habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
15,908 Commits 205 Branches 395 Tags
dbf090b85e7b9589bca56986bb1d527d5de45e74
Commit Graph

15908 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tana M Berry
dbf090b85e fixed my own typo 2024-12-16 19:09:54 -06:00
Tana M Berry
46a3d4f07e tweak to bump 2024-12-16 19:09:01 -06:00
Tana M Berry
e465502e4b ran make website and tweaked wording 2024-12-16 18:56:18 -06:00
Miguel Palau
a9a81cf7e7 Update website/integrations/services/hoarder/index.md 
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-12-03 17:14:26 -06:00
Miguel Palau
357c58a82b Update website/integrations/services/hoarder/index.md 
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-12-03 17:14:01 -06:00
Miguel Palau
d1a01fef94 Update website/integrations/services/hoarder/index.md 
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-12-03 17:13:52 -06:00
Miguel Palau
258ac3284d Update index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 21:49:28 -06:00
Miguel Palau
8aa064f3cf Update index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 21:49:22 -06:00
Miguel Palau
ce984e6c80 Update index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 21:49:14 -06:00
Miguel Palau
215de6e4f0 Update index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 21:49:07 -06:00
Miguel Palau
64a3ef2557 Update index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 21:48:58 -06:00
Miguel Palau Zarza
9f0e9513c2 more detailed way of using an application 2024-11-24 16:37:04 -06:00
Miguel Palau Zarza
83a2ca0481 hoarder sorted alphabetically 2024-11-24 16:34:37 -06:00
Miguel Palau
756071cc0a Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:30:29 -06:00
Miguel Palau
99109f7c05 Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:30:19 -06:00
Miguel Palau
5bddfe1148 Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:30:01 -06:00
Miguel Palau
2ea574219f Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:29:53 -06:00
Miguel Palau
ba225da0b9 Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:29:45 -06:00
Miguel Palau
5a83cd916f Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:29:37 -06:00
Miguel Palau
2b27fca1ee Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:28:20 -06:00
Miguel Palau
f6908115d3 Update website/integrations/services/hoarder/index.md 
Co-authored-by: 4d62 <github-user@sdko.org>
Signed-off-by: Miguel Palau <mpalauzarza@gmail.com>
 2024-11-24 16:28:11 -06:00
Miguel Palau Zarza
b64e6f6e7f add Hoarder integration 2024-11-22 11:28:31 -06:00
dependabot[bot]
785403de18 core: bump goauthentik.io/api/v3 from 3.2024102.2 to 3.2024104.1 (#12149) 
Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024102.2 to 3.2024104.1.
- [Release notes](https://github.com/goauthentik/client-go/releases)
- [Changelog](https://github.com/goauthentik/client-go/blob/main/model_version_history.go)
- [Commits](https://github.com/goauthentik/client-go/compare/v3.2024102.2...v3.2024104.1)

---
updated-dependencies:
- dependency-name: goauthentik.io/api/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-22 15:22:41 +01:00
dependabot[bot]
1c4165a373 core: bump debugpy from 1.8.8 to 1.8.9 (#12150) 
Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.8.8 to 1.8.9.
- [Release notes](https://github.com/microsoft/debugpy/releases)
- [Commits](https://github.com/microsoft/debugpy/compare/v1.8.8...v1.8.9)

---
updated-dependencies:
- dependency-name: debugpy
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-22 14:17:36 +01:00
dependabot[bot]
bbd03b2b05 core: bump webauthn from 2.2.0 to 2.3.0 (#12151) 
Bumps [webauthn](https://github.com/duo-labs/py_webauthn) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/duo-labs/py_webauthn/releases)
- [Changelog](https://github.com/duo-labs/py_webauthn/blob/master/CHANGELOG.md)
- [Commits](https://github.com/duo-labs/py_webauthn/compare/v2.2.0...v2.3.0)

---
updated-dependencies:
- dependency-name: webauthn
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-22 14:17:28 +01:00
dependabot[bot]
dd79aec5a6 core: bump pydantic from 2.10.0 to 2.10.1 (#12152) 
Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.10.0 to 2.10.1.
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](https://github.com/pydantic/pydantic/compare/v2.10.0...v2.10.1)

---
updated-dependencies:
- dependency-name: pydantic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-22 14:17:20 +01:00
transifex-integration[bot]
3634ae3db9 translate: Updates for file web/xliff/en.xlf in zh_CN (#12156) 
Translate web/xliff/en.xlf in zh_CN

100% translated source file: 'web/xliff/en.xlf'
on 'zh_CN'.

Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
 2024-11-22 14:17:13 +01:00
transifex-integration[bot]
12e1ee93ed translate: Updates for file web/xliff/en.xlf in zh-Hans (#12157) 
Translate web/xliff/en.xlf in zh-Hans

100% translated source file: 'web/xliff/en.xlf'
on 'zh-Hans'.

Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
 2024-11-22 14:16:52 +01:00
dependabot[bot]
62aa3659b8 core: bump sentry-sdk from 2.18.0 to 2.19.0 (#12153) 
Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.18.0 to 2.19.0.
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getsentry/sentry-python/compare/2.18.0...2.19.0)

---
updated-dependencies:
- dependency-name: sentry-sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-22 13:52:28 +01:00
authentik-automation[bot]
23ec05a86c web: bump API Client version (#12147) 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
 2024-11-22 13:51:40 +01:00
Jens L.
520148bba4 root: Backport version change (#12146) 
* release: 2024.10.3

* release: 2024.10.4
 2024-11-22 01:51:30 +01:00
Tana M Berry
1c5d61209e website/docs: update info about footer links to match new UI (#12120) 
* edit to match new UI

* polished text

* more tweaks

* additional sentence about Flow Executor and link to docs

---------

Co-authored-by: Tana M Berry <tana@goauthentik.com>
 2024-11-21 14:14:15 -06:00
Jens L.
5fd1cdbb49 website/docs: prepare release notes (#12142) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 19:11:22 +01:00
Jens L.
0831bef098 providers/oauth2: fix migration (#12138) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 18:54:26 +01:00
Jens L.
26e852e8d5 providers/oauth2: fix migration dependencies (#12123) 
we had to change these dependencies for 2024.8.x since that doesn't have invalidation flows

they also need to be changed for 2024.10 when upgrading, and these migrations don't need the invalidation flow migration at all

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 17:24:47 +01:00
authentik-automation[bot]
95f54abb58 web: bump API Client version (#12129) 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
 2024-11-21 17:24:36 +01:00
Jens L.
a4b6fa1786 providers/oauth2: fix redirect uri input (#12122) 
* fix elements disappearing

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix incorrect field input

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix wizard form and display

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 17:21:16 +01:00
Jens L.
2c0923e827 providers/proxy: fix redirect_uri (#12121) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 17:21:06 +01:00
Jens L.
7f224cbfea website/docs: prepare release notes (#12119) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 15:06:17 +01:00
authentik-automation[bot]
db32439aa9 web: bump API Client version (#12118) 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
 2024-11-21 14:50:27 +01:00
Jens L.
85bb638243 security: fix CVE 2024 52289 (#12113) 
* initial migration

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* migrate tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix loading

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start dynamic ui

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* initial ui

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add serialize

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add error message handling

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix/add tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* prepare docs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* migrate to new input

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 14:46:43 +01:00
Jens L.
5ea4580884 security: fix CVE 2024 52307 (#12115) 
* security: fix CVE-2024-52307

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add docs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 14:24:28 +01:00
Jens L.
e9c29e1644 security: fix CVE 2024 52287 (#12114) 
* security: CVE-2024-52287

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2024-11-21 14:22:46 +01:00
Simonyi Gergő
a9b3a4cf25 website/docs: add CSP to hardening (#11970) 
* add CSP to hardening

* re-word docs

Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com>

* fix typo

* use the correct term "location" instead of "origin" in CSP docs

* reword docs

* add comments to permissive CSP directives

* add warning about overwriting existing CSP headers

---------

Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
 2024-11-21 14:20:04 +01:00
dependabot[bot]
96964d2950 core: bump uvicorn from 0.32.0 to 0.32.1 (#12103) 
Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.32.0 to 0.32.1.
- [Release notes](https://github.com/encode/uvicorn/releases)
- [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md)
- [Commits](https://github.com/encode/uvicorn/compare/0.32.0...0.32.1)

---
updated-dependencies:
- dependency-name: uvicorn
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-21 13:08:15 +01:00
dependabot[bot]
c89f663ca8 core: bump google-api-python-client from 2.153.0 to 2.154.0 (#12104) 
Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.153.0 to 2.154.0.
- [Release notes](https://github.com/googleapis/google-api-python-client/releases)
- [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.153.0...v2.154.0)

---
updated-dependencies:
- dependency-name: google-api-python-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-21 13:07:55 +01:00
dependabot[bot]
2ccb21ac87 core: bump pydantic from 2.9.2 to 2.10.0 (#12105) 
Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.9.2 to 2.10.0.
- [Release notes](https://github.com/pydantic/pydantic/releases)
- [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md)
- [Commits](https://github.com/pydantic/pydantic/compare/v2.9.2...v2.10.0)

---
updated-dependencies:
- dependency-name: pydantic
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-21 13:07:25 +01:00
transifex-integration[bot]
d383cca297 translate: Updates for file locale/en/LC_MESSAGES/django.po in it (#12110) 
Translate locale/en/LC_MESSAGES/django.po in it

100% translated source file: 'locale/en/LC_MESSAGES/django.po'
on 'it'.

Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
 2024-11-21 13:06:46 +01:00
Simonyi Gergő
4189981995 internal: add CSP header to files in /media (#12092) 
add CSP header to files in `/media`

This fixes a security issue of stored cross-site scripting via embedding
JavaScript in SVG files by a malicious user with `can_save_media`
capability.

This can be exploited if:
- the uploaded file is served from the same origin as authentik, and
- the user opens the uploaded file directly in their browser

Co-authored-by: Jens L. <jens@goauthentik.io>
 2024-11-21 09:16:07 +01:00
authentik-automation[bot]
3e6ed8d213 core, web: update translations (#12101) 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>
 2024-11-21 01:11:15 +01:00