Commit Graph

3080 Commits

Author SHA1 Message Date
Clement Michaud
66449eedb0 Use username matcher instead of user dn in group filter
Previously, string "{0}" was replaced by the user dn in the groups_filter
attributes of the LDAP configuration.
However, if the groups children only have a memberUid attribute, one would
like to use the username instead of the user dn.

Since the user dn can be built from the username, "{0}" is now replaced
by the username instead of the user dn so that an LDAP relying on attribute
'memberUid' can be used.
2017-10-07 14:10:22 +02:00
Clément Michaud
be81f04248 Merge pull request #105 from clems4ever/split-client-server
Split client and server
2017-10-07 11:36:05 +02:00
Clement Michaud
d8ff186303 Split client and server
Client and server now have their own tsconfig so that the transpilation is only
done on the part that is being modified.

It also allows faster transpilation since tests are now excluded from tsconfig.
They are compiled by ts-node during unit tests execution.
2017-10-07 00:49:42 +02:00
Clement Michaud
444d278a1e 3.4.0 2017-10-04 21:53:19 +02:00
Clément Michaud
89de19bb35 Merge pull request #98 from clems4ever/disable-second-factor
Allow basic auth for certain subdomains
2017-09-26 23:25:07 +02:00
Clement Michaud
4cbf6efa42 Disable second factor for certain subdomain 2017-09-26 23:09:33 +02:00
Clément Michaud
1636fc27e5 Fix bad merge on README.md 2017-09-25 13:32:25 +02:00
Clément Michaud
92ef190202 Merge pull request #97 from clems4ever/smtp-notifier
Add SMTP notifier as an available option in configuration
2017-09-24 23:56:44 +02:00
Clement Michaud
f564174998 Remove FileSystem notifier completely 2017-09-24 23:20:51 +02:00
Clement Michaud
4cd78f3f83 Add SMTP notifier as an available option in configuration
One can now plug its own SMTP server to send notifications
for identity validation and password reset requests.

Filesystem has been removed from the template configuration file
since even tests now use mail catcher (the fake webmail) to
retrieve the email and the confirmation link.
2017-09-24 23:20:45 +02:00
Clément Michaud
7a2b45a66f Merge pull request #95 from clems4ever/acl-by-resources
Refine access control with per resource ACLs
2017-09-24 21:54:18 +02:00
Clement Michaud
cf16272a73 Refine access control with per resource ACLs
ACLs can now be defined by subdomain AND resource using pattern matching
with regular expressions.
It allows a very fine-grained access control to backend resources.

[Note] For using example environmnent, user must update its /etc/hosts with
new subdomains updated in README.
2017-09-24 21:39:47 +02:00
Clément Michaud
59d0a06a95 Merge pull request #94 from clems4ever/nginx-abort-connection
Add Content-Length header to the forwarded request to Authelia
2017-09-23 19:01:29 +02:00
Clement Michaud
e48b196f38 Add Content-Length header to the forwarded request to Authelia
It seems nginx is closing the connection for some backends if
`proxy_set_header Content-Length "";` is not added to the
verification endpoint.
2017-09-23 18:02:21 +02:00
Clément Michaud
72612e00aa Merge pull request #92 from clems4ever/header-vars
Set headers values Remote-User and Remote-Groups in /verify response
2017-09-22 21:42:11 +02:00
Clement Michaud
d005b83365 Set headers values Remote-User and Remote-Groups in /verify response 2017-09-22 21:25:15 +02:00
Clément Michaud
ae5b647d23 Merge pull request #89 from clems4ever/redis-connection-issue-logs
Make failing connection to redis more clear in the logs
2017-09-22 21:05:33 +02:00
Clement Michaud
0a33b2d5ee Add logs to detect redis connection issues earlier
Before this fix, the application was simply crashing during execution
when connection to redis was failing.

Now, it is correctly handled with failing promises and logs have been
enabled to clearly see the problem
2017-09-22 20:52:05 +02:00
Clément Michaud
36962cfc2c Merge pull request #91 from clems4ever/redirect-url
Add redirection URL as a query parameter during authentication
2017-09-22 18:59:44 +02:00
Clement Michaud
7128970a53 Add redirection URL as a query parameter during authentication
Before this fix, the redirection URL was stored in the user session,
but this has a big drawback since user could open several pages in
browser and thus override the redirection URL leading the user to
be incorrectly redirected.
2017-09-22 17:53:18 +02:00
Clément Michaud
83f5302615 Merge pull request #90 from clems4ever/hotfix-nedb-memflag
[Hotfix] Fix bug while reading Nedb option inMemoryOnly
2017-09-21 23:38:01 +02:00
Clement Michaud
e9a4ebca38 [Hotfix] Fix bug while reading Nedb option inMemoryOnly 2017-09-21 22:17:55 +02:00
Clément Michaud
9ac2c808ec Merge pull request #64 from FrozenDragoon/feature-dockercompose
Don't build Docker container from source for the example
2017-09-17 13:56:10 +02:00
FrozenDragoon
489dbf9e30 Merge branch 'master' into feature-dockercompose 2017-09-11 13:28:39 -05:00
Clement Michaud
1643f4779c 3.3.19 2017-09-09 01:36:36 +02:00
Clément Michaud
b59f03d315 Merge pull request #80 from clems4ever/fix-npm-install
Fix missing dist directory in npm package
2017-09-09 01:36:00 +02:00
Clement Michaud
f4926ac138 Fix npm package missing dist directory 2017-09-09 00:43:19 +02:00
Clement Michaud
a39605f9d7 Stabilize integration tests by increasing timeouts 2017-09-09 00:43:18 +02:00
FrozenDragoon
e644fe7b7b Split example scripts, allow running example using pre-built docker container (example-dockerhub) or build build from source, as it is now (example-commit). 2017-09-05 06:32:50 -05:00
FrozenDragoon
fa6134e7f5 Don't build a new container for ldap, pass the variables via docker-compose. 2017-09-05 06:17:52 -05:00
Clement Michaud
85834befb6 3.3.2 2017-09-05 00:43:06 +02:00
Clement Michaud
dbb936679c Try to fix issue with npm publishing 2017-09-05 00:43:00 +02:00
Clement Michaud
432568f8f5 3.3.1 2017-09-04 23:49:15 +02:00
Clement Michaud
d4a2b5dab9 Try to fix issue with npm publishing 2017-09-04 23:49:11 +02:00
Clement Michaud
86bb5c5a19 3.3.0 2017-09-04 21:51:58 +02:00
Clement Michaud
690c73e557 Fix installing authelia with npm install -g 2017-09-04 21:42:59 +02:00
Clément Michaud
84c13c71e2 Merge pull request #75 from clems4ever/ldap-filters
Add LDAP filters to configuration file for flexibility and rework authentication regulation
2017-09-03 15:14:50 +02:00
Clement Michaud
85462be268 Wait for notifications to fade out before going forward in integration test steps. 2017-09-03 15:02:38 +02:00
Clement Michaud
98aa23ed5e Fix client notifications not fading out after few seconds 2017-09-03 13:00:02 +02:00
Clement Michaud
64c06fd6b8 Parameterize authentication regulation via configuration file. Both for flexibility and for testing purposes. 2017-09-03 12:48:35 +02:00
Clement Michaud
20536abf8b Introduce LDAP filters to search users and groups for more flexibility. 2017-09-02 22:38:26 +02:00
Clément Michaud
9403326226 Merge pull request #74 from clems4ever/client-notifications
Notifications to users do not use notifyjs anymore. They are more com…
2017-09-02 16:53:53 +02:00
Clement Michaud
50636587a8 Notifications to users do not use notifyjs anymore. They are more common and located in the form areas to improve visibility on mobile devices. 2017-09-02 16:33:57 +02:00
Clément Michaud
0b8ac83566 Merge pull request #72 from clems4ever/fix-registration-handler-test
Fix typescript transpilation after typescript update
2017-09-01 17:19:17 +02:00
Clement Michaud
61d0c2e980 Fix typescript transpilation after typescript update 2017-09-01 16:06:02 +02:00
Clement Michaud
7be61d7357 3.2.0 2017-08-03 00:58:04 +02:00
Clément Michaud
d582a1e6ed Merge pull request #63 from clems4ever/test-redirection-after-auth
Fix redirection after authentication and error page when accessing re…
2017-08-03 00:53:43 +02:00
Clement Michaud
928209dc98 Fix redirection after authentication and error page when accessing restricted pages 2017-08-03 00:41:13 +02:00
Clément Michaud
785182236c Merge pull request #61 from clems4ever/resilient-db
Use a scalable and resilient database to improve Authelia QoS
2017-08-01 00:04:04 +02:00
Clement Michaud
c12a085f8e Replace mocha integration tests by cucumber tests 2017-07-31 22:20:33 +02:00