habsi/authentik

Files

History

gcp-cherry-pick-bot[bot] 64676819ec blueprints: add default Password policy (cherry-pick #11793 ) (#11993 )

blueprints: add default Password policy (#11793)

* add password policy to default password change flow

This change complies with the minimal compositional requirements by
NIST SP 800-63 Digital Identity Guidelines. See
https://pages.nist.gov/800-63-4/sp800-63b.html#password

More work is needed to comply with other parts of the Guidelines,
specifically

> If the chosen password is found on the blocklist, the CSP or verifier
> [...] SHALL provide the reason for rejection.

and

> Verifiers SHALL offer guidance to the subscriber to assist the user in
> choosing a strong password. This is particularly important following
> the rejection of a password on the blocklist as it discourages trivial
> modification of listed weak passwords.

* add docs for default Password policy

* remove HIBP from default Password policy

* add zxcvbn to default Password policy

* add fallback password error message to password policy, fix validation policy



* reword docs




* add HIBP caveat




* separate policy into separate blueprint



* use password policy for oobe flow



* kiss



---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com>
Co-authored-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>

2024-11-11 13:54:44 +01:00

..

blueprints: add default Password policy (cherry-pick #11793 ) (#11993 )

2024-11-11 13:54:44 +01:00

website/integrations: Add note regarding custom scopes in Hashicorp Vault OIDC documentation (#11668 )

2024-10-18 13:16:08 +00:00

website/scripts/docsmg: final version (#11501 )

2024-09-26 07:32:31 -05:00

website/docs: update preview status of different features (cherry-pick #11817 ) (#11818 )

2024-10-25 21:42:45 +02:00

website/docs: maintenance, re-add system settings (#9026 )

2024-03-26 14:42:07 +01:00

website: update release notes (#6590 )

2023-08-22 13:03:11 +02:00

.gitignore

website: latest PR for new Docs structure (#11639 )

2024-10-09 09:33:40 -05:00

.prettierignore

website: format docs with prettier (#2833 )

2022-05-09 21:22:41 +02:00

.prettierrc.json

Migrate to Docusaurus (#329 )

2020-11-15 22:42:02 +01:00

babel.config.js

Migrate to Docusaurus (#329 )

2020-11-15 22:42:02 +01:00

docsmg.env

website/scripts: final-ish readme with troubleshooting tips (#10948 )

2024-08-16 10:54:09 -05:00

docusaurus.config.ts

website: latest PR for new Docs structure (#11639 )

2024-10-09 09:33:40 -05:00

migratefile

website: latest PR for new Docs structure (#11639 )

2024-10-09 09:33:40 -05:00

netlify.toml

website/docs: add info about invalidation flow, default flows in general (cherry-pick #11800 ) (#11921 )

2024-11-05 12:12:59 +01:00

package-lock.json

website: bump mermaid from 10.6.0 to 10.9.3 in /website (#11766 )

2024-10-23 11:15:42 +02:00

package.json

website: bump @types/react from 18.3.11 to 18.3.12 in /website (#11777 )

2024-10-23 11:14:44 +02:00

README.md

website: cleanup readme

2022-09-18 18:45:05 +02:00

sidebars.js

website/docs: add info about invalidation flow, default flows in general (cherry-pick #11800 ) (#11921 )

2024-11-05 12:12:59 +01:00

sidebarsIntegrations.js

website/integrations add GHEC EMU and fix-up GHES (#11677 )

2024-10-14 16:16:35 +02:00

README.md

Website

This website is built using Docusaurus 2, a modern static website generator.

Installation

npm ci

Local Development

npm run watch

This command starts a local development server and open up a browser window. Most changes are reflected live without having to restart the server.

Build

npm run build

This command generates static content into the build directory and can be served using any static contents hosting service.