diff --git a/v2/client.go b/v2/client.go index c0c4dd3..d014c8d 100644 --- a/v2/client.go +++ b/v2/client.go @@ -20,51 +20,49 @@ import ( "github.com/tailscale/hujson" ) -type ( - // Client is used to perform actions against the Tailscale API. - Client struct { - // BaseURL is the base URL for accessing the Tailscale API server. Defaults to https://api.tailscale.com. - BaseURL *url.URL - // UserAgent configures the User-Agent HTTP header for requests. Defaults to "tailscale-client-go". - UserAgent string - // APIKey allows specifying an APIKey to use for authentication. - // To use OAuth Client credentials, construct an [http.Client] using [OAuthConfig] and specify that below. - APIKey string - // Tailnet allows specifying a specific Tailnet by name, to which this Client will connect by default. - Tailnet string - - // HTTP is the [http.Client] to use for requests to the API server. - // If not specified, a new [http.Client] with a Timeout of 1 minute will be used. - HTTP *http.Client - - initOnce sync.Once - - // Specific resources - contacts *ContactsResource - devicePosture *DevicePostureResource - devices *DevicesResource - dns *DNSResource - keys *KeysResource - logging *LoggingResource - policyFile *PolicyFileResource - tailnetSettings *TailnetSettingsResource - users *UsersResource - webhooks *WebhooksResource - } +// Client is used to perform actions against the Tailscale API. +type Client struct { + // BaseURL is the base URL for accessing the Tailscale API server. Defaults to https://api.tailscale.com. + BaseURL *url.URL + // UserAgent configures the User-Agent HTTP header for requests. Defaults to "tailscale-client-go". + UserAgent string + // APIKey allows specifying an APIKey to use for authentication. + // To use OAuth Client credentials, construct an [http.Client] using [OAuthConfig] and specify that below. + APIKey string + // Tailnet allows specifying a specific Tailnet by name, to which this Client will connect by default. + Tailnet string + + // HTTP is the [http.Client] to use for requests to the API server. + // If not specified, a new [http.Client] with a Timeout of 1 minute will be used. + HTTP *http.Client + + initOnce sync.Once + + // Specific resources + contacts *ContactsResource + devicePosture *DevicePostureResource + devices *DevicesResource + dns *DNSResource + keys *KeysResource + logging *LoggingResource + policyFile *PolicyFileResource + tailnetSettings *TailnetSettingsResource + users *UsersResource + webhooks *WebhooksResource +} - // APIError type describes an error as returned by the Tailscale API. - APIError struct { - Message string `json:"message"` - Data []APIErrorData `json:"data"` - status int - } +// APIError type describes an error as returned by the Tailscale API. +type APIError struct { + Message string `json:"message"` + Data []APIErrorData `json:"data"` + status int +} - // APIErrorData type describes elements of the data field within errors returned by the Tailscale API. - APIErrorData struct { - User string `json:"user"` - Errors []string `json:"errors"` - } -) +// APIErrorData type describes elements of the data field within errors returned by the Tailscale API. +type APIErrorData struct { + User string `json:"user"` + Errors []string `json:"errors"` +} const defaultContentType = "application/json" const defaultHttpClientTimeout = time.Minute diff --git a/v2/contacts.go b/v2/contacts.go index 3da5152..4236b64 100644 --- a/v2/contacts.go +++ b/v2/contacts.go @@ -19,31 +19,29 @@ const ( ContactSecurity ContactType = "security" ) -type ( - // ContactType defines the type of contact. - ContactType string +// ContactType defines the type of contact. +type ContactType string - // Contacts type defines the object returned when retrieving contacts. - Contacts struct { - Account Contact `json:"account"` - Support Contact `json:"support"` - Security Contact `json:"security"` - } +// Contacts type defines the object returned when retrieving contacts. +type Contacts struct { + Account Contact `json:"account"` + Support Contact `json:"support"` + Security Contact `json:"security"` +} - // Contact type defines the structure of an individual contact for the tailnet. - Contact struct { - Email string `json:"email"` - // FallbackEmail is the email used when Email has not been verified. - FallbackEmail string `json:"fallbackEmail,omitempty"` - // NeedsVerification is true if Email needs to be verified. - NeedsVerification bool `json:"needsVerification"` - } +// Contact type defines the structure of an individual contact for the tailnet. +type Contact struct { + Email string `json:"email"` + // FallbackEmail is the email used when Email has not been verified. + FallbackEmail string `json:"fallbackEmail,omitempty"` + // NeedsVerification is true if Email needs to be verified. + NeedsVerification bool `json:"needsVerification"` +} - // UpdateContactRequest type defines the structure of a request to update a Contact. - UpdateContactRequest struct { - Email *string `json:"email,omitempty"` - } -) +// UpdateContactRequest type defines the structure of a request to update a Contact. +type UpdateContactRequest struct { + Email *string `json:"email,omitempty"` +} // Get retieves the [Contacts] for the tailnet. func (cr *ContactsResource) Get(ctx context.Context) (*Contacts, error) { diff --git a/v2/device_posture.go b/v2/device_posture.go index 917b957..0b09757 100644 --- a/v2/device_posture.go +++ b/v2/device_posture.go @@ -22,37 +22,35 @@ const ( PostureIntegrationProviderSentinelOne PostureIntegrationProvider = "sentinelone" ) -type ( - // PostureIntegrationProvider identifies a supported posture integration data provider. - PostureIntegrationProvider string - - // PostureIntegration is a configured posture integration. - PostureIntegration struct { - ID string `json:"id,omitempty"` - Provider PostureIntegrationProvider `json:"provider,omitempty"` - CloudID string `json:"cloudId,omitempty"` - ClientID string `json:"clientId,omitempty"` - TenantID string `json:"tenantId,omitempty"` - } +// PostureIntegrationProvider identifies a supported posture integration data provider. +type PostureIntegrationProvider string + +// PostureIntegration is a configured posture integration. +type PostureIntegration struct { + ID string `json:"id,omitempty"` + Provider PostureIntegrationProvider `json:"provider,omitempty"` + CloudID string `json:"cloudId,omitempty"` + ClientID string `json:"clientId,omitempty"` + TenantID string `json:"tenantId,omitempty"` +} - // CreatePostureIntegrationRequest is a request to create a posture integration. - CreatePostureIntegrationRequest struct { - Provider PostureIntegrationProvider `json:"provider,omitempty"` - CloudID string `json:"cloudId,omitempty"` - ClientID string `json:"clientId,omitempty"` - TenantID string `json:"tenantId,omitempty"` - ClientSecret string `json:"clientSecret,omitempty"` - } +// CreatePostureIntegrationRequest is a request to create a posture integration. +type CreatePostureIntegrationRequest struct { + Provider PostureIntegrationProvider `json:"provider,omitempty"` + CloudID string `json:"cloudId,omitempty"` + ClientID string `json:"clientId,omitempty"` + TenantID string `json:"tenantId,omitempty"` + ClientSecret string `json:"clientSecret,omitempty"` +} - // UpdatePostureIntegrationRequest is a request to update a posture integration. - UpdatePostureIntegrationRequest struct { - CloudID string `json:"cloudId,omitempty"` - ClientID string `json:"clientId,omitempty"` - TenantID string `json:"tenantId,omitempty"` - // ClientSecret may be omitted to preserve the existing value - ClientSecret *string `json:"clientSecret,omitempty"` - } -) +// UpdatePostureIntegrationRequest is a request to update a posture integration. +type UpdatePostureIntegrationRequest struct { + CloudID string `json:"cloudId,omitempty"` + ClientID string `json:"clientId,omitempty"` + TenantID string `json:"tenantId,omitempty"` + // ClientSecret may be omitted to preserve the existing value + ClientSecret *string `json:"clientSecret,omitempty"` +} // List lists every configured [PostureIntegration]. func (pr *DevicePostureResource) ListIntegrations(ctx context.Context) ([]PostureIntegration, error) { diff --git a/v2/devices.go b/v2/devices.go index cad391d..e4853ca 100644 --- a/v2/devices.go +++ b/v2/devices.go @@ -15,12 +15,10 @@ type DevicesResource struct { *Client } -type ( - DeviceRoutes struct { - Advertised []string `json:"advertisedRoutes"` - Enabled []string `json:"enabledRoutes"` - } -) +type DeviceRoutes struct { + Advertised []string `json:"advertisedRoutes"` + Enabled []string `json:"enabledRoutes"` +} // Time wraps a time and allows for unmarshalling timestamps that represent an empty time as an empty string (e.g "") // this is used by the tailscale API when it returns devices that have no created date, such as its hello service. @@ -127,13 +125,11 @@ func (dr *DevicesResource) SetTags(ctx context.Context, deviceID string, tags [] return dr.do(req, nil) } -type ( - // DeviceKey type represents the properties of the key of an individual device within - // the tailnet. - DeviceKey struct { - KeyExpiryDisabled bool `json:"keyExpiryDisabled"` // Whether or not this device's key will ever expire. - } -) +// DeviceKey type represents the properties of the key of an individual device within +// the tailnet. +type DeviceKey struct { + KeyExpiryDisabled bool `json:"keyExpiryDisabled"` // Whether or not this device's key will ever expire. +} // SetKey updates the properties of a device's key. func (dr *DevicesResource) SetKey(ctx context.Context, deviceID string, key DeviceKey) error { diff --git a/v2/dns.go b/v2/dns.go index c3c2ec2..f2f71cc 100644 --- a/v2/dns.go +++ b/v2/dns.go @@ -13,17 +13,15 @@ type DNSResource struct { *Client } -type ( - // SplitDNSRequest is a map from domain names to a list of nameservers. - SplitDNSRequest map[string][]string +// SplitDNSRequest is a map from domain names to a list of nameservers. +type SplitDNSRequest map[string][]string - // SplitDNSResponse is a map from domain names to a list of nameservers. - SplitDNSResponse SplitDNSRequest +// SplitDNSResponse is a map from domain names to a list of nameservers. +type SplitDNSResponse SplitDNSRequest - DNSPreferences struct { - MagicDNS bool `json:"magicDNS"` - } -) +type DNSPreferences struct { + MagicDNS bool `json:"magicDNS"` +} // SetSearchPaths replaces the list of search paths with the list supplied by the user and returns an error otherwise. func (dr *DNSResource) SetSearchPaths(ctx context.Context, searchPaths []string) error { diff --git a/v2/keys.go b/v2/keys.go index 93f4183..890b447 100644 --- a/v2/keys.go +++ b/v2/keys.go @@ -14,39 +14,37 @@ type KeysResource struct { *Client } -type ( - // KeyCapabilities describes the capabilities of an authentication key. - KeyCapabilities struct { - Devices struct { - Create struct { - Reusable bool `json:"reusable"` - Ephemeral bool `json:"ephemeral"` - Tags []string `json:"tags"` - Preauthorized bool `json:"preauthorized"` - } `json:"create"` - } `json:"devices"` - } +// KeyCapabilities describes the capabilities of an authentication key. +type KeyCapabilities struct { + Devices struct { + Create struct { + Reusable bool `json:"reusable"` + Ephemeral bool `json:"ephemeral"` + Tags []string `json:"tags"` + Preauthorized bool `json:"preauthorized"` + } `json:"create"` + } `json:"devices"` +} - // CreateKeyRequest describes the definition of an authentication key to create. - CreateKeyRequest struct { - Capabilities KeyCapabilities `json:"capabilities"` - ExpirySeconds int64 `json:"expirySeconds"` - Description string `json:"description"` - } +// CreateKeyRequest describes the definition of an authentication key to create. +type CreateKeyRequest struct { + Capabilities KeyCapabilities `json:"capabilities"` + ExpirySeconds int64 `json:"expirySeconds"` + Description string `json:"description"` +} - // Key describes an authentication key within the tailnet. - Key struct { - ID string `json:"id"` - Key string `json:"key"` - Description string `json:"description"` - Created time.Time `json:"created"` - Expires time.Time `json:"expires"` - Revoked time.Time `json:"revoked"` - Invalid bool `json:"invalid"` - Capabilities KeyCapabilities `json:"capabilities"` - UserID string `json:"userId"` - } -) +// Key describes an authentication key within the tailnet. +type Key struct { + ID string `json:"id"` + Key string `json:"key"` + Description string `json:"description"` + Created time.Time `json:"created"` + Expires time.Time `json:"expires"` + Revoked time.Time `json:"revoked"` + Invalid bool `json:"invalid"` + Capabilities KeyCapabilities `json:"capabilities"` + UserID string `json:"userId"` +} // Create creates a new authentication key. Returns the generated [Key] if successful. func (kr *KeysResource) Create(ctx context.Context, ckr CreateKeyRequest) (*Key, error) { diff --git a/v2/logging.go b/v2/logging.go index 3489be5..5044972 100644 --- a/v2/logging.go +++ b/v2/logging.go @@ -27,29 +27,27 @@ const ( LogTypeNetwork LogType = "network" ) -type ( - // LogstreamConfiguration type defines a log stream entity in tailscale. - LogstreamConfiguration struct { - LogType LogType `json:"logType,omitempty"` - DestinationType LogstreamEndpointType `json:"destinationType,omitempty"` - URL string `json:"url,omitempty"` - User string `json:"user,omitempty"` - } +// LogstreamConfiguration type defines a log stream entity in tailscale. +type LogstreamConfiguration struct { + LogType LogType `json:"logType,omitempty"` + DestinationType LogstreamEndpointType `json:"destinationType,omitempty"` + URL string `json:"url,omitempty"` + User string `json:"user,omitempty"` +} - // SetLogstreamConfigurationRequest type defines a request for setting a LogstreamConfiguration. - SetLogstreamConfigurationRequest struct { - DestinationType LogstreamEndpointType `json:"destinationType,omitempty"` - URL string `json:"url,omitempty"` - User string `json:"user,omitempty"` - Token string `json:"token,omitempty"` - } +// SetLogstreamConfigurationRequest type defines a request for setting a LogstreamConfiguration. +type SetLogstreamConfigurationRequest struct { + DestinationType LogstreamEndpointType `json:"destinationType,omitempty"` + URL string `json:"url,omitempty"` + User string `json:"user,omitempty"` + Token string `json:"token,omitempty"` +} - // LogstreamEndpointType describes the type of the endpoint. - LogstreamEndpointType string +// LogstreamEndpointType describes the type of the endpoint. +type LogstreamEndpointType string - // LogType describes the type of logging. - LogType string -) +// LogType describes the type of logging. +type LogType string // LogstreamConfiguration retrieves the tailnet's [LogstreamConfiguration] for the given [LogType]. func (lr *LoggingResource) LogstreamConfiguration(ctx context.Context, logType LogType) (*LogstreamConfiguration, error) { diff --git a/v2/policyfile.go b/v2/policyfile.go index 04b0c41..65ee505 100644 --- a/v2/policyfile.go +++ b/v2/policyfile.go @@ -14,102 +14,100 @@ type PolicyFileResource struct { *Client } -type ( - // ACL contains the schema for a tailnet policy file. More details: https://tailscale.com/kb/1018/acls/ - ACL struct { - ACLs []ACLEntry `json:"acls,omitempty" hujson:"ACLs,omitempty"` - AutoApprovers *ACLAutoApprovers `json:"autoApprovers,omitempty" hujson:"AutoApprovers,omitempty"` - Groups map[string][]string `json:"groups,omitempty" hujson:"Groups,omitempty"` - Hosts map[string]string `json:"hosts,omitempty" hujson:"Hosts,omitempty"` - TagOwners map[string][]string `json:"tagOwners,omitempty" hujson:"TagOwners,omitempty"` - DERPMap *ACLDERPMap `json:"derpMap,omitempty" hujson:"DerpMap,omitempty"` - Tests []ACLTest `json:"tests,omitempty" hujson:"Tests,omitempty"` - SSH []ACLSSH `json:"ssh,omitempty" hujson:"SSH,omitempty"` - NodeAttrs []NodeAttrGrant `json:"nodeAttrs,omitempty" hujson:"NodeAttrs,omitempty"` - DisableIPv4 bool `json:"disableIPv4,omitempty" hujson:"DisableIPv4,omitempty"` - OneCGNATRoute string `json:"oneCGNATRoute,omitempty" hujson:"OneCGNATRoute,omitempty"` - RandomizeClientPort bool `json:"randomizeClientPort,omitempty" hujson:"RandomizeClientPort,omitempty"` - - // Postures and DefaultSourcePosture are for an experimental feature and not yet public or documented as of 2023-08-17. - // This API is subject to change. Internal bug: corp/13986 - Postures map[string][]string `json:"postures,omitempty" hujson:"Postures,omitempty"` - DefaultSourcePosture []string `json:"defaultSrcPosture,omitempty" hujson:"DefaultSrcPosture,omitempty"` - } +// ACL contains the schema for a tailnet policy file. More details: https://tailscale.com/kb/1018/acls/ +type ACL struct { + ACLs []ACLEntry `json:"acls,omitempty" hujson:"ACLs,omitempty"` + AutoApprovers *ACLAutoApprovers `json:"autoApprovers,omitempty" hujson:"AutoApprovers,omitempty"` + Groups map[string][]string `json:"groups,omitempty" hujson:"Groups,omitempty"` + Hosts map[string]string `json:"hosts,omitempty" hujson:"Hosts,omitempty"` + TagOwners map[string][]string `json:"tagOwners,omitempty" hujson:"TagOwners,omitempty"` + DERPMap *ACLDERPMap `json:"derpMap,omitempty" hujson:"DerpMap,omitempty"` + Tests []ACLTest `json:"tests,omitempty" hujson:"Tests,omitempty"` + SSH []ACLSSH `json:"ssh,omitempty" hujson:"SSH,omitempty"` + NodeAttrs []NodeAttrGrant `json:"nodeAttrs,omitempty" hujson:"NodeAttrs,omitempty"` + DisableIPv4 bool `json:"disableIPv4,omitempty" hujson:"DisableIPv4,omitempty"` + OneCGNATRoute string `json:"oneCGNATRoute,omitempty" hujson:"OneCGNATRoute,omitempty"` + RandomizeClientPort bool `json:"randomizeClientPort,omitempty" hujson:"RandomizeClientPort,omitempty"` + + // Postures and DefaultSourcePosture are for an experimental feature and not yet public or documented as of 2023-08-17. + // This API is subject to change. Internal bug: corp/13986 + Postures map[string][]string `json:"postures,omitempty" hujson:"Postures,omitempty"` + DefaultSourcePosture []string `json:"defaultSrcPosture,omitempty" hujson:"DefaultSrcPosture,omitempty"` +} - ACLAutoApprovers struct { - Routes map[string][]string `json:"routes,omitempty" hujson:"Routes,omitempty"` - ExitNode []string `json:"exitNode,omitempty" hujson:"ExitNode,omitempty"` - } +type ACLAutoApprovers struct { + Routes map[string][]string `json:"routes,omitempty" hujson:"Routes,omitempty"` + ExitNode []string `json:"exitNode,omitempty" hujson:"ExitNode,omitempty"` +} - ACLEntry struct { - Action string `json:"action,omitempty" hujson:"Action,omitempty"` - Ports []string `json:"ports,omitempty" hujson:"Ports,omitempty"` - Users []string `json:"users,omitempty" hujson:"Users,omitempty"` - Source []string `json:"src,omitempty" hujson:"Src,omitempty"` - Destination []string `json:"dst,omitempty" hujson:"Dst,omitempty"` - Protocol string `json:"proto,omitempty" hujson:"Proto,omitempty"` +type ACLEntry struct { + Action string `json:"action,omitempty" hujson:"Action,omitempty"` + Ports []string `json:"ports,omitempty" hujson:"Ports,omitempty"` + Users []string `json:"users,omitempty" hujson:"Users,omitempty"` + Source []string `json:"src,omitempty" hujson:"Src,omitempty"` + Destination []string `json:"dst,omitempty" hujson:"Dst,omitempty"` + Protocol string `json:"proto,omitempty" hujson:"Proto,omitempty"` - // SourcePosture is for an experimental feature and not yet public or documented as of 2023-08-17. - SourcePosture []string `json:"srcPosture,omitempty" hujson:"SrcPosture,omitempty"` - } + // SourcePosture is for an experimental feature and not yet public or documented as of 2023-08-17. + SourcePosture []string `json:"srcPosture,omitempty" hujson:"SrcPosture,omitempty"` +} - ACLTest struct { - User string `json:"user,omitempty" hujson:"User,omitempty"` - Allow []string `json:"allow,omitempty" hujson:"Allow,omitempty"` - Deny []string `json:"deny,omitempty" hujson:"Deny,omitempty"` - Source string `json:"src,omitempty" hujson:"Src,omitempty"` - Accept []string `json:"accept,omitempty" hujson:"Accept,omitempty"` - } +type ACLTest struct { + User string `json:"user,omitempty" hujson:"User,omitempty"` + Allow []string `json:"allow,omitempty" hujson:"Allow,omitempty"` + Deny []string `json:"deny,omitempty" hujson:"Deny,omitempty"` + Source string `json:"src,omitempty" hujson:"Src,omitempty"` + Accept []string `json:"accept,omitempty" hujson:"Accept,omitempty"` +} - ACLDERPMap struct { - Regions map[int]*ACLDERPRegion `json:"regions" hujson:"Regions"` - OmitDefaultRegions bool `json:"omitDefaultRegions,omitempty" hujson:"OmitDefaultRegions,omitempty"` - } +type ACLDERPMap struct { + Regions map[int]*ACLDERPRegion `json:"regions" hujson:"Regions"` + OmitDefaultRegions bool `json:"omitDefaultRegions,omitempty" hujson:"OmitDefaultRegions,omitempty"` +} - ACLDERPRegion struct { - RegionID int `json:"regionID" hujson:"RegionID"` - RegionCode string `json:"regionCode" hujson:"RegionCode"` - RegionName string `json:"regionName" hujson:"RegionName"` - Avoid bool `json:"avoid,omitempty" hujson:"Avoid,omitempty"` - Nodes []*ACLDERPNode `json:"nodes" hujson:"Nodes"` - } +type ACLDERPRegion struct { + RegionID int `json:"regionID" hujson:"RegionID"` + RegionCode string `json:"regionCode" hujson:"RegionCode"` + RegionName string `json:"regionName" hujson:"RegionName"` + Avoid bool `json:"avoid,omitempty" hujson:"Avoid,omitempty"` + Nodes []*ACLDERPNode `json:"nodes" hujson:"Nodes"` +} - ACLDERPNode struct { - Name string `json:"name" hujson:"Name"` - RegionID int `json:"regionID" hujson:"RegionID"` - HostName string `json:"hostName" hujson:"HostName"` - CertName string `json:"certName,omitempty" hujson:"CertName,omitempty"` - IPv4 string `json:"ipv4,omitempty" hujson:"IPv4,omitempty"` - IPv6 string `json:"ipv6,omitempty" hujson:"IPv6,omitempty"` - STUNPort int `json:"stunPort,omitempty" hujson:"STUNPort,omitempty"` - STUNOnly bool `json:"stunOnly,omitempty" hujson:"STUNOnly,omitempty"` - DERPPort int `json:"derpPort,omitempty" hujson:"DERPPort,omitempty"` - InsecureForTests bool `json:"insecureForRests,omitempty" hujson:"InsecureForTests,omitempty"` - STUNTestIP string `json:"stunTestIP,omitempty" hujson:"STUNTestIP,omitempty"` - } +type ACLDERPNode struct { + Name string `json:"name" hujson:"Name"` + RegionID int `json:"regionID" hujson:"RegionID"` + HostName string `json:"hostName" hujson:"HostName"` + CertName string `json:"certName,omitempty" hujson:"CertName,omitempty"` + IPv4 string `json:"ipv4,omitempty" hujson:"IPv4,omitempty"` + IPv6 string `json:"ipv6,omitempty" hujson:"IPv6,omitempty"` + STUNPort int `json:"stunPort,omitempty" hujson:"STUNPort,omitempty"` + STUNOnly bool `json:"stunOnly,omitempty" hujson:"STUNOnly,omitempty"` + DERPPort int `json:"derpPort,omitempty" hujson:"DERPPort,omitempty"` + InsecureForTests bool `json:"insecureForRests,omitempty" hujson:"InsecureForTests,omitempty"` + STUNTestIP string `json:"stunTestIP,omitempty" hujson:"STUNTestIP,omitempty"` +} - ACLSSH struct { - Action string `json:"action,omitempty" hujson:"Action,omitempty"` - Users []string `json:"users,omitempty" hujson:"Users,omitempty"` - Source []string `json:"src,omitempty" hujson:"Src,omitempty"` - Destination []string `json:"dst,omitempty" hujson:"Dst,omitempty"` - CheckPeriod Duration `json:"checkPeriod,omitempty" hujson:"CheckPeriod,omitempty"` - Recorder []string `json:"recorder,omitempty" hujson:"Recorder,omitempty"` - EnforceRecorder bool `json:"enforceRecorder,omitempty" hujson:"EnforceRecorder,omitempty"` - } +type ACLSSH struct { + Action string `json:"action,omitempty" hujson:"Action,omitempty"` + Users []string `json:"users,omitempty" hujson:"Users,omitempty"` + Source []string `json:"src,omitempty" hujson:"Src,omitempty"` + Destination []string `json:"dst,omitempty" hujson:"Dst,omitempty"` + CheckPeriod Duration `json:"checkPeriod,omitempty" hujson:"CheckPeriod,omitempty"` + Recorder []string `json:"recorder,omitempty" hujson:"Recorder,omitempty"` + EnforceRecorder bool `json:"enforceRecorder,omitempty" hujson:"EnforceRecorder,omitempty"` +} - NodeAttrGrant struct { - Target []string `json:"target,omitempty" hujson:"Target,omitempty"` - Attr []string `json:"attr,omitempty" hujson:"Attr,omitempty"` - App map[string][]*NodeAttrGrantApp `json:"app,omitempty" hujson:"App,omitempty"` - } +type NodeAttrGrant struct { + Target []string `json:"target,omitempty" hujson:"Target,omitempty"` + Attr []string `json:"attr,omitempty" hujson:"Attr,omitempty"` + App map[string][]*NodeAttrGrantApp `json:"app,omitempty" hujson:"App,omitempty"` +} - NodeAttrGrantApp struct { - Name string `json:"name,omitempty" hujson:"Name,omitempty"` - Connectors []string `json:"connectors,omitempty" hujson:"Connectors,omitempty"` - Domains []string `json:"domains,omitempty" hujson:"Domains,omitempty"` - } -) +type NodeAttrGrantApp struct { + Name string `json:"name,omitempty" hujson:"Name,omitempty"` + Connectors []string `json:"connectors,omitempty" hujson:"Connectors,omitempty"` + Domains []string `json:"domains,omitempty" hujson:"Domains,omitempty"` +} // Get retrieves the [ACL] that is currently set for the tailnet. func (pr *PolicyFileResource) Get(ctx context.Context) (*ACL, error) { diff --git a/v2/tailnet_settings.go b/v2/tailnet_settings.go index 8c39341..cadad14 100644 --- a/v2/tailnet_settings.go +++ b/v2/tailnet_settings.go @@ -13,41 +13,39 @@ type TailnetSettingsResource struct { *Client } -type ( - // TailnetSettings represents the current settings of a tailnet. - // See https://tailscale.com/api#model/tailnetsettings. - TailnetSettings struct { - DevicesApprovalOn bool `json:"devicesApprovalOn"` - DevicesAutoUpdatesOn bool `json:"devicesAutoUpdatesOn"` - DevicesKeyDurationDays int `json:"devicesKeyDurationDays"` // days before device key expiry +// TailnetSettings represents the current settings of a tailnet. +// See https://tailscale.com/api#model/tailnetsettings. +type TailnetSettings struct { + DevicesApprovalOn bool `json:"devicesApprovalOn"` + DevicesAutoUpdatesOn bool `json:"devicesAutoUpdatesOn"` + DevicesKeyDurationDays int `json:"devicesKeyDurationDays"` // days before device key expiry - UsersApprovalOn bool `json:"usersApprovalOn"` - UsersRoleAllowedToJoinExternalTailnets RoleAllowedToJoinExternalTailnets `json:"usersRoleAllowedToJoinExternalTailnets"` + UsersApprovalOn bool `json:"usersApprovalOn"` + UsersRoleAllowedToJoinExternalTailnets RoleAllowedToJoinExternalTailnets `json:"usersRoleAllowedToJoinExternalTailnets"` - NetworkFlowLoggingOn bool `json:"networkFlowLoggingOn"` - RegionalRoutingOn bool `json:"regionalRoutingOn"` - PostureIdentityCollectionOn bool `json:"postureIdentityCollectionOn"` - } + NetworkFlowLoggingOn bool `json:"networkFlowLoggingOn"` + RegionalRoutingOn bool `json:"regionalRoutingOn"` + PostureIdentityCollectionOn bool `json:"postureIdentityCollectionOn"` +} - // UpdateTailnetSettingsRequest is a request to update the settings of a tailnet. - // Nil values indicate that the existing setting should be left unchanged. - UpdateTailnetSettingsRequest struct { - DevicesApprovalOn *bool `json:"devicesApprovalOn,omitempty"` - DevicesAutoUpdatesOn *bool `json:"devicesAutoUpdatesOn,omitempty"` - DevicesKeyDurationDays *int `json:"devicesKeyDurationDays,omitempty"` // days before device key expiry +// UpdateTailnetSettingsRequest is a request to update the settings of a tailnet. +// Nil values indicate that the existing setting should be left unchanged. +type UpdateTailnetSettingsRequest struct { + DevicesApprovalOn *bool `json:"devicesApprovalOn,omitempty"` + DevicesAutoUpdatesOn *bool `json:"devicesAutoUpdatesOn,omitempty"` + DevicesKeyDurationDays *int `json:"devicesKeyDurationDays,omitempty"` // days before device key expiry - UsersApprovalOn *bool `json:"usersApprovalOn,omitempty"` - UsersRoleAllowedToJoinExternalTailnets *RoleAllowedToJoinExternalTailnets `json:"usersRoleAllowedToJoinExternalTailnets,omitempty"` + UsersApprovalOn *bool `json:"usersApprovalOn,omitempty"` + UsersRoleAllowedToJoinExternalTailnets *RoleAllowedToJoinExternalTailnets `json:"usersRoleAllowedToJoinExternalTailnets,omitempty"` - NetworkFlowLoggingOn *bool `json:"networkFlowLoggingOn,omitempty"` - RegionalRoutingOn *bool `json:"regionalRoutingOn,omitempty"` - PostureIdentityCollectionOn *bool `json:"postureIdentityCollectionOn,omitempty"` - } + NetworkFlowLoggingOn *bool `json:"networkFlowLoggingOn,omitempty"` + RegionalRoutingOn *bool `json:"regionalRoutingOn,omitempty"` + PostureIdentityCollectionOn *bool `json:"postureIdentityCollectionOn,omitempty"` +} - // RoleAllowedToJoinExternalTailnets constrains which users are allowed to join external tailnets - // based on their role. - RoleAllowedToJoinExternalTailnets string -) +// RoleAllowedToJoinExternalTailnets constrains which users are allowed to join external tailnets +// based on their role. +type RoleAllowedToJoinExternalTailnets string const ( RoleAllowedToJoinExternalTailnetsNone RoleAllowedToJoinExternalTailnets = "none" diff --git a/v2/users.go b/v2/users.go index e88b94a..d80f6a6 100644 --- a/v2/users.go +++ b/v2/users.go @@ -37,32 +37,30 @@ const ( UserStatusOverBillingLimit UserStatus = "over-billing-limit" ) -type ( - // UserType is the type of relation this user has to the tailnet associated with the request. - UserType string - - // UserRole is the role of the user. - UserRole string - - // UserStatus is the status of the user. - UserStatus string - - // User is a representation of a user within a tailnet. - User struct { - ID string `json:"id"` - DisplayName string `json:"displayName"` - LoginName string `json:"loginName"` - ProfilePicURL string `json:"profilePicUrl"` - TailnetID string `json:"tailnetId"` - Created time.Time `json:"created"` - Type UserType `json:"type"` - Role UserRole `json:"role"` - Status UserStatus `json:"status"` - DeviceCount int `json:"deviceCount"` - LastSeen time.Time `json:"lastSeen"` - CurrentlyConnected bool `json:"currentlyConnected"` - } -) +// UserType is the type of relation this user has to the tailnet associated with the request. +type UserType string + +// UserRole is the role of the user. +type UserRole string + +// UserStatus is the status of the user. +type UserStatus string + +// User is a representation of a user within a tailnet. +type User struct { + ID string `json:"id"` + DisplayName string `json:"displayName"` + LoginName string `json:"loginName"` + ProfilePicURL string `json:"profilePicUrl"` + TailnetID string `json:"tailnetId"` + Created time.Time `json:"created"` + Type UserType `json:"type"` + Role UserRole `json:"role"` + Status UserStatus `json:"status"` + DeviceCount int `json:"deviceCount"` + LastSeen time.Time `json:"lastSeen"` + CurrentlyConnected bool `json:"currentlyConnected"` +} // List lists every [User] of the tailnet. If userType and/or role are provided, // the list of users will be filtered by those. diff --git a/v2/webhooks.go b/v2/webhooks.go index ee7b562..782393c 100644 --- a/v2/webhooks.go +++ b/v2/webhooks.go @@ -52,33 +52,31 @@ const ( WebhookExitNodeIPForwardingNotEnabled WebhookSubscriptionType = "exitNodeIPForwardingNotEnabled" ) -type ( - // WebhookProviderType defines the provider type for a Webhook destination. - WebhookProviderType string - - // WebhookSubscriptionType defines events in tailscale to subscribe a Webhook to. - WebhookSubscriptionType string - - // Webhook type defines a webhook endpoint within a tailnet. - Webhook struct { - EndpointID string `json:"endpointId"` - EndpointURL string `json:"endpointUrl"` - ProviderType WebhookProviderType `json:"providerType"` - CreatorLoginName string `json:"creatorLoginName"` - Created time.Time `json:"created"` - LastModified time.Time `json:"lastModified"` - Subscriptions []WebhookSubscriptionType `json:"subscriptions"` - // Secret is only populated on Webhook creation and after secret rotation. - Secret *string `json:"secret,omitempty"` - } +// WebhookProviderType defines the provider type for a Webhook destination. +type WebhookProviderType string + +// WebhookSubscriptionType defines events in tailscale to subscribe a Webhook to. +type WebhookSubscriptionType string + +// Webhook type defines a webhook endpoint within a tailnet. +type Webhook struct { + EndpointID string `json:"endpointId"` + EndpointURL string `json:"endpointUrl"` + ProviderType WebhookProviderType `json:"providerType"` + CreatorLoginName string `json:"creatorLoginName"` + Created time.Time `json:"created"` + LastModified time.Time `json:"lastModified"` + Subscriptions []WebhookSubscriptionType `json:"subscriptions"` + // Secret is only populated on Webhook creation and after secret rotation. + Secret *string `json:"secret,omitempty"` +} - // CreateWebhookRequest type describes the configuration for creating a Webhook. - CreateWebhookRequest struct { - EndpointURL string `json:"endpointUrl"` - ProviderType WebhookProviderType `json:"providerType"` - Subscriptions []WebhookSubscriptionType `json:"subscriptions"` - } -) +// CreateWebhookRequest type describes the configuration for creating a Webhook. +type CreateWebhookRequest struct { + EndpointURL string `json:"endpointUrl"` + ProviderType WebhookProviderType `json:"providerType"` + Subscriptions []WebhookSubscriptionType `json:"subscriptions"` +} // Create creates a new [Webhook] with the specifications provided in the [CreateWebhookRequest]. // Returns the created [Webhook] if successful.