authentik

Commit Graph

Author	SHA1	Message	Date
Alexandre NICOLAIE	a2714ab1f1	outposts: make metrics compliant with Prometheus best-practices (#6398 ) web/outpost: make metrics compliant with Prometheus best-practices Today, all NewHistogramVec store values in nanoseconds without changing the default histogram bucket, which are made for seconds, making them a bit useless. In addition, some metrics names are not self-explanatoryand and do not comply with Prometheus best practices. This commit tries to fix all of this "issues". NOTE: I kept old metrics in order to avoid breaking changes with existing dashboards and metrics. Signed-off-by: Alexandre NICOLAIE <xunleii@users.noreply.github.com>	2023-07-27 18:51:08 +02:00
Jens L	d22d147c8e	security: fix CVE-2023-36456 (#6171 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-07-06 18:16:26 +02:00
authentik-db-cooper	ab795e6642	internal: ignore insecure TLS certs (#5483 ) * servers: ignore insecure TLS certs * slight refactor to have a single place for tls config Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-05-05 15:57:52 +03:00
Jens L	41d17dc543	internal: fix crash when port 9000 is in use (#4863 ) fix crash when port 9000 is in use Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-07 13:27:46 +01:00
Jens Langhammer	0874574e5c	*: add additional prometheus metrics, remove unusable high entropy metrics Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-19 17:08:40 +01:00
Jens Langhammer	5ea9595c9c	internal: fix cache-control header Signed-off-by: Jens Langhammer <jens@goauthentik.io> #4525	2023-01-25 21:18:20 +01:00
Jens Langhammer	06f67c738c	internal: check certificate value and not IsSet closes #4369 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-05 18:30:11 +01:00
Jens Langhammer	bacf2afed1	internal: remove sentry proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-19 17:52:07 +01:00
Jens L	276af8457d	root: make sentry DSN configurable (#4016 ) * make sentry DSN configurable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * make proxy smarter Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix typo in config struct Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-15 16:05:29 +01:00
Jens Langhammer	56181a45a1	internal: limit body size Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-10-17 18:52:16 +02:00
Jens Langhammer	53f224300b	internal: set ETag header on static resources to reduce cache issues Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #3456	2022-09-11 23:18:34 +02:00
Jens Langhammer	242423cf3c	internal: remove sentryhttp from main server mux to prevent double traces Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-09-03 16:41:47 +02:00
Jens Langhammer	514c48a986	internal: fix routing for requests with querystring signature to embedded outpost Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-18 20:43:01 +02:00
Jens Langhammer	846b63a17b	*: remove some very verbose logging messages Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-17 13:36:56 +02:00
Jens Langhammer	4c9878313c	sources/oauth: correctly concatenate URLs to allow custom parameters to be included closes #3374 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-08 21:17:32 +02:00
Jens Langhammer	6356ddd9f3	internal: replace ioutils Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-08 21:00:45 +02:00
Jens Langhammer	201bea6d30	internal: add X-authentik-logout signature to trigger logouts when URLs are not exposed Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-07 18:50:24 +02:00
Jens L	2ce8e18bab	internal: centralise config for listeners to use same config system everywhere (#3367 ) * centralise config for listeners to use same config system everywhere Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #3360 * add docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-08-03 21:33:27 +02:00
Jens L	393d7ec486	providers/proxy: no exposed urls (#3151 ) * test any callback Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * dont detect callback in per-server handler Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use full redirect uri with both path and query param Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * correctly route to embedded outpost for callback signature Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix allowed redirects Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-07-30 17:51:01 +02:00
Jens Langhammer	10b48b27b0	internal: walk config in go, check, parse and load from scheme like in python closes #2719 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-07-26 11:33:37 +02:00
Jens Langhammer	ece0429ea8	internal: failback with self-signed cert if cert for tenant fails to load Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-06-20 21:26:34 +02:00
Jens Langhammer	0a83b04419	internal: fix routing to embedded outpost Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-06-16 17:05:27 +02:00
Jens Langhammer	2d48fe42f4	internal: dont sample gunicorn proxied requests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-06-16 11:32:21 +02:00
Jens Langhammer	bdf76bb4b7	internal: skip tracing for go healthcheck and metrics endpoints Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-06-10 22:21:11 +02:00
Jens Langhammer	62a939b91d	internal: bump api client to v3 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-03-03 10:40:07 +01:00
Jens Langhammer	e194715c3e	internal: fix CSRF error caused by Host header Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-02-09 14:34:55 +01:00
Jens Langhammer	02ba493759	internal: trace headers and url for backend requests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-02-09 12:48:17 +01:00
Jens Langhammer	a7fea5434d	internal: remove uvicorn server header Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-02-09 12:38:47 +01:00
Jens Langhammer	4fb783e953	internal: improve error handling for internal reverse proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-02-09 12:33:37 +01:00
Jens L	4343246a41	*: rename akprox to outpost.goauthentik.io (#2266 ) Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-02-08 20:25:38 +01:00
Jens Langhammer	e1c0c0b20c	internal: don't override server header Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-01-24 22:05:11 +01:00
Jens Langhammer	14c7d8c4f4	internal: route traffic to proxy providers based on cookie domain when multiple domain-level providers exist Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #2079	2022-01-18 23:19:43 +01:00
Jens Langhammer	c741c13132	internal: fix listen attempt on shutdown Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-01-03 12:36:11 +01:00
Jens Langhammer	27e4c7027c	web: fix potential panic Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-26 14:24:44 +01:00
Jens Langhammer	87e99625e6	internal: update tenant certificates on outpost refresh Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-23 00:38:49 +01:00
Jens Langhammer	34b11524f1	tenants: add web certificate field, make authentik's core certificate configurable based on keypair Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-22 11:43:45 +01:00
Jens Langhammer	b3ba083ff0	internal: cleanup logging, remove duplicate code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-22 10:33:21 +01:00
Jens Langhammer	22a8603892	internal: add custom proxy certificates support to embedded outpost Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-22 10:16:01 +01:00
Jens Langhammer	f8aab40e3e	internal: cleanup duplicate and redundant code, properly set sentry SDK scope settings Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-16 11:00:19 +01:00
Jens Langhammer	d0ceafe79e	outposts/proxy: add X-authentik-meta-version Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-01 20:59:45 +01:00
Jens Langhammer	f2023a7af2	*: don't use go embed to make using custom files easier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-01 20:35:28 +01:00
Jens Langhammer	d1bd8f333b	outposts/proxy: use disableIndex for static files Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-19 10:50:56 +01:00
Jens Langhammer	2ac9f5426d	outposts: don't panic when listening for metrics fails Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-19 10:37:13 +01:00
Jens Langhammer	7cf8a31057	internal: fix integrated docs not working Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-15 16:13:02 +01:00
Jens Langhammer	74382c6287	cmd/server: improve cleanup on shutdown Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-07 18:03:29 +01:00
Jens Langhammer	c87a9f9489	web: remove debug entry Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-03 20:19:37 +01:00
Jens Langhammer	0d02dbf55c	api: replace django sentry proxy with go proxy to prevent login issues Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-02 14:44:37 +01:00
Jens Langhammer	57e86582d1	Revert "root: handle liveness probe in router (also keep internal one)" This reverts commit `dd7cb45733`.	2021-10-12 18:44:08 +02:00
Jens Langhammer	dd7cb45733	root: handle liveness probe in router (also keep internal one) This reverts commit `d39dbc7287`. Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-12 18:43:39 +02:00
Jens Langhammer	d39dbc7287	root: handle liveness probe in router Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-12 14:54:15 +02:00

1 2

82 Commits