authentik

Commit Graph

Author	SHA1	Message	Date
Jens L	b0fbd576fc	security: cure53 fix (#6039 ) * ATH-01-001: resolve path and check start before loading blueprints This is even less of an issue since `411ef239f6`, since with that commit we only allow files that the listing returns Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-010: fix missing user filter for webauthn device This prevents an attack that is only possible when an attacker can intercept HTTP traffic and in the case of HTTPS decrypt it. * ATH-01-008: fix web forms not submitting correctly when pressing enter When submitting some forms with the Enter key instead of clicking "Confirm"/etc, the form would not get submitted correctly This would in the worst case is when setting a user's password, where the new password can end up in the URL, but the password was not actually saved to the user. * ATH-01-004: remove env from admin system endpoint this endpoint already required admin access, but for debugging the env variables are used very little Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-003 / ATH-01-012: disable htmlLabels in mermaid Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-005: use hmac.compare_digest for secret_key authentication Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-009: migrate impersonation to use API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-010: rework Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-014: save authenticator validation state in flow context Signed-off-by: Jens Langhammer <jens@goauthentik.io> bugfixes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ATH-01-012: escape quotation marks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add website Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update release ntoes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update with all notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-06-22 22:25:04 +02:00
Jens L	0ce41a1b2d	providers/ldap: add StartTLS support (#5861 ) * providers/ldap: add StartTLS support Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add starttls test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update form and docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-add tls server name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-06-06 21:40:19 +02:00
Tana M Berry	b1de9f8d93	website/docs: add Note about wget command (#5770 ) * add Note about wget * added info about -) flag * add review edits --------- Co-authored-by: Tana Berry <tana@goauthentik.io>	2023-06-06 02:21:27 -05:00
Jens L	7daf89be05	website/docs: prepare 2023.5.3 (#5824 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-06-01 19:34:56 +02:00
Jens L	e8c2aabad0	website/docs: prepare 2023.5.2 release notes (#5777 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-05-28 12:45:50 +02:00
Jens L	873aaf85f9	website/docs: prepare 2023.5.1 release notes (#5679 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-05-18 20:34:33 +02:00
Jens L	228197ea5e	website/docs: update 2023.5 release notes (#5526 ) * website/docs: update 2023.5 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update changelog Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-05-12 13:45:25 +02:00
Bojan Bogojevic	05b2fb5ec1	root: Change docker-compose HTTP and HTTPS port variables (#5335 ) * Clarify that COMPOSE_PORT_ changes exposed ports Signed-off-by: Bojan Bogojevic <20166636+Bojan023@users.noreply.github.com> * Change AUTHENTIK_PORT to COMPOSE_PORT Signed-off-by: Bojan Bogojevic <20166636+Bojan023@users.noreply.github.com> * Change AUTHENTIK_PORT to COMPOSE_PORT Signed-off-by: Bojan Bogojevic <20166636+Bojan023@users.noreply.github.com> * Add hint to Configuration for internal ports Signed-off-by: Bojan Bogojevic <20166636+Bojan023@users.noreply.github.com> * dont use different env syntaxes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add changelog entry Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Bojan Bogojevic <20166636+Bojan023@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-04-21 14:54:40 +03:00
Jens L	bb92c4a967	providers/ldap: remove deprecated fields (#5154 ) * providers/ldap: remove deprecated fields Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update changelog Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-04-21 14:10:24 +03:00
Jens L	edb2aa2db5	website/docs: 2023.4.1 release notes (#5281 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-04-18 10:11:59 +02:00
Jens L	55ad2d7eab	website/docs: add helm RBAC notice (#5255 ) website/docs: add helm notice Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-04-14 13:21:05 +02:00
Jens L	c08c849fec	website: fix doc build (#5242 ) * ci: run both builds Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix build Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-04-13 17:20:44 +02:00
Jens L	67644ace87	website/docs: prepare 2023.4 release notes (#5223 ) * website/docs: prepare 2023.4 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add prompt preview Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * Update website/docs/releases/2023/v2023.4.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * add new release to sidebar Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2023-04-13 14:11:46 +02:00
Jens L	89abc99dc0	website/docs: prepare 2023.4 release notes (#5083 ) * website/docs: prepare 2023.4 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update website/docs/releases/_template.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2023-03-28 12:05:44 +02:00
Jens L	19ff8129e5	website/docs: prepare 2023.3.1 release notes (#4976 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-16 18:09:30 +01:00
Thomas McWork	5375637eda	website/docs: Fix detail and improve latest changelog regarding SCIM (#4955 ) * Fix detail and improve latest changelog regarding SCIM I found the wording confusing ("sync from" vs. "sync into" as being used in the docs) Signed-off-by: Thomas McWork <thomas.mc.work@posteo.de> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Thomas McWork <thomas.mc.work@posteo.de> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-03-15 11:35:07 +01:00
Jens L	b46048e74f	website/docs: final 2023.3 release notes (#4923 ) * website/docs: final 2023.3 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2023-03-13 18:30:11 +01:00
Jens L	06fb81410b	website/docs: fix layout for preview annotation (#4899 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-10 17:38:32 +01:00
Jens L	5732fc0c2e	website/docs: prepare 2023.3 release notes (#4889 ) * website/docs: prepare 2023.3 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * add better docs for custom css Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2023-03-10 17:33:59 +01:00
Jens L	e47bbe63b8	website/docs: update release notes (#4833 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-02 20:27:51 +01:00
Jens Langhammer	2c78053631	website/docs: add release note titles Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-21 12:27:24 +01:00
Jens Langhammer	17364c3bd8	website/docs: add 2023.2.2 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-15 20:34:25 +01:00
Jens Langhammer	c340830b37	website/docs: prepare 2023.2.1 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-14 18:19:02 +01:00
Jens Langhammer	cf36da2e5d	website/docs: prepare 2023.2 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-12 17:44:53 +01:00
Jens L	af43330fd6	providers/oauth2: rework OAuth2 Provider (#4652 ) * always treat flow as openid flow Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve issuer URL generation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more refactoring Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update introspection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more refinement Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more things, update api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * regen migrations Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start updating tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix implicit flow, auto set exp Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix timeozone not used correctly Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix revoke Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more timezone shenanigans Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix userinfo tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix proxy outpost Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix api tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing at_hash for implicit flows Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-include at_hash in implicit auth flow Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use folder context for outpost build Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-09 20:19:48 +01:00
Jens Langhammer	7a85038c11	website/docs: prepare 2023.2 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-07 22:52:29 +01:00
Jens L	7d4ce41e12	providers/proxy: outpost wide logout implementation (#4605 ) * initial outpost wide logout implementation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle deserialize error Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix file cleanup, add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-02 21:18:59 +01:00
Jens Langhammer	b99afd82b2	stages/user_write: fix migration setting wrong value, fix form Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-23 14:38:26 +01:00
Jens Langhammer	446dc0a17b	website/docs: prepare 2023.1.1 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-20 14:25:20 +01:00
Jens Langhammer	97acc77e0a	website/docs: update 2023.1 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-18 15:25:58 +01:00
Jens Langhammer	b6b97f4706	website/docs: update 2023.1 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-13 16:32:34 +01:00
Jens L	e6b5810e03	polices/hibp: remove deprecated (#4363 ) * remove hibp Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * don't save event matcher apps in migrations Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup migrations Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update docs, update some phrasing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-05 13:19:26 +01:00
Jens L	dc1359a763	providers/saml: initial SLO implementation (#2346 ) * providers/saml: initial SLO implementation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/saml: add logout request tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/saml: add tests for POST SLO Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * matrix e2e tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix import Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * set e2e matrix name Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * separate oidc and oauth tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add basic saml slo e2e tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add better metadata download url Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * kinda prepare release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * sort releases into folders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add slo urls to website Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix linking Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add api tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-04 19:45:31 +01:00
Jens Langhammer	c4bb51469b	website/docs: prepare 2022.12.2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-04 10:15:15 +01:00
Jens Langhammer	c8bd0fbb1c	website/docs: prepare 2022.12.1 release Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-29 23:59:05 +01:00
Jens Langhammer	c99798b1f2	website/docs: update release notes, remove duplicate files Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-29 23:28:15 +01:00
Jens Langhammer	0e6400bfea	web/admin: improve user/group UX for adding/removing users to and from groups Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-28 12:55:38 +01:00
Jens Langhammer	b16d1134ea	core: add endpoints to add/remove users from group atomically closes #4252 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-28 10:50:30 +01:00
Jens Langhammer	1615723f10	website/docs: update release notes for 2022.12 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-27 14:10:38 +01:00
Jens Langhammer	7046944bf6	website: link CVE and attribute reporter Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-25 14:17:17 +01:00
Jens Langhammer	716584bbae	website: update release notes for CVEs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-23 14:21:02 +01:00
Jens L	c635487210	blueprints: better OCI support in UI (#4263 ) use oci:// prefix to detect oci blueprint, add UI support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-22 18:49:25 +01:00
Jens Langhammer	28eb7c03fa	website/developer-docs: add templates for announcing fixed security release Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-22 16:13:21 +01:00
Jens Langhammer	423776c7a2	website/docs: prepare 2022.12 release Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-21 21:58:57 +01:00
Jens L	609f95ac97	providers: add preview for mappings (#4254 ) * preview Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: show provider page on application page Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use oauth2 end session url instead of direct interface Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * dont show provider page on application page for now Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add UI for preview Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * translate and release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix lint Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * separate saml api files Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add api tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-21 12:13:11 +01:00
Jens L	f4990bb5da	core: bundle geoip (#4250 ) * bundle geoip Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * correctly pass secrets Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add geoip docs and release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-20 22:09:30 +01:00
Jens Langhammer	49bd028363	website/docs: update release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-03 13:10:16 +02:00
Jens L	db95dfe38d	security: fix CVE 2022 46145 (#4140 ) * add flow authentication requirement Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add website for cve Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: handle FlowNonApplicableException without policy result Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-02 16:14:25 +01:00
Jens Langhammer	ab0f8d027d	website/docs: add 2022.11.1 release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-22 21:17:05 +01:00
Jens Langhammer	1efc0c1242	website/docs: update changelog Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-21 19:37:28 +01:00

1 2 3 4 5 ...

266 Commits