Add controlled context for controller audit attribution

Add ControlledContext to rendezvous messages so the server can pass a controller-user audit ref to the controlled client.

The controlled client returns the ref when posting audit logs, allowing the server to associate those logs with the controller user.

Signed-off-by: 21pages <sunboeasy@gmail.com>
This commit is contained in:
21pages
2026-06-18 14:41:38 +08:00
parent 387603f47c
commit 91b13be6fd
+7
View File
@@ -49,6 +49,10 @@ message ControlPermissions {
uint64 permissions = 1; uint64 permissions = 1;
} }
message ControlledContext {
string conn_audit_ref = 1;
}
message PunchHole { message PunchHole {
bytes socket_addr = 1; bytes socket_addr = 1;
string relay_server = 2; string relay_server = 2;
@@ -58,6 +62,7 @@ message PunchHole {
int32 upnp_port = 6; int32 upnp_port = 6;
bytes socket_addr_v6 = 7; bytes socket_addr_v6 = 7;
ControlPermissions control_permissions = 8; ControlPermissions control_permissions = 8;
ControlledContext controlled_context = 9;
} }
message TestNatRequest { message TestNatRequest {
@@ -146,6 +151,7 @@ message RequestRelay {
ConnType conn_type = 7; ConnType conn_type = 7;
string token = 8; string token = 8;
ControlPermissions control_permissions = 9; ControlPermissions control_permissions = 9;
ControlledContext controlled_context = 10;
} }
message RelayResponse { message RelayResponse {
@@ -174,6 +180,7 @@ message FetchLocalAddr {
string relay_server = 2; string relay_server = 2;
bytes socket_addr_v6 = 3; bytes socket_addr_v6 = 3;
ControlPermissions control_permissions = 4; ControlPermissions control_permissions = 4;
ControlledContext controlled_context = 5;
} }
message LocalAddr { message LocalAddr {