ccebe355aa
security: fix CVE-2024-37905 (cherry-pick #10230 ) ( #10237 )
...
Co-authored-by: Jens L <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
fix CVE-2024-37905 (#10230 )
2024-06-26 10:25:29 +00:00
49fe670932
security: fix CVE-2024-38371 (cherry-pick #10229 ) ( #10234 )
...
Co-authored-by: Jens L <jens@goauthentik.io >
fix CVE-2024-38371 (#10229 )
2024-06-26 09:41:38 +00:00
234f06a362
website/docs: Remove hyphen in read replica in Release Notes (cherry-pick #10178 ) ( #10188 )
...
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Tana M Berry <tana@goauthentik.com >
2024-06-20 08:01:37 +00:00
43fd3eecda
website/docs: update 2024.6 release notes with latest changes (cherry-pick #10174 ) ( #10175 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-19 16:16:08 +00:00
631b120e4f
website/docs: 2024.6 release notes: add note about group names (cherry-pick #10170 ) ( #10171 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-06-19 15:42:39 +00:00
7b7a7e3073
website/docs: update 2024.6 release notes with latest changes (cherry-pick #10167 ) ( #10168 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-19 13:20:28 +00:00
f89a4fc276
website/docs: update 2024.6 release notes with latest changes (cherry-pick #10109 ) ( #10115 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-14 18:33:26 +02:00
0c604ceba4
website/docs: release notes for 2024.6 ( #9812 )
...
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-06-14 15:38:21 +02:00
f8bfd12e31
docs/troubleshooting: upgrade docker: erroneous command ( #10044 )
2024-06-10 11:06:41 +02:00
6cf418a37e
stages/captcha: rework ( #9959 )
...
* stages/captcha: rework
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update form with continue option
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update docs, add notes for scores
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* also only raise error from success if needed
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* return full data
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-04 18:25:38 +09:00
254761e930
website/docs: fixed broken links to helm repo ( #9960 )
...
fixed broken links to helm repo
the links to the helm repos were broken, the changes in b93bc6bb8e42386206+kefoster951@users.noreply.github.com >
2024-06-04 18:04:15 +09:00
f388cac07c
website/docs: next release notes: add upgrade instructions for postgres to 16 ( #9727 )
...
* init
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* start
* db pass upd
* more
* oops
* simplify setting up v16 service
* cut off pg
* finish
* release breaking changes
* 2024.next
* i need to be less distracted
* rework upgrade instructions
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* ci: remove postgres 12 tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* spelling
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* try?
* fix release notes
* iirc theres a danger thing
* typo
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* suggestion
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
* Update website/docs/troubleshooting/postgres/upgrade_docker.md
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* prettier
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add to sidebar
Signed-off-by: 4d62 <ext@4d62.me >
* 🙊
Signed-off-by: 4d62 <ext@4d62.me >
* make website
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: 4d62 <ext@4d62.me >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-05-29 15:31:21 +02:00
211cdb3a21
website/docs: add docs for configuring Facebook as a source ( #9884 )
...
* FB draft
* tweak
* more tweaks
* formatting
* more formatting
* marc edit
---------
Co-authored-by: Tana M Berry <tana@goauthentik.com >
2024-05-28 09:41:26 -05:00
2cff3d15e7
website/docs: improve read replica docs ( #9828 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-24 18:26:41 +02:00
73cbdb77ed
root: docker-compose: remove version top level element ( #9631 )
...
.
2024-05-22 11:24:16 +02:00
0ed4bba5a5
website/integrations: discord: fix typo ( #9800 )
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-05-22 01:51:24 +02:00
a5467c6e19
root: add primary-replica db router ( #9479 )
...
* root: add primary-replica db router
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* copy all settings for database replicas
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* refresh read replicas config, switch to using a dict instead of a list for easier refresh
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add test for get_keys
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix getting override
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* nosec
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* small fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix replica settings
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* generate config: add a dummy read replica
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add doc
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add healthchecks for replicas
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add note about hot reloading
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-05-21 20:15:49 +02:00
09832355e3
website/integrations: add three more policy-expressions to discord-docs ( #5760 )
...
* - Add two policy-examples for syncing discord roles to authentik groups during enrollment or authentication
- Add policy to store oauth-info and create an authentik-avatar-attribute during enrollment or authentication
* Fix issues and lint
- Fixed issue with wrong return during provider-check
- Lint using black
Signed-off-by: Keyinator <k3yinator@gmail.com >
* Fix capitalization and punctuation
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Keyinator <k3yinator@gmail.com >
* Fix documentation link and add explanation to MAPPED_ROLES attribute
---------
Signed-off-by: Keyinator <k3yinator@gmail.com >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-05-21 13:10:16 -05:00
a3634ab21d
website/docs: new PR for the Entra provider docs (ignore old one) ( #9741 )
...
* new PR
* ken edits
* tweaks
---------
Co-authored-by: Tana M Berry <tana@goauthentik.com >
2024-05-16 17:00:03 -05:00
9dc813d9ab
website/docs: update traefik to latest version in proxy provider ( #9707 )
2024-05-13 20:00:37 +00:00
5d54f696d4
website/docs: add docs about Google Workspace ( #9669 )
...
* stub files
* tweaks
* add to sidebar
* tweaks
* steps to set up gws
* first drafts
* link
* unsaved
* formatting
* typos
* add Ent badge
* backchannel and otehr edits
* tweaks
* tweaks
* rewrite stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* em one word
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Tana M Berry <tana@goauthentik.com >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-05-13 20:33:06 +02:00
09cacbd76b
website/docs: add hardening advice and link directly to Cure53 results ( #9670 )
...
docs: add hardening advice and link directly to Cure53 results
Signed-off-by: Fletcher Heisler <fheisler@users.noreply.github.com >
2024-05-10 09:07:19 -04:00
85594a119c
website/docs: add new doc about extra steps for hardening authentik ( #9649 )
...
* add to sidebar
* tweaks
* tweaks
* add derek edit
* ken edit
* Update website/docs/security/security-hardening.md
Co-authored-by: Jens L. <jens@goauthentik.io >
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com >
* tweaks
---------
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Tana M Berry <tana@goauthentik.com >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-05-09 10:02:51 -05:00
bb1b8ab7bb
website/docs: refine intro page for sources ( #9625 )
2024-05-07 18:59:25 +02:00
619113e810
website/docs: prepare 2024.4.2 release notes ( #9555 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-05-07 16:22:24 +02:00
d8b1cd757e
website/docs: move Sources from Integrations into Docs ( #9515 )
...
* moved Sources form Integrations to Docs
* files moved
* fixed setting options
* fixed broken links and added redirects
* try single-sourcing Sources docs
* tweaks
* fighting links
* still fighting links
* fightng sidebar
* fighting with sidebar
* add logos and tweak
* image tweaks
* Optimised images with calibre/image-actions
* added remaining UI definitions
* kens edits
---------
Co-authored-by: Tana M Berry <tana@goauthentik.com >
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2024-05-06 17:49:17 -05:00
b1b9c8e0e5
website/docs: add procedurals to flow inspector docs ( #9556 )
...
* clarify access process
* add image
* link to permissions and explain query parm
* typos
* changed image
* edits
---------
Co-authored-by: Tana M Berry <tana@goauthentik.com >
2024-05-06 14:59:01 -05:00
d8fd1ddec6
website/docs: add instructions for deploying radius manually with docker compose ( #9605 )
2024-05-06 15:38:48 +02:00
0a312821ee
website/docs: fix api browser references ( #9577 )
...
* website/docs: fix api browser references
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* don't attempt to correct generated docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-06 12:30:43 +02:00
8790f7059a
website/docs: switch API browser renderer to PAN ( #9570 )
...
* website/docs: switch API browser renderer to PAN
https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* hey we can actually directly link to API endpoints now
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set as sub category
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* revert sidebars back to JS for tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-04 23:49:33 +02:00
49cf10e9bd
website/docs: fix openssl rand commands ( #9554 )
...
* website/docs: fix openssl rand commands
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Update website/integrations/sources/freeipa/index.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Jens L. <jens@beryju.org >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-05-03 14:24:04 +02:00
dde9960b9c
website/docs: update release notes for 2024.4.1 again ( #9471 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-26 17:38:42 +02:00
6c4a1850b0
website/docs: prepare 2024.4.1 ( #9459 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-26 14:38:35 +02:00
895ed6fbdc
website/docs: finalize 2024.4 release notes ( #9396 )
...
* website/docs: finalize 2024.4 release notes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* escape curly braces manually
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-24 17:40:35 +02:00
1fca246839
website/docs: release notes 2024.4: add performance improvements values ( #9356 )
2024-04-19 16:36:47 +00:00
53f8699deb
website/docs: 2024.4 release notes ( #9267 )
...
* website/docs: 2024.4 release notes WIP
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix .next
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add python api client
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix consistency
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* expand scim docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add release notes to sidebar
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update release notes and add disclaimer
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add disclaimer to template
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add list of API Clients to developer docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add performance improvements
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix build
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-19 15:32:48 +02:00
64d4a19ccf
root: expose session storage configuration ( #9337 )
...
* root: expose session storage configuration
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-18 20:53:27 +02:00
a742331484
root: make redis settings more consistent ( #9335 )
...
* make redis settings more consistent
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add support to go
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rewrite url
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix redis connect in wait_for_db
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* censor password when logging error
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add redis url generation helper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-18 16:49:41 +02:00
cb9b3407d8
website/docs: fix SECRET_KEY length ( #9328 )
...
Django complains about 36-character keys. See security.W009 on
https://docs.djangoproject.com/en/5.0/ref/checks/ .
2024-04-18 12:20:30 +02:00
d7b872c1e0
website/docs: fix email template formatting ( #9330 )
...
fix formating issue
Fixes:
django.template.exceptions.TemplateSyntaxError: 'blocktrans' doesn't allow other block tags (seen "trans 'You recently requested to change your password for you authentik account. Use the button below to set a new password.'") inside it
Signed-off-by: Zapfmeister <zapfmeister@gmail.com >
2024-04-18 12:20:17 +02:00
f409831921
website/docs: 2024.2.3 release notes ( #9313 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-17 13:17:49 +02:00
2df0c95806
website/docs: fix formatting for stage changes ( #9314 )
...
fix formatting for stages
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-17 13:12:53 +02:00
a71a87fa3e
website/docs: system settings: add default token duration and length ( #9306 )
2024-04-16 23:16:58 +00:00
48d1b289a3
website/docs: cleanup more ( #9249 )
...
simplify DocCardList
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-15 14:58:27 +02:00
4a9c95b44e
core: delegated group member management ( #9254 )
...
* fix API permissions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix group member remove notification label
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* consistent naming assign vs grant
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only set table search query when searching is enabled
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix hidden object permissions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* replace checkmark/cross with fa icons
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update website
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests and fix permission bug
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix migrations
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-15 14:14:26 +02:00
bc9984f516
web/admin: rework captcha stage ( #9256 )
...
* web/admin: rework captcha stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* idk man selenium is an enigma to me
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-15 12:38:01 +02:00
6df28758f0
website/docs: ensure yaml code blocks have language tags ( #9240 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-12 16:51:50 +02:00
c379787a90
website/docs: add websocket support to nginx snippets ( #9220 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-12 02:02:41 +02:00
c89b7b74e0
website/docs: add more info and links about enforciing unique email addresses ( #9154 )
...
* edits and new link
* tweaked wording about default flow
* Ken edit
* Update website/docs/flow/index.md
Co-authored-by: Jens L. <jens@goauthentik.io >
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com >
---------
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Tana M Berry <tana@goauthentik.com >
Co-authored-by: Jens L. <jens@goauthentik.io >
2024-04-11 06:49:34 -05:00
fd44bc2bec
stages/authenticator_validate: add ability to limit webauthn device types ( #9180 )
...
* stages/authenticator_validate: add ability to limit webauthn device types
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* require enterprise attestation when a device restriction is configured as we need the aaguid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve error message
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add more tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-11 13:10:05 +02:00
