bigtux/ophion
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
25 Commits 2 Branches 0 Tags
main
Commit Graph

9 Commits

Author SHA1 Message Date
bigtux
f150ef6ac8 feat: remote agent installer with .NET auto-instrumentation 2026-02-07 11:52:51 -03:00
bigtux
262073acb4 fix: simplify Java agent download in instrumentation Dockerfile 2026-02-07 10:54:28 -03:00
bigtux
6f9657a3a8 feat: Universal auto-instrumentation for all languages 
## New Features

### Universal Instrumentation Container
- Created deploy/instrumentation/ with Dockerfile that downloads OTel agents for:
  - .NET (glibc and musl/Alpine versions)
  - Node.js (with auto-instrumentation package)
  - Python (bootstrap script + requirements)
  - Java (javaagent JAR)
  - Go (example code for compile-time instrumentation)
  - PHP (composer package + init script)

### Universal instrument.sh Script
- Auto-detects application language from running processes
- Generates docker-compose snippets for each language
- Supports: dotnet, nodejs, python, java, go, php
- Usage: ./instrument.sh <container> [language] [otlp_endpoint]

### Improved docker-compose.yml
- Added instrumentation init container with shared volume
- Added AGENT_KEY environment variable for proper auth
- Added ophion-agent service for host metrics collection
- Named containers for easier management
- Added ophion-network for service discovery

### Documentation
- Created docs/QUICK_START.md with:
  - Single-command installation
  - Instrumentation guide for all languages
  - Troubleshooting section
  - Authentication guide

### Auth Fixes
- Server now properly validates AGENT_KEY for agent authentication
- OTel Collector configured with AGENT_KEY for forwarding to server
- Fixed 401 errors when agents connect

## Files Changed
- docker-compose.yml: Complete stack with all services
- deploy/instrumentation/*: Universal OTel agent container
- deploy/docker/otel-collector-config.yaml: Fixed auth headers
- instrument.sh: Universal instrumentation script
- docs/QUICK_START.md: Complete quick start guide
- README.md: Updated with new features
- .env.example: Added AGENT_KEY

## Testing
- Go code compiles successfully
- Docker images build correctly
- All changes are backwards compatible
 2026-02-06 19:28:43 -03:00
bigtux
0cd8b96cd0 feat: add .NET auto-instrumentation script 2026-02-06 19:18:49 -03:00
bigtux
6038e82b22 fix: add agent key auth for ingest endpoints 2026-02-06 19:13:30 -03:00
bigtux
615a8b5404 fix: database sslmode and ports 2026-02-06 15:10:50 -03:00
bigtux
d6b08cb586 fix: add go.sum and fixes 2026-02-06 14:26:15 -03:00
bigtux
a94809c812 🔐 Security hardening: auth, rate limiting, brute force protection 
- Add comprehensive security package with:
  - API Key generation and validation (SHA256 hash)
  - Password policy enforcement (min 12 chars, complexity)
  - Rate limiting with presets (auth, api, ingest, export)
  - Brute force protection (5 attempts, 15min lockout)
  - Security headers middleware
  - IP whitelisting
  - Audit logging structure
  - Secure token generation

- Enhanced auth middleware:
  - JWT + API Key dual authentication
  - Token revocation via Redis
  - Scope-based authorization
  - Role-based access control

- Updated installer with:
  - Interactive setup for client customization
  - Auto-generated secure credentials
  - Docker all-in-one image
  - Agent installer script

- Added documentation:
  - SECURITY.md - Complete security guide
  - INSTALL.md - Installation guide
  - .env.example - Configuration reference
 2026-02-05 23:02:06 -03:00
bigtux
5b662cf12f feat: Initial OPHION structure 
- Go backend with Fiber framework
- Agent for metrics collection
- Docker Compose for self-hosted
- Auth middleware (JWT + API Keys)
- Rate limiting
- Install script
 2026-02-05 21:35:47 -03:00