summaryrefslogtreecommitdiffhomepage
path: root/cmd/get-authkey
AgeCommit message (Collapse)AuthorFilesLines
2025-02-18cmd,tsnet,internal/client: create internal shim to deprecated control plane APIPercy Wegmann1-5/+1
Even after we remove the deprecated API, we will want to maintain a minimal API for internal use, in order to avoid importing the external tailscale.com/client/tailscale/v2 package. This shim exposes only the necessary parts of the deprecated API for internal use, which gains us the following: 1. It removes deprecation warnings for internal use of the API. 2. It gives us an inventory of which parts we will want to keep for internal use. Updates tailscale/corp#22748 Signed-off-by: Percy Wegmann <percy@tailscale.com>
2024-12-06cmd,{get-authkey,tailscale}: remove unnecessary scope qualifier from OAuth ↵Percy Wegmann1-1/+0
clients OAuth clients that were used to generate an auth_key previously specified the scope 'device'. 'device' is not an actual scope, the real scope is 'devices'. The resulting OAuth token ended up including all scopes from the specified OAuth client, so the code was able to successfully create auth_keys. It's better not to hardcode a scope here anyway, so that we have the flexibility of changing which scope(s) are used in the future without having to update old clients. Since the qualifier never actually did anything, this commit simply removes it. Updates tailscale/corp#24934 Signed-off-by: Percy Wegmann <percy@tailscale.com>
2024-10-11client/tailscale,cmd/{cli,get-authkey,k8s-operator}: set distinct User-AgentsPercy Wegmann1-0/+1
This helps better distinguish what is generating activity to the Tailscale public API. Updates tailscale/corp#23838 Signed-off-by: Percy Wegmann <percy@tailscale.com>
2024-02-07util/cmpx: delete now that we're using Go 1.22Brad Fitzpatrick1-2/+2
Updates #11058 Change-Id: I09dea8e86f03ec148b715efca339eab8b1f0f644 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2023-06-07all: use cmpx.Or where it made senseBrad Fitzpatrick1-4/+2
I left a few out where writing it explicitly was better for various reasons. Updates #8296 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2023-05-12client/tailscale: revert CreateKey API change, add Client.CreateKeyWithExpiryBrad Fitzpatrick1-1/+1
The client/tailscale is a stable-ish API we try not to break. Revert the Client.CreateKey method as it was and add a new CreateKeyWithExpiry method to do the new thing. And document the expiry field and enforce that the time.Duration can't be between in range greater than 0 and less than a second. Updates #7143 Updates #8124 (reverts it, effectively) Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2023-05-11client: allow the expiry time to be specified for new keysMatt Brown1-1/+1
Adds a parameter for create key that allows a number of seconds (less than 90) to be specified for new keys. Fixes https://github.com/tailscale/tailscale/issues/7965 Signed-off-by: Matthew Brown <matthew@bargrove.com>
2023-04-26cmd/tailscale/cli: [up] add experimental oauth2 authkey supportBrad Fitzpatrick1-8/+8
Updates #7982 Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2023-03-13all: replace /kb/ links with /s/ equivalentsMaisem Ali1-1/+1
Signed-off-by: Maisem Ali <maisem@tailscale.com>
2023-02-08get-authkey: require tags to be specifiedWill Norris1-0/+4
Tailnet-owned auth keys (which all OAuth-created keys are) must include tags, since there is no user to own the registered devices. Signed-off-by: Will Norris <will@tailscale.com>
2023-02-03cmd/get-authkey: add an OAuth API client to produce an authkeyDenton Gentry2-0/+73
Updates https://github.com/tailscale/tailscale/issues/3243 Signed-off-by: Denton Gentry <dgentry@tailscale.com>
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.