|
|
9b2ceb0d44
|
outposts/proxy: make logged user more consistent, set FlushInterval
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 23:58:15 +01:00 |
|
|
|
2deb185550
|
internal: fix empty scheme field
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 23:27:34 +01:00 |
|
|
|
69d4719687
|
outposts/proxy: set http code when no redirect header is set
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 22:20:52 +01:00 |
|
|
|
d31e566873
|
outposts/proxy: add header to prevent redirects
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 22:18:25 +01:00 |
|
|
|
0ddcefce80
|
outposts/proxy: cache basic and bearer credentials for one minute
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 22:12:48 +01:00 |
|
|
|
4c45d35507
|
outposts/proxy: fix error handling, remove requirement for profile/etc scopes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 21:44:28 +01:00 |
|
|
|
829e49275d
|
outposts/proxy: fix proxy's TokenIntrospection potentially not being set
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-14 20:54:34 +01:00 |
|
|
|
cd12e177ea
|
providers/proxy: add initial header token auth (#4421)
* initial implementation
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* check for openid/profile claims
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* include jwks sources in proxy provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add web ui for jwks
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* only show sources with JWKS data configured
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix introspection tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start basic
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add basic auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add docs, update admonitions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add client_id to api, add tab for auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update locale
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-13 16:22:03 +01:00 |
|
|
|
a42f2f7217
|
internal: fix linting error
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-09 17:17:27 +01:00 |
|
|
|
a1be924fa4
|
*: strip leading and trailing whitespace when reading config values from files
also add a debug endpoint that dumps the go parsed config
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-09 15:29:22 +01:00 |
|
|
|
98876df5c5
|
internal: improve error handling
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-08 20:35:25 +01:00 |
|
|
|
a9680d6088
|
internal: fix race condition with config loading on startup, add index on debug server
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-08 20:33:04 +01:00 |
|
|
|
7eb6320d74
|
outposts: use common config loader for outposts to support loading values from file
closes #4383
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-08 14:19:16 +01:00 |
|
|
|
001869641d
|
web: ensure img tags have alt attributes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-06 12:44:51 +01:00 |
|
|
|
2604dc14fe
|
providers/ldap: add code-MFA support for ldap provider (#4354)
* add code support for ldap provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* only try to extract code when auth validator stage is encountered
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use parseint instead
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-05 18:32:06 +01:00 |
|
|
|
06f67c738c
|
internal: check certificate value and not IsSet
closes #4369
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-05 18:30:11 +01:00 |
|
|
|
ac07833688
|
release: 2022.12.2
|
2023-01-05 10:01:30 +01:00 |
|
|
|
2c42c87689
|
release: 2022.12.1
|
2022-12-30 13:43:42 +01:00 |
|
|
|
39424839c5
|
outposts/ldap: only use common cert if cert is configured, correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-28 22:50:50 +01:00 |
|
|
|
2d03bd5c89
|
outposts/ldap: only use common cert if cert is configured
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-28 21:29:36 +01:00 |
|
|
|
ff13b4bb46
|
outposts/ldap: use configured certificate for LDAPS when all providers' certificates are identical
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-28 19:15:29 +01:00 |
|
|
|
2b2323fae7
|
outposts: include hostname in outpost heartbeat
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-28 16:07:52 +01:00 |
|
|
|
24eb4ed963
|
release: 2022.12.0
|
2022-12-28 13:00:49 +01:00 |
|
|
|
1b86a3d5d6
|
Merge branch 'version-2022.11'
|
2022-12-23 14:39:52 +01:00 |
|
|
|
9dc0bb2a77
|
release: 2022.11.4
|
2022-12-23 14:17:48 +01:00 |
|
|
|
bacf2afed1
|
internal: remove sentry proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-19 17:52:07 +01:00 |
|
|
|
b3da1d223c
|
providers/proxy: correctly set id_token_hint if possible
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-12 19:02:37 +00:00 |
|
|
|
107f2745c8
|
providers/ldap: improve mapping of LDAP filters to authentik queries
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-12 18:30:52 +00:00 |
|
|
|
8d169a8bd9
|
Merge branch 'version-2022.11'
|
2022-12-12 17:05:39 +00:00 |
|
|
|
b6b72e389d
|
internal: dont error if environment config isn't found
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-12 10:38:38 +00:00 |
|
|
|
c21c1757de
|
core: bump github.com/getsentry/sentry-go from 0.15.0 to 0.16.0 (#4179)
* core: bump github.com/getsentry/sentry-go from 0.15.0 to 0.16.0
Bumps [github.com/getsentry/sentry-go](https://github.com/getsentry/sentry-go) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/getsentry/sentry-go/releases)
- [Changelog](https://github.com/getsentry/sentry-go/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getsentry/sentry-go/compare/v0.15.0...v0.16.0)
---
updated-dependencies:
- dependency-name: github.com/getsentry/sentry-go
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* update custom tracer
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-09 12:20:41 +01:00 |
|
|
|
44bf9a890e
|
release: 2022.11.3
|
2022-12-02 23:00:59 +02:00 |
|
|
|
58cd6007b2
|
Merge branch 'version-2022.11'
|
2022-12-02 18:12:38 +02:00 |
|
|
|
2a4daa5360
|
release: 2022.11.2
|
2022-12-01 10:41:29 +02:00 |
|
|
|
be9790ef8a
|
internal: reuse http transport to prevent leaking connections (#3996)
* Fix: Using the same http transport as the api
* fix: Using global tlsTransport instead of newly created one
|
2022-11-25 18:24:01 +01:00 |
|
|
|
3a13d19695
|
release: 2022.11.1
|
2022-11-22 21:42:10 +01:00 |
|
|
|
20c1770ec4
|
release: 2022.11.0
|
2022-11-21 20:12:02 +01:00 |
|
|
|
276af8457d
|
root: make sentry DSN configurable (#4016)
* make sentry DSN configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* make proxy smarter
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix typo in config struct
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-11-15 16:05:29 +01:00 |
|
|
|
55aa1897af
|
root: use single redis db (#4009)
* use single redis db
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup prefixes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* ensure __str__ always returns string
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix remaining old prefixes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add release notes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-11-15 14:31:29 +01:00 |
|
|
|
f3a72761c0
|
release: 2022.10.1
|
2022-10-29 17:24:55 +02:00 |
|
|
|
89dc46a7ff
|
release: 2022.10.0
|
2022-10-21 19:42:38 +02:00 |
|
|
|
d53733b6fc
|
outposts/proxy: reduce possibility for redirect loops, keep single state (#3831)
use single state, redirect when start url is hit with active session
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-20 21:27:34 +02:00 |
|
|
|
56181a45a1
|
internal: limit body size
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-17 18:52:16 +02:00 |
|
|
|
b864de7721
|
outposts/ldap: increase compatibility with different types in user and group attributes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-16 22:32:18 +02:00 |
|
|
|
26adf3f774
|
cmd: always stop gunicorn before exiting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-15 11:54:11 +02:00 |
|
|
|
44e4f2e561
|
crypto: make certificate parsing optional for crypto api (#3711)
|
2022-10-01 00:06:00 +02:00 |
|
|
|
50819ae0f0
|
*: improve error handling in ldap outpost, ignore additional errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-09-23 22:11:47 +02:00 |
|
|
|
2cfba36cb7
|
release: 2022.9.0
|
2022-09-23 12:33:01 +02:00 |
|
|
|
49b6aabb02
|
outposts/proxy: fix redirect path when external host is a subdirectory (#3628)
fix redirect path when external host is a subdirectory
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-09-22 10:10:29 +02:00 |
|
|
|
47daaf969a
|
outposts: fix oauth state when using signature routing (#3616)
* fix oauth state when using signature routing
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* more retires
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-09-19 21:38:34 +02:00 |
|
