authentik fork
This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
Find a file
gcp-cherry-pick-bot[bot] d9aab79c62
providers/oauth2: fix CVE-2024-21637 (cherry-pick #8104) (#8106)
* providers/oauth2: fix CVE-2024-21637 (#8104)

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update changelog

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens L <jens@goauthentik.io>
2024-01-09 18:43:56 +01:00
.github ci: fix permissions for release pipeline to publish binaries (cherry-pick #7512) (#7621) 2023-11-21 19:51:11 +01:00
.vscode root: migrate bootstrap to blueprints (#6433) 2023-07-31 19:34:46 +02:00
authentik providers/oauth2: fix CVE-2024-21637 (cherry-pick #8104) (#8106) 2024-01-09 18:43:56 +01:00
blueprints security: fix oobe-flow reuse when akadmin is deleted (#7361) 2023-10-28 21:26:53 +02:00
cmd cmd: use live endpoint instead of ready for inbuild healthcheck 2023-05-08 22:04:18 +02:00
internal release: 2023.8.5 2023-11-21 19:51:16 +01:00
lifecycle core: bump django from 4.1.7 to 4.2 (#5238) 2023-08-01 19:30:28 +02:00
locale core: compile backend translations (#6739) 2023-09-06 13:59:23 +02:00
schemas providers: SCIM (#4835) 2023-03-06 19:39:08 +01:00
scripts providers/oauth2: fix id_token being saved incorrectly leading to lost claims (#6645) 2023-08-28 00:51:48 +02:00
tests outposts: support json patch for Kubernetes (#6319) 2023-07-22 02:29:28 +02:00
web release: 2023.8.5 2023-11-21 19:51:16 +01:00
website providers/oauth2: fix CVE-2024-21637 (cherry-pick #8104) (#8106) 2024-01-09 18:43:56 +01:00
.bumpversion.cfg release: 2023.8.5 2023-11-21 19:51:16 +01:00
.dockerignore blueprints: fix tag values not resolved correctly (#6653) 2023-08-28 18:27:44 +02:00
.editorconfig website: codespell with custom dictionary and CI (#5062) 2023-03-24 00:24:55 +01:00
.gitignore root: add generated Source docs (#5323) 2023-07-31 11:59:20 +02:00
CODE_OF_CONDUCT.md root: rework and expand security policy 2022-11-28 12:10:53 +01:00
CODEOWNERS root: Test codeowners (#5586) 2023-05-11 20:26:04 +02:00
CONTRIBUTING.md website/developer-docs: move contributing to dev docs index and link contributing file (#5554) 2023-05-09 20:26:55 +02:00
docker-compose.yml release: 2023.8.5 2023-11-21 19:51:16 +01:00
Dockerfile root: lock node to 20.5 (#6776) 2023-09-06 14:01:05 +02:00
go.mod core: bump goauthentik.io/api/v3 from 3.2023081.2 to 3.2023081.3 (#6723) 2023-09-01 11:26:44 +02:00
go.sum core: bump goauthentik.io/api/v3 from 3.2023081.2 to 3.2023081.3 (#6723) 2023-09-01 11:26:44 +02:00
ldap.Dockerfile root: upgrade debian base images to debian 12 2023-08-24 14:32:19 +02:00
LICENSE enterprise: initial license (#5293) 2023-04-19 16:13:45 +02:00
Makefile web/admin: fix ak-toggle-group for policy and blueprint uses (#6687) 2023-08-30 12:46:58 +02:00
manage.py root: update deprecation warnings 2022-11-25 11:47:28 +01:00
poetry.lock core: bump django from 4.2.4 to 4.2.5 (#6751) 2023-09-06 13:59:54 +02:00
proxy.Dockerfile root: lock node to 20.5 (#6776) 2023-09-06 14:01:05 +02:00
pyproject.toml release: 2023.8.5 2023-11-21 19:51:16 +01:00
radius.Dockerfile root: upgrade debian base images to debian 12 2023-08-24 14:32:19 +02:00
README.md web: Add storybook (#5865) 2023-06-07 13:05:33 +02:00
schema.yml release: 2023.8.5 2023-11-21 19:51:16 +01:00
SECURITY.md website: update 2023.8 release notes (#6666) 2023-08-29 19:57:14 +02:00

authentik logo


Join Discord GitHub Workflow Status GitHub Workflow Status GitHub Workflow Status Code Coverage Docker pulls Latest version

What is authentik?

authentik is an open-source Identity Provider that emphasizes flexibility and versatility. It can be seamlessly integrated into existing environments to support new protocols. authentik is also a great solution for implementing sign-up, recovery, and other similar features in your application, saving you the hassle of dealing with them.

Installation

For small/test setups it is recommended to use Docker Compose; refer to the documentation.

For bigger setups, there is a Helm Chart here. This is documented here.

Screenshots

Light Dark

Development

See Developer Documentation

Security

See SECURITY.md

Adoption and Contributions

Your organization uses authentik? We'd love to add your logo to the readme and our website! Email us @ hello@goauthentik.io or open a GitHub Issue/PR! For more information on how to contribute to authentik, please refer to our CONTRIBUTING.md file.

Sponsors

This project is proudly sponsored by:

DigitalOcean provides development and testing resources for authentik.