Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-04-21 21:47:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 117
fleet/server/datastore/mysql/schema.sql

2398 lines
170 KiB
MySQL
Raw Normal View History

Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
CREATE TABLE `abm_tokens` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`organization_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`apple_id` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`terms_expired` tinyint(1) NOT NULL DEFAULT '0',
`renew_at` timestamp NOT NULL,
`token` blob NOT NULL,
`macos_default_team_id` int unsigned DEFAULT NULL,
`ios_default_team_id` int unsigned DEFAULT NULL,
`ipados_default_team_id` int unsigned DEFAULT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_abm_tokens_organization_name` (`organization_name`),
KEY `fk_abm_tokens_macos_default_team_id` (`macos_default_team_id`),
KEY `fk_abm_tokens_ios_default_team_id` (`ios_default_team_id`),
KEY `fk_abm_tokens_ipados_default_team_id` (`ipados_default_team_id`),
CONSTRAINT `fk_abm_tokens_ios_default_team_id` FOREIGN KEY (`ios_default_team_id`) REFERENCES `teams` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_abm_tokens_ipados_default_team_id` FOREIGN KEY (`ipados_default_team_id`) REFERENCES `teams` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_abm_tokens_macos_default_team_id` FOREIGN KEY (`macos_default_team_id`) REFERENCES `teams` (`id`) ON DELETE SET NULL
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `activities` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Changed `activities.created_at` timestamp precision to microseconds (#19848) #19845 Changed `activities.created_at` timestamp precision to microseconds # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-06-18 20:37:08 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`user_id` int unsigned DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`user_name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`activity_type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`details` json DEFAULT NULL,
Generate audit logs for activities (#9001) * Generate audit logs for activities * Fix config tests * Fix TestGetConfig/IncludeServerConfig * Fix use of AddAttributes in results only * Stream activities asynchronously * Fix index and add logging * Revert change * Documentation fixes
2022-12-23 22:04:13 +00:00
`streamed` tinyint(1) NOT NULL DEFAULT '0',
feat: don't remove user email from activity feed when user deleted (#14975) # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-11-09 20:50:01 +00:00
`user_email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Unified Queue: add fleet initiated flag to past activities (#26451)
2025-02-19 19:55:20 +00:00
`fleet_initiated` tinyint(1) NOT NULL DEFAULT '0',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
KEY `fk_activities_user_id` (`user_id`),
Generate audit logs for activities (#9001) * Generate audit logs for activities * Fix config tests * Fix TestGetConfig/IncludeServerConfig * Fix use of AddAttributes in results only * Stream activities asynchronously * Fix index and add logging * Revert change * Documentation fixes
2022-12-23 22:04:13 +00:00
KEY `activities_streamed_idx` (`streamed`),
Feature 10566: Optimize query used for listing activities (#11708) - Added index on `created_at` which is the sort key used when loading the log activities widget on the dashboard. - Refactored query used when loading activities to avoid a full table scan.
2023-05-25 19:50:36 +00:00
KEY `activities_created_at_idx` (`created_at`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CONSTRAINT `activities_ibfk_1` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Issue 1892 query perf everywhere (#2580) * wip * wip * wip * Add performance stats * Add docs and other self review fixes * lint * Update based on review comments * Add quick cleanup first and then reset to 1hr * Reduce the load in the test
2021-10-20 21:35:38 +00:00
CREATE TABLE `aggregated_stats` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` bigint unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Issue 1892 query perf everywhere (#2580) * wip * wip * wip * Add performance stats * Add docs and other self review fixes * lint * Update based on review comments * Add quick cleanup first and then reset to 1hr * Reduce the load in the test
2021-10-20 21:35:38 +00:00
`json_value` json NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Issue 1892 query perf everywhere (#2580) * wip * wip * wip * Add performance stats * Add docs and other self review fixes * lint * Update based on review comments * Add quick cleanup first and then reset to 1hr * Reduce the load in the test
2021-10-20 21:35:38 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Update aggregated_stats to support "no team" in addition to "all teams" (#10466)
2023-03-14 21:01:16 +00:00
`global_stats` tinyint(1) NOT NULL DEFAULT '0',
PRIMARY KEY (`id`,`type`,`global_stats`),
Add `hosts_count` field to "list software" endpoint (#3873)
2022-01-26 14:47:56 +00:00
KEY `idx_aggregated_stats_updated_at` (`updated_at`),
KEY `aggregated_stats_type_idx` (`type`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Issue 1892 query perf everywhere (#2580) * wip * wip * wip * Add performance stats * Add docs and other self review fixes * lint * Update based on review comments * Add quick cleanup first and then reset to 1hr * Reduce the load in the test
2021-10-20 21:35:38 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Basic Android enroll functionality (#26386) For #26219 Video explaining the PR: https://www.youtube.com/watch?v=t2hmpE7N-50 This PR includes: - applying a default/dummy policy to Android enterprise - Setting up PubSub topic and subscription to point at Fleet Server - Generating device enrollment token - Enrolling a device Although some tests were added, this PR is mostly manually tested. Integration tests are an outstanding task. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-24 20:31:21 +00:00
CREATE TABLE `android_devices` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`device_id` varchar(32) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`enterprise_specific_id` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`android_policy_id` int unsigned DEFAULT NULL,
`last_policy_sync_time` datetime(3) DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`),
UNIQUE KEY `idx_android_devices_host_id` (`host_id`),
UNIQUE KEY `idx_android_devices_device_id` (`device_id`),
UNIQUE KEY `idx_android_devices_enterprise_specific_id` (`enterprise_specific_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Android scaffold (#26274) Android scaffold code and refactorings - Android packages intended to be decoupled from other Fleet code Video explaining the PR: https://www.youtube.com/watch?v=cza-35Z9Wxk # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-13 20:32:19 +00:00
CREATE TABLE `android_enterprises` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`signup_name` varchar(63) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`enterprise_id` varchar(63) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`created_at` datetime(6) DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Basic Android enroll functionality (#26386) For #26219 Video explaining the PR: https://www.youtube.com/watch?v=t2hmpE7N-50 This PR includes: - applying a default/dummy policy to Android enterprise - Setting up PubSub topic and subscription to point at Fleet Server - Generating device enrollment token - Enrolling a device Although some tests were added, this PR is mostly manually tested. Integration tests are an outstanding task. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-24 20:31:21 +00:00
`signup_token` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`pubsub_topic_id` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Added Android activity and better handling of deleted users. (#26640) For #26218 - Added `users_deleted` table to track user actions if the user was actually deleted. - Added enable/disable Android MDM activities Note: I could not auto-generate fleet.Service mock because it has issues with methods that don't return anything. I ended up using testify mock instead. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-27 20:19:15 +00:00
`user_id` int unsigned NOT NULL DEFAULT '0',
Android scaffold (#26274) Android scaffold code and refactorings - Android packages intended to be decoupled from other Fleet code Video explaining the PR: https://www.youtube.com/watch?v=cza-35Z9Wxk # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-13 20:32:19 +00:00
PRIMARY KEY (`id`)
Basic Android enroll functionality (#26386) For #26219 Video explaining the PR: https://www.youtube.com/watch?v=t2hmpE7N-50 This PR includes: - applying a default/dummy policy to Android enterprise - Setting up PubSub topic and subscription to point at Fleet Server - Generating device enrollment token - Enrolling a device Although some tests were added, this PR is mostly manually tested. Integration tests are an outstanding task. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-24 20:31:21 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Android scaffold (#26274) Android scaffold code and refactorings - Android packages intended to be decoupled from other Fleet code Video explaining the PR: https://www.youtube.com/watch?v=cza-35Z9Wxk # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-13 20:32:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `app_config_json` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL DEFAULT '1',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`json_value` json NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Drop duplicate MySQL indexes. (#24107) #24109 Duplicate indexes identified after running pt-duplicate-key-checker https://docs.percona.com/percona-toolkit/pt-duplicate-key-checker.html # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-11-25 16:03:19 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Add DigiCert configs. (#26780) For #26603 This PR includes: - DigiCert configs - Some config code for custom SCEP, but not fully functional - Validation tests for DigiCert Configs - DigiCert activities (manually tested) This PR does not include the following: - Encryption of DigiCert API tokens -- this requires DB migration (in next PR) - Making an HTTP call to DigiCert API for validation (in later PR) - Integration tests (in later PR) - Changes file (in later PR) # Checklist for submitter - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-03-05 21:02:26 +00:00
INSERT INTO `app_config_json` VALUES (1,'{\"mdm\": {\"ios_updates\": {\"deadline\": null, \"minimum_version\": null}, \"macos_setup\": {\"script\": null, \"software\": null, \"bootstrap_package\": null, \"macos_setup_assistant\": null, \"enable_end_user_authentication\": false, \"enable_release_device_manually\": false}, \"macos_updates\": {\"deadline\": null, \"minimum_version\": null}, \"ipados_updates\": {\"deadline\": null, \"minimum_version\": null}, \"macos_settings\": {\"custom_settings\": null}, \"macos_migration\": {\"mode\": \"\", \"enable\": false, \"webhook_url\": \"\"}, \"windows_updates\": {\"deadline_days\": null, \"grace_period_days\": null}, \"apple_server_url\": \"\", \"windows_settings\": {\"custom_settings\": null}, \"apple_bm_terms_expired\": false, \"apple_business_manager\": null, \"enable_disk_encryption\": false, \"enabled_and_configured\": false, \"end_user_authentication\": {\"idp_name\": \"\", \"metadata\": \"\", \"entity_id\": \"\", \"issuer_uri\": \"\", \"metadata_url\": \"\"}, \"volume_purchasing_program\": null, \"windows_migration_enabled\": false, \"android_enabled_and_configured\": false, \"windows_enabled_and_configured\": false, \"apple_bm_enabled_and_configured\": false}, \"gitops\": {\"repository_url\": \"\", \"gitops_mode_enabled\": false}, \"scripts\": null, \"features\": {\"enable_host_users\": true, \"enable_software_inventory\": false}, \"org_info\": {\"org_name\": \"\", \"contact_url\": \"\", \"org_logo_url\": \"\", \"org_logo_url_light_background\": \"\"}, \"integrations\": {\"jira\": null, \"zendesk\": null, \"digicert\": null, \"google_calendar\": null, \"ndes_scep_proxy\": null, \"custom_scep_proxy\": null}, \"sso_settings\": {\"idp_name\": \"\", \"metadata\": \"\", \"entity_id\": \"\", \"enable_sso\": false, \"issuer_uri\": \"\", \"metadata_url\": \"\", \"idp_image_url\": \"\", \"enable_jit_role_sync\": false, \"enable_sso_idp_login\": false, \"enable_jit_provisioning\": false}, \"agent_options\": {\"config\": {\"options\": {\"logger_plugin\": \"tls\", \"pack_delimiter\": \"/\", \"logger_tls_period\": 10, \"distributed_plugin\": \"tls\", \"disable_distributed\": false, \"logger_tls_endpoint\": \"/api/osquery/log\", \"distributed_interval\": 10, \"distributed_tls_max_attempts\": 3}, \"decorators\": {\"load\": [\"SELECT uuid AS host_uuid FROM system_info;\", \"SELECT hostname AS hostname FROM system_info;\"]}}, \"overrides\": {}}, \"fleet_desktop\": {\"transparency_url\": \"\"}, \"smtp_settings\": {\"port\": 587, \"domain\": \"\", \"server\": \"\", \"password\": \"\", \"user_name\": \"\", \"configured\": false, \"enable_smtp\": false, \"enable_ssl_tls\": true, \"sender_address\": \"\", \"enable_start_tls\": true, \"verify_ssl_certs\": true, \"authentication_type\": \"0\", \"authentication_method\": \"0\"}, \"server_settings\": {\"server_url\": \"\", \"enable_analytics\": false, \"query_report_cap\": 0, \"scripts_disabled\": false, \"deferred_save_host\": false, \"live_query_disabled\": false, \"ai_features_disabled\": false, \"query_reports_disabled\": false}, \"webhook_settings\": {\"interval\": \"0s\", \"activities_webhook\": {\"destination_url\": \"\", \"enable_activities_webhook\": false}, \"host_status_webhook\": {\"days_count\": 0, \"destination_url\": \"\", \"host_percentage\": 0, \"enable_host_status_webhook\": false}, \"vulnerabilities_webhook\": {\"destination_url\": \"\", \"host_batch_size\": 0, \"enable_vulnerabilities_webhook\": false}, \"failing_policies_webhook\": {\"policy_ids\": null, \"destination_url\": \"\", \"host_batch_size\": 0, \"enable_failing_policies_webhook\": false}}, \"host_expiry_settings\": {\"host_expiry_window\": 0, \"host_expiry_enabled\": false}, \"vulnerability_settings\": {\"databases_path\": \"\"}, \"activity_expiry_settings\": {\"activity_expiry_window\": 0, \"activity_expiry_enabled\": false}}','2020-01-01 01:01:01','2020-01-01 01:01:01');
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
DigiCert config (encrypt API token) (#26858) For #26603 This PR includes: - DB migration for DigiCert - new datastore methods and tests - saving/deleting/updating of encrypted DigiCert API tokens - Integration test for DigiCert configs This PR does not include the following: - Making an HTTP call to DigiCert API for validation (in later PR) - Changes file (in later PR) # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-03-06 18:47:57 +00:00
CREATE TABLE `ca_config_assets` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`type` enum('digicert','custom_scep_proxy') COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`value` blob NOT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`),
UNIQUE KEY `idx_ca_config_assets_name` (`name`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Update migrations for main rebase.
2024-03-15 00:15:35 +00:00
CREATE TABLE `calendar_events` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Update migrations for main rebase.
2024-03-15 00:15:35 +00:00
`email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`start_time` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`end_time` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`event` json NOT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`timezone` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Distributed lock and store calendar_events UUID as binary in MySQL (#20277) #19352 Fix for code review comment: https://github.com/fleetdm/fleet/pull/20156#discussion_r1668421504 Also includes changes from https://github.com/fleetdm/fleet/pull/20252 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-10 13:49:05 +00:00
`uuid_bin` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`uuid` varchar(36) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS (insert(insert(insert(insert(hex(`uuid_bin`),9,0,_utf8mb4'-'),14,0,_utf8mb4'-'),19,0,_utf8mb4'-'),24,0,_utf8mb4'-')) VIRTUAL,
Additional changes to happy path and cleanup cron job (#17757) #17441 & #17442
2024-03-21 15:23:59 +00:00
PRIMARY KEY (`id`),
Check for calendar updates after callbacks from Google (#20156) #19352 Video explaining code changes: https://www.loom.com/share/370200a276b84aa388effd6ebd762e01?sid=038508c4-f3c2-40c0-baf6-6b6df682d1f0 In maintenance windows using Google Calendar, calendar event is now recreated within 30 seconds if deleted or moved to the past. - Added new endpoint for Google Calendar: `/api/_version_/fleet/calendar/webhook/{event_uuid}` - Added UUID to `calendar_events` table to make webhook lookup more efficient - webhook endpoint will only recreate event if needed -- it will not fire webhook. Webhook is still done by the cron job. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes:
2024-07-08 15:20:03 +00:00
UNIQUE KEY `idx_one_calendar_event_per_email` (`email`),
Distributed lock and store calendar_events UUID as binary in MySQL (#20277) #19352 Fix for code review comment: https://github.com/fleetdm/fleet/pull/20156#discussion_r1668421504 Also includes changes from https://github.com/fleetdm/fleet/pull/20252 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-10 13:49:05 +00:00
UNIQUE KEY `idx_calendar_events_uuid_bin_unique` (`uuid_bin`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Update migrations for main rebase.
2024-03-15 00:15:35 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `carve_blocks` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`metadata_id` int unsigned NOT NULL,
`block_id` int NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`data` longblob,
PRIMARY KEY (`metadata_id`,`block_id`),
CONSTRAINT `carve_blocks_ibfk_1` FOREIGN KEY (`metadata_id`) REFERENCES `carve_metadata` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `carve_metadata` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`block_count` int unsigned NOT NULL,
`block_size` int unsigned NOT NULL,
`carve_size` bigint unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`carve_id` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
`request_id` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
`session_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`expired` tinyint DEFAULT '0',
`max_block` int DEFAULT '-1',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`error` text COLLATE utf8mb4_unicode_ci,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_session_id` (`session_id`),
UNIQUE KEY `idx_name` (`name`),
KEY `host_id` (`host_id`),
CONSTRAINT `carve_metadata_ibfk_1` FOREIGN KEY (`host_id`) REFERENCES `hosts` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add holdLock and releaseLock methods to schedule package (#8464)
2022-11-16 21:14:38 +00:00
CREATE TABLE `cron_stats` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`instance` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`stats_type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`status` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Add holdLock and releaseLock methods to schedule package (#8464)
2022-11-16 21:14:38 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Monitor and alert on errors in cron jobs (#24347) for #19930 # Checklist for submitter - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - [X] Manual QA for all new/changed functionality # Details This PR adds a new feature to the existing monitoring add-on. The add-on will now send an SNS alert whenever a scheduled job like "vulnerabilities" or "apple_mdm_apns_pusher" exits early due to errors. The alert contains the job type and the set of errors (there can be multiple, since jobs can have multiple sub-jobs). By default the SNS topic for this new alert is the same as the one for the existing cron system alerts, but it can be configured to use a separate topic (e.g. dogfood instance will post to a separate slack channel). The actual changes are: **On the server side:** - Add errors field to cron_stats table (json DEFAULT NULL) - Added errors var to `Schedule` struct to collect errors from jobs - In `RunAllJobs`, collect err from job into new errors var - Update `Schedule.updateStats`and `CronStats.UpdateCronStats`to accept errors argument - If provided, update errors field of cron_stats table **On the monitor side:** - Add new SQL query to look for all completed schedules since last run with non-null errors - send SNS with job ID, name, errors # Testing New automated testing was added for the functional code that gathers and stores errors from cron runs in the database. To test the actual Lambda, I added a row in my `cron_stats` table with errors, then compiled and ran the Lambda executable locally, pointing it to my local mysql and localstack instances: ``` 2024/12/03 14:43:54 main.go:258: Lambda execution environment not found. Falling back to local execution. 2024/12/03 14:43:54 main.go:133: Connected to database! 2024/12/03 14:43:54 main.go:161: Row vulnerabilities last updated at 2024-11-27 03:30:03 +0000 UTC 2024/12/03 14:43:54 main.go:163: *** 1h hasn't updated in more than vulnerabilities, alerting! (status completed) 2024/12/03 14:43:54 main.go:70: Sending SNS Message 2024/12/03 14:43:54 main.go:74: Sending 'Environment: dev Message: Fleet cron 'vulnerabilities' hasn't updated in more than 1h. Last status was 'completed' at 2024-11-27 03:30:03 +0000 UTC.' to 'arn:aws:sns:us-east-1:000000000000:topic1' 2024/12/03 14:43:54 main.go:82: { MessageId: "260864ff-4cc9-4951-acea-cef883b2de5f" } 2024/12/03 14:43:54 main.go:198: *** mdm_apple_profile_manager job had errors, alerting! (errors {"something": "wrong"}) 2024/12/03 14:43:54 main.go:70: Sending SNS Message 2024/12/03 14:43:54 main.go:74: Sending 'Environment: dev Message: Fleet cron 'mdm_apple_profile_manager' (last updated 2024-12-03 20:34:14 +0000 UTC) raised errors during its run: {"something": "wrong"}.' to 'arn:aws:sns:us-east-1:000000000000:topic1' 2024/12/03 14:43:54 main.go:82: { MessageId: "5cd085ef-89f6-42c1-8470-d80a22b295f8"
2024-12-19 21:55:29 +00:00
`errors` json DEFAULT NULL,
Add holdLock and releaseLock methods to schedule package (#8464)
2022-11-16 21:14:38 +00:00
PRIMARY KEY (`id`),
KEY `idx_cron_stats_name_created_at` (`name`,`created_at`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add holdLock and releaseLock methods to schedule package (#8464)
2022-11-16 21:14:38 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Sync CVE scores periodically (#5838)
2022-06-01 16:06:57 +00:00
CREATE TABLE `cve_meta` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`cve` varchar(20) COLLATE utf8mb4_unicode_ci NOT NULL,
Include CVE scores when listing software (#5673)
2022-05-20 16:58:40 +00:00
`cvss_score` double DEFAULT NULL,
`epss_probability` double DEFAULT NULL,
`cisa_known_exploit` tinyint(1) DEFAULT NULL,
Add support for custom headers in fleetctl (#6118)
2022-06-07 20:00:09 +00:00
`published` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`description` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
Include CVE scores when listing software (#5673)
2022-05-20 16:58:40 +00:00
PRIMARY KEY (`cve`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Include CVE scores when listing software (#5673)
2022-05-20 16:58:40 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `distributed_query_campaign_targets` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`type` int DEFAULT NULL,
`distributed_query_campaign_id` int unsigned DEFAULT NULL,
`target_id` int unsigned DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `distributed_query_campaigns` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`query_id` int unsigned DEFAULT NULL,
`status` int DEFAULT NULL,
`user_id` int unsigned DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `email_changes` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`user_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`token` varchar(128) COLLATE utf8mb4_unicode_ci NOT NULL,
`new_email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_unique_email_changes_token` (`token`) USING BTREE,
KEY `fk_email_changes_users` (`user_id`),
CONSTRAINT `fk_email_changes_users` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `enroll_secrets` (
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
Fix migration that isn't compatible with some mysql8 settings (#1992) Fixes #1991 Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2021-09-13 17:20:31 +00:00
`secret` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned DEFAULT NULL,
Fix migration that isn't compatible with some mysql8 settings (#1992) Fixes #1991 Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2021-09-13 17:20:31 +00:00
PRIMARY KEY (`secret`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
KEY `fk_enroll_secrets_team_id` (`team_id`),
CONSTRAINT `enroll_secrets_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add CRUD for EULA (#11274) https://github.com/fleetdm/fleet/issues/10741
2023-05-02 13:09:33 +00:00
CREATE TABLE `eulas` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL,
add CRUD for EULA (#11274) https://github.com/fleetdm/fleet/issues/10741
2023-05-02 13:09:33 +00:00
`token` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`bytes` longblob,
`created_at` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Fleet App Library: DB schema WIP (#21820)
2024-09-09 15:45:38 +00:00
CREATE TABLE `fleet_library_apps` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`token` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`platform` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`installer_url` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`sha256` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Maintained Apps: define app list, implement ingestion (#21946)
2024-09-10 17:55:13 +00:00
`bundle_identifier` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Fleet App Library: DB schema WIP (#21820)
2024-09-09 15:45:38 +00:00
`created_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
`install_script_content_id` int unsigned NOT NULL,
`uninstall_script_content_id` int unsigned NOT NULL,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_fleet_library_apps_token` (`token`),
KEY `fk_fleet_library_apps_install_script_content` (`install_script_content_id`),
KEY `fk_fleet_library_apps_uninstall_script_content` (`uninstall_script_content_id`),
CONSTRAINT `fk_fleet_library_apps_install_script_content` FOREIGN KEY (`install_script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_fleet_library_apps_uninstall_script_content` FOREIGN KEY (`uninstall_script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Queued scripts feature (#16300) This is the feature branch for the [queued scripts](https://github.com/fleetdm/fleet/issues/15529) story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-01-29 14:37:54 +00:00
CREATE TABLE `host_activities` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`activity_id` int unsigned NOT NULL,
Queued scripts feature (#16300) This is the feature branch for the [queued scripts](https://github.com/fleetdm/fleet/issues/15529) story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-01-29 14:37:54 +00:00
PRIMARY KEY (`host_id`,`activity_id`),
KEY `fk_host_activities_activity_id` (`activity_id`),
CONSTRAINT `host_activities_ibfk_1` FOREIGN KEY (`activity_id`) REFERENCES `activities` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `host_additional` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`additional` json DEFAULT NULL,
Remove cleanups and fk for host ids (#3607) * Remove cleanups and fk for host ids * Readd missing things to the schema * Remove unused * Add changes file and fix some error messages * Fix test * Use tx instead of plain writer * Other fixes * More not found test fixes * Go back to getcontext
2022-01-12 17:07:51 +00:00
PRIMARY KEY (`host_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add battery info in host details response (#6394)
2022-06-28 18:11:49 +00:00
CREATE TABLE `host_batteries` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`serial_number` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`cycle_count` int NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`health` varchar(40) COLLATE utf8mb4_unicode_ci NOT NULL,
Add battery info in host details response (#6394)
2022-06-28 18:11:49 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_host_batteries_host_id_serial_number` (`host_id`,`serial_number`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add battery info in host details response (#6394)
2022-06-28 18:11:49 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Update migrations for main rebase.
2024-03-15 00:15:35 +00:00
CREATE TABLE `host_calendar_events` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`calendar_event_id` int unsigned NOT NULL,
`webhook_status` tinyint NOT NULL,
Update migrations for main rebase.
2024-03-15 00:15:35 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_one_calendar_event_per_host` (`host_id`),
KEY `calendar_event_id` (`calendar_event_id`),
CONSTRAINT `host_calendar_events_ibfk_1` FOREIGN KEY (`calendar_event_id`) REFERENCES `calendar_events` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add database table and type definitions for host certificates feature (#26281)
2025-02-13 17:03:17 +00:00
CREATE TABLE `host_certificates` (
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`not_valid_after` datetime(6) NOT NULL,
`not_valid_before` datetime(6) NOT NULL,
`certificate_authority` tinyint(1) NOT NULL,
`common_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`key_algorithm` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`key_strength` int NOT NULL,
`key_usage` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`serial` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`signing_algorithm` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`subject_country` varchar(2) COLLATE utf8mb4_unicode_ci NOT NULL,
`subject_org` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`subject_org_unit` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`subject_common_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`issuer_country` varchar(2) COLLATE utf8mb4_unicode_ci NOT NULL,
`issuer_org` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`issuer_org_unit` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`issuer_common_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`sha1_sum` binary(20) NOT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`deleted_at` datetime(6) DEFAULT NULL,
PRIMARY KEY (`id`),
KEY `idx_host_certs_hid_cn` (`host_id`,`common_name`),
Add datastore methods for host certificates feature (#26416)
2025-02-18 23:49:02 +00:00
KEY `idx_host_certs_not_valid_after` (`host_id`,`not_valid_after`)
Add database table and type definitions for host certificates feature (#26281)
2025-02-13 17:03:17 +00:00
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Track host DEP assignments in new table (#11875)
2023-05-23 18:01:04 +00:00
CREATE TABLE `host_dep_assignments` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Track host DEP assignments in new table (#11875)
2023-05-23 18:01:04 +00:00
`added_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`deleted_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`assign_profile_response` varchar(15) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Surface MDM devices where DEP assignment failed (#16973)
2024-03-01 16:52:19 +00:00
`response_updated_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`retry_job_id` int unsigned NOT NULL DEFAULT '0',
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
`abm_token_id` int unsigned DEFAULT NULL,
Surface MDM devices where DEP assignment failed (#16973)
2024-03-01 16:52:19 +00:00
PRIMARY KEY (`host_id`),
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
KEY `idx_hdep_response` (`assign_profile_response`,`response_updated_at`),
KEY `fk_host_dep_assignments_abm_token_id` (`abm_token_id`),
CONSTRAINT `fk_host_dep_assignments_abm_token_id` FOREIGN KEY (`abm_token_id`) REFERENCES `abm_tokens` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Track host DEP assignments in new table (#11875)
2023-05-23 18:01:04 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add host device auth table (#4494)
2022-03-08 12:05:53 +00:00
CREATE TABLE `host_device_auth` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`token` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
token rotation for fleet desktop (#7779) This implements what's described in detail here https://github.com/fleetdm/fleet/blob/main/proposals/fleet-desktop-token-rotation.md
2022-10-10 20:15:35 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add host device auth table (#4494)
2022-03-08 12:05:53 +00:00
PRIMARY KEY (`host_id`),
Add new endpoints to retrieve device information by orbit identifier (#4531)
2022-03-09 21:13:56 +00:00
UNIQUE KEY `idx_host_device_auth_token` (`token`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add host device auth table (#4494)
2022-03-08 12:05:53 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Ingest file vault recovery keys in macOS (#9712) Related + details at https://github.com/fleetdm/fleet/issues/8708
2023-02-08 14:49:42 +00:00
CREATE TABLE `host_disk_encryption_keys` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`base64_encrypted` text COLLATE utf8mb4_unicode_ci NOT NULL,
Revise LUKS API to expect key slot and salt when escrowing successfully (#23952) #23584 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests ~~- [ ] Manual QA for all new/changed functionality~~ Will be tested E2E
2024-11-20 13:03:02 +00:00
`base64_encrypted_salt` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`key_slot` tinyint unsigned DEFAULT NULL,
Ingest file vault recovery keys in macOS (#9712) Related + details at https://github.com/fleetdm/fleet/issues/8708
2023-02-08 14:49:42 +00:00
`decryptable` tinyint(1) DEFAULT NULL,
Disk encryption keys are now archived when created/updated (#25638) For #25609 Manual QA in progress. Putting this "In Review" since it is a P1. Video explaining the PR: https://youtu.be/bUwIdjBLqiM # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-22 20:54:40 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
allow to rotate disk encryption key from My Device (#10592) Related to https://github.com/fleetdm/fleet/issues/8961 Co-authored-by: Martin Angers <martin.n.angers@gmail.com>
2023-03-20 19:14:07 +00:00
`reset_requested` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`client_error` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Ingest file vault recovery keys in macOS (#9712) Related + details at https://github.com/fleetdm/fleet/issues/8708
2023-02-08 14:49:42 +00:00
PRIMARY KEY (`host_id`),
KEY `idx_host_disk_encryption_keys_decryptable` (`decryptable`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Ingest file vault recovery keys in macOS (#9712) Related + details at https://github.com/fleetdm/fleet/issues/8708
2023-02-08 14:49:42 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Disk encryption keys are now archived when created/updated (#25638) For #25609 Manual QA in progress. Putting this "In Review" since it is a P1. Video explaining the PR: https://youtu.be/bUwIdjBLqiM # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-22 20:54:40 +00:00
CREATE TABLE `host_disk_encryption_keys_archive` (
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`hardware_serial` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`base64_encrypted` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`base64_encrypted_salt` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`key_slot` tinyint unsigned DEFAULT NULL,
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`),
KEY `idx_host_disk_encryption_keys_archive_host_created_at` (`host_id`,`created_at` DESC)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853)
2022-09-21 19:16:31 +00:00
CREATE TABLE `host_disks` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853)
2022-09-21 19:16:31 +00:00
`gigs_disk_space_available` decimal(10,2) NOT NULL DEFAULT '0.00',
`percent_disk_space_available` decimal(10,2) NOT NULL DEFAULT '0.00',
Disk encryption keys are now archived when created/updated (#25638) For #25609 Manual QA in progress. Putting this "In Review" since it is a P1. Video explaining the PR: https://youtu.be/bUwIdjBLqiM # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-22 20:54:40 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Ingest disk encryption flag for hosts, return in `GET /hosts/{id}` endpoint (#8526)
2022-11-02 19:44:02 +00:00
`encrypted` tinyint(1) DEFAULT NULL,
Added gigs_total_disk_space to host_disks. (#15753) Added gigs_total_disk_space to host_disks. This is just the migration that is needed for the rest of the changes in #15058
2023-12-21 18:13:04 +00:00
`gigs_total_disk_space` decimal(10,2) NOT NULL DEFAULT '0.00',
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853)
2022-09-21 19:16:31 +00:00
PRIMARY KEY (`host_id`),
KEY `idx_host_disks_gigs_disk_space_available` (`gigs_disk_space_available`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853)
2022-09-21 19:16:31 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
7135 host display name (#7873)
2022-10-08 12:57:46 +00:00
CREATE TABLE `host_display_names` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`display_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
7135 host display name (#7873)
2022-10-08 12:57:46 +00:00
PRIMARY KEY (`host_id`),
KEY `display_name` (`display_name`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
7135 host display name (#7873)
2022-10-08 12:57:46 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add support for google chrome profiles (#3423)
2021-12-21 20:36:19 +00:00
CREATE TABLE `host_emails` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`source` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Add support for google chrome profiles (#3423)
2021-12-21 20:36:19 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
KEY `idx_host_emails_host_id_email` (`host_id`,`email`),
KEY `idx_host_emails_email` (`email`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add support for google chrome profiles (#3423)
2021-12-21 20:36:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Added host_issues (#19654) * /api/latest/fleet/hosts now returns `critical_vulnerabilities_count` for premium users. This data is held in the new `host_issues` table. The failing policies total is updated in real-time, while the critical vulnerabilities total is updated every hour after vulnerabilities job. * /api/latest/fleet/hosts can be sorted by total_issues_count by specifying `order_key=issues` query parameter. #18115 Video commentary: https://www.loom.com/share/ff4425e217db43d6b3ba4aa075374808 @getvictor TODO: Replacing `disable_failing_policies` with `disable_issues` will be done in a separate PR. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-06-17 17:15:42 +00:00
CREATE TABLE `host_issues` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`failing_policies_count` int unsigned NOT NULL DEFAULT '0',
`critical_vulnerabilities_count` int unsigned NOT NULL DEFAULT '0',
`total_issues_count` int unsigned NOT NULL DEFAULT '0',
Added host_issues (#19654) * /api/latest/fleet/hosts now returns `critical_vulnerabilities_count` for premium users. This data is held in the new `host_issues` table. The failing policies total is updated in real-time, while the critical vulnerabilities total is updated every hour after vulnerabilities job. * /api/latest/fleet/hosts can be sorted by total_issues_count by specifying `order_key=issues` query parameter. #18115 Video commentary: https://www.loom.com/share/ff4425e217db43d6b3ba4aa075374808 @getvictor TODO: Replacing `disable_failing_policies` with `disable_issues` will be done in a separate PR. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-06-17 17:15:42 +00:00
`created_at` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3),
`updated_at` timestamp(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3) ON UPDATE CURRENT_TIMESTAMP(3),
PRIMARY KEY (`host_id`),
KEY `total_issues_count` (`total_issues_count`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
CREATE TABLE `host_mdm` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
`enrolled` tinyint(1) NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`server_url` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
`installed_from_dep` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`mdm_id` int unsigned DEFAULT NULL,
Exclude windows servers from mdm aggregation and lists (#8585)
2022-11-08 09:29:40 +00:00
`is_server` tinyint(1) DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`fleet_enroll_ref` varchar(36) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Remove pending MDM device from Fleet (#23067) #22331 # Demo of fix <div> <a href="https://www.loom.com/share/6bc958c626d04f2b84c0eedba59db78b"> <p>[Demo] Remove pending device from Fleet when removed from ABM #22331 - Watch Video</p> </a> <a href="https://www.loom.com/share/6bc958c626d04f2b84c0eedba59db78b"> <img style="max-width:300px;" src="https://cdn.loom.com/sessions/thumbnails/6bc958c626d04f2b84c0eedba59db78b-8109a9f07d46ad52-full-play.gif"> </a> </div> # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com>
2024-10-24 21:42:30 +00:00
`enrollment_status` enum('On (manual)','On (automatic)','Pending','Off') CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS ((case when (`is_server` = 1) then NULL when ((`enrolled` = 1) and (`installed_from_dep` = 0)) then _utf8mb4'On (manual)' when ((`enrolled` = 1) and (`installed_from_dep` = 1)) then _utf8mb4'On (automatic)' when ((`enrolled` = 0) and (`installed_from_dep` = 1)) then _utf8mb4'Pending' when ((`enrolled` = 0) and (`installed_from_dep` = 0)) then _utf8mb4'Off' else NULL end)) VIRTUAL,
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Update /macadmins endpoints to include MDM name and aggregate count (#7137)
2022-08-10 19:15:01 +00:00
PRIMARY KEY (`host_id`),
KEY `host_mdm_mdm_id_idx` (`mdm_id`),
KEY `host_mdm_enrolled_installed_from_dep_idx` (`enrolled`,`installed_from_dep`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: add db table for host lock and wipe (#16580) > Related issue: #16386 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-05 18:45:27 +00:00
CREATE TABLE `host_mdm_actions` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
feat: add db table for host lock and wipe (#16580) > Related issue: #16386 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-05 18:45:27 +00:00
`lock_ref` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`wipe_ref` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Feature: Remote Lock for macOS, Windows and Linux (#16783) Feature branch for the #9949 story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Roberto Dip <me@roperzh.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <sarah@fleetdm.com>
2024-02-13 18:03:53 +00:00
`unlock_pin` varchar(6) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`unlock_ref` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`fleet_platform` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
feat: add db table for host lock and wipe (#16580) > Related issue: #16386 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-05 18:45:27 +00:00
PRIMARY KEY (`host_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
feat: add db table for host lock and wipe (#16580) > Related issue: #16386 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-05 18:45:27 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: orbit notification for indicating setup experience should run (#22843) > Related issue: #22662 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)). --------- Co-authored-by: dantecatalfamo <dante.catalfamo@gmail.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com>
2024-10-14 21:15:42 +00:00
CREATE TABLE `host_mdm_apple_awaiting_configuration` (
`host_uuid` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`awaiting_configuration` tinyint(1) NOT NULL DEFAULT '0',
PRIMARY KEY (`host_uuid`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
add an endpoint to get an aggregate summary of bootstrap packages (#11156) Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com>
2023-04-22 15:23:38 +00:00
CREATE TABLE `host_mdm_apple_bootstrap_packages` (
`host_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
PRIMARY KEY (`host_uuid`),
KEY `command_uuid` (`command_uuid`),
CONSTRAINT `host_mdm_apple_bootstrap_packages_ibfk_1` FOREIGN KEY (`command_uuid`) REFERENCES `nano_commands` (`command_uuid`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
CREATE TABLE `host_mdm_apple_declarations` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`status` varchar(20) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`operation_type` varchar(20) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`detail` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
Fix bug where DDM/Windows profiles with secrets were not being marked Verified. (#25065) Fixing unreleased secret variables bug where DDM and Windows profiles were not transitioning to Verified. #23238 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2025-01-02 00:43:02 +00:00
`token` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`declaration_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`declaration_identifier` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`declaration_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`secrets_updated_at` datetime(6) DEFAULT NULL,
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
PRIMARY KEY (`host_uuid`,`declaration_uuid`),
KEY `status` (`status`),
KEY `operation_type` (`operation_type`),
CONSTRAINT `host_mdm_apple_declarations_ibfk_1` FOREIGN KEY (`status`) REFERENCES `mdm_delivery_status` (`status`) ON UPDATE CASCADE,
CONSTRAINT `host_mdm_apple_declarations_ibfk_2` FOREIGN KEY (`operation_type`) REFERENCES `mdm_operation_types` (`operation_type`) ON UPDATE CASCADE
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add a cron job to reconcile profiles (#9946) https://github.com/fleetdm/fleet/issues/9590
2023-02-22 17:49:06 +00:00
CREATE TABLE `host_mdm_apple_profiles` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`profile_identifier` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`host_uuid` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`status` varchar(20) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`operation_type` varchar(20) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`detail` text COLLATE utf8mb4_unicode_ci,
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`profile_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
various profile fixes (#11084) ### Related tickets https://github.com/fleetdm/fleet/issues/10775 https://github.com/fleetdm/fleet/issues/10678 https://github.com/fleetdm/fleet/issues/11024 https://github.com/fleetdm/fleet/issues/11026 ### What's happening - Implemented the hashing mechanism defined by @mna in #10678, however this mechanism is mainly relevant for batch profile updates via the CLI, we can't leverage it when a host switches teams. - Modified `BulkSetPendingMDMAppleHostProfiles` so when two profiles with the same identifier are sheduled both for removal and update, the function will now mark only the `install` as `pending` so it's picked by the cron, and will `DELETE` the `remove` entry from the database so it's not picked by the cron and never sent to the user. - `GetHostMDMProfiles` and consequently the profiles returned in `GET /api/_version_/fleet/hosts` return `host_mdm_apple_profiles.state = NULL` as "Enforcing (pending", the distinction between `status = 'pending'` and `status IS NULL` is only useful for the cron, for users both mean the same thing, and all our profile aggregations already behave this way. - Using the solution implemented by @gillespi314 in https://github.com/fleetdm/fleet/pull/10998 we're now deleting the host row from `host_disk_encryption_keys` if a host is moved from a team that enforces disk encryption to a team that doesn't. # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-04-09 02:23:36 +00:00
`checksum` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`retries` tinyint unsigned NOT NULL DEFAULT '0',
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Added cleanup job to delete stuck pending Apple profiles (#24437) #23816 This fix may not completely fix the customer's issue. However, I'd like to see if there are improvements from this fix combined with the previous query optimization fix. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-05 21:40:59 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`secrets_updated_at` datetime(6) DEFAULT NULL,
Fixing issue where deleted profiles were being sent to devices. (#25095) #24804 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2025-01-06 19:16:34 +00:00
`ignore_error` tinyint(1) NOT NULL DEFAULT '0',
Unify profiles database identifier to `profile_uuid` for macOS and Windows profiles. (#15297)
2023-12-04 15:04:06 +00:00
PRIMARY KEY (`host_uuid`,`profile_uuid`),
add a cron job to reconcile profiles (#9946) https://github.com/fleetdm/fleet/issues/9590
2023-02-22 17:49:06 +00:00
KEY `status` (`status`),
KEY `operation_type` (`operation_type`),
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
CONSTRAINT `host_mdm_apple_profiles_ibfk_1` FOREIGN KEY (`status`) REFERENCES `mdm_delivery_status` (`status`) ON UPDATE CASCADE,
CONSTRAINT `host_mdm_apple_profiles_ibfk_2` FOREIGN KEY (`operation_type`) REFERENCES `mdm_operation_types` (`operation_type`) ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Deleting an ABM iOS/iPadOS host keeps it in Fleet. (#21433) #21073 - Deleted iOS/iPadOS host will continue to report to Fleet as long as host is in Apple Business Manager (ABM). - Refetching an offline iOS/iPadOS host will not add new MDM commands to the queue if previous refetch has not completed yet. Video demo: https://www.loom.com/share/2f7ecb22e1924d4cbbbdd7dd297439ef?sid=dbfe1939-cb46-47ca-a7a8-84965ed68a7e I considered `nano_command_results` but could not think of an efficient way to use `nano_command_results` to determine if refetch was already done. The problem is that we're overloading `command_uuid` to include the `REFETCH` identifier. So we can't simply add an index on `(uuid, command_uuid, updated_at)`. We need to do a partial text match on `command_uuid` which then requires a full scan of the matching `updated_at` timestamps. It feels like a search like this could blow up for a large `nano_enrollment_queue` and `nano_command_results` table. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-08-21 13:51:04 +00:00
CREATE TABLE `host_mdm_commands` (
`host_id` int unsigned NOT NULL,
`command_type` varchar(31) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`host_id`,`command_type`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Resend profile if NDES SCEP challenge has expired. (#22841) For #21955 (the story has a video demo of core functionality) Follow up for PR #22542 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-11 14:20:19 +00:00
CREATE TABLE `host_mdm_managed_certificates` (
`host_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Custom SCEP integration (#27121) For #26623 This PR enables deploying an Apple configuration profile with Fleet proxying a custom SCEP server. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-03-17 15:59:07 +00:00
`type` enum('digicert','custom_scep_proxy','ndes') CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'ndes',
`ca_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'NDES',
Resend profile if NDES SCEP challenge has expired. (#22841) For #21955 (the story has a video demo of core functionality) Follow up for PR #22542 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-11 14:20:19 +00:00
`challenge_retrieved_at` timestamp(6) NULL DEFAULT NULL,
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
DigiCert config (encrypt API token) (#26858) For #26603 This PR includes: - DB migration for DigiCert - new datastore methods and tests - saving/deleting/updating of encrypted DigiCert API tokens - Integration test for DigiCert configs This PR does not include the following: - Making an HTTP call to DigiCert API for validation (in later PR) - Changes file (in later PR) # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-03-06 18:47:57 +00:00
`not_valid_after` datetime(6) DEFAULT NULL,
Additional CA validation (#27169) For #26623 - Updated `github.com/groob/plist` to `github.com/micromdm/plist` -- it was renamed - Added validation that restricts DigiCert Fleet variables to `com.apple.security.pkcs12` payloads plus additional restrictions - Added validation that restricts Custom SCEP Fleet variables to `com.apple.security.scep` payloads plus additional restrictions - Enabled multiple CAs (Fleet variables) to be present in an Apple MDM profile. But each CA can only be used once. For example, we can have DigiCert CA and Custom SCEP CA in one Apple profile. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-03-19 13:27:55 +00:00
PRIMARY KEY (`host_uuid`,`profile_uuid`,`ca_name`)
DigiCert config (encrypt API token) (#26858) For #26603 This PR includes: - DB migration for DigiCert - new datastore methods and tests - saving/deleting/updating of encrypted DigiCert API tokens - Integration test for DigiCert configs This PR does not include the following: - Making an HTTP call to DigiCert API for validation (in later PR) - Changes file (in later PR) # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-03-06 18:47:57 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Resend profile if NDES SCEP challenge has expired. (#22841) For #21955 (the story has a video demo of core functionality) Follow up for PR #22542 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-11 14:20:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
CREATE TABLE `host_mdm_windows_profiles` (
`host_uuid` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`status` varchar(20) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`operation_type` varchar(20) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`detail` text COLLATE utf8mb4_unicode_ci,
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`profile_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`retries` tinyint unsigned NOT NULL DEFAULT '0',
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Resend Windows profiles on change (#27308) For #25030 This PR includes the bug fix and tests. It also includes the `secrets_updated_at` columns needed for story #27351. These columns are currently unused and always NULL. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-03-20 19:43:04 +00:00
`checksum` binary(16) NOT NULL DEFAULT '0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0',
`secrets_updated_at` datetime(6) DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Use a uuid as primary key for windows profiles (#15008)
2023-11-07 21:35:28 +00:00
PRIMARY KEY (`host_uuid`,`profile_uuid`),
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
KEY `status` (`status`),
KEY `operation_type` (`operation_type`),
CONSTRAINT `host_mdm_windows_profiles_ibfk_1` FOREIGN KEY (`status`) REFERENCES `mdm_delivery_status` (`status`) ON UPDATE CASCADE,
CONSTRAINT `host_mdm_windows_profiles_ibfk_2` FOREIGN KEY (`operation_type`) REFERENCES `mdm_operation_types` (`operation_type`) ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add a cron job to reconcile profiles (#9946) https://github.com/fleetdm/fleet/issues/9590
2023-02-22 17:49:06 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
CREATE TABLE `host_munki_info` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Allow removal of munki versions (#4189) * Skip any versions that are empty in munki * Return not found if munki is uninstalled * Fix lint * wip * Add deleted at for host_munki_version
2022-02-15 19:29:14 +00:00
`deleted_at` timestamp NULL DEFAULT NULL,
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
PRIMARY KEY (`host_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add mdm and munki (#3406) * Draft for mdm and munki as direct ingest funcs * Expose mdm/munki over API * Add test for service and fix bug * Update queries test * Fix lint * Address review comments
2021-12-21 12:37:58 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
CREATE TABLE `host_munki_issues` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`munki_issue_id` int unsigned NOT NULL,
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`host_id`,`munki_issue_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
CREATE TABLE `host_operating_system` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`os_id` int unsigned NOT NULL,
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
PRIMARY KEY (`host_id`),
KEY `idx_host_operating_system_id` (`os_id`),
CONSTRAINT `host_operating_system_ibfk_1` FOREIGN KEY (`os_id`) REFERENCES `operating_systems` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add orbit version and osquery version usage statistics (#8229)
2022-10-24 16:12:56 +00:00
CREATE TABLE `host_orbit_info` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`version` varchar(50) COLLATE utf8mb4_unicode_ci NOT NULL,
Added orbit_version, fleet_desktop_version, and scripts_enabled to host details. (#18123) #17361 #17148 In GET fleet/hosts/:id response, added the following fields: - orbit_version - `orbit_version == null` means this agent is not an orbit agent - fleet_desktop_version - `fleet_desktop_version == null` means this agent is not an orbit agent or it is an older version which is not collecting the desktop version - `fleet_desktop_version == ""` means this agent is an orbit agent but does not have fleet desktop - scripts_enabled - `scripts_enabled == null` means this agent is not an orbit agent or it is an older version which is not collecting scripts_enabled In orbit_info table, added the following fields: - desktop_version - scripts_enabled Updated docs for orbit_info PR: https://github.com/fleetdm/fleet/pull/18135 Updated API docs: https://github.com/fleetdm/fleet/pull/17814 MDM lock/unlock/wipe error messages are not part of this PR. They will be in a separate PR. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-04-09 21:33:44 +00:00
`desktop_version` varchar(50) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`scripts_enabled` tinyint(1) DEFAULT NULL,
Add orbit version and osquery version usage statistics (#8229)
2022-10-24 16:12:56 +00:00
PRIMARY KEY (`host_id`),
KEY `idx_host_orbit_info_version` (`version`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add orbit version and osquery version usage statistics (#8229)
2022-10-24 16:12:56 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add `/scripts/run` and `scripts/run/sync` API endpoints to run scripts (part 1) (#13417)
2023-08-21 18:47:19 +00:00
CREATE TABLE `host_script_results` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
Add `/scripts/run` and `scripts/run/sync` API endpoints to run scripts (part 1) (#13417)
2023-08-21 18:47:19 +00:00
`execution_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`output` text COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`runtime` int unsigned NOT NULL DEFAULT '0',
`exit_code` int DEFAULT NULL,
Add `/scripts/run` and `scripts/run/sync` API endpoints to run scripts (part 1) (#13417)
2023-08-21 18:47:19 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`script_id` int unsigned DEFAULT NULL,
`user_id` int unsigned DEFAULT NULL,
Queued scripts feature (#16300) This is the feature branch for the [queued scripts](https://github.com/fleetdm/fleet/issues/15529) story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-01-29 14:37:54 +00:00
`sync_request` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`script_content_id` int unsigned DEFAULT NULL,
Soft-delete entries for host script results so the details are still available in activities (#19457)
2024-06-12 14:26:03 +00:00
`host_deleted_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`timeout` int DEFAULT NULL,
Include the policy ID and name in the "script ran" activity of a script run queued by a policy failure (#22690) #22692 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-08 20:45:31 +00:00
`policy_id` int unsigned DEFAULT NULL,
fix: migration order
2024-10-25 22:11:56 +00:00
`setup_experience_script_id` int unsigned DEFAULT NULL,
Allow software uninstalls, script-based lock/unlock/wipe, while scripts are globally disabled (#24815) For #22875. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-30 14:32:48 +00:00
`is_internal` tinyint(1) DEFAULT '0',
Add `/scripts/run` and `scripts/run/sync` API endpoints to run scripts (part 1) (#13417)
2023-08-21 18:47:19 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_host_script_results_execution_id` (`execution_id`),
DB migrations for saved scripts (#13765)
2023-09-11 15:54:34 +00:00
KEY `idx_host_script_results_host_exit_created` (`host_id`,`exit_code`,`created_at`),
KEY `fk_host_script_results_script_id` (`script_id`),
Feat: saved scripts (#14409) For #9537
2023-10-10 22:00:45 +00:00
KEY `idx_host_script_created_at` (`host_id`,`script_id`,`created_at`),
Queued scripts feature (#16300) This is the feature branch for the [queued scripts](https://github.com/fleetdm/fleet/issues/15529) story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-01-29 14:37:54 +00:00
KEY `fk_host_script_results_user_id` (`user_id`),
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
KEY `script_content_id` (`script_content_id`),
Include the policy ID and name in the "script ran" activity of a script run queued by a policy failure (#22690) #22692 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-08 20:45:31 +00:00
KEY `fk_script_result_policy_id` (`policy_id`),
fix: migration order
2024-10-25 22:11:56 +00:00
KEY `fk_host_script_results_setup_experience_id` (`setup_experience_script_id`),
Queued scripts feature (#16300) This is the feature branch for the [queued scripts](https://github.com/fleetdm/fleet/issues/15529) story. --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-01-29 14:37:54 +00:00
CONSTRAINT `fk_host_script_results_script_id` FOREIGN KEY (`script_id`) REFERENCES `scripts` (`id`) ON DELETE SET NULL,
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
CONSTRAINT `fk_host_script_results_setup_experience_id` FOREIGN KEY (`setup_experience_script_id`) REFERENCES `setup_experience_scripts` (`id`) ON DELETE SET NULL,
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
CONSTRAINT `fk_host_script_results_user_id` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
Include the policy ID and name in the "script ran" activity of a script run queued by a policy failure (#22690) #22692 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-08 20:45:31 +00:00
CONSTRAINT `host_script_results_ibfk_1` FOREIGN KEY (`script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE,
CONSTRAINT `host_script_results_ibfk_2` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add `/scripts/run` and `scripts/run/sync` API endpoints to run scripts (part 1) (#13417)
2023-08-21 18:47:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Serialize hosts writes per instance (#2753) * Serialize hosts writes per instance * Write hosts asynchronously * Dont make the save in a goroutine * Revert "Dont make the save in a goroutine" This reverts commit 4a890c5271142755dec69a741582e7eca5c4c62c. * Make all savehosts async * Address review comments and make this approach configurable * Address review comments * Disable bulk seen time marking for a test * Move host seen times to a new table * Remove unused * Add seen_time to list hosts * Add some jitter to seen time flushing * Remove unused * Add timeout to deferred save host * Add tests for serialSaveHost * Update hosts in labels and policy executions in a serial way * Address review comments and remove fk constraints in host software * Make errCh buffered * Add changes file * Readd key
2021-11-08 14:42:37 +00:00
CREATE TABLE `host_seen_times` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Serialize hosts writes per instance (#2753) * Serialize hosts writes per instance * Write hosts asynchronously * Dont make the save in a goroutine * Revert "Dont make the save in a goroutine" This reverts commit 4a890c5271142755dec69a741582e7eca5c4c62c. * Make all savehosts async * Address review comments and make this approach configurable * Address review comments * Disable bulk seen time marking for a test * Move host seen times to a new table * Remove unused * Add seen_time to list hosts * Add some jitter to seen time flushing * Remove unused * Add timeout to deferred save host * Add tests for serialSaveHost * Update hosts in labels and policy executions in a serial way * Address review comments and remove fk constraints in host software * Make errCh buffered * Add changes file * Readd key
2021-11-08 14:42:37 +00:00
`seen_time` timestamp NULL DEFAULT NULL,
PRIMARY KEY (`host_id`),
KEY `idx_host_seen_times_seen_time` (`seen_time`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Serialize hosts writes per instance (#2753) * Serialize hosts writes per instance * Write hosts asynchronously * Dont make the save in a goroutine * Revert "Dont make the save in a goroutine" This reverts commit 4a890c5271142755dec69a741582e7eca5c4c62c. * Make all savehosts async * Address review comments and make this approach configurable * Address review comments * Disable bulk seen time marking for a test * Move host seen times to a new table * Remove unused * Add seen_time to list hosts * Add some jitter to seen time flushing * Remove unused * Add timeout to deferred save host * Add tests for serialSaveHost * Update hosts in labels and policy executions in a serial way * Address review comments and remove fk constraints in host software * Make errCh buffered * Add changes file * Readd key
2021-11-08 14:42:37 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `host_software` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`software_id` bigint unsigned NOT NULL,
Collect last_opened_at for macOS software, and return it in host details payload (#5376)
2022-04-26 18:16:59 +00:00
`last_opened_at` timestamp NULL DEFAULT NULL,
Issue 1601 disk space (#1735) * wip * Add tests * Add migration * Fix tests and set platform for windows correctly
2021-08-20 17:57:37 +00:00
PRIMARY KEY (`host_id`,`software_id`),
Serialize hosts writes per instance (#2753) * Serialize hosts writes per instance * Write hosts asynchronously * Dont make the save in a goroutine * Revert "Dont make the save in a goroutine" This reverts commit 4a890c5271142755dec69a741582e7eca5c4c62c. * Make all savehosts async * Address review comments and make this approach configurable * Address review comments * Disable bulk seen time marking for a test * Move host seen times to a new table * Remove unused * Add seen_time to list hosts * Add some jitter to seen time flushing * Remove unused * Add timeout to deferred save host * Add tests for serialSaveHost * Update hosts in labels and policy executions in a serial way * Address review comments and remove fk constraints in host software * Make errCh buffered * Add changes file * Readd key
2021-11-08 14:42:37 +00:00
KEY `host_software_software_fk` (`software_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feature: Store installed file path when ingesting software (#11214) Store software installed paths into the host_software_installed_paths table when ingesting osquery software data.
2023-05-17 18:49:09 +00:00
CREATE TABLE `host_software_installed_paths` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`software_id` bigint unsigned NOT NULL,
Feature: Store installed file path when ingesting software (#11214) Store software installed paths into the host_software_installed_paths table when ingesting osquery software data.
2023-05-17 18:49:09 +00:00
`installed_path` text COLLATE utf8mb4_unicode_ci NOT NULL,
Add `team_identifier` to macOS software (#23766) Changes to add `team_identifier` signing information to macOS applications on the `/api/latest/fleet/hosts/:id/software` API endpoint. Docs: https://github.com/fleetdm/fleet/pull/23743 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [ X Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)). --------- Co-authored-by: Tim Lee <timlee@fleetdm.com> Co-authored-by: Ian Littman <iansltx@gmail.com>
2024-11-15 17:17:04 +00:00
`team_identifier` varchar(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Feature: Store installed file path when ingesting software (#11214) Store software installed paths into the host_software_installed_paths table when ingesting osquery software data.
2023-05-17 18:49:09 +00:00
PRIMARY KEY (`id`),
KEY `host_id_software_id_idx` (`host_id`,`software_id`)
Add `team_identifier` to macOS software (#23766) Changes to add `team_identifier` signing information to macOS applications on the `/api/latest/fleet/hosts/:id/software` API endpoint. Docs: https://github.com/fleetdm/fleet/pull/23743 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [ X Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)). --------- Co-authored-by: Tim Lee <timlee@fleetdm.com> Co-authored-by: Ian Littman <iansltx@gmail.com>
2024-11-15 17:17:04 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Feature: Store installed file path when ingesting software (#11214) Store software installed paths into the host_software_installed_paths table when ingesting osquery software data.
2023-05-17 18:49:09 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
CREATE TABLE `host_software_installs` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`execution_id` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`host_id` int unsigned NOT NULL,
Ensure software installs aren't deleted, and have enough info to display, even if associated installer or title are deleted (#22996) #21654 #22087 Also persists title/installer filename/version to the install record in case those are edited, though we'll continue showing the current title name when pulling the install record at this point, and don't expose installed version anywhere for now. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. (**force-set updated_at to avoid**) - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-21 22:46:50 +00:00
`software_installer_id` int unsigned DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`pre_install_query_output` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`install_script_output` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`install_script_exit_code` int DEFAULT NULL,
`post_install_script_output` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`post_install_script_exit_code` int DEFAULT NULL,
`user_id` int unsigned DEFAULT NULL,
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Add self_service bool to software_installers table (#19122) #19116
2024-05-21 14:13:12 +00:00
`self_service` tinyint(1) NOT NULL DEFAULT '0',
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`host_deleted_at` timestamp(6) NULL DEFAULT NULL,
Deleting installed software now makes it available for install (#21487) #21427 Also fixed #21488 - Demo video: https://www.loom.com/share/0a97afa680c74fa884ac07e87857098a # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-08-26 22:30:56 +00:00
`removed` tinyint NOT NULL DEFAULT '0',
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`uninstall_script_output` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`uninstall_script_exit_code` int DEFAULT NULL,
`uninstall` tinyint unsigned NOT NULL DEFAULT '0',
Added created_at to fleet/scripts/results and switched to enum for install status. (#22019)
2024-09-11 20:56:49 +00:00
`status` enum('pending_install','failed_install','installed','pending_uninstall','failed_uninstall') COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS ((case when (`removed` = 1) then NULL when ((`post_install_script_exit_code` is not null) and (`post_install_script_exit_code` = 0)) then _utf8mb4'installed' when ((`post_install_script_exit_code` is not null) and (`post_install_script_exit_code` <> 0)) then _utf8mb4'failed_install' when ((`install_script_exit_code` is not null) and (`install_script_exit_code` = 0)) then _utf8mb4'installed' when ((`install_script_exit_code` is not null) and (`install_script_exit_code` <> 0)) then _utf8mb4'failed_install' when ((`pre_install_query_output` is not null) and (`pre_install_query_output` = _utf8mb4'')) then _utf8mb4'failed_install' when ((`host_id` is not null) and (`uninstall` = 0)) then _utf8mb4'pending_install' when ((`uninstall_script_exit_code` is not null) and (`uninstall_script_exit_code` <> 0)) then _utf8mb4'failed_uninstall' when ((`uninstall_script_exit_code` is not null) and (`uninstall_script_exit_code` = 0)) then NULL when ((`host_id` is not null) and (`uninstall` = 1)) then _utf8mb4'pending_uninstall' else NULL end)) STORED,
Add policy ID and name to activity for automated software installs, list Fleet as author rather than installer uploader (#22747) #22424, #22705 TODO: integration test updates # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-09 23:15:56 +00:00
`policy_id` int unsigned DEFAULT NULL,
Ensure software installs aren't deleted, and have enough info to display, even if associated installer or title are deleted (#22996) #21654 #22087 Also persists title/installer filename/version to the install record in case those are edited, though we'll continue showing the current title name when pulling the install record at this point, and don't expose installed version anywhere for now. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. (**force-set updated_at to avoid**) - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-21 22:46:50 +00:00
`installer_filename` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '[deleted installer]',
`version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'unknown',
`software_title_id` int unsigned DEFAULT NULL,
`software_title_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '[deleted title]',
Pass through original status of an install when the removed flag is set when GETing the install result (#23072) #23070 // https://www.loom.com/share/6ac7260712c94d4890f67fe8d5a26ea1 Also removes the unused, undocumented Detail field on software install results # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-22 17:47:46 +00:00
`execution_status` enum('pending_install','failed_install','installed','pending_uninstall','failed_uninstall') COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS ((case when ((`post_install_script_exit_code` is not null) and (`post_install_script_exit_code` = 0)) then _utf8mb4'installed' when ((`post_install_script_exit_code` is not null) and (`post_install_script_exit_code` <> 0)) then _utf8mb4'failed_install' when ((`install_script_exit_code` is not null) and (`install_script_exit_code` = 0)) then _utf8mb4'installed' when ((`install_script_exit_code` is not null) and (`install_script_exit_code` <> 0)) then _utf8mb4'failed_install' when ((`pre_install_query_output` is not null) and (`pre_install_query_output` = _utf8mb4'')) then _utf8mb4'failed_install' when ((`host_id` is not null) and (`uninstall` = 0)) then _utf8mb4'pending_install' when ((`uninstall_script_exit_code` is not null) and (`uninstall_script_exit_code` <> 0)) then _utf8mb4'failed_uninstall' when ((`uninstall_script_exit_code` is not null) and (`uninstall_script_exit_code` = 0)) then NULL when ((`host_id` is not null) and (`uninstall` = 1)) then _utf8mb4'pending_uninstall' else NULL end)) VIRTUAL,
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_host_software_installs_execution_id` (`execution_id`),
Create and return upcoming/past host activities for software installs (#18772)
2024-05-07 15:28:16 +00:00
KEY `fk_host_software_installs_user_id` (`user_id`),
Add API endpoint to list host/device software (#18676)
2024-05-01 18:37:52 +00:00
KEY `idx_host_software_installs_host_installer` (`host_id`,`software_installer_id`),
Add policy ID and name to activity for automated software installs, list Fleet as author rather than installer uploader (#22747) #22424, #22705 TODO: integration test updates # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-09 23:15:56 +00:00
KEY `fk_software_install_policy_id` (`policy_id`),
Ensure software installs aren't deleted, and have enough info to display, even if associated installer or title are deleted (#22996) #21654 #22087 Also persists title/installer filename/version to the install record in case those are edited, though we'll continue showing the current title name when pulling the install record at this point, and don't expose installed version anywhere for now. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. (**force-set updated_at to avoid**) - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-21 22:46:50 +00:00
KEY `fk_host_software_installs_installer_id` (`software_installer_id`),
KEY `fk_host_software_installs_software_title_id` (`software_title_id`),
CONSTRAINT `fk_host_software_installs_installer_id` FOREIGN KEY (`software_installer_id`) REFERENCES `software_installers` (`id`) ON DELETE SET NULL ON UPDATE CASCADE,
CONSTRAINT `fk_host_software_installs_software_title_id` FOREIGN KEY (`software_title_id`) REFERENCES `software_titles` (`id`) ON DELETE SET NULL ON UPDATE CASCADE,
Add policy ID and name to activity for automated software installs, list Fleet as author rather than installer uploader (#22747) #22424, #22705 TODO: integration test updates # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-09 23:15:56 +00:00
CONSTRAINT `fk_host_software_installs_user_id` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
CONSTRAINT `host_software_installs_ibfk_1` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add `software_updated_at` field to host (#9116) #9012 - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [x] Added/updated tests Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2023-01-09 11:55:43 +00:00
CREATE TABLE `host_updates` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
Add `software_updated_at` field to host (#9116) #9012 - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [x] Added/updated tests Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2023-01-09 11:55:43 +00:00
`software_updated_at` timestamp NULL DEFAULT NULL,
PRIMARY KEY (`host_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add `software_updated_at` field to host (#9116) #9012 - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [x] Added/updated tests Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2023-01-09 11:55:43 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `host_users` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`uid` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`username` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`groupname` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`removed_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`user_type` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`shell` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT '',
Drop duplicate MySQL indexes. (#24107) #24109 Duplicate indexes identified after running pt-duplicate-key-checker https://docs.percona.com/percona-toolkit/pt-duplicate-key-checker.html # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-11-25 16:03:19 +00:00
PRIMARY KEY (`host_id`,`uid`,`username`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
CREATE TABLE `host_vpp_software_installs` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`adam_id` varchar(16) COLLATE utf8mb4_unicode_ci NOT NULL,
feat: VPP app installation flow (#20448) > Related issue: #19868 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-07-18 22:35:26 +00:00
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`user_id` int unsigned DEFAULT NULL,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`self_service` tinyint(1) NOT NULL DEFAULT '0',
`associated_event_id` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Fixed duplicate app install activity on host (#20944) Unreleased bug for iOS/iPadOS VPP #19447 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-08-01 18:32:45 +00:00
`platform` varchar(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Deleting installed software now makes it available for install (#21487) #21427 Also fixed #21488 - Demo video: https://www.loom.com/share/0a97afa680c74fa884ac07e87857098a # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-08-26 22:30:56 +00:00
`removed` tinyint NOT NULL DEFAULT '0',
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
`vpp_token_id` int unsigned DEFAULT NULL,
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
`policy_id` int unsigned DEFAULT NULL,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
PRIMARY KEY (`id`),
feat: VPP app installation flow (#20448) > Related issue: #19868 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-07-18 22:35:26 +00:00
UNIQUE KEY `idx_host_vpp_software_installs_command_uuid` (`command_uuid`),
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
KEY `user_id` (`user_id`),
Fixed duplicate app install activity on host (#20944) Unreleased bug for iOS/iPadOS VPP #19447 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-08-01 18:32:45 +00:00
KEY `adam_id` (`adam_id`,`platform`),
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
KEY `fk_host_vpp_software_installs_vpp_token_id` (`vpp_token_id`),
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
KEY `fk_host_vpp_software_installs_policy_id` (`policy_id`),
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
CONSTRAINT `fk_host_vpp_software_installs_vpp_token_id` FOREIGN KEY (`vpp_token_id`) REFERENCES `vpp_tokens` (`id`) ON DELETE SET NULL,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
CONSTRAINT `host_vpp_software_installs_ibfk_1` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
CONSTRAINT `host_vpp_software_installs_ibfk_3` FOREIGN KEY (`adam_id`, `platform`) REFERENCES `vpp_apps` (`adam_id`, `platform`) ON DELETE CASCADE,
CONSTRAINT `host_vpp_software_installs_ibfk_4` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL
Fixed duplicate app install activity on host (#20944) Unreleased bug for iOS/iPadOS VPP #19447 # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-08-01 18:32:45 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `hosts` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`osquery_host_id` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`detail_updated_at` timestamp NULL DEFAULT NULL,
`node_key` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`hostname` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`platform` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`osquery_version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`os_version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`build` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`platform_like` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`code_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`uptime` bigint NOT NULL DEFAULT '0',
`memory` bigint NOT NULL DEFAULT '0',
`cpu_type` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`cpu_subtype` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`cpu_brand` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`cpu_physical_cores` int NOT NULL DEFAULT '0',
`cpu_logical_cores` int NOT NULL DEFAULT '0',
`hardware_vendor` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`hardware_model` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`hardware_version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`hardware_serial` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`computer_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`primary_ip_id` int unsigned DEFAULT NULL,
`distributed_interval` int DEFAULT '0',
`logger_tls_period` int DEFAULT '0',
`config_tls_refresh` int DEFAULT '0',
`primary_ip` varchar(45) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`primary_mac` varchar(17) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`label_updated_at` timestamp NOT NULL DEFAULT '2000-01-01 00:00:00',
`last_enrolled_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`refetch_requested` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned DEFAULT NULL,
Add policy updated at (#2246) * wip * Add policy updated at interval and update the UI to use that * Update rest api * Fix tests
2021-09-27 19:27:38 +00:00
`policy_updated_at` timestamp NOT NULL DEFAULT '2000-01-01 00:00:00',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`public_ip` varchar(45) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Orbit remote management for flags (#7246) Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2022-09-23 19:00:23 +00:00
`orbit_node_key` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin DEFAULT NULL,
Refetch host mdm enrollment status until unenrolled (#11740)
2023-05-17 19:52:45 +00:00
`refetch_critical_queries_until` timestamp NULL DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_osquery_host_id` (`osquery_host_id`),
UNIQUE KEY `idx_host_unique_nodekey` (`node_key`),
add index to `orbit_node_key` (#7990) Co-authored-by: Martin Angers <martin.n.angers@gmail.com>
2022-09-27 20:55:07 +00:00
UNIQUE KEY `idx_host_unique_orbitnodekey` (`orbit_node_key`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
KEY `fk_hosts_team_id` (`team_id`),
Improve vulnerability detection for Ubuntu (#6102) Feature: Improve our capability to detect vulnerable software on Ubuntu hosts To improve the capability of detecting vulnerable software on Ubuntu, we are now using OVAL definitions to detect vulnerable software on Ubuntu hosts. If data sync is enabled (disable_data_sync=false) OVAL definitions are automatically kept up to date (they are 'refreshed' once per day) - there's also the option to manually download the OVAL definitions using the 'fleetctl vulnerability-data-stream' command. Downloaded definitions are then parsed into an intermediary format and then used to identify vulnerable software on Ubuntu hosts. Finally, any 'recent' detected vulnerabilities are sent to any third-party integrations.
2022-06-08 01:09:47 +00:00
KEY `hosts_platform_idx` (`platform`),
Ingest pending MDM hosts (#9065) Co-authored-by @roperzh
2022-12-26 21:32:39 +00:00
KEY `idx_hosts_hardware_serial` (`hardware_serial`),
adjustments to support 60k MDM hosts after load testing (#21247) for https://github.com/fleetdm/fleet/issues/20007
2024-08-26 18:20:57 +00:00
KEY `idx_hosts_uuid` (`uuid`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CONSTRAINT `hosts_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `invite_teams` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`invite_id` int unsigned NOT NULL,
`team_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`role` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`invite_id`,`team_id`),
KEY `fk_team_id` (`team_id`),
CONSTRAINT `invite_teams_ibfk_1` FOREIGN KEY (`invite_id`) REFERENCES `invites` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `invite_teams_ibfk_2` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `invites` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`invited_by` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`position` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`token` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`sso_enabled` tinyint(1) NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`global_role` varchar(64) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Allow opting in users to email verification on login (#24273) #22790 Changes file is on the FE PR. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-05 14:37:10 +00:00
`mfa_enabled` tinyint(1) NOT NULL DEFAULT '0',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_invite_unique_email` (`email`),
UNIQUE KEY `idx_invite_unique_key` (`token`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Merge jira-integration branch to main (#4949)
2022-04-05 16:56:15 +00:00
CREATE TABLE `jobs` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Merge jira-integration branch to main (#4949)
2022-04-05 16:56:15 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Merge jira-integration branch to main (#4949)
2022-04-05 16:56:15 +00:00
`args` json DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`state` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`retries` int NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`error` text COLLATE utf8mb4_unicode_ci,
Allow "not_before" timestamp for worker jobs, schedule more quickly (#11512)
2023-05-03 20:25:36 +00:00
`not_before` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
add index to jobs table (#21090)
2024-08-06 18:49:01 +00:00
PRIMARY KEY (`id`),
KEY `idx_jobs_state_not_before_updated_at` (`state`,`not_before`,`updated_at`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Merge jira-integration branch to main (#4949)
2022-04-05 16:56:15 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Send `DeviceConfigured` MDM command after DEP enrollment (#17737)
2024-03-25 17:25:29 +00:00
INSERT INTO `jobs` VALUES (1,'2024-03-20 00:00:00','2024-03-20 00:00:00','macos_setup_assistant','{\"task\": \"update_all_profiles\"}','queued',0,'','2024-03-20 00:00:00');
Merge jira-integration branch to main (#4949)
2022-04-05 16:56:15 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `label_membership` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`label_id` int unsigned NOT NULL,
`host_id` int unsigned NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`host_id`,`label_id`),
Remove fk label membership (#2157) * Remove fk from label membership * Add changes file * Fix tests * No need to IGNORE anymore
2021-09-21 14:48:20 +00:00
KEY `idx_lm_label_id` (`label_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `labels` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`description` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`query` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
`platform` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`label_type` int unsigned NOT NULL DEFAULT '1',
`label_membership_type` int unsigned NOT NULL DEFAULT '0',
Add author ID to labels (#27055) For #27035 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [ ] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality ## Details This PR adds an `author_id` column to the `labels` table, and adds the associated properties to the `Label` and `LabelSpec` types. When a new label is created via the UI or API, an author ID is set on the label if one can be inferred from the context. Otherwise, the author ID is set to `null`. ## Authz and Automated testing Additional backend authorization logic is introduced in a follow-on PR, https://github.com/fleetdm/fleet/pull/27089, because rconciling all of the test updates between this PR and https://github.com/fleetdm/fleet/pull/27038 was getting complicated. ## Manual Testing * Tested in the UI by creating a new label on the Hosts page * Tested via Gitops by merging this branch with https://github.com/fleetdm/fleet/pull/27038 and doing `fleetctl gitops` with a global config with `labels:` in it.
2025-03-20 21:05:16 +00:00
`author_id` int unsigned DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_label_unique_name` (`name`),
Add author ID to labels (#27055) For #27035 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [ ] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality ## Details This PR adds an `author_id` column to the `labels` table, and adds the associated properties to the `Label` and `LabelSpec` types. When a new label is created via the UI or API, an author ID is set on the label if one can be inferred from the context. Otherwise, the author ID is set to `null`. ## Authz and Automated testing Additional backend authorization logic is introduced in a follow-on PR, https://github.com/fleetdm/fleet/pull/27089, because rconciling all of the test updates between this PR and https://github.com/fleetdm/fleet/pull/27038 was getting complicated. ## Manual Testing * Tested in the UI by creating a new label on the Hosts page * Tested via Gitops by merging this branch with https://github.com/fleetdm/fleet/pull/27038 and doing `fleetctl gitops` with a global config with `labels:` in it.
2025-03-20 21:05:16 +00:00
KEY `author_id` (`author_id`),
FULLTEXT KEY `labels_search` (`name`),
CONSTRAINT `labels_ibfk_1` FOREIGN KEY (`author_id`) REFERENCES `users` (`id`) ON DELETE SET NULL
Android: add 'Android' builtin label, add new Android hosts to 'All hosts' and this label (#26585)
2025-02-25 19:44:48 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=6 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Add author ID to labels (#27055) For #27035 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [ ] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality ## Details This PR adds an `author_id` column to the `labels` table, and adds the associated properties to the `Label` and `LabelSpec` types. When a new label is created via the UI or API, an author ID is set on the label if one can be inferred from the context. Otherwise, the author ID is set to `null`. ## Authz and Automated testing Additional backend authorization logic is introduced in a follow-on PR, https://github.com/fleetdm/fleet/pull/27089, because rconciling all of the test updates between this PR and https://github.com/fleetdm/fleet/pull/27038 was getting complicated. ## Manual Testing * Tested in the UI by creating a new label on the Hosts page * Tested via Gitops by merging this branch with https://github.com/fleetdm/fleet/pull/27038 and doing `fleetctl gitops` with a global config with `labels:` in it.
2025-03-20 21:05:16 +00:00
INSERT INTO `labels` VALUES (1,'2024-04-03 00:00:00','2024-04-03 00:00:00','macOS 14+ (Sonoma+)','macOS hosts with version 14 and above','select 1 from os_version where platform = \'darwin\' and major >= 14;','darwin',1,0,NULL),(2,'2024-06-28 00:00:00','2024-06-28 00:00:00','iOS','All iOS hosts','','ios',1,1,NULL),(3,'2024-06-28 00:00:00','2024-06-28 00:00:00','iPadOS','All iPadOS hosts','','ipados',1,1,NULL),(4,'2024-09-27 00:00:00','2024-09-27 00:00:00','Fedora Linux','All Fedora hosts','select 1 from os_version where name = \'Fedora Linux\';','rhel',1,0,NULL),(5,'2025-02-25 00:00:00','2025-02-25 00:00:00','Android','All Android hosts','','android',1,1,NULL);
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `locks` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`owner` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`expires_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_name` (`name`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
implement bootstrap packages during DEP enrollment (#11052) #10213
2023-04-07 20:31:02 +00:00
CREATE TABLE `mdm_apple_bootstrap_packages` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned NOT NULL,
implement bootstrap packages during DEP enrollment (#11052) #10213
2023-04-07 20:31:02 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`sha256` binary(32) NOT NULL,
`bytes` longblob,
`token` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
add an endpoint to get an aggregate summary of bootstrap packages (#11156) Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com>
2023-04-22 15:23:38 +00:00
`created_at` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` datetime NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
implement bootstrap packages during DEP enrollment (#11052) #10213
2023-04-07 20:31:02 +00:00
PRIMARY KEY (`team_id`),
UNIQUE KEY `idx_token` (`token`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
implement bootstrap packages during DEP enrollment (#11052) #10213
2023-04-07 20:31:02 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add new data types and table for Apple MDM config profiles (#9758)
2023-02-09 00:36:20 +00:00
CREATE TABLE `mdm_apple_configuration_profiles` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`profile_id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`identifier` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
fix: allow profiles larger than 65KB (#19829) > Related issue: #19771 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-06-18 17:02:00 +00:00
`mobileconfig` mediumblob NOT NULL,
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`uploaded_at` timestamp(6) NULL DEFAULT NULL,
various profile fixes (#11084) ### Related tickets https://github.com/fleetdm/fleet/issues/10775 https://github.com/fleetdm/fleet/issues/10678 https://github.com/fleetdm/fleet/issues/11024 https://github.com/fleetdm/fleet/issues/11026 ### What's happening - Implemented the hashing mechanism defined by @mna in #10678, however this mechanism is mainly relevant for batch profile updates via the CLI, we can't leverage it when a host switches teams. - Modified `BulkSetPendingMDMAppleHostProfiles` so when two profiles with the same identifier are sheduled both for removal and update, the function will now mark only the `install` as `pending` so it's picked by the cron, and will `DELETE` the `remove` entry from the database so it's not picked by the cron and never sent to the user. - `GetHostMDMProfiles` and consequently the profiles returned in `GET /api/_version_/fleet/hosts` return `host_mdm_apple_profiles.state = NULL` as "Enforcing (pending", the distinction between `status = 'pending'` and `status IS NULL` is only useful for the cron, for users both mean the same thing, and all our profile aggregations already behave this way. - Using the solution implemented by @gillespi314 in https://github.com/fleetdm/fleet/pull/10998 we're now deleting the host row from `host_disk_encryption_keys` if a host is moved from a team that enforces disk encryption to a team that doesn't. # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-04-09 02:23:36 +00:00
`checksum` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`secrets_updated_at` datetime(6) DEFAULT NULL,
Unify profiles database identifier to `profile_uuid` for macOS and Windows profiles. (#15297)
2023-12-04 15:04:06 +00:00
PRIMARY KEY (`profile_uuid`),
Add new data types and table for Apple MDM config profiles (#9758)
2023-02-09 00:36:20 +00:00
UNIQUE KEY `idx_mdm_apple_config_prof_team_identifier` (`team_id`,`identifier`),
Unify profiles database identifier to `profile_uuid` for macOS and Windows profiles. (#15297)
2023-12-04 15:04:06 +00:00
UNIQUE KEY `idx_mdm_apple_config_prof_team_name` (`team_id`,`name`),
UNIQUE KEY `idx_mdm_apple_config_prof_id` (`profile_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add new data types and table for Apple MDM config profiles (#9758)
2023-02-09 00:36:20 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
CREATE TABLE `mdm_apple_declaration_activation_references` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`declaration_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`reference` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
PRIMARY KEY (`declaration_uuid`,`reference`),
KEY `reference` (`reference`),
CONSTRAINT `mdm_apple_declaration_activation_references_ibfk_1` FOREIGN KEY (`declaration_uuid`) REFERENCES `mdm_apple_declarations` (`declaration_uuid`) ON UPDATE CASCADE,
CONSTRAINT `mdm_apple_declaration_activation_references_ibfk_2` FOREIGN KEY (`reference`) REFERENCES `mdm_apple_declarations` (`declaration_uuid`) ON UPDATE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
CREATE TABLE `mdm_apple_declarations` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`declaration_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`team_id` int unsigned NOT NULL DEFAULT '0',
`identifier` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Added secret variables support for DDM. (#24969) #24548 Adding secret variables support for DDM profiles. # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-20 22:32:09 +00:00
`raw_json` mediumtext CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`uploaded_at` timestamp(6) NULL DEFAULT NULL,
Profiles batch activity (#21604) #20757 API endpoint `/api/v1/fleet/mdm/profiles/batch` will now not log an activity for profile types that did not change in the database (Apple configuration profiles, Windows configuration profiles, or Apple declarations). Demo video: https://www.loom.com/share/8b75cbd8e7394c12ac6b56746b72c244 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-08-30 21:00:35 +00:00
`auto_increment` bigint NOT NULL AUTO_INCREMENT,
Update Apple config/DDM profiles if secret variables changed (#24995) #24900 This PR includes and depends on PR #25012, which should be reviewed/merged before this one. Windows profiles are not included in this PR due to issue #25030 This PR adds the following functionality: Apple config/DDM profile is resent to the device when the profile contains secret variables, and the values of those variables have changed. For example. - Upload secret variables - Upload profile - Device gets profile - Upload the same profile - Nothing happens - Upload a different secret variable value - Upload the same profile - Device gets updated profile # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-12-30 23:58:39 +00:00
`secrets_updated_at` datetime(6) DEFAULT NULL,
`token` binary(16) GENERATED ALWAYS AS (unhex(md5(concat(`raw_json`,ifnull(`secrets_updated_at`,_utf8mb4''))))) STORED,
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
PRIMARY KEY (`declaration_uuid`),
UNIQUE KEY `idx_mdm_apple_declaration_team_identifier` (`team_id`,`identifier`),
Profiles batch activity (#21604) #20757 API endpoint `/api/v1/fleet/mdm/profiles/batch` will now not log an activity for profile types that did not change in the database (Apple configuration profiles, Windows configuration profiles, or Apple declarations). Demo video: https://www.loom.com/share/8b75cbd8e7394c12ac6b56746b72c244 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-08-30 21:00:35 +00:00
UNIQUE KEY `idx_mdm_apple_declaration_team_name` (`team_id`,`name`),
UNIQUE KEY `auto_increment` (`auto_increment`)
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add mdm_apple_declarative_requests table to log DDM requests (#17844) #17792
2024-03-27 03:09:09 +00:00
CREATE TABLE `mdm_apple_declarative_requests` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`enrollment_id` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`message_type` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Add mdm_apple_declarative_requests table to log DDM requests (#17844) #17792
2024-03-27 03:09:09 +00:00
`raw_json` text COLLATE utf8mb4_unicode_ci,
PRIMARY KEY (`id`),
KEY `mdm_apple_declarative_requests_enrollment_id` (`enrollment_id`),
CONSTRAINT `mdm_apple_declarative_requests_enrollment_id` FOREIGN KEY (`enrollment_id`) REFERENCES `nano_enrollments` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
CREATE TABLE `mdm_apple_default_setup_assistants` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int unsigned NOT NULL DEFAULT '0',
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
`profile_uuid` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
`abm_token_id` int unsigned DEFAULT NULL,
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
PRIMARY KEY (`id`),
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
UNIQUE KEY `idx_mdm_default_setup_assistant_global_or_team_id_abm_token_id` (`global_or_team_id`,`abm_token_id`),
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
KEY `fk_mdm_default_setup_assistant_team_id` (`team_id`),
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
KEY `fk_mdm_default_setup_assistant_abm_token_id` (`abm_token_id`),
CONSTRAINT `fk_mdm_default_setup_assistant_abm_token_id` FOREIGN KEY (`abm_token_id`) REFERENCES `abm_tokens` (`id`) ON DELETE CASCADE,
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
CONSTRAINT `mdm_apple_default_setup_assistants_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add support for profile UUIDs per team/no-team for the default profile (#11717)
2023-05-17 13:06:14 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `mdm_apple_enrollment_profiles` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`token` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`type` varchar(10) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'automatic',
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`dep_profile` json DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_type` (`type`),
UNIQUE KEY `idx_token` (`token`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `mdm_apple_installers` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`size` bigint NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`manifest` text COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`installer` longblob,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`url_token` varchar(36) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
CREATE TABLE `mdm_apple_setup_assistant_profiles` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`setup_assistant_id` int unsigned NOT NULL,
`abm_token_id` int unsigned NOT NULL,
`profile_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_mdm_apple_setup_assistant_profiles_asst_id_tok_id` (`setup_assistant_id`,`abm_token_id`),
KEY `fk_mdm_apple_setup_assistant_profiles_abm_token_id` (`abm_token_id`),
CONSTRAINT `fk_mdm_apple_setup_assistant_profiles_abm_token_id` FOREIGN KEY (`abm_token_id`) REFERENCES `abm_tokens` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_mdm_apple_setup_assistant_profiles_setup_assistant_id` FOREIGN KEY (`setup_assistant_id`) REFERENCES `mdm_apple_setup_assistants` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Add support for the `mdm.macos_setup.macos_setup_assistant` key in fleetctl, API (#11296)
2023-04-25 13:36:01 +00:00
CREATE TABLE `mdm_apple_setup_assistants` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int unsigned NOT NULL DEFAULT '0',
Add support for the `mdm.macos_setup.macos_setup_assistant` key in fleetctl, API (#11296)
2023-04-25 13:36:01 +00:00
`name` text COLLATE utf8mb4_unicode_ci NOT NULL,
`profile` json NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Add support for the `mdm.macos_setup.macos_setup_assistant` key in fleetctl, API (#11296)
2023-04-25 13:36:01 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_mdm_setup_assistant_global_or_team_id` (`global_or_team_id`),
KEY `fk_mdm_setup_assistant_team_id` (`team_id`),
CONSTRAINT `mdm_apple_setup_assistants_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add support for the `mdm.macos_setup.macos_setup_assistant` key in fleetctl, API (#11296)
2023-04-25 13:36:01 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add base schema to store MDM assets (#19200) for #19013 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-05-22 20:42:37 +00:00
CREATE TABLE `mdm_config_assets` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`name` varchar(256) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
add base schema to store MDM assets (#19200) for #19013 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-05-22 20:42:37 +00:00
`value` longblob NOT NULL,
`deleted_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`deletion_uuid` varchar(127) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
19016 ingest certs on start (#19360) For #19016 This changes all the places where we previously assumed that certs were hardcoded when the Fleet server started to query the database instead. The plan is to loadtest afterwards, but as a first preemptive measure, this adds a caching layer on top the mysql datastore. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-05-30 21:18:42 +00:00
`md5_checksum` binary(16) NOT NULL,
add base schema to store MDM assets (#19200) for #19013 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-05-22 20:42:37 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_mdm_config_assets_name_deletion_uuid` (`name`,`deletion_uuid`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feature: target profiles by labels (#16202) for #14715 --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-01-26 16:00:58 +00:00
CREATE TABLE `mdm_configuration_profile_labels` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
feature: target profiles by labels (#16202) for #14715 --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-01-26 16:00:58 +00:00
`apple_profile_uuid` varchar(37) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`windows_profile_uuid` varchar(37) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`label_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`label_id` int unsigned DEFAULT NULL,
feature: target profiles by labels (#16202) for #14715 --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-01-26 16:00:58 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Configuration profiles with excluded labels: DB changes (#19702)
2024-06-17 17:22:43 +00:00
`exclude` tinyint(1) NOT NULL DEFAULT '0',
feat: migration for new col (#23391) > Related issue: #22578 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-31 01:58:34 +00:00
`require_all` tinyint(1) NOT NULL DEFAULT '0',
feature: target profiles by labels (#16202) for #14715 --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-01-26 16:00:58 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_mdm_configuration_profile_labels_apple_label_name` (`apple_profile_uuid`,`label_name`),
UNIQUE KEY `idx_mdm_configuration_profile_labels_windows_label_name` (`windows_profile_uuid`,`label_name`),
KEY `label_id` (`label_id`),
CONSTRAINT `mdm_configuration_profile_labels_ibfk_1` FOREIGN KEY (`apple_profile_uuid`) REFERENCES `mdm_apple_configuration_profiles` (`profile_uuid`) ON DELETE CASCADE,
CONSTRAINT `mdm_configuration_profile_labels_ibfk_2` FOREIGN KEY (`windows_profile_uuid`) REFERENCES `mdm_windows_configuration_profiles` (`profile_uuid`) ON DELETE CASCADE,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `mdm_configuration_profile_labels_ibfk_3` FOREIGN KEY (`label_id`) REFERENCES `labels` (`id`) ON DELETE SET NULL,
CONSTRAINT `ck_mdm_configuration_profile_labels_apple_or_windows` CHECK (((`apple_profile_uuid` is null) <> (`windows_profile_uuid` is null)))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
feature: target profiles by labels (#16202) for #14715 --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Jahziel Villasana-Espinoza <jahziel@fleetdm.com>
2024-01-26 16:00:58 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
CREATE TABLE `mdm_declaration_labels` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`apple_declaration_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`label_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`label_id` int unsigned DEFAULT NULL,
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`uploaded_at` timestamp NULL DEFAULT NULL,
Configuration profiles with excluded labels: DB changes (#19702)
2024-06-17 17:22:43 +00:00
`exclude` tinyint(1) NOT NULL DEFAULT '0',
feat: migration for new col (#23391) > Related issue: #22578 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-31 01:58:34 +00:00
`require_all` tinyint(1) NOT NULL DEFAULT '0',
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
PRIMARY KEY (`id`),
bugfixes, integration and cleanup for DDM (#17756) Improvements and fixes I found while integrating this - Renamed db columns to match the profile tables for consistency - Added columns to `host_mdm_apple_declarations` - Removed `team_declaration_checksum_view` - Remove the ad-hoc `MDMAppleRecordDeclarativeCheckIn`, I confused myself by developing this using tests, the device actually sends an `Acknowledged` response, which is recorded by nano - Fixed bugs in the `declaration/../..` endpoints - The prefix for the endpoint is `declaration` without `s` - The response needs to include a `ServerToken`, otherwise the declaration fails
2024-03-21 16:12:32 +00:00
UNIQUE KEY `idx_mdm_declaration_labels_label_name` (`apple_declaration_uuid`,`label_name`),
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
KEY `label_id` (`label_id`),
bugfixes, integration and cleanup for DDM (#17756) Improvements and fixes I found while integrating this - Renamed db columns to match the profile tables for consistency - Added columns to `host_mdm_apple_declarations` - Removed `team_declaration_checksum_view` - Remove the ad-hoc `MDMAppleRecordDeclarativeCheckIn`, I confused myself by developing this using tests, the device actually sends an `Acknowledged` response, which is recorded by nano - Fixed bugs in the `declaration/../..` endpoints - The prefix for the endpoint is `declaration` without `s` - The response needs to include a `ServerToken`, otherwise the declaration fails
2024-03-21 16:12:32 +00:00
CONSTRAINT `mdm_declaration_labels_ibfk_1` FOREIGN KEY (`apple_declaration_uuid`) REFERENCES `mdm_apple_declarations` (`declaration_uuid`) ON DELETE CASCADE,
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
CONSTRAINT `mdm_declaration_labels_ibfk_3` FOREIGN KEY (`label_id`) REFERENCES `labels` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add schema for DDM (#17636) #17405
2024-03-14 21:08:19 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
CREATE TABLE `mdm_delivery_status` (
`status` varchar(20) COLLATE utf8mb4_unicode_ci NOT NULL,
PRIMARY KEY (`status`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
INSERT INTO `mdm_delivery_status` VALUES ('failed'),('pending'),('verified'),('verifying');
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
add schema tables to support DEP Okta flow (#10290) For #10271 and #10273, this adds the underlying table that will support the Okta DEP flow.
2023-03-07 13:57:26 +00:00
CREATE TABLE `mdm_idp_accounts` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`uuid` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`username` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
pre-populate username/fullname during account creation (#11557) Related to #10744, this pre-populates and disables the username/fullname fields. https://user-images.githubusercontent.com/4419992/236854781-ac67ee28-c19c-4130-a5e6-2872220501b5.mov # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-05-18 15:50:00 +00:00
`fullname` varchar(256) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`email` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
allow macOS hosts that turned on MDM via SSO to renew their enrollment (#14739) for #14238
2023-10-27 15:42:30 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`uuid`),
UNIQUE KEY `unique_idp_email` (`email`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add schema tables to support DEP Okta flow (#10290) For #10271 and #10273, this adds the underlying table that will support the Okta DEP flow.
2023-03-07 13:57:26 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
CREATE TABLE `mdm_operation_types` (
`operation_type` varchar(20) COLLATE utf8mb4_unicode_ci NOT NULL,
PRIMARY KEY (`operation_type`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
INSERT INTO `mdm_operation_types` VALUES ('install'),('remove');
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
CREATE TABLE `mdm_windows_configuration_profiles` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned NOT NULL DEFAULT '0',
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`syncml` mediumblob NOT NULL,
Resend Windows profiles on change (#27308) For #25030 This PR includes the bug fix and tests. It also includes the `secrets_updated_at` columns needed for story #27351. These columns are currently unused and always NULL. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-03-20 19:43:04 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`uploaded_at` timestamp(6) NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`profile_uuid` varchar(37) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Profiles batch activity (#21604) #20757 API endpoint `/api/v1/fleet/mdm/profiles/batch` will now not log an activity for profile types that did not change in the database (Apple configuration profiles, Windows configuration profiles, or Apple declarations). Demo video: https://www.loom.com/share/8b75cbd8e7394c12ac6b56746b72c244 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-08-30 21:00:35 +00:00
`auto_increment` bigint NOT NULL AUTO_INCREMENT,
Resend Windows profiles on change (#27308) For #25030 This PR includes the bug fix and tests. It also includes the `secrets_updated_at` columns needed for story #27351. These columns are currently unused and always NULL. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-03-20 19:43:04 +00:00
`checksum` binary(16) GENERATED ALWAYS AS (unhex(md5(`syncml`))) STORED,
`secrets_updated_at` datetime(6) DEFAULT NULL,
Use a uuid as primary key for windows profiles (#15008)
2023-11-07 21:35:28 +00:00
PRIMARY KEY (`profile_uuid`),
Profiles batch activity (#21604) #20757 API endpoint `/api/v1/fleet/mdm/profiles/batch` will now not log an activity for profile types that did not change in the database (Apple configuration profiles, Windows configuration profiles, or Apple declarations). Demo video: https://www.loom.com/share/8b75cbd8e7394c12ac6b56746b72c244 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-08-30 21:00:35 +00:00
UNIQUE KEY `idx_mdm_windows_configuration_profiles_team_id_name` (`team_id`,`name`),
UNIQUE KEY `auto_increment` (`auto_increment`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Implement the database migrations for the Windows profiles story. (#14973)
2023-11-07 14:28:43 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Adding support for RequestSecurityToken messages - Windows MDM enroll endpoint (#12555) This relates to #12263 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [X] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests --------- Co-authored-by: Roberto Dip <me@roperzh.com>
2023-07-05 13:06:37 +00:00
CREATE TABLE `mdm_windows_enrollments` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Adding support for RequestSecurityToken messages - Windows MDM enroll endpoint (#12555) This relates to #12263 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [X] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests --------- Co-authored-by: Roberto Dip <me@roperzh.com>
2023-07-05 13:06:37 +00:00
`mdm_device_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`mdm_hardware_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`device_state` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`device_type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`device_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`enroll_type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`enroll_user_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`enroll_proto_version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`enroll_client_version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`not_in_oobe` tinyint(1) NOT NULL DEFAULT '0',
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Adding support for RequestSecurityToken messages - Windows MDM enroll endpoint (#12555) This relates to #12263 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [X] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests --------- Co-authored-by: Roberto Dip <me@roperzh.com>
2023-07-05 13:06:37 +00:00
PRIMARY KEY (`id`),
Add missing index to MDM Windows enrollments table (#17559)
2024-03-13 15:27:37 +00:00
UNIQUE KEY `idx_type` (`mdm_hardware_id`),
don't rely on MDM solution name to know if the host has Fleet MDM on (#19688) for #18977 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2024-06-14 18:01:12 +00:00
KEY `idx_mdm_windows_enrollments_mdm_device_id` (`mdm_device_id`),
KEY `idx_mdm_windows_enrollments_host_uuid` (`host_uuid`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Adding support for RequestSecurityToken messages - Windows MDM enroll endpoint (#12555) This relates to #12263 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [X] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests --------- Co-authored-by: Roberto Dip <me@roperzh.com>
2023-07-05 13:06:37 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `migration_status_tables` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
`version_id` bigint NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`is_applied` tinyint(1) NOT NULL,
`tstamp` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Drop duplicate MySQL indexes. (#24107) #24109 Duplicate indexes identified after running pt-duplicate-key-checker https://docs.percona.com/percona-toolkit/pt-duplicate-key-checker.html # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-11-25 16:03:19 +00:00
PRIMARY KEY (`id`)
Add author ID to labels (#27055) For #27035 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [ ] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality ## Details This PR adds an `author_id` column to the `labels` table, and adds the associated properties to the `Label` and `LabelSpec` types. When a new label is created via the UI or API, an author ID is set on the label if one can be inferred from the context. Otherwise, the author ID is set to `null`. ## Authz and Automated testing Additional backend authorization logic is introduced in a follow-on PR, https://github.com/fleetdm/fleet/pull/27089, because rconciling all of the test updates between this PR and https://github.com/fleetdm/fleet/pull/27038 was getting complicated. ## Manual Testing * Tested in the UI by creating a new label on the Hosts page * Tested via Gitops by merging this branch with https://github.com/fleetdm/fleet/pull/27038 and doing `fleetctl gitops` with a global config with `labels:` in it.
2025-03-20 21:05:16 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=368 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Update /macadmins endpoints to include MDM name and aggregate count (#7137)
2022-08-10 19:15:01 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Add author ID to labels (#27055) For #27035 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [ ] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality ## Details This PR adds an `author_id` column to the `labels` table, and adds the associated properties to the `Label` and `LabelSpec` types. When a new label is created via the UI or API, an author ID is set on the label if one can be inferred from the context. Otherwise, the author ID is set to `null`. ## Authz and Automated testing Additional backend authorization logic is introduced in a follow-on PR, https://github.com/fleetdm/fleet/pull/27089, because rconciling all of the test updates between this PR and https://github.com/fleetdm/fleet/pull/27038 was getting complicated. ## Manual Testing * Tested in the UI by creating a new label on the Hosts page * Tested via Gitops by merging this branch with https://github.com/fleetdm/fleet/pull/27038 and doing `fleetctl gitops` with a global config with `labels:` in it.
2025-03-20 21:05:16 +00:00
INSERT INTO `migration_status_tables` VALUES (1,0,1,'2020-01-01 01:01:01'),(2,20161118193812,1,'2020-01-01 01:01:01'),(3,20161118211713,1,'2020-01-01 01:01:01'),(4,20161118212436,1,'2020-01-01 01:01:01'),(5,20161118212515,1,'2020-01-01 01:01:01'),(6,20161118212528,1,'2020-01-01 01:01:01'),(7,20161118212538,1,'2020-01-01 01:01:01'),(8,20161118212549,1,'2020-01-01 01:01:01'),(9,20161118212557,1,'2020-01-01 01:01:01'),(10,20161118212604,1,'2020-01-01 01:01:01'),(11,20161118212613,1,'2020-01-01 01:01:01'),(12,20161118212621,1,'2020-01-01 01:01:01'),(13,20161118212630,1,'2020-01-01 01:01:01'),(14,20161118212641,1,'2020-01-01 01:01:01'),(15,20161118212649,1,'2020-01-01 01:01:01'),(16,20161118212656,1,'2020-01-01 01:01:01'),(17,20161118212758,1,'2020-01-01 01:01:01'),(18,20161128234849,1,'2020-01-01 01:01:01'),(19,20161230162221,1,'2020-01-01 01:01:01'),(20,20170104113816,1,'2020-01-01 01:01:01'),(21,20170105151732,1,'2020-01-01 01:01:01'),(22,20170108191242,1,'2020-01-01 01:01:01'),(23,20170109094020,1,'2020-01-01 01:01:01'),(24,20170109130438,1,'2020-01-01 01:01:01'),(25,20170110202752,1,'2020-01-01 01:01:01'),(26,20170111133013,1,'2020-01-01 01:01:01'),(27,20170117025759,1,'2020-01-01 01:01:01'),(28,20170118191001,1,'2020-01-01 01:01:01'),(29,20170119234632,1,'2020-01-01 01:01:01'),(30,20170124230432,1,'2020-01-01 01:01:01'),(31,20170127014618,1,'2020-01-01 01:01:01'),(32,20170131232841,1,'2020-01-01 01:01:01'),(33,20170223094154,1,'2020-01-01 01:01:01'),(34,20170306075207,1,'2020-01-01 01:01:01'),(35,20170309100733,1,'2020-01-01 01:01:01'),(36,20170331111922,1,'2020-01-01 01:01:01'),(37,20170502143928,1,'2020-01-01 01:01:01'),(38,20170504130602,1,'2020-01-01 01:01:01'),(39,20170509132100,1,'2020-01-01 01:01:01'),(40,20170519105647,1,'2020-01-01 01:01:01'),(41,20170519105648,1,'2020-01-01 01:01:01'),(42,20170831234300,1,'2020-01-01 01:01:01'),(43,20170831234301,1,'2020-01-01 01:01:01'),(44,20170831234303,1,'2020-01-01 01:01:01'),(45,20171116163618,1,'2020-01-01 01:01:01'),(46,20171219164727,1,'2020-01-01 01:01:01'),(47,20180620164811,1,'2020-01-01 01:01:01'),(48,20180620175054,1,'2020-01-01 01:01:01'),(49,20180620175055,1,'2020-01-01 01:01:01'),(50,20191010101639,1,'2020-01-01 01:01:01'),(51,20191010155147,1,'2020-01-01 01:01:01'),(52,20191220130734,1,'2020-01-01 01:01:01'),(53,20200311140000,1,'2020-01-01 01:01:01'),(54,20200405120000,1,'2020-01-01 01:01:01'),(55,20200407120000,1,'2020-01-01 01:01:01'),(56,20200420120000,1,'2020-01-01 01:01:01'),(57,20200504120000,1,'2020-01-01 01:01:01'),(58,20200512120000,1,'2020-01-01 01:01:01'),(59,20200707120000,1,'2020-01-01 01:01:01'),(60,20201011162341,1,'2020-01-01 01:01:01'),(61,20201021104586,1,'2020-01-01 01:01:01'),(62,20201102112520,1,'2020-01-01 01:01:01'),(63,20201208121729,1,'2020-01-01 01:01:01'),(64,20201215091637,1,'2020-01-01 01:01:01'),(65,20210119174155,1,'2020-01-01 01:01:01'),(66,20210326182902,1,'2020-01-01 01:01:01'),(67,20210421112652,1,'2020-01-01 01:01:01'),(68,20210506095025,1,'2020-01-01 01:01:01'),(69,20210513115729,1,'2020-01-01 01:01:01'),(70,20210526113559,1,'2020-01-01 01:01:01'),(71,20210601000001,1,'2020-01-01 01:01:01'),(72,20210601000002,1,'2020-01-01 01:01:01'),(73,20210601000003,1,'2020-01-01 01:01:01'),(74,20210601000004,1,'2020-01-01 01:01:01'),(75,20210601000005,1,'2020-01-01 01:01:01'),(76,20210601000006,1,'2020-01-01 01:01:01'),(77,20210601000007,1,'2020-01-01 01:01:01'),(78,20210601000008,1,'2020-01-01 01:01:01'),(79,20210606151329,1,'2020-01-01 01:01:01'),(80,20210616163757,1,'2020-01-01 01:01:01'),(81,20210617174723,1,'2020-01-01 01:01:01'),(82,20210622160235,1,'2020-01-01 01:01:01'),(83,20210623100031,1,'2020-01-01 01:01:01'),(84,20210623133615,1,'2020-01-01 01:01:01'),(85,20210708143152,1,'2020-01-01 01:01:01'),(86,20210709124443,1,'2020-01-01 01:01:01'),(87,20210712155608,1,'2020-01-01 01:01:01'),(88,20210714102108,1,'2020-01-01 01:01:01'),(89,20210719153709,1,'2020-01-01 01:01:01'),(90,20210721171531,1,'2020-01-01 01:01:01'),(91,20210723135713,1,'2020-01-01 01:01:01'),(92,20210802135933,1,'2020-01-01 01:01:01'),(93,20210806112844,1,'20
Update /macadmins endpoints to include MDM name and aggregate count (#7137)
2022-08-10 19:15:01 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Update /macadmins endpoints to include MDM name and aggregate count (#7137)
2022-08-10 19:15:01 +00:00
CREATE TABLE `mobile_device_management_solutions` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(100) COLLATE utf8mb4_unicode_ci NOT NULL,
`server_url` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Update /macadmins endpoints to include MDM name and aggregate count (#7137)
2022-08-10 19:15:01 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_mobile_device_management_solutions_name` (`name`,`server_url`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
CREATE TABLE `munki_issues` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`issue_type` varchar(10) COLLATE utf8mb4_unicode_ci NOT NULL,
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_munki_issues_name` (`name`,`issue_type`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Provide Munki issues for MacOS hosts (#7280)
2022-08-29 18:40:16 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_cert_auth_associations` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`sha256` char(64) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Merge branch 'main' into 15919-vulnerabilities-page
2024-02-22 22:24:11 +00:00
`cert_not_valid_after` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`renew_command_uuid` varchar(127) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Merge branch 'main' into 15919-vulnerabilities-page
2024-02-22 22:24:11 +00:00
PRIMARY KEY (`id`,`sha256`),
KEY `renew_command_uuid_fk` (`renew_command_uuid`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `renew_command_uuid_fk` FOREIGN KEY (`renew_command_uuid`) REFERENCES `nano_commands` (`command_uuid`),
CONSTRAINT `nano_cert_auth_associations_chk_1` CHECK ((`id` <> _utf8mb4'')),
CONSTRAINT `nano_cert_auth_associations_chk_2` CHECK ((`sha256` <> _utf8mb4''))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_command_results` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`status` varchar(31) COLLATE utf8mb4_unicode_ci NOT NULL,
`result` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`not_now_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`not_now_tally` int NOT NULL DEFAULT '0',
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`,`command_uuid`),
KEY `command_uuid` (`command_uuid`),
KEY `status` (`status`),
CONSTRAINT `nano_command_results_ibfk_1` FOREIGN KEY (`id`) REFERENCES `nano_enrollments` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `nano_command_results_ibfk_2` FOREIGN KEY (`command_uuid`) REFERENCES `nano_commands` (`command_uuid`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `nano_command_results_chk_1` CHECK ((`status` <> _utf8mb4'')),
CONSTRAINT `nano_command_results_chk_2` CHECK ((substr(`result`,1,5) = _utf8mb4'<?xml'))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_commands` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`request_type` varchar(63) COLLATE utf8mb4_unicode_ci NOT NULL,
`command` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
Fetch installed apps from iPhone/iPad devices. (#20733) Part 2 of https://github.com/fleetdm/fleet/issues/19447 - iOS and iPadOS user-installed apps are loaded into Fleet - Added an additional identifier into software_titles table to differentiate between iOS/iPadOS apps - Updated nano queue timestamp precision Note: TestIntegrationsMDM/TestVPPApps fails when run as part of the suite, but passes standalone. I'd like to proceed with merging this PR, and figure out the issue next week. # Checklist for submitter <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Roberto Dip <rroperzh@gmail.com>
2024-07-28 14:17:27 +00:00
`created_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Full support of secret variables in Apple configuration profiles (#24925) For secrets subtask #24548 Fixed secret variables support in Apple configuration profiles. # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-20 21:40:23 +00:00
`subtype` enum('None','ProfileWithSecrets') CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'None',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
PRIMARY KEY (`command_uuid`),
CONSTRAINT `nano_commands_chk_1` CHECK ((`command_uuid` <> _utf8mb4'')),
Full support of secret variables in Apple configuration profiles (#24925) For secrets subtask #24548 Fixed secret variables support in Apple configuration profiles. # Checklist for submitter - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-20 21:40:23 +00:00
CONSTRAINT `nano_commands_chk_2` CHECK ((`request_type` <> _utf8mb4''))
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_dep_names` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`consumer_key` text COLLATE utf8mb4_unicode_ci,
`consumer_secret` text COLLATE utf8mb4_unicode_ci,
`access_token` text COLLATE utf8mb4_unicode_ci,
`access_secret` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`access_token_expiry` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`config_base_url` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`tokenpki_cert_pem` text COLLATE utf8mb4_unicode_ci,
`tokenpki_key_pem` text COLLATE utf8mb4_unicode_ci,
`syncer_cursor` varchar(1024) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`syncer_cursor_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`assigner_profile_uuid` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`assigner_profile_uuid_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`name`),
CONSTRAINT `nano_dep_names_chk_1` CHECK (((`tokenpki_cert_pem` is null) or (substr(`tokenpki_cert_pem`,1,27) = _utf8mb4'-----BEGIN CERTIFICATE-----'))),
CONSTRAINT `nano_dep_names_chk_2` CHECK (((`tokenpki_key_pem` is null) or (substr(`tokenpki_key_pem`,1,5) = _utf8mb4'-----')))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_devices` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`identity_cert` text COLLATE utf8mb4_unicode_ci,
`serial_number` varchar(127) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`unlock_token` mediumblob,
`unlock_token_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`authenticate` text COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`authenticate_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`token_update` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`token_update_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`bootstrap_token_b64` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`bootstrap_token_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
KEY `serial_number` (`serial_number`),
CONSTRAINT `nano_devices_chk_1` CHECK (((`identity_cert` is null) or (substr(`identity_cert`,1,27) = _utf8mb4'-----BEGIN CERTIFICATE-----'))),
CONSTRAINT `nano_devices_chk_2` CHECK (((`serial_number` is null) or (`serial_number` <> _utf8mb4''))),
CONSTRAINT `nano_devices_chk_3` CHECK (((`unlock_token` is null) or (length(`unlock_token`) > 0))),
CONSTRAINT `nano_devices_chk_4` CHECK ((`authenticate` <> _utf8mb4'')),
CONSTRAINT `nano_devices_chk_5` CHECK (((`token_update` is null) or (`token_update` <> _utf8mb4''))),
CONSTRAINT `nano_devices_chk_6` CHECK (((`bootstrap_token_b64` is null) or (`bootstrap_token_b64` <> _utf8mb4'')))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_enrollment_queue` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`active` tinyint(1) NOT NULL DEFAULT '1',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`priority` tinyint NOT NULL DEFAULT '0',
Fetch installed apps from iPhone/iPad devices. (#20733) Part 2 of https://github.com/fleetdm/fleet/issues/19447 - iOS and iPadOS user-installed apps are loaded into Fleet - Added an additional identifier into software_titles table to differentiate between iOS/iPadOS apps - Updated nano queue timestamp precision Note: TestIntegrationsMDM/TestVPPApps fails when run as part of the suite, but passes standalone. I'd like to proceed with merging this PR, and figure out the issue next week. # Checklist for submitter <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Roberto Dip <rroperzh@gmail.com>
2024-07-28 14:17:27 +00:00
`created_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`,`command_uuid`),
KEY `command_uuid` (`command_uuid`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
KEY `priority` (`priority` DESC,`created_at`),
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CONSTRAINT `nano_enrollment_queue_ibfk_1` FOREIGN KEY (`id`) REFERENCES `nano_enrollments` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `nano_enrollment_queue_ibfk_2` FOREIGN KEY (`command_uuid`) REFERENCES `nano_commands` (`command_uuid`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_enrollments` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`device_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`user_id` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`type` varchar(31) COLLATE utf8mb4_unicode_ci NOT NULL,
`topic` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`push_magic` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`token_hex` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`enabled` tinyint(1) NOT NULL DEFAULT '1',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`token_update_tally` int NOT NULL DEFAULT '1',
`last_seen_at` timestamp NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`enrolled_from_migration` tinyint unsigned NOT NULL DEFAULT '0',
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `user_id` (`user_id`),
KEY `device_id` (`device_id`),
KEY `type` (`type`),
CONSTRAINT `nano_enrollments_ibfk_1` FOREIGN KEY (`device_id`) REFERENCES `nano_devices` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `nano_enrollments_ibfk_2` FOREIGN KEY (`user_id`) REFERENCES `nano_users` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `nano_enrollments_chk_1` CHECK ((`id` <> _utf8mb4'')),
CONSTRAINT `nano_enrollments_chk_2` CHECK ((`type` <> _utf8mb4'')),
CONSTRAINT `nano_enrollments_chk_3` CHECK ((`topic` <> _utf8mb4'')),
CONSTRAINT `nano_enrollments_chk_4` CHECK ((`push_magic` <> _utf8mb4'')),
CONSTRAINT `nano_enrollments_chk_5` CHECK ((`token_hex` <> _utf8mb4''))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_push_certs` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`topic` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`cert_pem` text COLLATE utf8mb4_unicode_ci NOT NULL,
`key_pem` text COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`stale_token` int NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`topic`),
CONSTRAINT `nano_push_certs_chk_1` CHECK ((`topic` <> _utf8mb4'')),
CONSTRAINT `nano_push_certs_chk_2` CHECK ((substr(`cert_pem`,1,27) = _utf8mb4'-----BEGIN CERTIFICATE-----')),
CONSTRAINT `nano_push_certs_chk_3` CHECK ((substr(`key_pem`,1,5) = _utf8mb4'-----'))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `nano_users` (
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`device_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`user_short_name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`user_long_name` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`token_update` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`token_update_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`user_authenticate` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`user_authenticate_at` timestamp NULL DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`user_authenticate_digest` text COLLATE utf8mb4_unicode_ci,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`user_authenticate_digest_at` timestamp NULL DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`id`,`device_id`),
Support for MySQL 8.4.2 (#21364) #21270 The main change for MySQL 8.4.2 is that foreign key constraints are stricter: https://dev.mysql.com/doc/refman/8.4/en/server-system-variables.html#sysvar_restrict_fk_on_non_standard_key Also, most replica-related commands have been renamed. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-08-16 14:32:38 +00:00
UNIQUE KEY `idx_unique_id` (`id`),
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
KEY `device_id` (`device_id`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `nano_users_ibfk_1` FOREIGN KEY (`device_id`) REFERENCES `nano_devices` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `nano_users_chk_1` CHECK (((`user_short_name` is null) or (`user_short_name` <> _utf8mb4''))),
CONSTRAINT `nano_users_chk_2` CHECK (((`user_long_name` is null) or (`user_long_name` <> _utf8mb4''))),
CONSTRAINT `nano_users_chk_3` CHECK (((`token_update` is null) or (`token_update` <> _utf8mb4''))),
CONSTRAINT `nano_users_chk_4` CHECK (((`user_authenticate` is null) or (`user_authenticate` <> _utf8mb4''))),
CONSTRAINT `nano_users_chk_5` CHECK (((`user_authenticate_digest` is null) or (`user_authenticate_digest` <> _utf8mb4'')))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
SET @saved_cs_client = @@character_set_client;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add integration tests for the setup experience flow with automatic and forced release (#22909)
2024-10-14 20:41:06 +00:00
/*!50001 CREATE VIEW `nano_view_queue` AS SELECT
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
1 AS `id`,
1 AS `created_at`,
1 AS `active`,
1 AS `priority`,
1 AS `command_uuid`,
1 AS `request_type`,
1 AS `command`,
1 AS `result_updated_at`,
1 AS `status`,
1 AS `result`*/;
SET character_set_client = @saved_cs_client;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `network_interfaces` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`mac` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`ip_address` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`broadcast` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`ibytes` bigint NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`interface` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`ipackets` bigint NOT NULL DEFAULT '0',
`last_change` bigint NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`mask` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`metric` int NOT NULL DEFAULT '0',
`mtu` int NOT NULL DEFAULT '0',
`obytes` bigint NOT NULL DEFAULT '0',
`ierrors` bigint NOT NULL DEFAULT '0',
`oerrors` bigint NOT NULL DEFAULT '0',
`opackets` bigint NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`point_to_point` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`type` int NOT NULL DEFAULT '0',
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_network_interfaces_unique_ip_host_intf` (`ip_address`,`host_id`,`interface`),
KEY `idx_network_interfaces_hosts_fk` (`host_id`),
FULLTEXT KEY `ip_address_search` (`ip_address`),
CONSTRAINT `network_interfaces_ibfk_1` FOREIGN KEY (`host_id`) REFERENCES `hosts` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feature 7494: Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities (#7889) Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities
2022-10-28 15:12:21 +00:00
CREATE TABLE `operating_system_vulnerabilities` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`operating_system_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`cve` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`source` smallint DEFAULT '0',
Feature 7494: Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities (#7889) Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities
2022-10-28 15:12:21 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`resolved_in_version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
4345 OS Vulnerabilities Backend (#16303) #4345 This backend feature branch includes the following PRs: macOS Vuln Matching: #15837 #15990 #16077 Bugs / Issues: #16004 #15905 #16226 Windows Vuln Matching #16047 #16049 #16085 #16099 API: #16215
2024-01-24 19:18:57 +00:00
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Feature 7494: Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities (#7889) Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities
2022-10-28 15:12:21 +00:00
PRIMARY KEY (`id`),
fix: add index to os cve column (#26576) > for #26178 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Ian Littman <iansltx@gmail.com>
2025-02-25 02:59:56 +00:00
UNIQUE KEY `idx_os_vulnerabilities_unq_os_id_cve` (`operating_system_id`,`cve`),
KEY `idx_os_vulnerabilities_cve` (`cve`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Feature 7494: Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities (#7889) Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities
2022-10-28 15:12:21 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
CREATE TABLE `operating_systems` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`version` varchar(150) COLLATE utf8mb4_unicode_ci NOT NULL,
`arch` varchar(150) COLLATE utf8mb4_unicode_ci NOT NULL,
`kernel_version` varchar(150) COLLATE utf8mb4_unicode_ci NOT NULL,
`platform` varchar(50) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`display_version` varchar(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`os_version_id` int unsigned DEFAULT NULL,
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
PRIMARY KEY (`id`),
4345 OS Vulnerabilities Backend (#16303) #4345 This backend feature branch includes the following PRs: macOS Vuln Matching: #15837 #15990 #16077 Bugs / Issues: #16004 #15905 #16226 Windows Vuln Matching #16047 #16049 #16085 #16099 API: #16215
2024-01-24 19:18:57 +00:00
UNIQUE KEY `idx_unique_os` (`name`,`version`,`arch`,`kernel_version`,`platform`,`display_version`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add new database tables and queries for host operating systems (#6920)
2022-08-09 18:34:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `osquery_options` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`override_type` int NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`override_identifier` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`options` json NOT NULL,
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
INSERT INTO `osquery_options` VALUES (1,0,'','{\"options\": {\"logger_plugin\": \"tls\", \"pack_delimiter\": \"/\", \"logger_tls_period\": 10, \"distributed_plugin\": \"tls\", \"disable_distributed\": false, \"logger_tls_endpoint\": \"/api/v1/osquery/log\", \"distributed_interval\": 10, \"distributed_tls_max_attempts\": 3}, \"decorators\": {\"load\": [\"SELECT uuid AS host_uuid FROM system_info;\", \"SELECT hostname AS hostname FROM system_info;\"]}}');
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `pack_targets` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`pack_id` int unsigned DEFAULT NULL,
`type` int DEFAULT NULL,
`target_id` int unsigned NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `constraint_pack_target_unique` (`pack_id`,`target_id`,`type`),
CONSTRAINT `pack_targets_ibfk_1` FOREIGN KEY (`pack_id`) REFERENCES `packs` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `packs` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`disabled` tinyint(1) NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`description` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`platform` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`pack_type` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_pack_unique_name` (`name`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `password_reset_requests` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`expires_at` timestamp NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`user_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`token` varchar(1024) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
CREATE TABLE `policies` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`resolution` text COLLATE utf8mb4_unicode_ci,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`query` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
`description` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`author_id` int unsigned DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`platforms` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Add ability to mark policy as critical. (#8896)
2022-12-06 14:59:20 +00:00
`critical` tinyint(1) NOT NULL DEFAULT '0',
Policies are now unique for (team_id, name). (#16501) #13643 Updating the `policies` table to use a checksum column for uniqueness. The checksum is computed with team_id (which may be null) and name. This change is modeled on the checksum in the software table. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-02 23:41:32 +00:00
`checksum` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`calendar_events_enabled` tinyint unsigned NOT NULL DEFAULT '0',
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
`software_installer_id` int unsigned DEFAULT NULL,
Backend build for script automation (#22472) #22115, #22116 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> No changes file, as FE changes file covers the entire feature - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jacob Shandling <jacob@fleetdm.com> Co-authored-by: Tim Lee <timlee@fleetdm.com>
2024-10-04 01:03:40 +00:00
`script_id` int unsigned DEFAULT NULL,
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
`vpp_apps_teams_id` int unsigned DEFAULT NULL,
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
PRIMARY KEY (`id`),
Policies are now unique for (team_id, name). (#16501) #13643 Updating the `policies` table to use a checksum column for uniqueness. The checksum is computed with team_id (which may be null) and name. This change is modeled on the checksum in the software table. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Manual QA for all new/changed functionality
2024-02-02 23:41:32 +00:00
UNIQUE KEY `idx_policies_checksum` (`checksum`),
Amend policy creation and spec (for proprietary query), and add update APIs (#2890) * Amend policy creation (proprietary query), add update APIs * Fix Datastore.SavePolicy bug (and add tests) * Add integration tests for new policy APIs * Add author email * Add activities * Push breaking changes for return policy fields * WIP * Add integration test for host policies * Make more improvements to policy representation * Improve upgrade code (from PR review comments) * PR changes * Revert activities for policies * Use *uint instead of uint for queryID, use fleet.PolicyPayload * Filter out other schemas * New policy flow (#2922) * created new policy flow -- no API connection * added api props * fixed prop name * lint fixes * removed unused modal; fixed style * name, desc icons; created global components * lint fixes * ignoring certain files and lines for prettier * Update frontend/pages/policies/PolicyPage/PolicyPage.tsx * Make policy names unique across deployment * Amend upgrade script * Fix migration for unique names * Do not deduplicate but instead rename policies Co-authored-by: Martavis Parker <47053705+martavis@users.noreply.github.com>
2021-11-24 17:16:42 +00:00
KEY `idx_policies_author_id` (`author_id`),
KEY `idx_policies_team_id` (`team_id`),
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
KEY `fk_policies_software_installer_id` (`software_installer_id`),
Backend build for script automation (#22472) #22115, #22116 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> No changes file, as FE changes file covers the entire feature - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jacob Shandling <jacob@fleetdm.com> Co-authored-by: Tim Lee <timlee@fleetdm.com>
2024-10-04 01:03:40 +00:00
KEY `fk_policies_script_id` (`script_id`),
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
KEY `fk_policies_vpp_apps_team_id` (`vpp_apps_teams_id`),
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
CONSTRAINT `policies_ibfk_3` FOREIGN KEY (`software_installer_id`) REFERENCES `software_installers` (`id`),
Backend build for script automation (#22472) #22115, #22116 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> No changes file, as FE changes file covers the entire feature - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jacob Shandling <jacob@fleetdm.com> Co-authored-by: Tim Lee <timlee@fleetdm.com>
2024-10-04 01:03:40 +00:00
CONSTRAINT `policies_ibfk_4` FOREIGN KEY (`script_id`) REFERENCES `scripts` (`id`),
Add VPP policy automation support to backend (#25154) For #23529, #23530. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-01-13 21:53:24 +00:00
CONSTRAINT `policies_ibfk_5` FOREIGN KEY (`vpp_apps_teams_id`) REFERENCES `vpp_apps_teams` (`id`),
Amend policy creation and spec (for proprietary query), and add update APIs (#2890) * Amend policy creation (proprietary query), add update APIs * Fix Datastore.SavePolicy bug (and add tests) * Add integration tests for new policy APIs * Add author email * Add activities * Push breaking changes for return policy fields * WIP * Add integration test for host policies * Make more improvements to policy representation * Improve upgrade code (from PR review comments) * PR changes * Revert activities for policies * Use *uint instead of uint for queryID, use fleet.PolicyPayload * Filter out other schemas * New policy flow (#2922) * created new policy flow -- no API connection * added api props * fixed prop name * lint fixes * removed unused modal; fixed style * name, desc icons; created global components * lint fixes * ignoring certain files and lines for prettier * Update frontend/pages/policies/PolicyPage/PolicyPage.tsx * Make policy names unique across deployment * Amend upgrade script * Fix migration for unique names * Do not deduplicate but instead rename policies Co-authored-by: Martavis Parker <47053705+martavis@users.noreply.github.com>
2021-11-24 17:16:42 +00:00
CONSTRAINT `policies_queries_ibfk_1` FOREIGN KEY (`author_id`) REFERENCES `users` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Fire automations for hosts that failed before automation enabled (#9028)
2022-12-16 21:00:54 +00:00
CREATE TABLE `policy_automation_iterations` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`policy_id` int unsigned NOT NULL,
`iteration` int NOT NULL,
Fire automations for hosts that failed before automation enabled (#9028)
2022-12-16 21:00:54 +00:00
PRIMARY KEY (`policy_id`),
CONSTRAINT `policy_automation_iterations_ibfk_1` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Fire automations for hosts that failed before automation enabled (#9028)
2022-12-16 21:00:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Remove policy membership history and only store the latest value (#3178) * Remove policy membership history and only store the latest value * Address review comments * Correct error msg wrap
2021-12-03 16:10:11 +00:00
CREATE TABLE `policy_membership` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`policy_id` int unsigned NOT NULL,
`host_id` int unsigned NOT NULL,
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
`passes` tinyint(1) DEFAULT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`automation_iteration` int DEFAULT NULL,
Remove policy membership history and only store the latest value (#3178) * Remove policy membership history and only store the latest value * Address review comments * Correct error msg wrap
2021-12-03 16:10:11 +00:00
PRIMARY KEY (`policy_id`,`host_id`),
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
KEY `idx_policy_membership_passes` (`passes`),
KEY `idx_policy_membership_host_id_passes` (`host_id`,`passes`),
Remove cleanups and fk for host ids (#3607) * Remove cleanups and fk for host ids * Readd missing things to the schema * Remove unused * Add changes file and fix some error messages * Fix test * Use tx instead of plain writer * Other fixes * More not found test fixes * Go back to getcontext
2022-01-12 17:07:51 +00:00
CONSTRAINT `policy_membership_ibfk_1` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add global policies (#1750) * Add global policies * Update documentation and add extra parameter to config * Fix failing tests * Store historic policy records * Address review comments And also remove other inmem references I saw by chance * Add documentation for get by id request * Add parameter doc * Move schema generation to a cmd instead of a test Otherwise it messes up running all tests sometimes depending on how parallel it does * Remove brain dump for another task * Make migration tests a separate beast * Make schema generation idempotent and move dbutils cmd to tools * Allow all filters and add counts to Policy * Add test for Policy
2021-08-24 20:24:52 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Cache policy counts (#15244)
2023-11-21 19:52:06 +00:00
CREATE TABLE `policy_stats` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`policy_id` int unsigned NOT NULL,
Add policies for "No team" (#21972) #21467 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-09-12 17:23:25 +00:00
`inherited_team_id` int unsigned DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`passing_host_count` mediumint unsigned NOT NULL DEFAULT '0',
`failing_host_count` mediumint unsigned NOT NULL DEFAULT '0',
Cache policy counts (#15244)
2023-11-21 19:52:06 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add policies for "No team" (#21972) #21467 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-09-12 17:23:25 +00:00
`inherited_team_id_char` char(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS (if((`inherited_team_id` is null),_utf8mb4'global',cast(`inherited_team_id` as char charset utf8mb4))) VIRTUAL,
Cache policy counts (#15244)
2023-11-21 19:52:06 +00:00
PRIMARY KEY (`id`),
Add policies for "No team" (#21972) #21467 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-09-12 17:23:25 +00:00
UNIQUE KEY `policy_id` (`policy_id`,`inherited_team_id_char`),
Cache policy counts (#15244)
2023-11-21 19:52:06 +00:00
CONSTRAINT `policy_stats_ibfk_1` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE CASCADE
Add policies for "No team" (#21972) #21467 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-09-12 17:23:25 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Cache policy counts (#15244)
2023-11-21 19:52:06 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `queries` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`saved` tinyint(1) NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`description` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
`query` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`author_id` int unsigned DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`observer_can_run` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned DEFAULT NULL,
Added missing FK constraint on scheduled_queries
2023-07-10 18:53:00 +00:00
`team_id_char` char(10) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Updated default values, updated not null constraints
2023-07-10 17:22:51 +00:00
`platform` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`min_osquery_version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`schedule_interval` int unsigned NOT NULL DEFAULT '0',
`automations_enabled` tinyint unsigned NOT NULL DEFAULT '0',
Updated default values, updated not null constraints
2023-07-10 17:22:51 +00:00
`logging_type` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT 'snapshot',
fix: we should discard by default to avoid anything happening with existing queries (#14305) # Checklist for submitter The implementation #13488 was wrong; we needed to have query results discarded by default, so customers shouldn't notice anything when they upgrade. If some of the following don't apply, delete the relevant line. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests
2023-10-05 12:29:40 +00:00
`discard_data` tinyint(1) NOT NULL DEFAULT '1',
Query optimization on Hosts query stats (#22417)
2024-09-30 21:39:17 +00:00
`is_scheduled` tinyint(1) GENERATED ALWAYS AS ((`schedule_interval` > 0)) STORED NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
Updated DB layer
2023-07-06 21:28:25 +00:00
UNIQUE KEY `idx_team_id_name_unq` (`team_id_char`,`name`),
Fix performance regression found in load testing (#12981)
2023-07-26 21:13:27 +00:00
UNIQUE KEY `idx_name_team_id_unq` (`name`,`team_id_char`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
KEY `author_id` (`author_id`),
Fix performance regression found in load testing (#12981)
2023-07-26 21:13:27 +00:00
KEY `idx_team_id_saved_auto_interval` (`team_id`,`saved`,`automations_enabled`,`schedule_interval`),
Query optimization on Hosts query stats (#22417)
2024-09-30 21:39:17 +00:00
KEY `idx_queries_schedule_automations` (`is_scheduled`,`automations_enabled`),
Updated DB layer
2023-07-06 21:28:25 +00:00
CONSTRAINT `queries_ibfk_1` FOREIGN KEY (`author_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
Added missing FK constraint on scheduled_queries
2023-07-10 18:53:00 +00:00
CONSTRAINT `queries_ibfk_2` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add LabelsIncludeAny to queries endpoint (#26823) #16413 --------- Co-authored-by: Scott Gress <scottmgress@gmail.com>
2025-03-11 13:45:01 +00:00
CREATE TABLE `query_labels` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`query_id` int unsigned NOT NULL,
`label_id` int unsigned NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_query_labels_query_label` (`query_id`,`label_id`),
KEY `query_labels_label_id` (`label_id`),
CONSTRAINT `query_labels_label_id` FOREIGN KEY (`label_id`) REFERENCES `labels` (`id`) ON DELETE CASCADE,
CONSTRAINT `query_labels_query_id` FOREIGN KEY (`query_id`) REFERENCES `queries` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Revert Backmerge from Main
2023-10-05 02:56:17 +00:00
CREATE TABLE `query_results` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`query_id` int unsigned NOT NULL,
`host_id` int unsigned NOT NULL,
Revert Backmerge from Main
2023-10-05 02:56:17 +00:00
`osquery_version` varchar(50) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`error` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`last_fetched` timestamp NOT NULL,
Revert Backmerge from Main
2023-10-05 02:56:17 +00:00
`data` json DEFAULT NULL,
PRIMARY KEY (`id`),
Added index to query_results DB table to speed up finding last query timestamp for a given query and host. (#21303) #21296 Added index to query_results DB table to speed up finding last query timestamp for a given query and host. # Checklist for submitter <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Manual QA for all new/changed functionality
2024-08-14 13:00:27 +00:00
KEY `idx_query_id_host_id_last_fetched` (`query_id`,`host_id`,`last_fetched`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Revert Backmerge from Main
2023-10-05 02:56:17 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `scep_certificates` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`serial` bigint NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(1024) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`not_valid_before` datetime NOT NULL,
`not_valid_after` datetime NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`certificate_pem` text COLLATE utf8mb4_unicode_ci NOT NULL,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
`revoked` tinyint(1) NOT NULL DEFAULT '0',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`serial`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `scep_certificates_ibfk_1` FOREIGN KEY (`serial`) REFERENCES `scep_serials` (`serial`),
CONSTRAINT `scep_certificates_chk_1` CHECK ((substr(`certificate_pem`,1,27) = _utf8mb4'-----BEGIN CERTIFICATE-----')),
CONSTRAINT `scep_certificates_chk_2` CHECK (((`name` is null) or (`name` <> _utf8mb4'')))
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
CREATE TABLE `scep_serials` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`serial` bigint NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
PRIMARY KEY (`serial`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `scheduled_queries` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`pack_id` int unsigned DEFAULT NULL,
`query_id` int unsigned DEFAULT NULL,
`interval` int unsigned DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`snapshot` tinyint(1) DEFAULT NULL,
`removed` tinyint(1) DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`platform` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT '',
`version` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`shard` int unsigned DEFAULT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`query_name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`description` varchar(1023) COLLATE utf8mb4_unicode_ci DEFAULT '',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`denylist` tinyint(1) DEFAULT NULL,
Make team_id_char not null
2023-07-10 18:56:44 +00:00
`team_id_char` char(10) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `unique_names_in_packs` (`name`,`pack_id`),
KEY `scheduled_queries_pack_id` (`pack_id`),
KEY `scheduled_queries_query_name` (`query_name`),
Added missing FK constraint on scheduled_queries
2023-07-10 18:53:00 +00:00
KEY `fk_scheduled_queries_queries` (`team_id_char`,`query_name`),
Updated test schema
2023-07-10 20:01:46 +00:00
CONSTRAINT `scheduled_queries_ibfk_1` FOREIGN KEY (`team_id_char`, `query_name`) REFERENCES `queries` (`team_id_char`, `name`) ON DELETE CASCADE ON UPDATE CASCADE,
Updated DB layer
2023-07-06 21:28:25 +00:00
CONSTRAINT `scheduled_queries_pack_id` FOREIGN KEY (`pack_id`) REFERENCES `packs` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `scheduled_query_stats` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`host_id` int unsigned NOT NULL,
`scheduled_query_id` int unsigned NOT NULL,
`average_memory` bigint unsigned NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`denylisted` tinyint(1) DEFAULT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`executions` bigint unsigned NOT NULL,
`schedule_interval` int DEFAULT NULL,
`last_executed` timestamp NULL DEFAULT NULL,
`output_size` bigint unsigned NOT NULL,
`system_time` bigint unsigned NOT NULL,
`user_time` bigint unsigned NOT NULL,
`wall_time` bigint unsigned NOT NULL,
`query_type` tinyint NOT NULL DEFAULT '0',
Performance stats for live queries (#15440) 📺 Loom explaining the PR: https://www.loom.com/share/8c6ec0c362014910931f183d68307525?sid=7de51e6f-a59d-4d8f-b06b-f703f1692f17 #467 Live Queries now collect stats. Stats are collected for saved queries present in the Queries tab. - After running a live query, user will see updated stats in Queries tab. - Query stats on Host Details page will no longer be cleared after host/agent reboots. - Query stats are now deleted when query is deleted. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-12-13 20:46:59 +00:00
PRIMARY KEY (`host_id`,`scheduled_query_id`,`query_type`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
KEY `scheduled_query_id` (`scheduled_query_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
CREATE TABLE `script_contents` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
`md5_checksum` binary(16) NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`contents` mediumtext CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_script_contents_md5_checksum` (`md5_checksum`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Upcoming Activities feature branch (#25450)
2025-02-11 19:53:11 +00:00
CREATE TABLE `script_upcoming_activities` (
`upcoming_activity_id` bigint unsigned NOT NULL,
`script_id` int unsigned DEFAULT NULL,
`script_content_id` int unsigned DEFAULT NULL,
`policy_id` int unsigned DEFAULT NULL,
`setup_experience_script_id` int unsigned DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`upcoming_activity_id`),
KEY `fk_script_upcoming_activities_script_id` (`script_id`),
KEY `fk_script_upcoming_activities_script_content_id` (`script_content_id`),
KEY `fk_script_upcoming_activities_policy_id` (`policy_id`),
KEY `fk_script_upcoming_activities_setup_experience_script_id` (`setup_experience_script_id`),
CONSTRAINT `fk_script_upcoming_activities_policy_id` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_script_upcoming_activities_script_content_id` FOREIGN KEY (`script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_script_upcoming_activities_script_id` FOREIGN KEY (`script_id`) REFERENCES `scripts` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_script_upcoming_activities_setup_experience_script_id` FOREIGN KEY (`setup_experience_script_id`) REFERENCES `setup_experience_scripts` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_script_upcoming_activities_upcoming_activity_id` FOREIGN KEY (`upcoming_activity_id`) REFERENCES `upcoming_activities` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
DB migrations for saved scripts (#13765)
2023-09-11 15:54:34 +00:00
CREATE TABLE `scripts` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int unsigned NOT NULL DEFAULT '0',
DB migrations for saved scripts (#13765)
2023-09-11 15:54:34 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`script_content_id` int unsigned DEFAULT NULL,
DB migrations for saved scripts (#13765)
2023-09-11 15:54:34 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_scripts_global_or_team_id_name` (`global_or_team_id`,`name`),
Feat: saved scripts (#14409) For #9537
2023-10-10 22:00:45 +00:00
UNIQUE KEY `idx_scripts_team_name` (`team_id`,`name`),
Scripts char limit: make DB changes to support a central table of unique script contents (#17256) #16840 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects.
2024-02-29 15:43:19 +00:00
KEY `script_content_id` (`script_content_id`),
CONSTRAINT `scripts_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `scripts_ibfk_2` FOREIGN KEY (`script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
DB migrations for saved scripts (#13765)
2023-09-11 15:54:34 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Added migration and secret variables API. (#24594) #24545 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-10 21:32:51 +00:00
CREATE TABLE `secret_variables` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`value` blob NOT NULL,
Added ability to upload profiles with secret variables using the /configuration_profiles endpoint. (#25012) Added ability to upload profiles with secret variables using the /configuration_profiles endpoint. #25011 # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com>
2024-12-30 19:07:32 +00:00
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Added migration and secret variables API. (#24594) #24545 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-10 21:32:51 +00:00
PRIMARY KEY (`id`),
Fixing schema.sql on main (#24628)
2024-12-10 23:17:21 +00:00
UNIQUE KEY `idx_secret_variables_name` (`name`)
Added migration and secret variables API. (#24594) #24545 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-10 21:32:51 +00:00
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `sessions` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`accessed_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`user_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`key` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_session_unique_key` (`key`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
CREATE TABLE `setup_experience_scripts` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int unsigned NOT NULL DEFAULT '0',
`name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`script_content_id` int unsigned DEFAULT NULL,
PRIMARY KEY (`id`),
Add endpoints for setup experience script CRUD (#22604) Issue #22378
2024-10-09 16:43:12 +00:00
UNIQUE KEY `idx_setup_experience_scripts_global_or_team_id` (`global_or_team_id`),
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
KEY `idx_script_content_id` (`script_content_id`),
Add endpoints for setup experience script CRUD (#22604) Issue #22378
2024-10-09 16:43:12 +00:00
KEY `fk_setup_experience_scripts_ibfk_1` (`team_id`),
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
CONSTRAINT `fk_setup_experience_scripts_ibfk_1` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `fk_setup_experience_scripts_ibfk_2` FOREIGN KEY (`script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
CREATE TABLE `setup_experience_status_results` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`status` enum('pending','running','success','failure') COLLATE utf8mb4_unicode_ci NOT NULL,
fix: add some missing columns to migration (#22671) > No issue, just updating an existing migration # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-04 20:49:41 +00:00
`software_installer_id` int unsigned DEFAULT NULL,
Setup experience state machine (#22845)
2024-10-18 16:01:53 +00:00
`host_software_installs_execution_id` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
fix: add some missing columns to migration (#22671) > No issue, just updating an existing migration # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-04 20:49:41 +00:00
`vpp_app_team_id` int unsigned DEFAULT NULL,
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
`nano_command_uuid` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
fix: add some missing columns to migration (#22671) > No issue, just updating an existing migration # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-04 20:49:41 +00:00
`setup_experience_script_id` int unsigned DEFAULT NULL,
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
`script_execution_id` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
`error` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
PRIMARY KEY (`id`),
KEY `idx_setup_experience_scripts_host_uuid` (`host_uuid`),
Setup experience state machine (#22845)
2024-10-18 16:01:53 +00:00
KEY `idx_setup_experience_scripts_hsi_id` (`host_software_installs_execution_id`),
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
KEY `idx_setup_experience_scripts_nano_command_uuid` (`nano_command_uuid`),
KEY `idx_setup_experience_scripts_script_execution_id` (`script_execution_id`),
fix: add some missing columns to migration (#22671) > No issue, just updating an existing migration # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-10-04 20:49:41 +00:00
KEY `fk_setup_experience_status_results_si_id` (`software_installer_id`),
KEY `fk_setup_experience_status_results_va_id` (`vpp_app_team_id`),
KEY `fk_setup_experience_status_results_ses_id` (`setup_experience_script_id`),
CONSTRAINT `fk_setup_experience_status_results_ses_id` FOREIGN KEY (`setup_experience_script_id`) REFERENCES `setup_experience_scripts` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_setup_experience_status_results_si_id` FOREIGN KEY (`software_installer_id`) REFERENCES `software_installers` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_setup_experience_status_results_va_id` FOREIGN KEY (`vpp_app_team_id`) REFERENCES `vpp_apps_teams` (`id`) ON DELETE CASCADE
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `software` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`source` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
`bundle_identifier` varchar(255) COLLATE utf8mb4_unicode_ci DEFAULT '',
`release` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`vendor_old` varchar(32) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`arch` varchar(16) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`vendor` varchar(114) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Adding extension_id and browser columns to software table. (#15285) https://github.com/fleetdm/confidential/issues/2118 API doc changes are at: https://github.com/fleetdm/fleet/pull/15092 This change affects Chrome-based and Firefox browsers. I tried Safari, but it appears that latest Safari extensions simply show up as regular apps on macOS. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality - Tested detail query changes on macOS, Windows, Ubuntu, and ChromeOS - Tested Chrome, Edge, Brave, and Firefox browsers Testing notes: 1. Install some browser extensions. 2. Update fleet to this change. 3. Refresh hosts, and trigger vulnerabilities job (which updates host software). 4. Do something like `GET https://localhost:8080/api/v1/fleet/software?query=Password%20Manager` to see `extension_id` and `browser` for the hosts that have updated.
2023-12-01 01:06:17 +00:00
`browser` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`extension_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`title_id` int unsigned DEFAULT NULL,
Add checksum hash unique column to software table. (#15598)
2023-12-12 22:51:58 +00:00
`checksum` binary(16) NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
Add checksum hash unique column to software table. (#15598)
2023-12-12 22:51:58 +00:00
UNIQUE KEY `idx_software_checksum` (`checksum`),
Add database migrations to support software titles feature (#15401) Issue #15222
2023-12-01 14:33:07 +00:00
KEY `software_source_vendor_idx` (`source`,`vendor_old`),
Update software titles cron to include browser field (#15491)
2023-12-07 23:43:37 +00:00
KEY `title_id` (`title_id`),
Drop duplicate MySQL indexes. (#24107) #24109 Duplicate indexes identified after running pt-duplicate-key-checker https://docs.percona.com/percona-toolkit/pt-duplicate-key-checker.html # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-11-25 16:03:19 +00:00
KEY `idx_sw_name_source_browser` (`name`,`source`,`browser`),
KEY `software_listing_idx` (`name`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `software_cpe` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`software_id` bigint unsigned DEFAULT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`cpe` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
Clean out-of-date NVD results. (#10514) Keep the vulnerabilities detected via NVD and stored in the DB in sync. with the results from the NVD vulnerability process.
2023-04-03 17:45:18 +00:00
UNIQUE KEY `unq_software_id` (`software_id`),
Trigger webhooks for recently published vulnerabilities (#3941)
2022-02-02 21:34:37 +00:00
KEY `software_cpe_cpe_idx` (`cpe`),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CONSTRAINT `software_cpe_ibfk_1` FOREIGN KEY (`software_id`) REFERENCES `software` (`id`) ON DELETE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `software_cve` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`cve` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`source` int DEFAULT '0',
`software_id` bigint unsigned DEFAULT NULL,
`resolved_in_version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
fix: add an index to mitigate vuln processing resource spikes (#26331) > For #26178 # Checklist for submitter ## Data from testing We tested the changes out by directly creating the index in our dogfood env. We saw a decrease in resource usage, captured in these screenshots: DB load (taller spike towards the left is without the index, subsequent spikes are after the index was added) ![image (1)](https://github.com/user-attachments/assets/141f8066-89e9-4a8e-ba7c-9fd3a09afea4) DB load over a longer period (overnight 2025-02-12 -> 2025-02-13) ![Screenshot 2025-02-13 at 9 05 05 AM](https://github.com/user-attachments/assets/bb0c6744-537d-4aec-960b-d100c4285d00) CPU utilization ![Screenshot 2025-02-13 at 10 25 17 AM](https://github.com/user-attachments/assets/eeea9ae5-5a10-4d50-91bc-3a806b359b39) Memory usage ![Screenshot 2025-02-13 at 10 26 52 AM](https://github.com/user-attachments/assets/bb77cdd8-41ef-4d90-a707-70b6d2976a59) --- If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-02-14 17:53:41 +00:00
UNIQUE KEY `unq_software_id_cve` (`software_id`,`cve`),
KEY `idx_software_cve_cve` (`cve`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Use a dedicated table to store hosts_count and fix pagination with vulns (#4104)
2022-02-09 15:16:50 +00:00
CREATE TABLE `software_host_counts` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`software_id` bigint unsigned NOT NULL,
`hosts_count` int unsigned NOT NULL,
Use a dedicated table to store hosts_count and fix pagination with vulns (#4104)
2022-02-09 15:16:50 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned NOT NULL DEFAULT '0',
Add No Team to Software Backend (#20822)
2024-07-30 17:19:05 +00:00
`global_stats` tinyint unsigned NOT NULL DEFAULT '0',
PRIMARY KEY (`software_id`,`team_id`,`global_stats`),
Support listing software hosts count filtered by team (#4388)
2022-02-28 18:55:14 +00:00
KEY `idx_software_host_counts_updated_at_software_id` (`updated_at`,`software_id`),
KEY `idx_software_host_counts_team_id_hosts_count_software_id` (`team_id`,`hosts_count`,`software_id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Use a dedicated table to store hosts_count and fix pagination with vulns (#4104)
2022-02-09 15:16:50 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Upcoming Activities feature branch (#25450)
2025-02-11 19:53:11 +00:00
CREATE TABLE `software_install_upcoming_activities` (
`upcoming_activity_id` bigint unsigned NOT NULL,
`software_installer_id` int unsigned DEFAULT NULL,
`policy_id` int unsigned DEFAULT NULL,
`software_title_id` int unsigned DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`upcoming_activity_id`),
KEY `fk_software_install_upcoming_activities_software_installer_id` (`software_installer_id`),
KEY `fk_software_install_upcoming_activities_policy_id` (`policy_id`),
KEY `fk_software_install_upcoming_activities_software_title_id` (`software_title_id`),
CONSTRAINT `fk_software_install_upcoming_activities_policy_id` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_software_install_upcoming_activities_software_installer_id` FOREIGN KEY (`software_installer_id`) REFERENCES `software_installers` (`id`) ON DELETE SET NULL ON UPDATE CASCADE,
CONSTRAINT `fk_software_install_upcoming_activities_software_title_id` FOREIGN KEY (`software_title_id`) REFERENCES `software_titles` (`id`) ON DELETE SET NULL ON UPDATE CASCADE,
CONSTRAINT `fk_software_install_upcoming_activities_upcoming_activity_id` FOREIGN KEY (`upcoming_activity_id`) REFERENCES `upcoming_activities` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
SSVL: database schema changes (#24591)
2024-12-10 16:40:46 +00:00
CREATE TABLE `software_installer_labels` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`software_installer_id` int unsigned NOT NULL,
`label_id` int unsigned NOT NULL,
`exclude` tinyint(1) NOT NULL DEFAULT '0',
SSVL: db migration add microsecond precision to timestamps (#24620)
2024-12-10 21:20:40 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
SSVL: database schema changes (#24591)
2024-12-10 16:40:46 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_software_installer_labels_software_installer_id_label_id` (`software_installer_id`,`label_id`),
KEY `label_id` (`label_id`),
CONSTRAINT `software_installer_labels_ibfk_1` FOREIGN KEY (`software_installer_id`) REFERENCES `software_installers` (`id`) ON DELETE CASCADE,
CONSTRAINT `software_installer_labels_ibfk_2` FOREIGN KEY (`label_id`) REFERENCES `labels` (`id`) ON DELETE RESTRICT
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
CREATE TABLE `software_installers` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int unsigned NOT NULL DEFAULT '0',
`title_id` int unsigned DEFAULT NULL,
`filename` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`version` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`platform` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`pre_install_query` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci,
`install_script_content_id` int unsigned NOT NULL,
`post_install_script_content_id` int unsigned DEFAULT NULL,
`storage_id` varchar(64) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`uploaded_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
Add self_service bool to software_installers table (#19122) #19116
2024-05-21 14:13:12 +00:00
`self_service` tinyint(1) NOT NULL DEFAULT '0',
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
`user_id` int unsigned DEFAULT NULL,
`user_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`user_email` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Bump max length for installer URLs supplied in GitOps to 4000 characters (#24942) For #24917. Should be worth the extra byte per row for the varchar field. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-20 17:58:21 +00:00
`url` varchar(4095) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`package_ids` text CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Add software installer extension column to database (#22017) #22044 This is distinct from the filename extension due to being based on package introspection. # Checklist for submitter - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-09-12 21:22:35 +00:00
`extension` varchar(32) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
`uninstall_script_content_id` int unsigned NOT NULL,
Add software installer extension column to database (#22017) #22044 This is distinct from the filename extension due to being based on package introspection. # Checklist for submitter - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-09-12 21:22:35 +00:00
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
Fleet App Library: DB schema WIP (#21820)
2024-09-09 15:45:38 +00:00
`fleet_library_app_id` int unsigned DEFAULT NULL,
fix: migration order
2024-10-25 22:11:56 +00:00
`install_during_setup` tinyint(1) NOT NULL DEFAULT '0',
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
PRIMARY KEY (`id`),
Update software installers schema with reference to software titles (#18589)
2024-04-29 17:22:59 +00:00
UNIQUE KEY `idx_software_installers_team_id_title_id` (`global_or_team_id`,`title_id`),
KEY `fk_software_installers_title` (`title_id`),
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
KEY `fk_software_installers_install_script_content_id` (`install_script_content_id`),
KEY `fk_software_installers_post_install_script_content_id` (`post_install_script_content_id`),
Update software installers schema with reference to software titles (#18589)
2024-04-29 17:22:59 +00:00
KEY `fk_software_installers_team_id` (`team_id`),
Update list host software to omit software installers for other platforms (#19088)
2024-05-16 22:09:41 +00:00
KEY `idx_software_installers_platform_title_id` (`platform`,`title_id`),
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
KEY `fk_software_installers_user_id` (`user_id`),
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
KEY `fk_uninstall_script_content_id` (`uninstall_script_content_id`),
Fleet App Library: DB schema WIP (#21820)
2024-09-09 15:45:38 +00:00
KEY `fk_software_installers_fleet_library_app_id` (`fleet_library_app_id`),
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
CONSTRAINT `fk_software_installers_install_script_content_id` FOREIGN KEY (`install_script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE RESTRICT ON UPDATE CASCADE,
CONSTRAINT `fk_software_installers_post_install_script_content_id` FOREIGN KEY (`post_install_script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE RESTRICT ON UPDATE CASCADE,
Update software installers schema with reference to software titles (#18589)
2024-04-29 17:22:59 +00:00
CONSTRAINT `fk_software_installers_team_id` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
Backend for policy automation to install software (#21650) #21428 - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [X] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [X] Added/updated tests - [X] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [X] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [X] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [X] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [X] Manual QA for all new/changed functionality
2024-08-30 17:13:25 +00:00
CONSTRAINT `fk_software_installers_title` FOREIGN KEY (`title_id`) REFERENCES `software_titles` (`id`) ON DELETE SET NULL ON UPDATE CASCADE,
Updated schema.sql after merge.
2024-09-08 17:26:26 +00:00
CONSTRAINT `fk_software_installers_user_id` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL,
Merge branch 'main' into feat-fleet-app-library
2024-09-13 12:54:10 +00:00
CONSTRAINT `fk_uninstall_script_content_id` FOREIGN KEY (`uninstall_script_content_id`) REFERENCES `script_contents` (`id`) ON DELETE RESTRICT ON UPDATE CASCADE,
Fleet App Library: DB schema WIP (#21820)
2024-09-09 15:45:38 +00:00
CONSTRAINT `software_installers_ibfk_1` FOREIGN KEY (`fleet_library_app_id`) REFERENCES `fleet_library_apps` (`id`) ON DELETE SET NULL
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
add migrations for software installers (#18516) for #18323 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-04-25 11:48:44 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add database migrations to support software titles feature (#15401) Issue #15222
2023-12-01 14:33:07 +00:00
CREATE TABLE `software_titles` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
Add database migrations to support software titles feature (#15401) Issue #15222
2023-12-01 14:33:07 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`source` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`browser` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`bundle_identifier` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Fetch installed apps from iPhone/iPad devices. (#20733) Part 2 of https://github.com/fleetdm/fleet/issues/19447 - iOS and iPadOS user-installed apps are loaded into Fleet - Added an additional identifier into software_titles table to differentiate between iOS/iPadOS apps - Updated nano queue timestamp precision Note: TestIntegrationsMDM/TestVPPApps fails when run as part of the suite, but passes standalone. I'd like to proceed with merging this PR, and figure out the issue next week. # Checklist for submitter <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Roberto Dip <rroperzh@gmail.com>
2024-07-28 14:17:27 +00:00
`additional_identifier` tinyint unsigned GENERATED ALWAYS AS ((case when (`source` = _utf8mb4'ios_apps') then 1 when (`source` = _utf8mb4'ipados_apps') then 2 when (`bundle_identifier` is not null) then 0 else NULL end)) VIRTUAL,
Added software_titles unique index `idx_unique_sw_titles` (#25794) For #25235 This allows software with different names but the same bundle identifier to be grouped under the same title. It also allows for software with the same name but different bundle identifiers to be under two separate titles. - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-02-03 19:23:21 +00:00
`unique_identifier` varchar(255) COLLATE utf8mb4_unicode_ci GENERATED ALWAYS AS (coalesce(`bundle_identifier`,`name`)) VIRTUAL,
Add database migrations to support software titles feature (#15401) Issue #15222
2023-12-01 14:33:07 +00:00
PRIMARY KEY (`id`),
Added software_titles unique index `idx_unique_sw_titles` (#25794) For #25235 This allows software with different names but the same bundle identifier to be grouped under the same title. It also allows for software with the same name but different bundle identifiers to be under two separate titles. - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-02-03 19:23:21 +00:00
UNIQUE KEY `idx_software_titles_bundle_identifier` (`bundle_identifier`,`additional_identifier`),
UNIQUE KEY `idx_unique_sw_titles` (`unique_identifier`,`source`,`browser`),
KEY `idx_sw_titles` (`name`,`source`,`browser`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add database migrations to support software titles feature (#15401) Issue #15222
2023-12-01 14:33:07 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
pre-calculate host counts for software titles (#15601) found during the load test, this addresses a performance issue with software titles. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-12-13 15:48:57 +00:00
CREATE TABLE `software_titles_host_counts` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`software_title_id` int unsigned NOT NULL,
`hosts_count` int unsigned NOT NULL,
`team_id` int unsigned NOT NULL DEFAULT '0',
pre-calculate host counts for software titles (#15601) found during the load test, this addresses a performance issue with software titles. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-12-13 15:48:57 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add No Team to Software Backend (#20822)
2024-07-30 17:19:05 +00:00
`global_stats` tinyint unsigned NOT NULL DEFAULT '0',
PRIMARY KEY (`software_title_id`,`team_id`,`global_stats`),
pre-calculate host counts for software titles (#15601) found during the load test, this addresses a performance issue with software titles. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-12-13 15:48:57 +00:00
KEY `idx_software_titles_host_counts_team_counts_title` (`team_id`,`hosts_count`,`software_title_id`),
KEY `idx_software_titles_host_counts_updated_at_software_title_id` (`updated_at`,`software_title_id`)
Add No Team to Software Backend (#20822)
2024-07-30 17:19:05 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
pre-calculate host counts for software titles (#15601) found during the load test, this addresses a performance issue with software titles. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-12-13 15:48:57 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `statistics` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`anonymous_identifier` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `teams` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`description` varchar(1023) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
Add team failing policies webhook (#4633) * add config to teams * update api docs * update tests
2022-03-21 19:16:47 +00:00
`config` json DEFAULT NULL,
Adding full unicode/emoji support for team/policy names. (#17163) #17027 Added Unicode and emoji support for policy and team names. I have the manual test steps in the issue: https://github.com/fleetdm/fleet/issues/17027 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2024-02-27 18:55:05 +00:00
`name_bin` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin GENERATED ALWAYS AS (`name`) VIRTUAL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`filename` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
GitOps rename teams (#19987) #18471 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-06-27 21:10:49 +00:00
UNIQUE KEY `idx_teams_filename` (`filename`),
Adding full unicode/emoji support for team/policy names. (#17163) #17027 Added Unicode and emoji support for policy and team names. I have the manual test steps in the issue: https://github.com/fleetdm/fleet/issues/17027 # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2024-02-27 18:55:05 +00:00
UNIQUE KEY `idx_name_bin` (`name_bin`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Upcoming Activities feature branch (#25450)
2025-02-11 19:53:11 +00:00
CREATE TABLE `upcoming_activities` (
`id` bigint unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`priority` int NOT NULL DEFAULT '0',
`user_id` int unsigned DEFAULT NULL,
`fleet_initiated` tinyint(1) NOT NULL DEFAULT '0',
`activity_type` enum('script','software_install','software_uninstall','vpp_app_install') COLLATE utf8mb4_unicode_ci NOT NULL,
`execution_id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`payload` json NOT NULL,
`activated_at` datetime(6) DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`),
UNIQUE KEY `idx_upcoming_activities_execution_id` (`execution_id`),
KEY `idx_upcoming_activities_host_id_priority_created_at` (`host_id`,`priority`,`created_at`),
KEY `idx_upcoming_activities_host_id_activity_type` (`activity_type`,`host_id`),
KEY `fk_upcoming_activities_user_id` (`user_id`),
CONSTRAINT `fk_upcoming_activities_user_id` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE SET NULL
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `user_teams` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`user_id` int unsigned NOT NULL,
`team_id` int unsigned NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`role` varchar(64) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`user_id`,`team_id`),
KEY `fk_user_teams_team_id` (`team_id`),
CONSTRAINT `user_teams_ibfk_1` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `user_teams_ibfk_2` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
CREATE TABLE `users` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
`password` varbinary(255) NOT NULL,
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`salt` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`email` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`admin_forced_password_reset` tinyint(1) NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`gravatar_url` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`position` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`sso_enabled` tinyint NOT NULL DEFAULT '0',
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
`global_role` varchar(64) COLLATE utf8mb4_unicode_ci DEFAULT NULL,
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
`api_only` tinyint(1) NOT NULL DEFAULT '0',
Allow opting in users to email verification on login (#24273) #22790 Changes file is on the FE PR. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-05 14:37:10 +00:00
`mfa_enabled` tinyint(1) NOT NULL DEFAULT '0',
API, datastore, migration for new "user settings", with `"hidden_hosts_table_columns" setting (#25184) ## For #25033 - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Added/updated automated tests - [ ] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2025-01-09 18:04:47 +00:00
`settings` json NOT NULL DEFAULT (json_object()),
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_user_unique_email` (`email`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Added Android activity and better handling of deleted users. (#26640) For #26218 - Added `users_deleted` table to track user actions if the user was actually deleted. - Added enable/disable Android MDM activities Note: I could not auto-generate fleet.Service mock because it has issues with methods that don't return anything. I ended up using testify mock instead. # Checklist for submitter - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] Manual QA for all new/changed functionality
2025-02-27 20:19:15 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
CREATE TABLE `users_deleted` (
`id` int unsigned NOT NULL,
`name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`email` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` datetime(6) DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Refactor app config (POC, for now) (#1685)
2021-08-20 15:27:41 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Feature 7076: Ingest installed windows updates (#7138) * Ingest installed Windows updates and store them in the windows_updates table. * Added config option for enabling/disabling Windows update ingestion and Windows OS vuln. detection.
2022-08-26 18:55:03 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Allow opting in users to email verification on login (#24273) #22790 Changes file is on the FE PR. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-12-05 14:37:10 +00:00
CREATE TABLE `verification_tokens` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`user_id` int unsigned NOT NULL,
`token` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
PRIMARY KEY (`id`),
UNIQUE KEY `token` (`token`),
KEY `verification_tokens_users` (`user_id`),
CONSTRAINT `verification_tokens_users` FOREIGN KEY (`user_id`) REFERENCES `users` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
SSVL: database schema changes (#24591)
2024-12-10 16:40:46 +00:00
CREATE TABLE `vpp_app_team_labels` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`vpp_app_team_id` int unsigned NOT NULL,
`label_id` int unsigned NOT NULL,
`exclude` tinyint(1) NOT NULL DEFAULT '0',
SSVL: db migration add microsecond precision to timestamps (#24620)
2024-12-10 21:20:40 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
SSVL: database schema changes (#24591)
2024-12-10 16:40:46 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_vpp_app_team_labels_vpp_app_team_id_label_id` (`vpp_app_team_id`,`label_id`),
KEY `label_id` (`label_id`),
CONSTRAINT `vpp_app_team_labels_ibfk_1` FOREIGN KEY (`vpp_app_team_id`) REFERENCES `vpp_apps_teams` (`id`) ON DELETE CASCADE,
CONSTRAINT `vpp_app_team_labels_ibfk_2` FOREIGN KEY (`label_id`) REFERENCES `labels` (`id`) ON DELETE RESTRICT
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
Upcoming Activities feature branch (#25450)
2025-02-11 19:53:11 +00:00
CREATE TABLE `vpp_app_upcoming_activities` (
`upcoming_activity_id` bigint unsigned NOT NULL,
`adam_id` varchar(16) COLLATE utf8mb4_unicode_ci NOT NULL,
`platform` varchar(10) COLLATE utf8mb4_unicode_ci NOT NULL,
`vpp_token_id` int unsigned DEFAULT NULL,
`policy_id` int unsigned DEFAULT NULL,
`created_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` datetime(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
PRIMARY KEY (`upcoming_activity_id`),
KEY `fk_vpp_app_upcoming_activities_adam_id_platform` (`adam_id`,`platform`),
KEY `fk_vpp_app_upcoming_activities_vpp_token_id` (`vpp_token_id`),
KEY `fk_vpp_app_upcoming_activities_policy_id` (`policy_id`),
CONSTRAINT `fk_vpp_app_upcoming_activities_adam_id_platform` FOREIGN KEY (`adam_id`, `platform`) REFERENCES `vpp_apps` (`adam_id`, `platform`) ON DELETE CASCADE,
CONSTRAINT `fk_vpp_app_upcoming_activities_policy_id` FOREIGN KEY (`policy_id`) REFERENCES `policies` (`id`) ON DELETE SET NULL,
CONSTRAINT `fk_vpp_app_upcoming_activities_upcoming_activity_id` FOREIGN KEY (`upcoming_activity_id`) REFERENCES `upcoming_activities` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_vpp_app_upcoming_activities_vpp_token_id` FOREIGN KEY (`vpp_token_id`) REFERENCES `vpp_tokens` (`id`) ON DELETE SET NULL
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
CREATE TABLE `vpp_apps` (
`adam_id` varchar(16) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`title_id` int unsigned DEFAULT NULL,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`bundle_identifier` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`icon_url` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
feat: get app store apps, add app store app to Fleet (#20362) > Related issue: #19867 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - [x] Manual QA for all new/changed functionality
2024-07-11 20:09:30 +00:00
`latest_version` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '',
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
`platform` varchar(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
PRIMARY KEY (`adam_id`,`platform`),
add shared pieces of db functionality (#20239) part of #18867 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`).
2024-07-05 21:04:41 +00:00
KEY `fk_vpp_apps_title` (`title_id`),
CONSTRAINT `fk_vpp_apps_title` FOREIGN KEY (`title_id`) REFERENCES `software_titles` (`id`) ON DELETE SET NULL ON UPDATE CASCADE
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
CREATE TABLE `vpp_apps_teams` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
`adam_id` varchar(16) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned DEFAULT NULL,
`global_or_team_id` int NOT NULL DEFAULT '0',
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
`platform` varchar(10) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
Add self_service column to vpp_apps_teams (#21106) Migration for #19882 Making the migration its own PR so it doesn't become stale.
2024-08-07 13:51:24 +00:00
`self_service` tinyint(1) NOT NULL DEFAULT '0',
Delete apps associated with VPP tokens when they're moved or deleted (#21852) #21804
2024-09-06 13:14:09 +00:00
`vpp_token_id` int unsigned NOT NULL,
Setup Experience Migration (#22405) #22375
2024-09-30 15:08:50 +00:00
`install_during_setup` tinyint(1) NOT NULL DEFAULT '0',
Add created_at/updated_at timestamps to VPP apps teams table, return as added_at (#26442) For #23744. Splitting into another PR: query to pull more accurate timestamps from activity feed # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Added/updated automated tests - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [x] Manual QA for all new/changed functionality
2025-02-21 21:07:52 +00:00
`created_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6),
`updated_at` timestamp(6) NOT NULL DEFAULT CURRENT_TIMESTAMP(6) ON UPDATE CURRENT_TIMESTAMP(6),
VPP: Add PK to `vpp_apps_teams` to avoid migration issues (#20542)
2024-07-17 19:22:22 +00:00
PRIMARY KEY (`id`),
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
UNIQUE KEY `idx_global_or_team_id_adam_id` (`global_or_team_id`,`adam_id`,`platform`),
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
KEY `team_id` (`team_id`),
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
KEY `adam_id` (`adam_id`,`platform`),
Delete apps associated with VPP tokens when they're moved or deleted (#21852) #21804
2024-09-06 13:14:09 +00:00
KEY `fk_vpp_apps_teams_vpp_token_id` (`vpp_token_id`),
CONSTRAINT `fk_vpp_apps_teams_vpp_token_id` FOREIGN KEY (`vpp_token_id`) REFERENCES `vpp_tokens` (`id`) ON DELETE CASCADE,
Added VPP support for iOS/iPadOS (#20837) #19447 iOS and iPadOS apps can be installed using Apple's VPP (Volume Purchase Program) VPP apps are now using a composite primary key (Adam ID and platform) because we want to keep iOS/iPadOS/macOS separate. It is possible for one app to be installable on all Apple platforms. # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-30 20:43:51 +00:00
CONSTRAINT `vpp_apps_teams_ibfk_2` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE,
CONSTRAINT `vpp_apps_teams_ibfk_3` FOREIGN KEY (`adam_id`, `platform`) REFERENCES `vpp_apps` (`adam_id`, `platform`) ON DELETE CASCADE
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
feat: enable multiple ABM and VPP tokens (#21693) > Related issue: #9956 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] Added/updated tests - [x] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality --------- Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: Gabriel Hernandez <ghernandez345@gmail.com> Co-authored-by: Roberto Dip <rroperzh@gmail.com> Co-authored-by: Sarah Gillespie <73313222+gillespi314@users.noreply.github.com> Co-authored-by: Dante Catalfamo <43040593+dantecatalfamo@users.noreply.github.com> Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
2024-08-29 22:51:46 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
CREATE TABLE `vpp_token_teams` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`vpp_token_id` int unsigned NOT NULL,
`team_id` int unsigned DEFAULT NULL,
`null_team_type` enum('none','allteams','noteam') CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci DEFAULT 'none',
PRIMARY KEY (`id`),
UNIQUE KEY `idx_vpp_token_teams_team_id` (`team_id`),
KEY `fk_vpp_token_teams_vpp_token_id` (`vpp_token_id`),
CONSTRAINT `fk_vpp_token_teams_team_id` FOREIGN KEY (`team_id`) REFERENCES `teams` (`id`) ON DELETE CASCADE,
CONSTRAINT `fk_vpp_token_teams_vpp_token_id` FOREIGN KEY (`vpp_token_id`) REFERENCES `vpp_tokens` (`id`) ON DELETE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
CREATE TABLE `vpp_tokens` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`organization_name` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`location` varchar(255) CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci NOT NULL,
`renew_at` timestamp NOT NULL,
`token` blob NOT NULL,
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_vpp_tokens_location` (`location`)
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
feat: wip schema design (#20176) > Related issue: #19865 # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [x] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-07-03 21:34:24 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Part 1 of 2: Vulnerabilities Datastore (#16666)
2024-02-08 20:52:17 +00:00
CREATE TABLE `vulnerability_host_counts` (
`cve` varchar(20) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`team_id` int unsigned NOT NULL DEFAULT '0',
`host_count` int unsigned NOT NULL DEFAULT '0',
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Add No Team to Software Backend (#20822)
2024-07-30 17:19:05 +00:00
`global_stats` tinyint(1) NOT NULL DEFAULT '0',
UNIQUE KEY `cve_team_id_global_stats` (`cve`,`team_id`,`global_stats`)
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Part 1 of 2: Vulnerabilities Datastore (#16666)
2024-02-08 20:52:17 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
CREATE TABLE `windows_mdm_command_queue` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`enrollment_id` int unsigned NOT NULL,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
PRIMARY KEY (`enrollment_id`,`command_uuid`),
KEY `command_uuid` (`command_uuid`),
CONSTRAINT `windows_mdm_command_queue_ibfk_1` FOREIGN KEY (`enrollment_id`) REFERENCES `mdm_windows_enrollments` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `windows_mdm_command_queue_ibfk_2` FOREIGN KEY (`command_uuid`) REFERENCES `windows_mdm_commands` (`command_uuid`) ON DELETE CASCADE ON UPDATE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
CREATE TABLE `windows_mdm_command_results` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`enrollment_id` int unsigned NOT NULL,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`raw_result` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`response_id` int unsigned NOT NULL,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
`status_code` varchar(31) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
PRIMARY KEY (`enrollment_id`,`command_uuid`),
KEY `command_uuid` (`command_uuid`),
KEY `response_id` (`response_id`),
CONSTRAINT `windows_mdm_command_results_ibfk_1` FOREIGN KEY (`enrollment_id`) REFERENCES `mdm_windows_enrollments` (`id`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `windows_mdm_command_results_ibfk_2` FOREIGN KEY (`command_uuid`) REFERENCES `windows_mdm_commands` (`command_uuid`) ON DELETE CASCADE ON UPDATE CASCADE,
CONSTRAINT `windows_mdm_command_results_ibfk_3` FOREIGN KEY (`response_id`) REFERENCES `windows_mdm_responses` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
CREATE TABLE `windows_mdm_commands` (
`command_uuid` varchar(127) COLLATE utf8mb4_unicode_ci NOT NULL,
`raw_command` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
`target_loc_uri` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
PRIMARY KEY (`command_uuid`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
CREATE TABLE `windows_mdm_responses` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`enrollment_id` int unsigned NOT NULL,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
`raw_response` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`created_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
Feat windows msmdm (#14837) for #13069 --------- Co-authored-by: Marcos Oviedo <marcos@fleetdm.com> Co-authored-by: Martin Angers <martin.n.angers@gmail.com> Co-authored-by: gillespi314 <73313222+gillespi314@users.noreply.github.com>
2023-11-01 14:13:12 +00:00
PRIMARY KEY (`id`),
KEY `enrollment_id` (`enrollment_id`),
CONSTRAINT `windows_mdm_responses_ibfk_1` FOREIGN KEY (`enrollment_id`) REFERENCES `mdm_windows_enrollments` (`id`) ON DELETE CASCADE ON UPDATE CASCADE
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Feature 7076: Ingest installed windows updates (#7138) * Ingest installed Windows updates and store them in the windows_updates table. * Added config option for enabling/disabling Windows update ingestion and Windows OS vuln. detection.
2022-08-26 18:55:03 +00:00
CREATE TABLE `windows_updates` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`id` int unsigned NOT NULL AUTO_INCREMENT,
`host_id` int unsigned NOT NULL,
`date_epoch` int unsigned NOT NULL,
`kb_id` int unsigned NOT NULL,
Feature 7076: Ingest installed windows updates (#7138) * Ingest installed Windows updates and store them in the windows_updates table. * Added config option for enabling/disabling Windows update ingestion and Windows OS vuln. detection.
2022-08-26 18:55:03 +00:00
PRIMARY KEY (`id`),
UNIQUE KEY `idx_unique_windows_updates` (`host_id`,`kb_id`),
KEY `idx_update_date` (`host_id`,`date_epoch`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Feature 7076: Ingest installed windows updates (#7138) * Ingest installed Windows updates and store them in the windows_updates table. * Added config option for enabling/disabling Windows update ingestion and Windows OS vuln. detection.
2022-08-26 18:55:03 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
CREATE TABLE `wstep_cert_auth_associations` (
`id` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`sha256` char(64) COLLATE utf8mb4_unicode_ci NOT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`id`,`sha256`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
CREATE TABLE `wstep_certificates` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`serial` bigint unsigned NOT NULL,
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
`name` varchar(1024) COLLATE utf8mb4_unicode_ci NOT NULL,
`not_valid_before` datetime NOT NULL,
`not_valid_after` datetime NOT NULL,
`certificate_pem` text COLLATE utf8mb4_unicode_ci NOT NULL,
`revoked` tinyint(1) NOT NULL DEFAULT '0',
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`serial`),
CONSTRAINT `wstep_certificates_ibfk_1` FOREIGN KEY (`serial`) REFERENCES `wstep_serials` (`serial`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
/*!40101 SET @saved_cs_client = @@character_set_client */;
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
/*!50503 SET character_set_client = utf8mb4 */;
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
CREATE TABLE `wstep_serials` (
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
`serial` bigint unsigned NOT NULL AUTO_INCREMENT,
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
PRIMARY KEY (`serial`)
rearrange migrations and generate dump (#20652) this re-arranges migrations so the VPP schema changes happen after already merged migrations and commits the result of running `make dump-test-schema` using mysql 8. note that there are a bunch of seemingly unrelated changes in the diff, but that's just the mysql 8 bump, the diff against `main` should be smaller.
2024-07-23 14:01:23 +00:00
) /*!50100 TABLESPACE `innodb_system` */ ENGINE=InnoDB AUTO_INCREMENT=2 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
Add certificate management for Microsoft MDM (WSTEP) (#12543) Issue #12261 # Checklist for submitter If some of the following don't apply, delete the relevant line. - [ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md) - [ ] Documented any permissions changes - [ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [ ] Added/updated tests - [ ] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-06-29 22:31:53 +00:00
/*!40101 SET character_set_client = @saved_cs_client */;
Add capability to serve YARA rules via authenticated Fleet endpoints (#23343) Implements the Fleet side of #14899 - Add new endpoints to update and retrieve yara rules - Add support in fleetctl for applying the rules # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements) - [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features. - [x] Added/updated tests - [ ] If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes - [x] If database migrations are included, checked table schema to confirm autoupdate - For database migrations: - [x] Checked schema for all modified table for columns that will auto-update timestamps during migration. - [ ] Confirmed that updating the timestamps is acceptable, and will not cause unwanted side effects. - [x] Ensured the correct collation is explicitly set for character columns (`COLLATE utf8mb4_unicode_ci`). - [x] Manual QA for all new/changed functionality
2024-11-13 17:01:08 +00:00
/*!40101 SET @saved_cs_client = @@character_set_client */;
/*!50503 SET character_set_client = utf8mb4 */;
CREATE TABLE `yara_rules` (
`id` int unsigned NOT NULL AUTO_INCREMENT,
`name` varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL,
`contents` mediumtext COLLATE utf8mb4_unicode_ci NOT NULL,
PRIMARY KEY (`id`),
UNIQUE KEY `idx_yara_rules_name` (`name`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci;
/*!40101 SET character_set_client = @saved_cs_client */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!50001 DROP VIEW IF EXISTS `nano_view_queue`*/;
/*!50001 SET @saved_cs_client = @@character_set_client */;
/*!50001 SET @saved_cs_results = @@character_set_results */;
/*!50001 SET @saved_col_connection = @@collation_connection */;
/*!50001 SET character_set_client = utf8mb4 */;
/*!50001 SET character_set_results = utf8mb4 */;
enforce an uniform collation for all tables (#10515) related to #10441, inspired by the prior work done in https://github.com/kolide/fleet/pull/1360, this PR: 1. Adds a migration to use `utf8mb4_general_ci` as the default collation for the database and all the tables. From [MySQL's documentation][1]: > To change the table default character set and all character columns > (CHAR, VARCHAR, TEXT) to a new character set, use a statement like > this: > > ``` > ALTER TABLE tbl_name CONVERT TO CHARACTER SET charset_name; > ``` > The statement also changes the collation of all character columns. If > you specify no COLLATE clause to indicate which collation to use, the > statement uses default collation for the character set. 2. Changes the connection settings to use `utf8mb4_general_ci` as the default collation, from the [driver docs][2]: > Sets the collation used for client-server interaction on connection. In contrast to charset, collation does not issue additional queries. If the specified collation is unavailable on the target server, the connection will fail. [1]: https://dev.mysql.com/doc/refman/5.7/en/alter-table.html [2]: https://github.com/go-sql-driver/mysql **TODO:** discuss how we can enforce this, is setting the database default collation enough? should we add some kind of custom lint rule to all migrations? # Checklist for submitter If some of the following don't apply, delete the relevant line. - [x] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality
2023-03-16 18:49:24 +00:00
/*!50001 SET collation_connection = utf8mb4_unicode_ci */;
Add Apple MDM functionality (#7940) * WIP * Adding DEP functionality to Fleet * Better organize additional MDM code * Add cmdr.py and amend API paths * Fix lint * Add demo file * Fix demo.md * go mod tidy * Add munki setup to Fleet * Add diagram to demo.md * Add fixes * Update TODOs and demo.md * Fix cmdr.py and add TODO * Add endpoints to demo.md * Add more Munki PoC/demo stuff * WIP * Remove proposals from PoC * Replace prepare commands with fleetctl commands * Update demo.md with current state * Remove config field * Amend demo * Remove Munki setup from MVP-Dogfood * Update demo.md * Add apple mdm commands (#7769) * fleetctl enqueue mdm command * fix deps * Fix build Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com> * Add command to upload installers * go mod tidy * fix subcommands help There is a bug in urfave/cli where help text is not generated properly when subcommands are nested too deep. * Add support for installing apps * Add a way to list enrolled devices * Add dep listing * Rearrange endpoints * Move DEP routine to schedule * Define paths globally * Add a way to list enrollments and installers * Parse device-ids as comma-separated string * Remove unused types * Add simple commands and nest under enqueue-command * Fix simple commands * Add help to enqueue-command * merge apple_mdm database * Fix commands * update nanomdm * Split nanomdm and nanodep schemas * Set 512 MB in memory for upload * Remove empty file * Amend profile * Add sample commands * Add delete installers and fix bug in DEP profile assigning * Add dogfood.md deployment guide * Update schema.sql * Dump schema with MySQL 5 * Set default value for authenticate_at * add tokens to enrollment profiles When a device downloads an MDM enrollment profile, verify the token passed as a query parameter. This ensures untrusted devices don't enroll with our MDM server. - Rename enrollments to enrollment profiles. Enrollments is used by nano to refer to devices that are enrolled with MDM - Rename endpoint /api/<version>/fleet/mdm/apple/enrollments to ../enrollmentprofiles - Generate a token for authentication when creating an enrollment profile - Return unauthorized if token is invalid when downloading an enrollment profile from /api/mdm/apple/enroll?token= * remove mdm apple server url * update docs * make dump-test-schema * Update nanomdm with missing prefix table * Add docs and simplify changes * Add changes file * Add method docs * Fix compile and revert prepare.go changes * Revert migration status check change * Amend comments * Add more docs * Clarify storage of installers * Remove TODO * Remove unused * update dogfood.md * remove cmdr.py * Add authorization tests * Add TODO comment * use kitlog for nano logging * Add yaml tags * Remove unused flag * Remove changes file * Only run DEP routine if MDM is enabled * Add docs to all new exported types * Add docs * more nano logging changes * Fix unintentional removal * more nano logging changes * Fix compile test * Use string for configs and fix config test * Add docs and amend changes * revert changes to basicAuthHandler * remove exported BasicAuthHandler * rename rego authz type * Add more information to dep list * add db tag * update deps * Fix schema * Remove unimplemented Co-authored-by: Michal Nicpon <39177923+michalnicp@users.noreply.github.com> Co-authored-by: Michal Nicpon <michal@fleetdm.com>
2022-10-05 22:53:54 +00:00
/*!50001 CREATE ALGORITHM=UNDEFINED */
/*!50013 DEFINER=`root`@`%` SQL SECURITY DEFINER */
/*!50001 VIEW `nano_view_queue` AS select `q`.`id` AS `id`,`q`.`created_at` AS `created_at`,`q`.`active` AS `active`,`q`.`priority` AS `priority`,`c`.`command_uuid` AS `command_uuid`,`c`.`request_type` AS `request_type`,`c`.`command` AS `command`,`r`.`updated_at` AS `result_updated_at`,`r`.`status` AS `status`,`r`.`result` AS `result` from ((`nano_enrollment_queue` `q` join `nano_commands` `c` on((`q`.`command_uuid` = `c`.`command_uuid`))) left join `nano_command_results` `r` on(((`r`.`command_uuid` = `q`.`command_uuid`) and (`r`.`id` = `q`.`id`)))) order by `q`.`priority` desc,`q`.`created_at` */;
/*!50001 SET character_set_client = @saved_cs_client */;
/*!50001 SET character_set_results = @saved_cs_results */;
/*!50001 SET collation_connection = @saved_col_connection */;
Reference in a new issue Copy permalink