-02-09 23:15:24 +01:00
Emmanuel BENOîT
842a4be87e TLS controls for the LDAP connection 
The LDAP connection now supports using a custom CA certificate chain or
skipping all TLS certificate checks.
 2021-02-08 23:23:16 +01:00
Emmanuel BENOîT
627ab475b7 Documentation and license 2021-02-07 18:42:17 +01:00