change button font color to white (#448)

Dockerfile

@@ -50,7 +50,7 @@ COPY --from=builder /build/dist/wg-portal /
 ######
 # Final image
 ######
-FROM alpine:3.22
+FROM alpine:3.19
 # Install OS-level dependencies
 RUN apk add --no-cache bash curl iptables nftables openresolv wireguard-tools
 # Setup timezone

docs/documentation/configuration/overview.md

@@ -76,7 +76,6 @@ auth:
   webauthn:
     enabled: true
   min_password_length: 16
-  hide_login_form: false
 
 web:
   listening_address: :8888
@@ -355,12 +354,6 @@ Some core authentication options are shared across all providers, while others a
   The default admin password strength is also enforced by this setting.
 - **Important:** The password should be strong and secure. It is recommended to use a password with at least 16 characters, including uppercase and lowercase letters, numbers, and special characters.
 
-### `hide_login_form`
-- **Default:** `false`
-- **Description:** If `true`, the login form is hidden and only the OIDC, OAuth, LDAP, or WebAuthn providers are shown. This is useful if you want to enforce a specific authentication method.
-  If no social login providers are configured, the login form is always shown, regardless of this setting.
-- **Important:** You can still access the login form by adding the `?all` query parameter to the login URL (e.g. https://wg.portal/#/login?all). 
-
 ---
 
 ### OIDC
@@ -676,7 +669,7 @@ The webhook section allows you to configure a webhook that is called on certain
 A JSON object is sent in a POST request to the webhook URL with the following structure:
 ```json
 {
-  "event": "update",
+  "event": "peer_created",
   "entity": "peer",
   "identifier": "the-peer-identifier",
   "payload": {
@@ -686,8 +679,6 @@ A JSON object is sent in a POST request to the webhook URL with the following st
 }
 ```
 
-Further details can be found in the [usage documentation](../usage/webhooks.md).
-
 ### `url`
 - **Default:** *(empty)*
 - **Description:** The POST endpoint to which the webhook is sent. The URL must be reachable from the WireGuard Portal server. If the URL is empty, the webhook is disabled.

docs/documentation/usage/webhooks.md

@@ -1,86 +0,0 @@
-
-Webhooks allow WireGuard Portal to notify external services about events such as user creation, device changes, or configuration updates. This enables integration with other systems and automation workflows.
-
-When webhooks are configured and a specified event occurs, WireGuard Portal sends an HTTP **POST** request to the configured webhook URL. 
-The payload contains event-specific data in JSON format.
-
-## Configuration
-
-All available configuration options for webhooks can be found in the [configuration overview](../configuration/overview.md#webhook).
-
-A basic webhook configuration looks like this:
-
-```yaml
-webhook:
-  url: https://your-service.example.com/webhook
-```
-
-### Security
-
-Webhooks can be secured by using a shared secret. This secret is included in the `Authorization` header of the webhook request, allowing your service to verify the authenticity of the request.
-You can set the shared secret in the webhook configuration:
-
-```yaml
-webhook:
-  url: https://your-service.example.com/webhook
-  secret: "Basic dXNlcm5hbWU6cGFzc3dvcmQ="
-```
-
-You should also make sure that your webhook endpoint is secured with HTTPS to prevent eavesdropping and tampering.
-
-## Available Events
-
-WireGuard Portal supports various events that can trigger webhooks. The following events are available:
-
-- `create`: Triggered when a new entity is created.
-- `update`: Triggered when an existing entity is updated.
-- `delete`: Triggered when an entity is deleted.
-- `connect`: Triggered when a user connects to the VPN.
-- `disconnect`: Triggered when a user disconnects from the VPN.
-
-The following entity types can trigger webhooks:
-
-- `user`: When a WireGuard Portal user is created, updated, or deleted.
-- `peer`: When a peer is created, updated, or deleted. This entity can also trigger `connect` and `disconnect` events.
-- `interface`: When a device is created, updated, or deleted.
-
-## Payload Structure
-
-All webhook events send a JSON payload containing relevant data. The structure of the payload depends on the event type and entity involved.
-A common shell structure for webhook payloads is as follows:
-
-```json
-{
-  "event": "create",
-  "entity": "user",
-  "identifier": "the-user-identifier",
-  "payload": {
-    // The payload of the event, e.g. peer data.
-    // Check the API documentation for the exact structure.
-  }
-}
-```
-
-
-### Example Payload
-
-The following payload is an example of a webhook event when a peer connects to the VPN:
-
-```json
-{
-  "event": "connect",
-  "entity": "peer",
-  "identifier": "Fb5TaziAs1WrPBjC/MFbWsIelVXvi0hDKZ3YQM9wmU8=",
-  "payload": {
-    "PeerId": "Fb5TaziAs1WrPBjC/MFbWsIelVXvi0hDKZ3YQM9wmU8=",
-    "IsConnected": true,
-    "IsPingable": false,
-    "LastPing": null,
-    "BytesReceived": 1860,
-    "BytesTransmitted": 10824,
-    "LastHandshake": "2025-06-26T23:04:33.325216659+02:00",
-    "Endpoint": "10.55.66.77:33874",
-    "LastSessionStart": "2025-06-26T22:50:40.10221606+02:00"
-  }
-}
-```

frontend/src/views/LoginView.vue

@@ -16,10 +16,7 @@ const password = ref("")
 const usernameInvalid = computed(() => username.value === "")
 const passwordInvalid = computed(() => password.value === "")
 const disableLoginBtn = computed(() => username.value === "" || password.value === "" || loggingIn.value)
-const showLoginForm = computed(() => {
-  console.log(router.currentRoute.value.query)
-  return settings.Setting('LoginFormVisible') || router.currentRoute.value.query.hasOwnProperty('all');
-});
+
 
 onMounted(async () => {
   await settings.LoadSettings()
@@ -101,7 +98,7 @@ const externalLogin = function (provider) {
         </div></div>
         <div class="card-body">
           <form method="post">
-            <fieldset v-if="showLoginForm">
+            <fieldset>
               <div class="form-group">
                 <label class="form-label" for="inputUsername">{{ $t('login.username.label') }}</label>
                 <div class="input-group mb-3">
@@ -121,40 +118,19 @@ const externalLogin = function (provider) {
               </div>
 
               <div class="row mt-5 mb-2">
-                <div class="col-sm-4 col-xs-12">
-                  <button :disabled="disableLoginBtn" class="btn btn-primary mb-2" type="submit" @click.prevent="login">
+                <div class="col-lg-4">
+                  <button :disabled="disableLoginBtn" class="btn btn-primary" type="submit" @click.prevent="login">
                     {{ $t('login.button') }} <div v-if="loggingIn" class="d-inline"><i class="ms-2 fa-solid fa-circle-notch fa-spin"></i></div>
                   </button>
                 </div>
-                <div class="col-sm-8 col-xs-12 text-sm-end">
+                <div class="col-lg-8 mb-2 text-end">
                   <button v-if="settings.Setting('WebAuthnEnabled')" class="btn btn-primary" type="submit" @click.prevent="loginWebAuthn">
                     {{ $t('login.button-webauthn') }} <div v-if="loggingIn" class="d-inline"><i class="ms-2 fa-solid fa-circle-notch fa-spin"></i></div>
                   </button>
                 </div>
               </div>
 
-              <div class="row mt-4 d-flex">
-                <div class="col-lg-12 d-flex mb-2">
-                  <!-- OpenIdConnect / OAUTH providers -->
-                  <button v-for="(provider, idx) in auth.LoginProviders" :key="provider.Identifier" :class="{'ms-1':idx > 0}"
-                          :disabled="loggingIn" :title="provider.Name" class="btn btn-outline-primary flex-fill"
-                          v-html="provider.Name" @click.prevent="externalLogin(provider)"></button>
-                </div>
-              </div>
-
-              <div class="mt-3">
-              </div>
-            </fieldset>
-            <fieldset v-else>
-              <div class="row mt-1 mb-2" v-if="settings.Setting('WebAuthnEnabled')">
-                <div class="col-lg-12 d-flex mb-2">
-                  <button class="btn btn-outline-primary flex-fill" type="submit" @click.prevent="loginWebAuthn">
-                    {{ $t('login.button-webauthn') }} <div v-if="loggingIn" class="d-inline"><i class="ms-2 fa-solid fa-circle-notch fa-spin"></i></div>
-                  </button>
-                </div>
-              </div>
-
-              <div class="row mt-1 d-flex">
+              <div class="row mt-5 d-flex">
                 <div class="col-lg-12 d-flex mb-2">
                   <!-- OpenIdConnect / OAUTH providers -->
                   <button v-for="(provider, idx) in auth.LoginProviders" :key="provider.Identifier" :class="{'ms-1':idx > 0}"
@@ -168,6 +144,7 @@ const externalLogin = function (provider) {
             </fieldset>
           </form>
 
+
         </div>
       </div>
     </div>

internal/adapters/metrics.go

@@ -133,5 +133,5 @@ func (m *MetricsServer) UpdatePeerMetrics(peer *domain.Peer, status domain.PeerS
 	}
 	m.peerReceivedBytesTotal.WithLabelValues(labels...).Set(float64(status.BytesReceived))
 	m.peerSendBytesTotal.WithLabelValues(labels...).Set(float64(status.BytesTransmitted))
-	m.peerIsConnected.WithLabelValues(labels...).Set(internal.BoolToFloat64(status.IsConnected))
+	m.peerIsConnected.WithLabelValues(labels...).Set(internal.BoolToFloat64(status.IsConnected()))
 }

internal/app/api/core/assets/doc/v0_swagger.json

@@ -2231,9 +2231,6 @@
                 "ApiAdminOnly": {
                     "type": "boolean"
                 },
-                "LoginFormVisible": {
-                    "type": "boolean"
-                },
                 "MailLinkOnly": {
                     "type": "boolean"
                 },

internal/app/api/core/assets/doc/v0_swagger.yaml

@@ -381,8 +381,6 @@ definitions:
     properties:
       ApiAdminOnly:
         type: boolean
-      LoginFormVisible:
-        type: boolean
       MailLinkOnly:
         type: boolean
       MinPasswordLength:

internal/app/api/v0/handlers/endpoint_config.go

@@ -96,13 +96,10 @@ func (e ConfigEndpoint) handleSettingsGet() http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
 		sessionUser := domain.GetUserInfo(r.Context())
 
-		hasSocialLogin := len(e.cfg.Auth.OAuth) > 0 || len(e.cfg.Auth.OpenIDConnect) > 0 || e.cfg.Auth.WebAuthn.Enabled
-
 		// For anonymous users, we return the settings object with minimal information
 		if sessionUser.Id == domain.CtxUnknownUserId || sessionUser.Id == "" {
 			respond.JSON(w, http.StatusOK, model.Settings{
-				WebAuthnEnabled:  e.cfg.Auth.WebAuthn.Enabled,
-				LoginFormVisible: !e.cfg.Auth.HideLoginForm || !hasSocialLogin,
+				WebAuthnEnabled: e.cfg.Auth.WebAuthn.Enabled,
 			})
 		} else {
 			respond.JSON(w, http.StatusOK, model.Settings{
@@ -112,7 +109,6 @@ func (e ConfigEndpoint) handleSettingsGet() http.HandlerFunc {
 				ApiAdminOnly:              e.cfg.Advanced.ApiAdminOnly,
 				WebAuthnEnabled:           e.cfg.Auth.WebAuthn.Enabled,
 				MinPasswordLength:         e.cfg.Auth.MinPasswordLength,
-				LoginFormVisible:          !e.cfg.Auth.HideLoginForm || !hasSocialLogin,
 			})
 		}
 	}

internal/app/api/v0/model/models.go

@@ -12,5 +12,4 @@ type Settings struct {
 	ApiAdminOnly              bool `json:"ApiAdminOnly"`
 	WebAuthnEnabled           bool `json:"WebAuthnEnabled"`
 	MinPasswordLength         int  `json:"MinPasswordLength"`
-	LoginFormVisible          bool `json:"LoginFormVisible"`
 }

internal/app/api/v0/model/models_peer.go

@@ -198,7 +198,7 @@ func NewPeerStats(enabled bool, src []domain.PeerStatus) *PeerStats {
 
 	for _, srcStat := range src {
 		stats[string(srcStat.PeerId)] = PeerStatData{
-			IsConnected:      srcStat.IsConnected,
+			IsConnected:      srcStat.IsConnected(),
 			IsPingable:       srcStat.IsPingable,
 			LastPing:         srcStat.LastPing,
 			BytesReceived:    srcStat.BytesReceived,

internal/app/eventbus.go

@@ -36,7 +36,6 @@ const TopicPeerDeleted = "peer:deleted"
 const TopicPeerUpdated = "peer:updated"
 const TopicPeerInterfaceUpdated = "peer:interface:updated"
 const TopicPeerIdentifierUpdated = "peer:identifier:updated"
-const TopicPeerStateChanged = "peer:state:changed"
 
 // endregion peer-events
 

internal/app/webhooks/manager.go

@@ -64,7 +64,6 @@ func (m Manager) connectToMessageBus() {
 	_ = m.bus.Subscribe(app.TopicPeerCreated, m.handlePeerCreateEvent)
 	_ = m.bus.Subscribe(app.TopicPeerUpdated, m.handlePeerUpdateEvent)
 	_ = m.bus.Subscribe(app.TopicPeerDeleted, m.handlePeerDeleteEvent)
-	_ = m.bus.Subscribe(app.TopicPeerStateChanged, m.handlePeerStateChangeEvent)
 
 	_ = m.bus.Subscribe(app.TopicInterfaceCreated, m.handleInterfaceCreateEvent)
 	_ = m.bus.Subscribe(app.TopicInterfaceUpdated, m.handleInterfaceUpdateEvent)
@@ -136,14 +135,6 @@ func (m Manager) handleInterfaceDeleteEvent(iface domain.Interface) {
 	m.handleGenericEvent(WebhookEventDelete, iface)
 }
 
-func (m Manager) handlePeerStateChangeEvent(peerStatus domain.PeerStatus) {
-	if peerStatus.IsConnected {
-		m.handleGenericEvent(WebhookEventConnect, peerStatus)
-	} else {
-		m.handleGenericEvent(WebhookEventDisconnect, peerStatus)
-	}
-}
-
 func (m Manager) handleGenericEvent(action WebhookEvent, payload any) {
 	eventData, err := m.createWebhookData(action, payload)
 	if err != nil {
@@ -186,9 +177,6 @@ func (m Manager) createWebhookData(action WebhookEvent, payload any) (*WebhookDa
 	case domain.Interface:
 		d.Entity = WebhookEntityInterface
 		d.Identifier = string(v.Identifier)
-	case domain.PeerStatus:
-		d.Entity = WebhookEntityPeer
-		d.Identifier = string(v.PeerId)
 	default:
 		return nil, fmt.Errorf("unsupported payload type: %T", v)
 	}

internal/app/webhooks/model.go

@@ -42,9 +42,7 @@ const (
 type WebhookEvent = string
 
 const (
-	WebhookEventCreate     WebhookEvent = "create"
-	WebhookEventUpdate     WebhookEvent = "update"
-	WebhookEventDelete     WebhookEvent = "delete"
-	WebhookEventConnect    WebhookEvent = "connect"
-	WebhookEventDisconnect WebhookEvent = "disconnect"
+	WebhookEventCreate WebhookEvent = "create"
+	WebhookEventUpdate WebhookEvent = "update"
+	WebhookEventDelete WebhookEvent = "delete"
 )

internal/app/wireguard/statistics.go

@@ -43,8 +43,6 @@ type StatisticsMetricsServer interface {
 type StatisticsEventBus interface {
 	// Subscribe subscribes to a topic
 	Subscribe(topic string, fn interface{}) error
-	// Publish sends a message to the message bus.
-	Publish(topic string, args ...any)
 }
 
 type StatisticsCollector struct {
@@ -57,8 +55,6 @@ type StatisticsCollector struct {
 	db StatisticsDatabaseRepo
 	wg StatisticsInterfaceController
 	ms StatisticsMetricsServer
-
-	peerChangeEvent chan domain.PeerIdentifier
 }
 
 // NewStatisticsCollector creates a new statistics collector.
@@ -175,12 +171,8 @@ func (c *StatisticsCollector) collectPeerData(ctx context.Context) {
 					continue
 				}
 				for _, peer := range peers {
-					var connectionStateChanged bool
-					var newPeerStatus domain.PeerStatus
 					err = c.db.UpdatePeerStatus(ctx, peer.Identifier,
 						func(p *domain.PeerStatus) (*domain.PeerStatus, error) {
-							wasConnected := p.IsConnected
-
 							var lastHandshake *time.Time
 							if !peer.LastHandshake.IsZero() {
 								lastHandshake = &peer.LastHandshake
@@ -194,12 +186,6 @@ func (c *StatisticsCollector) collectPeerData(ctx context.Context) {
 							p.BytesTransmitted = peer.BytesDownload // store bytes that where received from the peer and sent by the server
 							p.Endpoint = peer.Endpoint
 							p.LastHandshake = lastHandshake
-							p.CalcConnected()
-
-							if wasConnected != p.IsConnected {
-								connectionStateChanged = true
-								newPeerStatus = *p // store new status for event publishing
-							}
 
 							// Update prometheus metrics
 							go c.updatePeerMetrics(ctx, *p)
@@ -211,11 +197,6 @@ func (c *StatisticsCollector) collectPeerData(ctx context.Context) {
 					} else {
 						slog.Debug("updated peer status", "peer", peer.Identifier)
 					}
-
-					if connectionStateChanged {
-						// publish event if connection state changed
-						c.bus.Publish(app.TopicPeerStateChanged, newPeerStatus)
-					}
 				}
 			}
 		}
@@ -317,17 +298,12 @@ func (c *StatisticsCollector) enqueuePingChecks(ctx context.Context) {
 func (c *StatisticsCollector) pingWorker(ctx context.Context) {
 	defer c.pingWaitGroup.Done()
 	for peer := range c.pingJobs {
-		var connectionStateChanged bool
-		var newPeerStatus domain.PeerStatus
-
 		peerPingable := c.isPeerPingable(ctx, peer)
 		slog.Debug("peer ping check completed", "peer", peer.Identifier, "pingable", peerPingable)
 
 		now := time.Now()
 		err := c.db.UpdatePeerStatus(ctx, peer.Identifier,
 			func(p *domain.PeerStatus) (*domain.PeerStatus, error) {
-				wasConnected := p.IsConnected
-
 				if peerPingable {
 					p.IsPingable = true
 					p.LastPing = &now
@@ -335,13 +311,6 @@ func (c *StatisticsCollector) pingWorker(ctx context.Context) {
 					p.IsPingable = false
 					p.LastPing = nil
 				}
-				p.UpdatedAt = time.Now()
-				p.CalcConnected()
-
-				if wasConnected != p.IsConnected {
-					connectionStateChanged = true
-					newPeerStatus = *p // store new status for event publishing
-				}
 
 				// Update prometheus metrics
 				go c.updatePeerMetrics(ctx, *p)
@@ -353,11 +322,6 @@ func (c *StatisticsCollector) pingWorker(ctx context.Context) {
 		} else {
 			slog.Debug("updated peer ping status", "peer", peer.Identifier)
 		}
-
-		if connectionStateChanged {
-			// publish event if connection state changed
-			c.bus.Publish(app.TopicPeerStateChanged, newPeerStatus)
-		}
 	}
 }
 

internal/app/wireguard/wireguard_interfaces.go

@@ -461,7 +461,7 @@ func (m Manager) DeleteInterface(ctx context.Context, id domain.InterfaceIdentif
 
 	physicalInterface, _ := m.wg.GetInterface(ctx, id)
 
-	if err := m.handleInterfacePreSaveHooks(existingInterface, !existingInterface.IsDisabled(), false); err != nil {
+	if err := m.handleInterfacePreSaveHooks(true, existingInterface); err != nil {
 		return fmt.Errorf("pre-delete hooks failed: %w", err)
 	}
 
@@ -490,7 +490,7 @@ func (m Manager) DeleteInterface(ctx context.Context, id domain.InterfaceIdentif
 		Table:  existingInterface.GetRoutingTable(),
 	})
 
-	if err := m.handleInterfacePostSaveHooks(existingInterface, !existingInterface.IsDisabled(), false); err != nil {
+	if err := m.handleInterfacePostSaveHooks(true, existingInterface); err != nil {
 		return fmt.Errorf("post-delete hooks failed: %w", err)
 	}
 
@@ -509,9 +509,9 @@ func (m Manager) saveInterface(ctx context.Context, iface *domain.Interface) (
 		return nil, fmt.Errorf("interface validation failed: %w", err)
 	}
 
-	oldEnabled, newEnabled := m.getInterfaceStateHistory(ctx, iface)
+	stateChanged := m.hasInterfaceStateChanged(ctx, iface)
 
-	if err := m.handleInterfacePreSaveHooks(iface, oldEnabled, newEnabled); err != nil {
+	if err := m.handleInterfacePreSaveHooks(stateChanged, iface); err != nil {
 		return nil, fmt.Errorf("pre-save hooks failed: %w", err)
 	}
 
@@ -551,7 +551,7 @@ func (m Manager) saveInterface(ctx context.Context, iface *domain.Interface) (
 		m.bus.Publish(app.TopicRouteUpdate, "interface updated: "+string(iface.Identifier))
 	}
 
-	if err := m.handleInterfacePostSaveHooks(iface, oldEnabled, newEnabled); err != nil {
+	if err := m.handleInterfacePostSaveHooks(stateChanged, iface); err != nil {
 		return nil, fmt.Errorf("post-save hooks failed: %w", err)
 	}
 
@@ -566,13 +566,32 @@ func (m Manager) saveInterface(ctx context.Context, iface *domain.Interface) (
 	return iface, nil
 }
 
-func (m Manager) getInterfaceStateHistory(ctx context.Context, iface *domain.Interface) (oldEnabled, newEnabled bool) {
+func (m Manager) hasInterfaceStateChanged(ctx context.Context, iface *domain.Interface) bool {
 	oldInterface, err := m.db.GetInterface(ctx, iface.Identifier)
 	if err != nil {
-		return false, !iface.IsDisabled() // if the interface did not exist, we assume it was not enabled
+		return false
 	}
 
-	return !oldInterface.IsDisabled(), !iface.IsDisabled()
+	if oldInterface.IsDisabled() != iface.IsDisabled() {
+		return true // interface in db has changed
+	}
+
+	wgInterface, err := m.wg.GetInterface(ctx, iface.Identifier)
+	if err != nil {
+		return true // interface might not exist - so we assume that there must be a change
+	}
+
+	// compare physical interface settings
+	if len(wgInterface.Addresses) != len(iface.Addresses) ||
+		wgInterface.Mtu != iface.Mtu ||
+		wgInterface.FirewallMark != iface.FirewallMark ||
+		wgInterface.ListenPort != iface.ListenPort ||
+		wgInterface.PrivateKey != iface.PrivateKey ||
+		wgInterface.PublicKey != iface.PublicKey {
+		return true
+	}
+
+	return false
 }
 
 func (m Manager) handleInterfacePreSaveActions(iface *domain.Interface) error {
@@ -588,14 +607,12 @@ func (m Manager) handleInterfacePreSaveActions(iface *domain.Interface) error {
 	return nil
 }
 
-func (m Manager) handleInterfacePreSaveHooks(iface *domain.Interface, oldEnabled, newEnabled bool) error {
-	if oldEnabled == newEnabled {
+func (m Manager) handleInterfacePreSaveHooks(stateChanged bool, iface *domain.Interface) error {
+	if !stateChanged {
 		return nil // do nothing if state did not change
 	}
 
-	slog.Debug("executing pre-save hooks", "interface", iface.Identifier, "up", newEnabled)
-
-	if newEnabled {
+	if !iface.IsDisabled() {
 		if err := m.quick.ExecuteInterfaceHook(iface.Identifier, iface.PreUp); err != nil {
 			return fmt.Errorf("failed to execute pre-up hook: %w", err)
 		}
@@ -607,14 +624,12 @@ func (m Manager) handleInterfacePreSaveHooks(iface *domain.Interface, oldEnabled
 	return nil
 }
 
-func (m Manager) handleInterfacePostSaveHooks(iface *domain.Interface, oldEnabled, newEnabled bool) error {
-	if oldEnabled == newEnabled {
+func (m Manager) handleInterfacePostSaveHooks(stateChanged bool, iface *domain.Interface) error {
+	if !stateChanged {
 		return nil // do nothing if state did not change
 	}
 
-	slog.Debug("executing post-save hooks", "interface", iface.Identifier, "up", newEnabled)
-
-	if newEnabled {
+	if !iface.IsDisabled() {
 		if err := m.quick.ExecuteInterfaceHook(iface.Identifier, iface.PostUp); err != nil {
 			return fmt.Errorf("failed to execute post-up hook: %w", err)
 		}

internal/config/auth.go

@@ -21,9 +21,6 @@ type Auth struct {
 	// MinPasswordLength is the minimum password length for user accounts. This also applies to the admin user.
 	// It is encouraged to set this value to at least 16 characters.
 	MinPasswordLength int `yaml:"min_password_length"`
-	// HideLoginForm specifies whether the login form should be hidden. If no social login providers are configured,
-	// the login form will be shown regardless of this setting.
-	HideLoginForm bool `yaml:"hide_login_form"`
 }
 
 // BaseFields contains the basic fields that are used to map user information from the authentication providers.

internal/config/config.go

@@ -95,9 +95,6 @@ func (c *Config) LogStartupValues() {
 		"oidcProviders", len(c.Auth.OpenIDConnect),
 		"oauthProviders", len(c.Auth.OAuth),
 		"ldapProviders", len(c.Auth.Ldap),
-		"webauthnEnabled", c.Auth.WebAuthn.Enabled,
-		"minPasswordLength", c.Auth.MinPasswordLength,
-		"hideLoginForm", c.Auth.HideLoginForm,
 	)
 }
 
@@ -172,7 +169,6 @@ func defaultConfig() *Config {
 
 	cfg.Auth.WebAuthn.Enabled = true
 	cfg.Auth.MinPasswordLength = 16
-	cfg.Auth.HideLoginForm = false
 
 	return cfg
 }

internal/domain/statistics.go

@@ -3,23 +3,21 @@ package domain
 import "time"
 
 type PeerStatus struct {
-	PeerId    PeerIdentifier `gorm:"primaryKey;column:identifier" json:"PeerId"`
-	UpdatedAt time.Time      `gorm:"column:updated_at" json:"-"`
+	PeerId    PeerIdentifier `gorm:"primaryKey;column:identifier"`
+	UpdatedAt time.Time      `gorm:"column:updated_at"`
 
-	IsConnected bool `gorm:"column:connected" json:"IsConnected"` // indicates if the peer is connected based on the last handshake or ping
+	IsPingable bool       `gorm:"column:pingable"`
+	LastPing   *time.Time `gorm:"column:last_ping"`
 
-	IsPingable bool       `gorm:"column:pingable" json:"IsPingable"`
-	LastPing   *time.Time `gorm:"column:last_ping" json:"LastPing"`
+	BytesReceived    uint64 `gorm:"column:received"`
+	BytesTransmitted uint64 `gorm:"column:transmitted"`
 
-	BytesReceived    uint64 `gorm:"column:received" json:"BytesReceived"`
-	BytesTransmitted uint64 `gorm:"column:transmitted" json:"BytesTransmitted"`
-
-	LastHandshake    *time.Time `gorm:"column:last_handshake" json:"LastHandshake"`
-	Endpoint         string     `gorm:"column:endpoint" json:"Endpoint"`
-	LastSessionStart *time.Time `gorm:"column:last_session_start" json:"LastSessionStart"`
+	LastHandshake    *time.Time `gorm:"column:last_handshake"`
+	Endpoint         string     `gorm:"column:endpoint"`
+	LastSessionStart *time.Time `gorm:"column:last_session_start"`
 }
 
-func (s *PeerStatus) CalcConnected() {
+func (s PeerStatus) IsConnected() bool {
 	oldestHandshakeTime := time.Now().Add(-2 * time.Minute) // if a handshake is older than 2 minutes, the peer is no longer connected
 
 	handshakeValid := false
@@ -27,7 +25,7 @@ func (s *PeerStatus) CalcConnected() {
 		handshakeValid = !s.LastHandshake.Before(oldestHandshakeTime)
 	}
 
-	s.IsConnected = s.IsPingable || handshakeValid
+	return s.IsPingable || handshakeValid
 }
 
 type InterfaceStatus struct {

internal/domain/statistics_test.go

@@ -66,9 +66,8 @@ func TestPeerStatus_IsConnected(t *testing.T) {
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			tt.status.CalcConnected()
-			if got := tt.status.IsConnected; got != tt.want {
-				t.Errorf("IsConnected = %v, want %v", got, tt.want)
+			if got := tt.status.IsConnected(); got != tt.want {
+				t.Errorf("IsConnected() = %v, want %v", got, tt.want)
 			}
 		})
 	}

mkdocs.yml

@@ -82,7 +82,6 @@ nav:
           - General: documentation/usage/general.md
           - LDAP: documentation/usage/ldap.md
           - Security: documentation/usage/security.md
-          - Webhooks: documentation/usage/webhooks.md
           - REST API: documentation/rest-api/api-doc.md
       - Upgrade: documentation/upgrade/v1.md
       - Monitoring: documentation/monitoring/prometheus.md