|
|
85640d402f
|
internal: fix race conditions when accessing settings before bootstrap
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-08-06 00:24:55 +02:00 |
|
|
|
2ce8e18bab
|
internal: centralise config for listeners to use same config system everywhere (#3367)
* centralise config for listeners to use same config system everywhere
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#3360
* add docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-08-03 21:33:27 +02:00 |
|
|
|
fcf4657833
|
providers/proxy: add is_superuser to ak_proxy object, only show full error when superuser
closes #3314
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-30 20:29:23 +02:00 |
|
|
|
393d7ec486
|
providers/proxy: no exposed urls (#3151)
* test any callback
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* dont detect callback in per-server handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use full redirect uri with both path and query param
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* update tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* correctly route to embedded outpost for callback signature
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix allowed redirects
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-30 17:51:01 +02:00 |
|
|
|
b41acebf5b
|
providers/proxy: add caddy endpoint (#3330)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-29 10:58:53 +02:00 |
|
|
|
55739ee982
|
internal: add additional error handling in config loader
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-26 11:48:57 +02:00 |
|
|
|
10b48b27b0
|
internal: walk config in go, check, parse and load from scheme like in python
closes #2719
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-26 11:33:37 +02:00 |
|
|
|
dae6493a3e
|
release: 2022.7.3
|
2022-07-20 09:37:43 +02:00 |
|
|
|
8e19fb3a8c
|
release: 2022.7.2
|
2022-07-06 20:31:48 +02:00 |
|
|
|
41eb44137e
|
internal: remove pkg/errors
|
2022-07-05 20:26:33 +00:00 |
|
|
|
f316a3000b
|
release: 2022.7.1
|
2022-07-04 21:10:20 +02:00 |
|
|
|
eb633c607e
|
internal: fix nil pointer reference
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-01 17:02:53 +02:00 |
|
|
|
ece0429ea8
|
internal: failback with self-signed cert if cert for tenant fails to load
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-20 21:26:34 +02:00 |
|
|
|
b6267fdf28
|
*: add versioned user agent to sentry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-20 11:54:10 +02:00 |
|
|
|
9201fc1834
|
release: 2022.6.3
|
2022-06-19 22:01:06 +02:00 |
|
|
|
8faa909c32
|
internal: fix routing to embedded outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-19 21:37:03 +02:00 |
|
|
|
49142fa80b
|
internal: dont sample gunicorn proxied requests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-19 21:36:57 +02:00 |
|
|
|
2a6fccd22a
|
providers/proxy: only send misconfiguration event once
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-19 21:36:50 +02:00 |
|
|
|
59b899ddff
|
internal: skip tracing for go healthcheck and metrics endpoints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-19 21:35:48 +02:00 |
|
|
|
ff2baf502b
|
release: 2022.6.2
|
2022-06-07 21:36:18 +02:00 |
|
|
|
8d3275817b
|
providers/ldap: fix existing binder not being carried forward correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-05 18:51:01 +02:00 |
|
|
|
e30103aa9f
|
providers/proxy: use same redirect-save code for all modes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-04 23:25:47 +02:00 |
|
|
|
67d54c5209
|
release: 2022.6.1
|
2022-06-04 21:23:33 +02:00 |
|
|
|
bb244b8338
|
providers/ldap: fix session cache being lost on provider refresh
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-04 18:03:00 +02:00 |
|
|
|
8447e9b9c2
|
providers/proxy: envoy v2 (#3029)
* add path prefix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use prefix correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* only set redirect if session doesn't have a redirect yet
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-03 10:32:52 +02:00 |
|
|
|
f9a419107a
|
outposts/proxyv2: add basic envoy support (#3026)
* outposts/proxyv2: add basic envoy support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* don't crash when backend is not available
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add envoy tests and docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-03 00:06:09 +02:00 |
|
|
|
8f0572d11e
|
outposts/ldap: add correct group objectClass (#3023)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2861
|
2022-06-02 18:48:07 +02:00 |
|
|
|
eba339ba27
|
core: improve loading speed of flow background
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-02 14:20:23 +02:00 |
|
|
|
3eb466ff4b
|
lifecycle: cleanup prometheus (#2972)
* remove high cardinality labels
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* retry worker number for prometheus multiprocess id
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* revert to pid, use subdirectories
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup more
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use worker id based off of https://github.com/benoitc/gunicorn/issues/1352
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix missing app label
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: remove static names
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-29 21:45:25 +02:00 |
|
|
|
1883402b3d
|
release: 2022.5.3
|
2022-05-28 12:04:26 +02:00 |
|
|
|
88a8b7d2fa
|
outposts/ldap: fix type assertion after upgrading to new API Client
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-27 21:43:58 +02:00 |
|
|
|
d7713357f4
|
api: migrate to openapi generator v6 (#2968)
* migrate to openapi generator v6
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* bump api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# go.mod
# go.sum
|
2022-05-26 22:17:57 +02:00 |
|
|
|
3d4a45c93f
|
release: 2022.5.2
|
2022-05-21 17:17:21 +02:00 |
|
|
|
646d174dd2
|
internal: revert cookie path on proxy causing redirect loops
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-21 16:26:12 +02:00 |
|
|
|
5c91658484
|
internal: fix nil pointer dereference in ldap outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-21 15:48:50 +02:00 |
|
|
|
ebb44c992b
|
Revert "internal: set SameSite for outpost"
This reverts commit 7e95c756b9.
|
2022-05-21 14:08:40 +02:00 |
|
|
|
7e95c756b9
|
internal: set SameSite for outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-21 13:21:45 +02:00 |
|
|
|
be26b92927
|
internal: cleanup outpost logs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-21 13:18:06 +02:00 |
|
|
|
6f56a61a64
|
website/docs: add docs for advanced SSH config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2916
|
2022-05-21 13:06:54 +02:00 |
|
|
|
220d21c3e0
|
release: 2022.5.1
|
2022-05-20 19:34:45 +02:00 |
|
|
|
a52638d898
|
internal: fix typo in session name constant
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-20 10:10:29 +02:00 |
|
|
|
421b003218
|
internal: set path on cookie for proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2305
|
2022-05-11 10:08:38 +02:00 |
|
|
|
25a4310bb1
|
internal: use Expires not MaxAge for LDAP session
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-11 10:04:32 +02:00 |
|
|
|
4d755dc0f6
|
build(deps): bump goauthentik.io/api/v3 from 3.2022041.4 to 3.2022041.5 (#2843)
* build(deps): bump goauthentik.io/api/v3 from 3.2022041.4 to 3.2022041.5
Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2022041.4 to 3.2022041.5.
- [Release notes](https://github.com/goauthentik/client-go/releases)
- [Commits](https://github.com/goauthentik/client-go/compare/v3.2022041.4...v3.2022041.5)
---
updated-dependencies:
- dependency-name: goauthentik.io/api/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* fix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-10 20:33:19 +02:00 |
|
|
|
9e1a518689
|
internal: add signal handler for SIGTERM
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-08 23:05:47 +02:00 |
|
|
|
ab2299ba1e
|
outposts/ldap: cached bind (#2824)
* initial cached ldap bind support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* clean up api generation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use gh action for golangci-lint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-08 16:48:53 +02:00 |
|
|
|
84930b4924
|
Revert "internal: fix high cpu when backend isnt healthy"
This reverts commit eb6cfd22a7.
Revert "root: handle JSON error in metrics too"
This reverts commit 1ede972222.
Revert "root: don't force multiprocess prometheus registry"
This reverts commit cd1d1b4402.
Revert "root: add error handling for prometheus view"
This reverts commit c0a883f76f.
|
2022-04-29 18:13:26 +02:00 |
|
|
|
eb6cfd22a7
|
internal: fix high cpu when backend isnt healthy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-29 10:03:40 +02:00 |
|
|
|
9b9c0fe663
|
release: 2022.4.1
|
2022-04-12 22:07:34 +02:00 |
|
|
|
9b6e47e6b8
|
outposts/ldap: fix panic in type conversion when value is nil
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-11 15:52:58 +02:00 |
|
