22e586bd8c
security: fix CVE-2024-47077 (cherry-pick #11535 ) ( #11538 )
...
security: fix CVE-2024-47077 (#11535 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-09-27 16:19:15 +02:00
8a0b31b922
release: 2024.6.4
2024-08-22 17:19:24 +02:00
359b343f51
security: fix CVE-2024-42490 (cherry-pick #11022 ) ( #11025 )
...
security: fix CVE-2024-42490 (#11022 )
CVE-2024-42490
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-08-22 17:18:58 +02:00
b727656b05
sources/ldap: Add enabled filter for ldap_password_validate signal (cherry-pick #10823 ) ( #10825 )
...
sources/ldap: Add enabled filter for ldap_password_validate signal (#10823 )
Co-authored-by: Allen <63997543+aaw3@users.noreply.github.com >
2024-08-08 14:23:44 +02:00
8f09c2c21c
web/admin: fix selectable card colour in dark theme (cherry-pick #10794 ) ( #10795 )
...
web/admin: fix selectable card colour in dark theme (#10794 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-08-06 13:46:43 +02:00
8f207c7504
release: 2024.6.3
2024-08-05 18:35:33 +02:00
34d30bb549
root: fix opencontainers ref ( #10776 )
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# poetry.lock
2024-08-05 16:30:54 +02:00
b4f04881e0
root: remove warnings ( #10774 )
...
* remove facebook sdk
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* switch to newer opencontainers fork
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# poetry.lock
2024-08-05 14:52:20 +02:00
5314485426
enterprise/rac: fix error when listing connection tokens as non-superuser (cherry-pick #10771 ) ( #10773 )
...
enterprise/rac: fix error when listing connection tokens as non-superuser (#10771 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-08-05 14:09:24 +02:00
ad6b6e4576
web: replace all occurences of the theme placeholder (cherry-pick #10749 ) ( #10750 )
...
web: replace all occurences of the theme placeholder (#10749 )
Replace all occurences of the theme placeholder
This allows the placeholder to occur multiple times in the theme url.
Signed-off-by: Chasethechicken <neuringe1234@gmail.com >
Co-authored-by: Chasethechicken <neuringe1234@gmail.com >
2024-08-05 11:57:32 +02:00
fb9aa9d7f7
sources/scim: fix duplicate service account users and changing token (cherry-pick #10735 ) ( #10737 )
...
sources/scim: fix duplicate service account users and changing token (#10735 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-08-02 14:12:23 +02:00
fe7662f80d
web: fix theme not applying to document correctly (cherry-pick #10721 ) ( #10722 )
...
web: fix theme not applying to document correctly (#10721 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-08-01 15:09:38 +02:00
d6904b6aa1
release: 2024.6.2
2024-07-31 16:54:24 +02:00
cd581efacd
tests/e2e: fix ldap tests following #10270 (cherry-pick #10288 ) ( #10703 )
...
tests/e2e: fix ldap tests following #10270 (#10288 )
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-07-31 16:01:32 +02:00
6c159d120b
outposts: ensure minimum refresh interval (cherry-pick #10701 ) ( #10702 )
...
outposts: ensure minimum refresh interval (#10701 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-31 14:59:14 +02:00
4ddd4e7f88
outposts: make refresh interval configurable (cherry-pick #10138 ) ( #10700 )
...
* outposts: make refresh interval configurable (#10138 )
* outposts: make refresh interval configurable
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* frontend
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* black again
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* switch to using config attribute
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* bump api
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-07-31 14:38:09 +02:00
441912414f
web/admin: show matching user reputation scores in user details (cherry-pick #10276 ) ( #10699 )
...
* web/admin: show matching user reputation scores in user details (#10276 )
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
* bump api
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-07-31 14:37:58 +02:00
9e177ed5c0
web: fix dark theme and theme switch ( #10667 )
...
* base locale off of ak-element
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* revert temp theme fixes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix theme switching
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add basic support for theme-different images
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* sort outposts in card
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set default theme based on pre-hydrated brand settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* activate global theme before root in shadow dom
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* when using _applyTheme, check media matcher
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# web/src/elements/Base.ts
# website/docs/core/brands.md
2024-07-29 20:26:44 +02:00
881548176f
events: associate login_failed events to a user if possible (cherry-pick #10270 ) ( #10676 )
...
* events: associate login_failed events to a user if possible (#10270 )
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-07-29 20:00:13 +02:00
56739d0dc4
web/flows: remove continue button from AutoSubmit stage (cherry-pick #10253 ) ( #10677 )
...
web/flows: remove continue button from AutoSubmit stage (#10253 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-29 19:32:29 +02:00
b23972e9c9
lifecycle: only create tenant media root if needed (cherry-pick #10616 ) ( #10617 )
...
lifecycle: only create tenant media root if needed (#10616 )
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-24 21:12:48 +02:00
0a9595089e
web/admin: fix missing SAML Provider ECDSA options (cherry-pick #10612 ) ( #10618 )
...
web/admin: fix missing SAML Provider ECDSA options (#10612 )
* web/admin: fix missing SAML Provider ECDSA options
* deduplicate
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-24 21:12:23 +02:00
72c22b5fab
core: remove html language tag for pages that are translated (cherry-pick #10611 ) ( #10613 )
...
core: remove html language tag for pages that are translated (#10611 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-24 19:42:48 +02:00
84cdbb0a03
events: fix race condition (cherry-pick #10602 ) ( #10609 )
...
events: fix race condition (#10602 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-24 16:53:03 +02:00
9fc659f121
stages/prompt: fix prompt not editable with invalid expression (cherry-pick #10603 ) ( #10604 )
...
stages/prompt: fix prompt not editable with invalid expression (#10603 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-24 14:36:33 +02:00
db6abf61b8
lib/sync: handle SkipObject in direct triggered tasks (cherry-pick #10590 ) ( #10591 )
...
lib/sync: handle SkipObject in direct triggered tasks (#10590 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-23 15:38:37 +02:00
6426a1d177
core: improve error handling on ASGI level (cherry-pick #10547 ) ( #10552 )
...
core: improve error handling on ASGI level (#10547 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-07-19 17:19:29 +02:00
9075270b01
release: 2024.6.1
2024-07-11 21:45:54 +02:00
d17a39a431
website/docs: add 2024.6.1 release notes (cherry-pick #10456 ) ( #10458 )
...
website/docs: add 2024.6.1 release notes (#10456 )
* website/docs: add 2024.6.1 release notes
* update
* fix version requirement for sfe
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-11 19:11:28 +02:00
db1d091d2e
core: revert backchannel only filtering (cherry-pick #10455 ) ( #10457 )
...
core: revert backchannel only filtering (#10455 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-11 16:58:29 +02:00
f98204e78e
core: fix source flow_manager not resuming flow when linking (cherry-pick #10436 ) ( #10438 )
...
core: fix source flow_manager not resuming flow when linking (#10436 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-10 15:20:15 +02:00
3f663cab0f
web/admin: fix access token list calling wrong API (cherry-pick #10434 ) ( #10435 )
...
web/admin: fix access token list calling wrong API (#10434 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-10 14:17:47 +02:00
3fe129e107
core: fix migrations missing using db_alias (cherry-pick #10409 ) ( #10410 )
...
core: fix migrations missing using db_alias (#10409 )
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-07-09 10:48:29 +02:00
f26d41aef9
web: bump API Client version ( #10389 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# web/package-lock.json
# web/package.json
2024-07-05 20:49:31 +02:00
5d8b5998ae
web/flows: Simplified flow executor ( #10296 )
...
* initial sfe
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* build sfe
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* downgrade bootstrap
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix path
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make IE compatible
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix query string missing
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add autosubmit stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add background image
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add code support
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add support for combo ident/password
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix logo rendering
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only use for edge 18 and before
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add webauthn support
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate to TS for some creature comforts
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix ci
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* dedupe dependabot
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use API client...kinda
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add more docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add more polyfills yay
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* turn powered by into span
prevent issues in restricted browsers where users might not be able to return
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* allow non-link footer entries
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tsc errors
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Jens L. <jens@beryju.org >
* auto switch for macos
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Update website/docs/flow/executors/if-flow.md
Signed-off-by: Jens L. <jens@beryju.org >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# .github/workflows/ci-web.yml
# Dockerfile
# website/developer-docs/api/flow-executor.md
2024-07-05 20:43:14 +02:00
7a5e136346
stages/authenticator_validate: fix friendly_name being required (cherry-pick #10382 ) ( #10385 )
...
stages/authenticator_validate: fix friendly_name being required (#10382 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-05 15:50:14 +02:00
bfbab6357a
sources/oauth: fix link not being saved (cherry-pick #10374 ) ( #10376 )
...
sources/oauth: fix link not being saved (#10374 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-04 16:58:38 +02:00
5997b93f15
sources/saml: fix pickle error, add saml auth tests (cherry-pick #10348 ) ( #10352 )
...
sources/saml: fix pickle error, add saml auth tests (#10348 )
* test with persistent nameid
* fix pickle
* user_write: dont attempt to write to read only property
* add test for enroll + auth
* unwrap lazy user
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-03 18:34:22 +02:00
6cdae09dc0
providers/saml: fix metadata import error handling (cherry-pick #10349 ) ( #10350 )
...
Co-authored-by: Jens L <jens@goauthentik.io >
fix metadata import error handling (#10349 )
2024-07-03 16:01:50 +00:00
ff0ef7a2b3
web: set noopener and noreferrer on all external links ( #10304 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-07-02 14:54:03 +02:00
3986104a20
provider/scim: Fix exception handling for missing ServiceProviderConfig (cherry-pick #10322 ) ( #10335 )
...
provider/scim: Fix exception handling for missing ServiceProviderConfig (#10322 )
Co-authored-by: Michael Poutre <m1kep.my.mail@gmail.com >
2024-07-02 13:53:27 +02:00
1aa60e7864
core: remove transitionary old JS urls (cherry-pick #10317 ) ( #10321 )
...
core: remove transitionary old JS urls (#10317 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-01 21:00:05 +02:00
045578dd07
web/flows: remove background image link (cherry-pick #10318 ) ( #10320 )
...
web/flows: remove background image link (#10318 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-07-01 20:28:30 +02:00
f23d70dc75
stages/user_login: fix ?next parameter not carried through broken session binding (cherry-pick #10301 ) ( #10302 )
...
stages/user_login: fix ?next parameter not carried through broken session binding (#10301 )
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-06-29 23:17:13 +02:00
496f3426d9
website/docs: update geoip and asn documentation following field changes (cherry-pick #10265 ) ( #10266 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-06-27 13:26:31 +00:00
17acc9457d
website/docs: update geoip and asn example to use the proper syntax (cherry-pick #10249 ) ( #10250 )
...
website/docs: update geoip and asn example to use the proper syntax (#10249 )
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-26 22:07:25 +09:00
2996f20b74
security: update supported versions (cherry-pick #10247 ) ( #10248 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-26 11:58:46 +00:00
dd86a90225
website/docs: remove RC disclaimer from 2024.6 release notes (cherry-pick #10245 ) ( #10246 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-26 11:39:59 +00:00
3b1034b9a2
website/docs: update 2024.6 release notes with latest changes (cherry-pick #10228 ) ( #10243 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-26 10:56:28 +00:00
ba87fd8714
release: 2024.6.0
2024-06-26 19:37:29 +09:00
