Jens Langhammer
|
87e99625e6
|
internal: update tenant certificates on outpost refresh
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-23 00:38:49 +01:00 |
|
Jens Langhammer
|
34b11524f1
|
tenants: add web certificate field, make authentik's core certificate configurable based on keypair
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 11:43:45 +01:00 |
|
Jens Langhammer
|
3c048a1921
|
outposts/proxy: fix session not expiring correctly due to miscalculation
closes #1976
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-21 13:10:57 +01:00 |
|
Jens Langhammer
|
92b4244e81
|
providers/proxy: update traefik regex
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1969
|
2021-12-20 22:43:58 +01:00 |
|
Jens Langhammer
|
f910da0f8a
|
outposts: fix initial refresh not calling Server.Refresh()
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-20 21:47:32 +01:00 |
|
Jens Langhammer
|
fc9d270992
|
outposts/ldap: fix log formatter and level not being set correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-20 21:46:01 +01:00 |
|
Jens Langhammer
|
621773c1ea
|
internal: rework global logging settings, embedded outpost no longer overwrites core, clean up double init
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-20 21:23:19 +01:00 |
|
Jens Langhammer
|
052e465041
|
outpost: re-run globalSetup when updating config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-20 21:08:03 +01:00 |
|
Jens Langhammer
|
68637cf7cf
|
outposts: handle/ignore http Abort handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-20 19:42:45 +01:00 |
|
Jens Langhammer
|
03da87991f
|
outposts: don't use custom environment
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-16 19:12:05 +01:00 |
|
Jens Langhammer
|
b5685ec072
|
outposts: set sentry-trace on API requests to match them to the outer transaction
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 11:50:31 +01:00 |
|
Jens Langhammer
|
cf5ff6e160
|
outposts: reset backoff after successful connect
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-13 16:38:48 +01:00 |
|
Jens Langhammer
|
ac9cf590bc
|
*: use prefixed span names
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-13 16:18:42 +01:00 |
|
Jens Langhammer
|
10b16bc36a
|
outposts: add description to span
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-13 16:12:14 +01:00 |
|
Jens Langhammer
|
deebdf2bcc
|
outposts: fix unlabeled transaction
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-12 13:46:31 +01:00 |
|
Jens Langhammer
|
4982c4abcb
|
outpost: add additional checks for websocket connection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-12 00:11:17 +01:00 |
|
Jens Langhammer
|
f4988bc45e
|
outpost: rewrite re-connect logic without recws
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-11 22:53:59 +01:00 |
|
Jens Langhammer
|
9a393848b2
|
outpost: configure error reporting based off of main instance config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-29 14:42:19 +01:00 |
|
Jens Langhammer
|
c7681dde32
|
outposts: reload on signal USR1, fix display of reload offset
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-24 22:45:27 +01:00 |
|
Jens Langhammer
|
e7b4363d21
|
outposts/ldap: fix logic error in cached ldap searcher
closes #1779
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-11 23:18:32 +01:00 |
|
Jens Langhammer
|
e6963c543d
|
outpost: remove analytics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-08 19:35:53 +01:00 |
|
Jens Langhammer
|
dd82d55725
|
outposts: also send outpost type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 15:08:31 +01:00 |
|
Jens Langhammer
|
8d766efecb
|
root: don't set signal on start when running in ci or dev
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 14:32:21 +01:00 |
|
Jens Langhammer
|
9ac3b29418
|
outpost: add lightweight, anonymous metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-04 14:10:43 +01:00 |
|
Jens Langhammer
|
8d5460a132
|
outposts: separate websocket re-connection logic to decrease requests on reconnect
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-30 21:33:50 +02:00 |
|
Jens Langhammer
|
234a5e2b66
|
outposts: fix outposts not correctly updating central state
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-26 11:40:21 +02:00 |
|
Jens Langhammer
|
0f8880ab0a
|
outposts: fix typo
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-22 13:14:28 +02:00 |
|
Jens Langhammer
|
a92a0fb60a
|
web: migrate to lit 2
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-21 11:19:26 +02:00 |
|
Jens Langhammer
|
f771383c4b
|
cmd: fix outpost metrics not being set in embedded mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-16 12:09:12 +02:00 |
|
Jens Langhammer
|
471f7d9c62
|
outposts: add consistent name and type to metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-16 10:14:51 +02:00 |
|
Jens Langhammer
|
198e5ce642
|
outpost: fix crash when common keys are not defined in config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-14 17:40:48 +02:00 |
|
Jens Langhammer
|
2428d5f1c2
|
outpost: update global outpost config on refresh
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-10 12:18:19 +02:00 |
|
Jens L
|
3c1b70c355
|
outposts/proxyv2 (#1365)
* outposts/proxyv2: initial commit
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add rs256
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
more stuff
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add forward auth an sign_out
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
match cookie name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
re-add support for rs256 for backwards compat
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add error handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
ensure unique user-agent is used
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
set cookie duration based on id_token expiry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
build proxy v2
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add ssl
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add basic auth and custom header support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add application cert loading
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
implement whitelist
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add redis
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
migrate embedded outpost to v2
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
remove old proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
providers/proxy: make token expiration configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
fix tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: only allow one redirect URI
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix docker build for proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove default port offset
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add AUTHENTIK_HOST_BROWSER
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests: fix e2e/integration tests not using proper tags
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove references of old port
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix user_attributes not being loaded correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup dependencies
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-08 18:04:56 +00:00 |
|
Jens Langhammer
|
70d1e3a0cb
|
outpost: fix spans being sent without parent context
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-03 18:17:08 +02:00 |
|
Jens Langhammer
|
ff24bc8cb8
|
outpost/ldap: regularly pre-heat flow executor cache to increase bind performance
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-21 16:17:30 +02:00 |
|
Jens Langhammer
|
2015d91484
|
outpost: load global config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-21 14:14:18 +02:00 |
|
Jens Langhammer
|
7e62b82d56
|
outpost/embedded: fix login URL not being set correctly from outpost config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-11 12:39:27 +02:00 |
|
Jens Langhammer
|
66c3535bcb
|
outpost: bump timer for periodic config reloads
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-31 21:57:33 +02:00 |
|
Jens L
|
f01bc20d44
|
Embedded outpost (#1193)
* api: allow API requests as managed outpost's account when using secret_key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: load secret key from env
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts: make listener IP configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost/proxy: run outpost in background and pass requests conditionally
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: unify branding to embedded
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: fix embedded outpost not being editable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: fix mismatched host detection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: fix LDAP test not including user for embedded outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: fix user matching
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* api: add tests for secret_key auth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: load environment variables using github.com/Netflix/go-env
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 11:30:30 +02:00 |
|
Jens Langhammer
|
f6e1bfdfc8
|
outpost: fix 100% CPU Usage when not connected to websocket
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-23 18:57:26 +02:00 |
|
Jens Langhammer
|
aca3a5c458
|
outpost: add tracing for http client
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-23 17:37:06 +02:00 |
|
Jens Langhammer
|
1b4654bb1d
|
outposts/ldap: add tracing for LDAP bind and search
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-22 19:23:56 +02:00 |
|
Jens Langhammer
|
253f345fc4
|
outposts: save certificate fingerprint and check before re-fetching to cleanup logs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-21 23:53:43 +02:00 |
|
Jens Langhammer
|
b3159a74e5
|
Merge branch 'master' into inbuilt-proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# Dockerfile
# internal/outpost/ak/api.go
# internal/outpost/ak/api_uag.go
# internal/outpost/ak/global.go
# internal/outpost/ldap/api_tls.go
# internal/outpost/ldap/instance_bind.go
# internal/outpost/ldap/utils.go
# internal/outpost/proxy/api_bundle.go
# outpost/go.mod
# outpost/go.sum
# outpost/pkg/ak/cert.go
|
2021-07-17 12:49:38 +02:00 |
|
Jens Langhammer
|
ff42663d3c
|
root: more code merging
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-29 16:21:00 +02:00 |
|
Jens Langhammer
|
1005f341e4
|
Merge branch 'master' into inbuilt-proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# internal/constants/constants.go
# outpost/pkg/version.go
|
2021-06-23 20:41:06 +02:00 |
|
Jens Langhammer
|
b98895ac2c
|
root: add more common utils
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-16 17:29:01 +02:00 |
|
Jens Langhammer
|
6dc38b0132
|
root: start deduplicating code
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-16 12:41:34 +02:00 |
|
Jens Langhammer
|
690b7be1d8
|
root: initial merging of outpost and main project
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-16 12:02:02 +02:00 |
|