gogrlx/nats-server
1
0
Fork 0
mirror of https://github.com/gogrlx/nats-server.git synced 2026-04-02 03:38:42 -07:00
Code Issues Packages Projects Releases Wiki Activity
6,018 Commits 30 Branches 48 Tags
6e0d3eaa9d1ef165738a7bf0f1e5aa369a9dfbb5
Commit Graph

116 Commits

Author SHA1 Message Date
Derek Collison
6e0d3eaa9d Update compress dependency 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-07-25 11:31:12 -07:00
Ivan Kozlovic
dac8b0959b [UPDATED] Compression library 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2022-07-14 10:33:38 -06:00
Matthias Hanel
6e52608936 [added] support for jwt account option DisallowBearer (#3127) 
* [added] support for jwt account option DisallowBearer

change 3 out of 3. Fixes #3084
corresponds to:
https://github.com/nats-io/jwt/pull/177
https://github.com/nats-io/nsc/pull/495

update jwt library to 2.3.0

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-06-29 18:19:14 +02:00
Parham Alvani
253ff6b517 chore: go mod tidy 2022-06-28 07:39:10 +04:30
Parham Alvani
baf0506b78 feat: add automaxprocs 2022-06-25 19:59:04 +04:30
Ivan Kozlovic
725ea8a5ed Update go.mod dependencies 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2022-05-26 17:16:37 -06:00
Ivan Kozlovic
f423f07134 Release v2.8.3 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2022-05-23 14:48:19 -06:00
Ivan Kozlovic
3cdbba16cb Revert "[added] support for jwt operator option DisallowBearerToken" 2022-05-04 11:11:25 -06:00
Matthias Hanel
bd2883122e [added] support for jwt operator option DisallowBearerToken 
I modified an existing data structure that held a similar attribute already.
Instead this data structure references the claim.

change 3 out of 3. Fixes #3084
corresponds to:
https://github.com/nats-io/jwt/pull/177
https://github.com/nats-io/nsc/pull/495

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-04-29 14:18:11 -04:00
pgvishnuram
5cc4d0ca4a fix for CVE-2022-27191 
* our CVE scanner has detected crypto go module vulnerability in nats exporter this PR fixes that issue by updating the module version
 2022-04-21 10:19:35 +05:30
Derek Collison
efb91c4ade Upgrade to latest released client 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-04-10 08:03:11 -07:00
Matthias Hanel
92f4dc986a added max_ack_pending setting to js account limits (#2982) 
* added max_ack_penind setting to js account limits

because of the addition, defaults now have to be set later (depend on
these new limits now)

also re-organized the code to closer track how stream create looks

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-03-31 14:17:16 -04:00
Matthias Hanel
1445153130 Adding max stream bytes check (#2970) 
* Adding max stream bytes check

Also start checking on  stream update

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-03-30 15:50:28 -04:00
Matthias Hanel
0c5f3688a7 [ADDED] Tiered limits and fix limit issues on updates (#2945) 
* Adding tiered limits and fix limit issues on updates

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-03-28 20:47:54 -04:00
Derek Collison
7fd5f4dc24 Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-03-24 17:45:15 -06:00
Matthias Hanel
9a2da9ed8c Adding denies $KV.>/$OBJ.> along leaf connections on differing domain (#2916) 
* Adding denies $KV.>/$OBJ.> along leaf connections on differing domain

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-03-09 13:17:59 -05:00
Ivan Kozlovic
26a8dc8add Update compress and highwayhash dependencies 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2022-02-22 17:09:05 -07:00
Matthias Hanel
fa12d096cd Fix jwt based user/activation token revocation and revocation granularity 
user and activation token did not honor the jwt value for all * on
connect.

activation token where not re evaluated when the export revoked a key.
In part this is a consistency measure so servers that already have an
account and servers that don't behave the same way.

in jwt activation token revocations are stored per export.
The server stored them per account, thus effectively merging
revocations. Now they are stored per export inside the server too.

fixes nats-io/nsc/issues/442

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-01-25 13:48:12 -05:00
Derek Collison
56870e4ddb Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-01-24 10:24:49 -08:00
Ivan Kozlovic
2ba6d97dc1 Update deps 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2022-01-13 16:17:46 -07:00
Derek Collison
7dc99c3840 Merge from main 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-01-13 10:01:33 -08:00
Matthias Hanel
78bbcd791f [Adding] support for JS MaxBytesRequired 
Signed-off-by: Matthias Hanel <mh@synadia.com>
 2022-01-12 22:57:34 -05:00
Derek Collison
42818f06c1 Update client 
Signed-off-by: Derek Collison <derek@nats.io>
 2022-01-10 16:58:52 -08:00
Ivan Kozlovic
cbfa93e4a8 [UPDATED] golang.org/x/crypto dependency 
They just released some fix that is not affecting the NATS Server
but could cause some security vulnerability reports.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-12-02 13:48:21 -07:00
Ivan Kozlovic
9f30bf00e0 [FIXED] Corrupted headers receiving from consumer with meta-only 
When a consumer is configured with "meta-only" option, and the
stream was backed by a memory store, a memory corruption could
happen causing the application to receive corrupted headers.

Also replaced most of usage of `append(a[:0:0], a...)` to make
copies. This was based on this wiki:
https://github.com/go101/go101/wiki/How-to-efficiently-clone-a-slice%3F

But since Go 1.15, it is actually faster to call make+copy instead.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-12-01 10:50:15 -07:00
Ivan Kozlovic
ede8124fb2 [FIXED/CHANGED] Add leafnode websocket connection type 
This was missing since WEBSOCKET allowed connection type is really
used for client connections.
If one wants to limit a configured user to leafnode connections,
including if the connection is over websocket, but does not
want an application to connect over websocket using this user,
this would have been impossible to configure.

The JWT library has been updated to add LEAFNODE_WS and MQTT_WS for
future work.

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-11-22 10:32:58 -07:00
Derek Collison
ab91da8f9b Upgrade Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-10-25 17:13:05 -07:00
Ivan Kozlovic
831c8254e3 Release v2.6.2 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-10-12 15:19:17 -06:00
Waldemar Quevedo
b96f731f1a Update nats-io/jwt dependency 
Signed-off-by: Waldemar Quevedo <wally@synadia.com>
 2021-09-28 13:24:24 -07:00
Ivan Kozlovic
f34156e411 Release v2.6.0 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-09-21 16:17:27 -06:00
Waldemar Quevedo
0bef39ab5b Update nats.go version 
Signed-off-by: Waldemar Quevedo <wally@synadia.com>
 2021-09-16 15:58:41 -07:00
Ivan Kozlovic
bc1b3a1884 Release v2.5.0 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-09-09 15:29:53 -06:00
Ivan Kozlovic
037a1f0461 Release v2.4.0 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-08-26 15:58:31 -06:00
Derek Collison
3a20582ad5 Add in optional compression schemes for Accept-Encoding on server api requests. 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-08-23 13:06:18 -07:00
Derek Collison
143f145364 Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-08-19 18:19:39 -07:00
Matthias Hanel
fc9af36df6 updated go client for tests 
Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-08-17 10:47:34 -04:00
Derek Collison
b8d059e179 Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-08-13 15:08:55 -07:00
Derek Collison
a0b5a53870 Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-08-09 20:09:58 -07:00
Derek Collison
149ed38b57 Update Go client 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-08-07 16:57:51 -07:00
Ivan Kozlovic
50c0b40907 Update go.mod JWT reference to latest release 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-08-02 09:39:35 -06:00
Matthias Hanel
c7f7077584 [fixed] updated jwt library to avoid an error when counting tokens 
Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-07-27 12:46:44 -04:00
Ivan Kozlovic
13334c227d Release v2.3.1 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-06-29 13:51:32 -06:00
Derek Collison
2a96be2fcf Updated Go client and crypto deps 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-06-26 14:08:16 -07:00
Ivan Kozlovic
23ec1daab5 Bump to beta 16 and ran go mod tidy 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-06-22 11:42:43 -06:00
Derek Collison
9fd5bfcdbf Add in chacha20 and poly1305 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-06-21 19:16:20 -07:00
Jaime Piña
0072107110 Vendor ocsp dep 2021-05-24 10:52:27 -07:00
Derek Collison
41ec9359fc Update client to released version 
Signed-off-by: Derek Collison <derek@nats.io>
 2021-05-06 18:46:32 -06:00
Matthias Hanel
61bf08fd98 [fixed] decorated jwt parsing issue by using same functionality of jwt 
fixes #2069

Signed-off-by: Matthias Hanel <mh@synadia.com>
 2021-05-04 23:04:51 -04:00
Ivan Kozlovic
38dcc79b3b Release v2.2.2 
Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
 2021-04-22 11:14:09 -06:00
Derek Collison
518ff9be14 Concurrent multiple durable subscribers would cause unpredictable behaviors. 
Upgraded to current Go client.

Signed-off-by: Derek Collison <derek@nats.io>
 2021-04-20 19:50:24 -07:00