Commit Graph

2752 Commits

Author SHA1 Message Date
James Elliott
a984e2700b
refactor: use fatal log message on oidc init error (#1973)
Instead of using panic() when an unknown error was detected on OP initialization, use logger.Fatalf. This provides a more useful output to the user.
2021-05-05 10:50:24 +10:00
renovate[bot]
3c4b320096
build(deps): update dependency @types/react to v17.0.5 (#1970)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-05-05 09:32:40 +10:00
Clément Michaud
e8e29831c1
docs: add oidc package in contributor guidelines (#1971) 2021-05-05 09:08:14 +10:00
James Elliott
ddea31193b
feature(oidc): add support for OpenID Connect
OpenID connect has become a standard when it comes to authentication and
in order to fix a security concern around forwarding authentication and authorization information
it has been decided to add support for it.

This feature is in beta version and only enabled when there is a configuration for it.
Before enabling it in production, please consider that it's in beta with potential bugs and that there
are several production critical features still missing such as all OIDC related data is stored in
configuration or memory. This means you are potentially going to experience issues with HA
deployments, or when restarting a single instance specifically related to OIDC.

We are still working on adding the remaining set of features before making it GA as soon as possible.

Related to #189

Co-authored-by: Clement Michaud <clement.michaud34@gmail.com>
2021-05-05 00:15:36 +02:00
renovate[bot]
48d8e1e541
build(deps): update dependency eslint-formatter-rdjson to v1.0.4 (#1969)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-05-04 09:46:06 +02:00
Amir Zarrinkafsh
9f3bd0e589
build(deps): update swagger-ui to v3.48.0 (#1967) 2021-05-04 08:31:50 +10:00
renovate[bot]
ec17389a54
build(deps): update module github.com/fasthttp/session/v2 to v2.3.2 (#1962)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-30 11:57:33 +10:00
renovate[bot]
908146d6f0
build(deps): update module github.com/fasthttp/router to v1.3.12 (#1961)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-30 09:54:49 +10:00
renovate[bot]
77c3058368
build(deps): update mariadb docker tag to v10.6.0 (#1958)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-29 15:59:16 +10:00
renovate[bot]
181f65f3c9
build(deps): update dependency @types/node to v15 (#1952)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-29 10:49:51 +10:00
renovate[bot]
7831212d02
build(deps): update module github.com/valyala/fasthttp to v1.24.0 (#1957)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-29 08:57:33 +10:00
renovate[bot]
a4e7a794b8
build(deps): update dependency @material-ui/core to v4.11.4 (#1954)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 10:03:50 +02:00
renovate[bot]
b2ca9b7805
build(deps): update dependency @craco/craco to v6.1.2 (#1955)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 09:19:10 +02:00
renovate[bot]
06a2fb8026
build(deps): update dependency @types/node to v14.14.43 (#1951)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 15:49:25 +10:00
renovate[bot]
d6a767745b
build(deps): update dependency @types/chai to v4.2.17 (#1950)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 13:53:36 +10:00
renovate[bot]
e7ce5c1ff7
build(deps): update dependency @types/jest to v26.0.23 (#1949)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 09:29:00 +10:00
renovate[bot]
cf2687bb57
build(deps): update dependency @types/react to v17.0.4 (#1948)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-27 16:03:53 +10:00
renovate[bot]
3593c94511
build(deps): update dependency eslint-config-prettier to v8.3.0 (#1946)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-25 09:43:37 +02:00
renovate[bot]
b952e9e71d
build(deps): update haproxy docker tag to v2.3.10 (#1942)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-24 10:43:48 +02:00
renovate[bot]
d321ae9be1
build(deps): update dependency @types/classnames to v2.3.0 (#1937)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-23 10:57:16 +10:00
renovate[bot]
dafd61f08d
build(deps): update module github.com/simia-tech/crypt to v0.5.0 (#1938)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-21 22:25:38 +02:00
dependabot[bot]
823be5d179
build(deps): bump ssri from 6.0.1 to 6.0.2 in /web (#1933)
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/npm/ssri/releases)
- [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md)
- [Commits](https://github.com/npm/ssri/compare/v6.0.1...v6.0.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-20 09:58:58 +10:00
allcontributors[bot]
d1d0aa967d
docs: add jonbayl as a contributor (#1930)
* docs: update README.md

* docs: update .all-contributorsrc

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-04-18 19:13:40 +10:00
Amir Zarrinkafsh
3d08e03592
ci(buildkite): log ghcr id on branch tag removal (#1929) 2021-04-18 14:20:45 +10:00
James Elliott
c16edda893
release: v4.28.2 (#1928) 2021-04-18 11:01:39 +10:00
James Elliott
706fbfdb2c
fix(session): ensure default cookie samesite value is lax (#1926)
This implements a change to the default behaviour of the cookies generated by the sessions package. The old behaviour was to set the SameSite=None, this changes it to SameSite=Lax. Additionally this puts the option in the hands of the end-user so they can decide for themselves what the best option is.
2021-04-18 10:02:04 +10:00
James Elliott
2f1e45071a
release: v4.28.1 (#1924) 2021-04-16 12:20:31 +10:00
James Elliott
cc4f47f21c
fix: removed deprecated smtp/ldap options (#1912)
This removes the deprecated options from 4.25. This includes the LDAP filters which allow {0} or {1} placeholders. The new aliases are documented. Additionally it refactors the keys validator to use uniform messages for most replaced keys.
2021-04-16 11:44:37 +10:00
renovate[bot]
168dbf7265
build(deps): update dependency @types/node to v14.14.41 (#1923)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 21:42:57 +02:00
Clément Michaud
7c18081f57
ci: include version in the name of tar.gz artifacts (#1919)
This makes sure the version is included in GitHub artifacts.

Fix #1918

Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-04-15 17:56:32 +10:00
renovate[bot]
605fba0422
build(deps): update dependency eslint-plugin-prettier to v3.4.0 (#1922)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 14:27:16 +10:00
renovate[bot]
f3e35baa29
build(deps): update dependency @types/node to v14.14.39 (#1920)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 14:06:07 +10:00
renovate[bot]
756ba04980
build(deps): update arm64v8/alpine docker tag to v3.13.5 (#1917)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 12:43:24 +10:00
Amir Zarrinkafsh
db55325152
fix(suites): ensure k8s suite utilises the registry cache (#1921) 2021-04-15 12:07:19 +10:00
renovate[bot]
4318bb1e0c
build(deps): update alpine docker tag to v3.13.5 (#1915)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 08:54:56 +10:00
renovate[bot]
0684c953b8
build(deps): update arm32v7/alpine docker tag to v3.13.5 (#1916)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 22:08:50 +02:00
renovate[bot]
fed55be3e1
build(deps): update module github.com/mattn/go-sqlite3 to v1.14.7 (#1914)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 21:49:42 +02:00
James Elliott
1e30b00f7e
fix(validator): misleading warning for empty acl domains (#1898)
This fixes misleading errors for ACL rules with an empty list of domains. This also enables admins to have a default policy with zero ACL rules as long as the default policy is not deny or bypass. It also adds a rule number to all ACL rule related log messages which is the position in the YAML list plus 1. Lastly it adds comprehensive per rule HIT/MISS logging when Authelia trace logging is enabled. This trace logging includes the rule number.
2021-04-14 20:53:23 +10:00
allcontributors[bot]
a6ebf4ad4c
docs: add lavih as a contributor (#1913)
* docs: update README.md

* docs: update .all-contributorsrc

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-04-14 20:08:53 +10:00
renovate[bot]
9fad66596a
build(deps): update dependency eslint-config-prettier to v8.2.0 (#1911)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 11:28:07 +10:00
Clément Michaud
80216b9474
release: 4.28.0 (#1910) 2021-04-13 21:10:56 +10:00
Clément Michaud
c9b853d736
docs: Add a page listing supported proxies. (#1907)
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-13 10:41:49 +02:00
James Elliott
f0cb75e1e1
fix(handlers): logout redirection validation (#1908) 2021-04-13 10:38:12 +02:00
Clément Michaud
42cee0ed6c
docs(proxy): clarify the workflow of a client request payload. (#1838)
Fix #1836
2021-04-13 07:47:30 +10:00
Clément Michaud
ce77aed178
fix: bump gems used to generate documentation. (#1902)
This solves the security issue reported by dependabot.

Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-12 14:21:06 +10:00
James Elliott
619da0f7ec
docs: misc fixes to documentation after overhaul (#1906) 2021-04-12 13:21:19 +10:00
James Elliott
9e7b73bd56
refactor(authentication): add trace logs for the user/group baseDN (#1904)
This logs the baseDN for user and group searching on startup as well as the users filter (with just input remaining). Additionally refactors the location of a few log messages, and exposes the logger to the provider to reduce calls to logging.Logger().
2021-04-12 11:10:50 +10:00
James Elliott
1a385947bc
docs: fix license link (#1905) 2021-04-11 21:39:05 +10:00
James Elliott
08e674b62f
docs: refactor several areas of documentation (#1726)
Updated all links to use https://www.authelia.com/docs/.
Removed all comment sections from documented configuration on the documentation site and replaced them with their own sections.
Made all documentation inside config.template.yml double hashes, and made all commented configuration sections single quoted.
Added .yamllint.yaml to express our desired YAML styles.
Added a style guide.
Refactored many documentation areas to be 120 char widths where possible. It's by no means exhaustive but is a large start.
Added a statelessness guide for the pending Kubernetes chart introduction.
Added labels to configuration documentation and made many areas uniform.
2021-04-11 21:25:03 +10:00
allcontributors[bot]
2a74e8cdcf
docs: add wuhanstudio as a contributor (#1903)
* docs: update README.md

* docs: update .all-contributorsrc

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-04-11 07:13:00 +10:00