tailscale-android

Commit Graph

Author	SHA1	Message	Date
zbuchheit	42a4de1d37	mdm: define OnboardingFlow syspolicy on Android Adds an MDM setting `OnboardingFlow` which allows for the intro screen to be skipped when set to true. Adds MDM Setting update to the top of MainActivity onCreate to ensure the latest MDMSettings are accurate. When attempting to do this while relying on MDMSettings being update during onResume it created a race condition where occasionally OnboardingFlow was being evaluated to the default value `show` when in reality it should be set to `hide`. Signed-off-by: zbuchheit <zachb@tailscale.com>	7 months ago
Andrea Gottardo	61895c47a1	mdm: define Hostname syspolicy on Android (#598 ) Updates tailscale/corp#25936 Adds a definition for the Hostname syspolicy which we are adding in OSS: https://github.com/tailscale/tailscale/pull/14676 Also adds it to the app_restrictions.xml file so that MDM solutions can pick it up. Signed-off-by: Andrea Gottardo <andrea@gottardo.me>	11 months ago
Andrea Gottardo	8648c2ef27	mdm: add AuthKey piping (#476 ) Updates tailscale/tailscale#1572 This PR defines the AuthKey system policy in the Android codebase, allowing the code in OSS (see tailscale/tailscale#13061) to pick up any value defined by an MDM solution via managed app configuration. It also adds the new key to the `app_restrictions.xml`. OSS and Version updated to 1.73.13-taf3d3c433-g536e1adcc42 Signed-off-by: Andrea Gottardo <andrea@gottardo.me>	1 year ago
Nick Khyl	2a32ed1f30	libtailscale, mdm: allow syspolicy to subscribe to policy change notifications (#462 ) In preparation for upcoming syspolicy improvements, we'd like to allow subscriptions to policy change notifications via the syspolicyHandler.RegisterChangeCallback. The registered callbacks are invoked whenever MDMSettings.update is called. Updates tailscale/tailscale#12687 Signed-off-by: Nick Khyl <nickk@tailscale.com>	1 year ago
Nick Khyl	8767fbd8d8	mdm: improve handling and returning of not configured policy settings (#461 ) We should distinguish between unconfigured policy settings and those configured with the default values. In the first case, the syspolicyHandler should return syspolicy.ErrNoSuchKey instead of the default value, while in the latter case, it should return the actual setting value, even if that value happens to be the default value such as "user-decides". This distinction should also be reflected in the "Current MDM settings" view. In this PR, we update MDMSetting.flow to hold both the value to be used by the app and a flag indicating whether the policy setting is configured or not. If the policy setting is not configured, the value is the default value for the setting type. We then use this new flag to decide whether to throw a NoSuchKeyException from the Kotlin-side of the syspolicyHandler implementation and how to display the policy setting in the "Current MDM settings" view. Additionally, we update the MDMSettings.update and MDMSetting.setFrom methods to avoid calling app.getEncryptedPrefs (and reading/decrypting the prefs) for every defined MDM setting. Updates tailscale/tailscale#12687 Signed-off-by: Nick Khyl <nickk@tailscale.com>	1 year ago
Nick Khyl	946afb6c33	libtailscale, android: translate NoSuchKeyException as syspolicy.ErrNoSuchKey Currently, NoSuchKeyException gets translated by gomobile to a Go error with "no such key" as the text. It is imperative for syspolicy.Handler implementations to return syspolicy.ErrNoSuchKey if a policy setting is not configured, so this PR adds translation for errors that do not already wrap syspolicy.ErrNoSuchKey, but have "no such key" as the text. Updates tailscale/tailscale#12687 Signed-off-by: Nick Khyl <nickk@tailscale.com>	1 year ago
Andrea Gottardo	c4a1dec8eb	mdm: support split tunneling configuration via syspolicy (#441 ) Updates tailscale/tailscale#6912 Adds two new Android-only MDM policies: IncludedPackageNames and ExcludedPackageNames. These are comma-separated string values that contain Android package names to configure app-based split tunneling programmatically. If ExcludedPackageNames is non-empty, Tailscale will exclude the given apps from the VPN tunnel. If IncludedPackageNames is non-empty, Tailscale will configure the VPN tunnel to only route the given apps via Tailscale. Signed-off-by: Andrea Gottardo <andrea@gottardo.me>	1 year ago
Jonathan Nobels	a2471d38cb	android/ui: add mdm hooks (#364 ) Updates tailscale/corp#19743 Adds the hooks for the various MDM settings applicable to Android with the exception of the keyExpirationNotice which we'll handle separately. Signed-off-by: Jonathan Nobels <jonathan@tailscale.com>	2 years ago
Andrea Gottardo	88b0af2c9b	mdm: add string array support in Android syspolicy_handler (#349 ) Updates tailscale/corp#19459 Allows the Go backend to read string array values stored in the Android RestrictionsManager. Signed-off-by: Andrea Gottardo <andrea@gottardo.me>	2 years ago
Andrea Gottardo	a73025b36f	mdm: throw ErrNoSuchKey when a value not defined in Android syspolicy handler (#325 )	2 years ago
kari-ts	6a00880f61	ui: port syspolicy handler code to new app (#304 ) * ui: port syspolicy handler code to new app port over https://github.com/tailscale/tailscale-android/pull/199 from cmd/tailscale and legacy_android to libtailscale and android/ Updates tailscale/corp#18202 Signed-off-by: kari-ts <kari@tailscale.com> * android: PR suggestions for syspolicyHandler (#308) Updates tailscale/corp#18202 Signed-off-by: Percy Wegmann <percy@tailscale.com> --------- Signed-off-by: kari-ts <kari@tailscale.com> Signed-off-by: Percy Wegmann <percy@tailscale.com> Co-authored-by: Percy Wegmann <percy@tailscale.com>	2 years ago
Percy Wegmann	8105271d25	android/ui: speed up loading of SettingsView Updates tailscale/corp#18202 Signed-off-by: Percy Wegmann <percy@tailscale.com>	2 years ago
kari-ts	7470fcc173	android: disconnect (#228 ) * android: fix connect Kotlinize IPNService and App Call connect in IPNService Add observers for readiness to prepare VPN, and quick tile readiness Start Notifier in App, since new state flows need to be observed outside of activity lifecycle Next: fixing quick tiles Updates tailscale/corp#18202 Signed-off-by: kari-ts <kari@tailscale.com> * android: disconnect Use localapi to disconnect Updates tailscale/corp#18202 Signed-off-by: kari-ts <kari@tailscale.com> --------- Signed-off-by: kari-ts <kari@tailscale.com>	2 years ago
Jonathan Nobels	113a7c6f9d	android: use ktfmt formatting and use scaffold consistently across all views (#217 ) * android: use scaffold consistently across all views Updates tailscale/corp#18202 Updates all the main view to remove the surface containers and replaces them with a Scaffold. All view now use a common Header element (a TopAppBar with common styling). Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> * android: run ktfmt over all kt, java and xml source files Updates tailscale/corp#18202 Standardize code formatting using ktfmt default settings. Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> * android: update readme for new code formatting guidelines Updates tailscale/corp#18202 Mandate the use of ktfmt in the default configuration. Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> --------- Signed-off-by: Jonathan Nobels <jonathan@tailscale.com>	2 years ago
Jonathan Nobels	f275656c25	ui: add view to debug MDM settings and add the syspolicy handlers (#199 ) * mdm: add Android syspolicy handler (#195) Updates tailscale/corp#18202 Adds a syspolicy handler for Android in cmd/tailscale. This allows the Go code to use the syspolicy package to read values set by a system administrator using the Android RestrictionsManager. Out of the box, this adds supports for a number of MDM policies that are fully integrated on the Go side, such as `ExitNodeID` (forced exit node functionality). Signed-off-by: Andrea Gottardo <andrea@gottardo.me> Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> * ui: add view to debug MDM settings Adds a view to see the currently set MDM settings, we're going to need this to debug actual MDM integrations more effectively. Signed-off-by: Andrea Gottardo <andrea@gottardo.me> Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> --------- Signed-off-by: Andrea Gottardo <andrea@gottardo.me> Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> Co-authored-by: Andrea Gottardo <andrea@gottardo.me>	2 years ago
Jonathan Nobels	0d867aedce	mdm: implement initial data structure to read from Android RestrictionsManager (#197 ) updates tailscale/corp#18202 updates ENG-2849 Implements the basic data model for supporting MDM to allow us to add the hooks in the UI. Signed-off-by: Jonathan Nobels <jonathan@tailscale.com> Co-authored-by: Andrea Gottardo <andrea@gottardo.me>	2 years ago
Jonathan Nobels	3926cf4b56	android: add main screen device details and basic nav (#191 ) updates tailscale/corp#18202 updates ENG-2835 updates ENG-2859 Adds the peer details view and some supporting utilities. Eliminates all of the singletons. None of this is styled correctly, but the layouts match iOS. Signed-off-by: Jonathan Nobels jonathan@tailscale.com --------- Signed-off-by: Jonathan Nobels <jonathan@tailscale.com>	2 years ago

17 Commits (42a4de1d3785d9cdaaf6b115daecb1a4f7d60bac)