trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
authentik fork
This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
11,837 Commits 95 Branches 330 Tags 336 MiB
Python 52.8%
TypeScript 38%
Go 5.2%
JavaScript 1.4%
MDX 1.2%
Other 1.3%
Go to file
Jens L b0fbd576fc
security: cure53 fix (#6039) 
* ATH-01-001: resolve path and check start before loading blueprints

This is even less of an issue since 411ef239f6, since with that commit we only allow files that the listing returns

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-010: fix missing user filter for webauthn device

This prevents an attack that is only possible when an attacker can intercept HTTP traffic and in the case of HTTPS decrypt it.

* ATH-01-008: fix web forms not submitting correctly when pressing enter

When submitting some forms with the Enter key instead of clicking "Confirm"/etc, the form would not get submitted correctly

This would in the worst case is when setting a user's password, where the new password can end up in the URL, but the password was not actually saved to the user.

* ATH-01-004: remove env from admin system endpoint

this endpoint already required admin access, but for debugging the env variables are used very little

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-003 / ATH-01-012: disable htmlLabels in mermaid

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-005: use hmac.compare_digest for secret_key authentication

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-009: migrate impersonation to use API

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-010: rework

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-014: save authenticator validation state in flow context

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

bugfixes

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* ATH-01-012: escape quotation marks

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add website

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update release ntoes

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update with all notes

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix format

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 		2023-06-22 22:25:04 +02:00
.github ci: replace stale bot with action (#6015) 2023-06-20 13:50:51 +02:00
.vscode web/flows: improve UI for TOTP code input (#5676) 2023-05-18 18:41:53 +02:00
authentik security: cure53 fix (#6039) 2023-06-22 22:25:04 +02:00
blueprints policies/event_matcher: change empty values to null (#6032) 2023-06-21 15:49:46 +02:00
cmd cmd: use live endpoint instead of ready for inbuild healthcheck 2023-05-08 22:04:18 +02:00
internal providers/ldap: improve password totp detection (#6006) 2023-06-20 12:09:13 +02:00
lifecycle root: add method to get install_id without django being loaded (#5755) 2023-05-25 18:52:21 +02:00
locale core: compile backend translations (#6030) 2023-06-21 13:46:31 +02:00
schemas providers: SCIM (#4835) 2023-03-06 19:39:08 +01:00
scripts root: fix generate_config script not setting debug (#5465) 2023-05-03 23:52:59 +03:00
tests providers/ldap: rework Schema and DSE (#5838) 2023-06-08 15:16:40 +02:00
web security: cure53 fix (#6039) 2023-06-22 22:25:04 +02:00
website security: cure53 fix (#6039) 2023-06-22 22:25:04 +02:00
.bumpversion.cfg release: 2023.5.3 2023-06-01 19:35:13 +02:00
.dockerignore enterprise: initial license (#5293) 2023-04-19 16:13:45 +02:00
.editorconfig website: codespell with custom dictionary and CI (#5062) 2023-03-24 00:24:55 +01:00
.gitignore sources/ldap: include UnwillingToPerformError as possible exception (#6031) 2023-06-21 19:45:20 +03:00
CODEOWNERS root: Test codeowners (#5586) 2023-05-11 20:26:04 +02:00
CODE_OF_CONDUCT.md root: rework and expand security policy 2022-11-28 12:10:53 +01:00
CONTRIBUTING.md website/developer-docs: move contributing to dev docs index and link contributing file (#5554) 2023-05-09 20:26:55 +02:00
Dockerfile core: bump python from 3.11.3-slim-bullseye to 3.11.4-slim-bullseye (#5891) 2023-06-08 11:00:05 +02:00
LICENSE enterprise: initial license (#5293) 2023-04-19 16:13:45 +02:00
Makefile sources/ldap: add support for cert based auth (#5850) 2023-06-12 15:41:44 +02:00
README.md web: Add storybook (#5865) 2023-06-07 13:05:33 +02:00
SECURITY.md web: Add storybook (#5865) 2023-06-07 13:05:33 +02:00
docker-compose.yml Merge branch 'version-2023.5' 2023-06-01 21:00:13 +02:00
go.mod core: bump goauthentik.io/api/v3 from 3.2023053.6 to 3.2023053.7 (#6037) 2023-06-22 11:34:03 +02:00
go.sum core: bump goauthentik.io/api/v3 from 3.2023053.6 to 3.2023053.7 (#6037) 2023-06-22 11:34:03 +02:00
ldap.Dockerfile core: bump golang from 1.20.4-bullseye to 1.20.5-bullseye (#5882) 2023-06-07 10:47:02 +02:00
manage.py root: update deprecation warnings 2022-11-25 11:47:28 +01:00
poetry.lock core: Bump ruff from 0.0.272 to 0.0.274 (#6028) 2023-06-21 10:38:47 +02:00
proxy.Dockerfile core: bump golang from 1.20.4-bullseye to 1.20.5-bullseye (#5882) 2023-06-07 10:47:02 +02:00
pyproject.toml release: 2023.5.3 2023-06-01 19:35:13 +02:00
radius.Dockerfile core: bump golang from 1.20.4-bullseye to 1.20.5-bullseye (#5882) 2023-06-07 10:47:02 +02:00
schema.yml security: cure53 fix (#6039) 2023-06-22 22:25:04 +02:00

README.md

authentik logo

Join Discord GitHub Workflow Status GitHub Workflow Status GitHub Workflow Status Code Coverage Docker pulls Latest version

What is authentik?

authentik is an open-source Identity Provider that emphasizes flexibility and versatility. It can be seamlessly integrated into existing environments to support new protocols. authentik is also a great solution for implementing sign-up, recovery, and other similar features in your application, saving you the hassle of dealing with them.

Installation

For small/test setups it is recommended to use Docker Compose; refer to the documentation.

For bigger setups, there is a Helm Chart here. This is documented here.

Screenshots

Light Dark

Development

See Developer Documentation

Security

See SECURITY.md

Adoption and Contributions

Your organization uses authentik? We'd love to add your logo to the readme and our website! Email us @ hello@goauthentik.io or open a GitHub Issue/PR! For more information on how to contribute to authentik, please refer to our CONTRIBUTING.md file.

Sponsors

This project is proudly sponsored by:

DigitalOcean provides development and testing resources for authentik.