10:["$","$L1a",null,{"pluginData":{"readme":"$1b","sourceInfo":"$1c","engines":"$1e","organization":"Turbot","category":"$1f","iconUrl":"/images/plugins/turbot/tailscale.svg","brandColor":"#000000","displayName":"Tailscale","shortName":"tailscale","description":"Steampipe plugin to query VPN networks, devices and more from tailscale.","ogDescription":"Query Tailscale with SQL! Open source CLI. No DB required.","ogImage":"/images/plugins/turbot/tailscale-social-graphic.png","org":"turbot","name":"tailscale","version":"1.1.1","latestImageId":"sha256:dd893b2a24d136a6f72f3db2925fd36e516c19076099f16d319911791eddcd22","latestVersion":"1.1.1","mods":"$20","tables":[{"name":"tailscale_acl_auto_approver","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"exit_node","type":"jsonb","description":"Device routing the traffic for a given tailnet.","operators":[]},{"name":"routes","type":"jsonb","description":"Subnet router defined for a given tailnet.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]}],"description":"Tailscale ACL Auto Approvers.","queriesCount":0,"examplesCount":2,"readme":"$22"},{"name":"tailscale_acl_derp_map","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"omit_default_regions","type":"boolean","description":"If default regions should be omitted.","operators":[]},{"name":"regions","type":"jsonb","description":"List of regions.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]}],"description":"Tailscale ACL DERP Map.","queriesCount":0,"examplesCount":1,"readme":"$23"},{"name":"tailscale_acl_entry","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"action","type":"text","description":"Action defined for a device or a network.","operators":[]},{"name":"destination","type":"jsonb","description":"The list of destination IP addresses for the connection.","operators":[]},{"name":"ports","type":"jsonb","description":"The list of ports to apply the action on.","operators":[]},{"name":"protocol","type":"text","description":"The protocol of the connection.","operators":[]},{"name":"source","type":"jsonb","description":"The list of source IP addresses for the connection.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"users","type":"jsonb","description":"The list of users to apply an action on.","operators":[]}],"description":"Tailscale ACL entry.","queriesCount":0,"examplesCount":2,"readme":"$24"},{"name":"tailscale_acl_ssh","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"action","type":"text","description":"Action defined for a device or a network.","operators":[]},{"name":"check_period","type":"text","description":"The time period for which the connection remains in check mode.","operators":[]},{"name":"destination","type":"jsonb","description":"The list of destination IP addresses for the connection.","operators":[]},{"name":"source","type":"jsonb","description":"The list of source IP addresses for the connection.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"users","type":"jsonb","description":"The list of users to apply an action on.","operators":[]}],"description":"Tailscale Acl SSH.","queriesCount":0,"examplesCount":3,"readme":"$25"},"$26",{"name":"tailscale_tailnet","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"acl_groups","type":"jsonb","description":"The list of ACL groups that is currently set for the given tailnet.","operators":[]},{"name":"acl_hosts","type":"jsonb","description":"The list of ACL hosts that is currently set for the given tailnet.","operators":[]},{"name":"acl_tag_owners","type":"jsonb","description":"The list of ACL tag owners that is currently set for the given tailnet.","operators":[]},{"name":"dns_nameservers","type":"jsonb","description":"The list of DNS nameservers for a tailnet.","operators":[]},{"name":"dns_preferences","type":"jsonb","description":"The DNS preferences that are currently set for the given tailnet.","operators":[]},{"name":"dns_search_paths","type":"jsonb","description":"The list of DNS search paths that is currently set for the given tailnet.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"title","type":"text","description":"Title of the resource.","operators":[]}],"description":"Tailscale Tailnet.","queriesCount":0,"examplesCount":3,"readme":"$59"},{"name":"tailscale_tailnet_key","columns":[{"name":"_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"capabilities","type":"jsonb","description":"The list of device capabilities.","operators":[]},{"name":"created","type":"timestamp with time zone","description":"Device creation time.","operators":[]},{"name":"expires","type":"timestamp with time zone","description":"Device expiry time.","operators":[]},{"name":"id","type":"text","description":"An unique identifier of the tailnet key.","operators":["="]},{"name":"key","type":"text","description":"Key information.","operators":[]},{"name":"sp_connection_name","type":"text","description":"Steampipe connection name.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"sp_ctx","type":"jsonb","description":"Steampipe context in JSON form.","operators":[]},{"name":"tailnet_name","type":"text","description":"The name of your tailnet.","operators":["=","!=","~~","~~*","!~~","!~~*"]},{"name":"title","type":"text","description":"Title of the resource.","operators":[]}],"description":"A Tailscale tailnet key represents the keys for a tailnet.","queriesCount":0,"examplesCount":4,"readme":"$5a"}],"queries":{},"examples":{"tailscale":{"example_users_allowed_for_each_route":{"org":"turbot","tables":["tailscale.tailscale_acl_auto_approver"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_auto_approver.md","title":"Users allowed for each route","titleLine":36,"name":"example_users_allowed_for_each_route","id":"example_users_allowed_for_each_route","description":"","descriptionStartLine":null,"queries":[{"lang":"sql","code":"select\n r.key as route,\n v as user\nfrom\n tailscale_acl_auto_approver,\n jsonb_each(routes) as r,\n jsonb_array_elements_text(r.value) as v;","startLine":38,"endLine":46}],"isExampleQuery":true},"example_exit_node_tags_of_each_device":{"org":"turbot","tables":["tailscale.tailscale_acl_auto_approver"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_auto_approver.md","title":"Exit node tags of each device","titleLine":48,"name":"example_exit_node_tags_of_each_device","id":"example_exit_node_tags_of_each_device","description":"Determine the devices that are associated with specific exit node tags in your network. This can help you manage and control the flow of network traffic, ensuring optimal performance and security.","descriptionStartLine":49,"queries":[{"lang":"sql+postgres","code":"with tag_devices as(\n select\n id,\n d.name as device_name,\n d.hostname as device_hostname,\n tag\n from\n tailscale_device as d,\n jsonb_array_elements_text(tags) as tag\n)\nselect\n device_name,\n id as device_id,\n en as exit_node_tag,\n device_hostname\nfrom\n tailscale_acl_auto_approver,\n jsonb_array_elements_text(exit_node) as en\n join tag_devices as td on en = td.tag;","startLine":51,"endLine":71},{"lang":"sql+sqlite","code":"with tag_devices as(\n select\n id,\n d.name as device_name,\n d.hostname as device_hostname,\n tag\n from\n tailscale_device as d,\n json_each(tags) as tag\n)\nselect\n device_name,\n id as device_id,\n en.value as exit_node_tag,\n device_hostname\nfrom\n tailscale_acl_auto_approver,\n json_each(exit_node) as en\n join tag_devices as td on en.value = td.tag;","startLine":73,"endLine":93}],"isExampleQuery":true},"example_derp_server_regions_that_are_available_for_hosts_to_use":{"org":"turbot","tables":["tailscale.tailscale_acl_derp_map"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_derp_map.md","title":"DERP Server regions that are available for hosts to use","titleLine":33,"name":"example_derp_server_regions_that_are_available_for_hosts_to_use","id":"example_derp_server_regions_that_are_available_for_hosts_to_use","description":"","descriptionStartLine":null,"queries":[{"lang":"sql+postgres","code":"with map_regions as (\n select\n reg.key as key,\n reg.value as region\n from\n tailscale_acl_derp_map,\n jsonb_each(regions) as reg\n)\nselect\n key as region_id,\n region ->> 'regionName' as region_name,\n region ->> 'regionCode' as region_code,\n node ->> 'hostName' as node_hostname,\n node ->> 'name' as node_name\nfrom\n map_regions,\n jsonb_array_elements(region -> 'nodes') as node;","startLine":35,"endLine":53},{"lang":"sql+sqlite","code":"Error: The corresponding SQLite query is unavailable.","startLine":55,"endLine":57}],"isExampleQuery":true},"example_devices_that_the_user_has_access_to":{"org":"turbot","tables":["tailscale.tailscale_acl_entry"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_entry.md","title":"Devices that the user has access to","titleLine":33,"name":"example_devices_that_the_user_has_access_to","id":"example_devices_that_the_user_has_access_to","description":"This query is useful for determining which devices a particular user has access to in a network. It helps in managing user permissions by identifying the devices a user can interact with, thereby enhancing network security and control.","descriptionStartLine":34,"queries":[{"lang":"sql+postgres","code":"with user_groups as (\n select\n g.key as groups,\n v as users\n from\n tailscale_tailnet,\n jsonb_each(acl_groups) as g,\n jsonb_array_elements_text(g.value) as v\n), src_dest as (\n select\n action,\n sources,\n destinations\n from\n tailscale_acl_entry,\n jsonb_array_elements_text(source) as sources,\n jsonb_array_elements_text(destination) as destinations\n where\n sources like 'group:%'\n), devices as (\n select\n d.name as device_name, \n d.hostname as device_hostname,\n tag\n from\n tailscale_device as d,\n jsonb_array_elements_text(tags) as tag\n), user_perm as (\n select\n action,\n destinations,\n users\n from\n user_groups u\n join src_dest s on u.groups = s.sources\n) select\n users as user_name,\n device_name,\n device_hostname,\n action\n from\n devices d\n join user_perm u on u.destinations like '%'||d.tag||'%';","startLine":36,"endLine":80},{"lang":"sql+sqlite","code":"with user_groups as (\n select\n g.key as groups,\n v as users\n from\n tailscale_tailnet,\n json_each(acl_groups) as g,\n json_each(g.value) as v\n), src_dest as (\n select\n action,\n sources,\n destinations\n from\n tailscale_acl_entry,\n json_each(source) as sources,\n json_each(destination) as destinations\n where\n sources like 'group:%'\n), devices as (\n select\n d.name as device_name, \n d.hostname as device_hostname,\n tag\n from\n tailscale_device as d,\n json_each(tags) as tag\n), user_perm as (\n select\n action,\n destinations,\n users\n from\n user_groups u\n join src_dest s on u.groups = s.sources\n) select\n users as user_name,\n device_name,\n device_hostname,\n action\n from\n devices d\n join user_perm u on u.destinations like '%'||d.tag||'%';","startLine":82,"endLine":126}],"isExampleQuery":true},"example_devices_that_can_be_accessed_using_other_devices_in_the_network":{"org":"turbot","tables":["tailscale.tailscale_acl_entry"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_entry.md","title":"Devices that can be accessed using other devices in the network","titleLine":128,"name":"example_devices_that_can_be_accessed_using_other_devices_in_the_network","id":"example_devices_that_can_be_accessed_using_other_devices_in_the_network","description":"Determine the areas in which devices in your network can be accessed by other devices. This could be beneficial in identifying potential security vulnerabilities or optimizing device connectivity within your network.","descriptionStartLine":129,"queries":[{"lang":"sql+postgres","code":"$5b","startLine":131,"endLine":181},{"lang":"sql+sqlite","code":"$5c","startLine":183,"endLine":233}],"isExampleQuery":true},"example_users_who_cannot_connect_to_their_own_devices":{"org":"turbot","tables":["tailscale.tailscale_acl_ssh"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_ssh.md","title":"Users who cannot connect to their own devices","titleLine":39,"name":"example_users_who_cannot_connect_to_their_own_devices","id":"example_users_who_cannot_connect_to_their_own_devices","description":"Determine the areas in which users are unable to connect to their own devices. This query can help identify potential network issues or security breaches, providing valuable insights for troubleshooting and risk management.","descriptionStartLine":40,"queries":[{"lang":"sql+postgres","code":"with ssh_tas as (\n select\n action,\n users,\n src,\n dst,\n tailnet_name\n from\n tailscale_acl_ssh as tas,\n jsonb_array_elements_text(source) as src,\n jsonb_array_elements_text(destination) as dst\n where\n action <> 'check'\n or src <> 'autogroup:members'\n or dst <> 'autogroup:self'\n)\nselect\n distinct(td.name) as device_name,\n td.user,\n td.id\nfrom\n tailscale_device as td\n join ssh_tas on ssh_tas.tailnet_name = td.tailnet_name;","startLine":42,"endLine":66},{"lang":"sql+sqlite","code":"with ssh_tas as (\n select\n action,\n users,\n src,\n dst,\n tailnet_name\n from\n tailscale_acl_ssh as tas,\n json_each(source) as src,\n json_each(destination) as dst\n where\n action <> 'check'\n or src.value <> 'autogroup:members'\n or dst.value <> 'autogroup:self'\n)\nselect\n distinct(td.name) as device_name,\n td.user,\n td.id\nfrom\n tailscale_device as td\n join ssh_tas on ssh_tas.tailnet_name = td.tailnet_name;","startLine":68,"endLine":92}],"isExampleQuery":true},"example_users_who_are_a_direct_member_not_a_shared_user_of_the_tailnet":{"org":"turbot","tables":["tailscale.tailscale_acl_ssh"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_ssh.md","title":"Users who are a direct member (not a shared user) of the tailnet","titleLine":94,"name":"example_users_who_are_a_direct_member_not_a_shared_user_of_the_tailnet","id":"example_users_who_are_a_direct_member_not_a_shared_user_of_the_tailnet","description":"Determine the areas in which users are directly linked to a specific network, not as shared users, but as primary members. This is useful for identifying potential network vulnerabilities and ensuring proper access control.","descriptionStartLine":95,"queries":[{"lang":"sql+postgres","code":"with ssh_tas as (\n select\n action,\n users,\n src,\n dst,\n tailnet_name\n from\n tailscale_acl_ssh as tas,\n jsonb_array_elements_text(source) as src,\n jsonb_array_elements_text(destination) as dst\n where\n src = 'autogroup:members'\n)\nselect\n td.user,\n td.name as device_name,\n td.id\nfrom\n tailscale_device as td\n join ssh_tas on ssh_tas.tailnet_name = td.tailnet_name;","startLine":97,"endLine":119},{"lang":"sql+sqlite","code":"with ssh_tas as (\n select\n action,\n users,\n src,\n dst,\n tailnet_name\n from\n tailscale_acl_ssh as tas,\n json_each(source) as src,\n json_each(destination) as dst\n where\n src.value = 'autogroup:members'\n)\nselect\n td.user,\n td.name as device_name,\n td.id\nfrom\n tailscale_device as td\n join ssh_tas on ssh_tas.tailnet_name = td.tailnet_name;","startLine":121,"endLine":143}],"isExampleQuery":true},"example_users_who_have_the_check_period_disabled":{"org":"turbot","tables":["tailscale.tailscale_acl_ssh"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_acl_ssh.md","title":"Users who have the check period disabled","titleLine":145,"name":"example_users_who_have_the_check_period_disabled","id":"example_users_who_have_the_check_period_disabled","description":"Explore which users have disabled the check period in their settings, allowing them to accept actions without regular checks. This can be useful in understanding potential security risks or compliance issues within your network.","descriptionStartLine":146,"queries":[{"lang":"sql+postgres","code":"select\n tas.users,\n tas.action\nfrom\n tailscale_acl_ssh as tas \n join tailscale_tailnet as tt on tas.tailnet_name = tt.tailnet_name\n and action = 'accept'\n and check_period is null;","startLine":148,"endLine":157},{"lang":"sql+sqlite","code":"select\n tas.users,\n tas.action\nfrom\n tailscale_acl_ssh as tas \n join tailscale_tailnet as tt on tas.tailnet_name = tt.tailnet_name\n and action = 'accept'\n and check_period is null;","startLine":159,"endLine":168}],"isExampleQuery":true},"example_device_count_per_os":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Device count per OS","titleLine":39,"name":"example_device_count_per_os","id":"example_device_count_per_os","description":"Determine the distribution of devices across different operating systems. This can help in understanding the most commonly used OS in your network, aiding in decision making for software compatibility and support.","descriptionStartLine":40,"queries":[{"lang":"sql+postgres","code":"select\n os,\n count(*)\nfrom\n tailscale_device\ngroup by\n os\norder by\n count desc;","startLine":42,"endLine":52},{"lang":"sql+sqlite","code":"select\n os,\n count(*)\nfrom\n tailscale_device\ngroup by\n os\norder by\n count(*) desc;","startLine":54,"endLine":64}],"isExampleQuery":true},"example_device_details_of_a_particular_user":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Device details of a particular user","titleLine":66,"name":"example_device_details_of_a_particular_user","id":"example_device_details_of_a_particular_user","description":"Explore which devices are associated with a specific user to gain insights into their activity and usage patterns. This can be particularly useful in managing user access and ensuring secure connections.","descriptionStartLine":67,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n created,\n expires,\n hostname\nfrom\n tailscale_device d\nwhere\n d.user = 'luis@turbot.com'\norder by\n d.name;","startLine":69,"endLine":82},{"lang":"sql+sqlite","code":"select\n name,\n id,\n created,\n expires,\n hostname\nfrom\n tailscale_device d\nwhere\n d.user = 'luis@turbot.com'\norder by\n d.name;","startLine":84,"endLine":97}],"isExampleQuery":true},"example_unauthorized_devices":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Unauthorized devices","titleLine":99,"name":"example_unauthorized_devices","id":"example_unauthorized_devices","description":"Identify instances where devices are not authorized, allowing for a quick review and mitigation of potential security risks.","descriptionStartLine":100,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n created,\n expires,\n hostname\nfrom\n tailscale.tailscale_device d\nwhere\n d.authorized = false;","startLine":102,"endLine":113},{"lang":"sql+sqlite","code":"select\n name,\n id,\n created,\n expires,\n hostname\nfrom\n tailscale_device d\nwhere\n d.authorized = 0;","startLine":115,"endLine":126}],"isExampleQuery":true},"example_devices_without_tags":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Devices without tags","titleLine":128,"name":"example_devices_without_tags","id":"example_devices_without_tags","description":"Identify devices that have not been assigned any tags. This query can be useful to ensure all devices in your network are properly categorized and managed.","descriptionStartLine":129,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n hostname\nfrom\n tailscale_device\nwhere\n tags is null;","startLine":131,"endLine":140},{"lang":"sql+sqlite","code":"select\n name,\n id,\n hostname\nfrom\n tailscale_device\nwhere\n tags is null;","startLine":142,"endLine":151}],"isExampleQuery":true},"example_devices_that_block_incoming_connections":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Devices that block incoming connections","titleLine":153,"name":"example_devices_that_block_incoming_connections","id":"example_devices_that_block_incoming_connections","description":"Explore which Tailscale devices are set to block incoming connections. This can be useful in assessing network security measures or troubleshooting connection issues.","descriptionStartLine":154,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n blocks_incoming_connections;","startLine":156,"endLine":168},{"lang":"sql+sqlite","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n blocks_incoming_connections = 1;","startLine":170,"endLine":182}],"isExampleQuery":true},"example_external_devices":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"External devices","titleLine":184,"name":"example_external_devices","id":"example_external_devices","description":"Identify instances where external devices are connected to your network. This can help in maintaining security and managing device access.","descriptionStartLine":185,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n is_external;","startLine":187,"endLine":199},{"lang":"sql+sqlite","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n is_external = 1;","startLine":201,"endLine":213}],"isExampleQuery":true},"example_devices_that_have_been_inactive_for_the_last_90_days":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Devices that have been inactive for the last 90 days","titleLine":215,"name":"example_devices_that_have_been_inactive_for_the_last_90_days","id":"example_devices_that_have_been_inactive_for_the_last_90_days","description":"Discover devices that have been inactive for an extended period of time, specifically those that have not been seen in the last 90 days. This can be useful for maintaining network hygiene and ensuring efficient use of resources.","descriptionStartLine":216,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name,\n last_seen\nfrom\n tailscale_device\nwhere\n last_seen <= (now() - interval '90' day);","startLine":218,"endLine":231},{"lang":"sql+sqlite","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name,\n last_seen\nfrom\n tailscale_device\nwhere\n last_seen <= datetime('now','-90 day');","startLine":233,"endLine":246}],"isExampleQuery":true},"example_devices_that_will_expire_in_the_next_90_days":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Devices that will expire in the next 90 days","titleLine":248,"name":"example_devices_that_will_expire_in_the_next_90_days","id":"example_devices_that_will_expire_in_the_next_90_days","description":"Determine the devices that are due to expire in the next 90 days, allowing for proactive renewal actions to avoid service interruptions.","descriptionStartLine":249,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name,\n expires\nfrom\n tailscale_device\nwhere\n expires <= (now() + interval '90' day);","startLine":251,"endLine":264},{"lang":"sql+sqlite","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name,\n expires\nfrom\n tailscale_device\nwhere\n expires <= (datetime('now', '+90 day'));","startLine":266,"endLine":279}],"isExampleQuery":true},"example_devices_running_on_older_tailscale_client_versions":{"org":"turbot","tables":["tailscale.tailscale_device"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_device.md","title":"Devices running on older Tailscale client versions","titleLine":281,"name":"example_devices_running_on_older_tailscale_client_versions","id":"example_devices_running_on_older_tailscale_client_versions","description":"Determine the areas in which devices are operating on outdated Tailscale client versions. This assists in identifying potential security risks and allows for timely updates to ensure optimal performance and safety.","descriptionStartLine":282,"queries":[{"lang":"sql+postgres","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n update_available;","startLine":284,"endLine":296},{"lang":"sql+sqlite","code":"select\n name,\n id,\n os,\n user,\n created,\n tailnet_name\nfrom\n tailscale_device\nwhere\n update_available = 1;","startLine":298,"endLine":310}],"isExampleQuery":true},"example_dns_nameservers_that_have_magicdns_enabled":{"org":"turbot","tables":["tailscale.tailscale_tailnet"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet.md","title":"DNS Nameservers that have magicDNS enabled","titleLine":37,"name":"example_dns_nameservers_that_have_magicdns_enabled","id":"example_dns_nameservers_that_have_magicdns_enabled","description":"Discover the segments that have the magicDNS feature enabled within the Tailscale network. This can be useful to understand which parts of your network are utilizing this feature for simplified DNS management.","descriptionStartLine":38,"queries":[{"lang":"sql+postgres","code":"select\n dns_nameservers,\n dns_preferences,\n dns_search_paths,\n tailnet_name,\n title\nfrom\n tailscale_tailnet\nwhere\n dns_preferences->> 'magicDNS' = 'true';","startLine":40,"endLine":51},{"lang":"sql+sqlite","code":"select\n dns_nameservers,\n dns_preferences,\n dns_search_paths,\n tailnet_name,\n title\nfrom\n tailscale_tailnet\nwhere\n json_extract(dns_preferences, '$.magicDNS') = 'true';","startLine":53,"endLine":64}],"isExampleQuery":true},"example_list_users_in_each_group":{"org":"turbot","tables":["tailscale.tailscale_tailnet"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet.md","title":"List users in each group","titleLine":66,"name":"example_list_users_in_each_group","id":"example_list_users_in_each_group","description":"Determine the areas in which users are grouped together. This can help in understanding user organization and management within your network.","descriptionStartLine":67,"queries":[{"lang":"sql+postgres","code":"select\n v as user_name,\n g.key as group_name\nfrom\n tailscale_tailnet,\n jsonb_each(acl_groups) as g,\n jsonb_array_elements_text(g.value) as v;","startLine":69,"endLine":77},{"lang":"sql+sqlite","code":"select\n v.value as user_name,\n g.key as group_name\nfrom\n tailscale_tailnet,\n json_each(acl_groups) as g,\n json_each(g.value) as v;","startLine":79,"endLine":87}],"isExampleQuery":true},"example_list_owners_of_each_tag":{"org":"turbot","tables":["tailscale.tailscale_tailnet"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet.md","title":"List owners of each tag","titleLine":89,"name":"example_list_owners_of_each_tag","id":"example_list_owners_of_each_tag","description":"Discover the segments that show the relationship between tags and their respective owners. This is beneficial to understand ownership distribution across different tags.","descriptionStartLine":90,"queries":[{"lang":"sql+postgres","code":"select\n v as owner,\n g.key as tag\nfrom\n tailscale_tailnet,\n jsonb_each(acl_tag_owners) as g,\n jsonb_array_elements_text(g.value) as v;","startLine":92,"endLine":100},{"lang":"sql+sqlite","code":"select\n v.value as owner,\n g.key as tag\nfrom\n tailscale_tailnet,\n json_each(acl_tag_owners) as g,\n json_each(g.value) as v;","startLine":102,"endLine":110}],"isExampleQuery":true},"example_keys_that_will_expire_in_the_next_90_days":{"org":"turbot","tables":["tailscale.tailscale_tailnet_key"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet_key.md","title":"Keys that will expire in the next 90 days","titleLine":44,"name":"example_keys_that_will_expire_in_the_next_90_days","id":"example_keys_that_will_expire_in_the_next_90_days","description":"Analyze the settings to understand which keys are due to expire within the next 90 days. This is useful for proactively managing key renewals and avoiding unexpected access issues.","descriptionStartLine":45,"queries":[{"lang":"sql+postgres","code":"select\n id,\n key,\n expires::date - now()::date as expiry_days_left\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and expires <= (now() + interval '90' day);","startLine":47,"endLine":57},{"lang":"sql+sqlite","code":"select\n id,\n key,\n julianday(expires) - julianday(datetime('now')) as expiry_days_left\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and julianday(expires) <= julianday(datetime('now', '+90 day'));","startLine":59,"endLine":69}],"isExampleQuery":true},"example_keys_that_have_expired":{"org":"turbot","tables":["tailscale.tailscale_tailnet_key"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet_key.md","title":"Keys that have expired","titleLine":71,"name":"example_keys_that_have_expired","id":"example_keys_that_have_expired","description":"Discover the keys that have already expired. This is useful for identifying and managing outdated keys in your Tailscale Tailnet.","descriptionStartLine":72,"queries":[{"lang":"sql+postgres","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and expires <= now();","startLine":74,"endLine":85},{"lang":"sql+sqlite","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and expires <= datetime('now');","startLine":87,"endLine":98}],"isExampleQuery":true},"example_get_pre_authorized_keys":{"org":"turbot","tables":["tailscale.tailscale_tailnet_key"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet_key.md","title":"Get pre-authorized keys","titleLine":100,"name":"example_get_pre_authorized_keys","id":"example_get_pre_authorized_keys","description":"Determine the areas in which pre-authorized keys are used within a specific network. This is useful for managing access and understanding the security measures in place.","descriptionStartLine":101,"queries":[{"lang":"sql+postgres","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and (capabilities -> 'devices' -> 'create' ->> 'preauthorized')::boolean;","startLine":103,"endLine":114},{"lang":"sql+sqlite","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and json_extract(capabilities, '$.devices.create.preauthorized') = 'true';","startLine":116,"endLine":127}],"isExampleQuery":true},"example_get_reusable_keys":{"org":"turbot","tables":["tailscale.tailscale_tailnet_key"],"plugins":["turbot/tailscale"],"sourcePath":"tailscale_tailnet_key.md","title":"Get reusable keys","titleLine":129,"name":"example_get_reusable_keys","id":"example_get_reusable_keys","description":"Determine the areas in which reusable keys are created within a specific Tailscale network. This query is particularly useful in understanding the lifecycle of these keys, including their creation and expiration dates, to manage network security effectively.","descriptionStartLine":130,"queries":[{"lang":"sql+postgres","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and (capabilities -> 'devices' -> 'create' ->> 'reusable')::boolean;","startLine":132,"endLine":143},{"lang":"sql+sqlite","code":"select\n id,\n key,\n created,\n expires\nfrom\n tailscale_tailnet_key\nwhere\n id ='wPOfcN2CMDR'\n and json_extract(capabilities, '$.devices.create.reusable') = 'true';","startLine":145,"endLine":156}],"isExampleQuery":true}}},"nameWithTag":"tailscale","tag":"latest","allowIndex":true},"children":["$","$La",null,{"parallelRouterKey":"children","segmentPath":["children","plugins","children","$b","children","$c","children"],"error":"$undefined","errorStyles":"$undefined","errorScripts":"$undefined","template":["$","$Le",null,{}],"templateStyles":"$undefined","templateScripts":"$undefined","notFound":"$undefined","notFoundStyles":"$undefined"}]}]

Schema

Export