authelia

mirror of https://github.com/0rangebananaspy/authelia.git synced 2024-09-14 22:47:21 +07:00

Author	SHA1	Message	Date
James Elliott	4d7f930e74	docs: fix regex examples (#3094 )	2022-04-02 16:41:16 +11:00
James Elliott	3c1bb3ec19	feat(authorization): domain regex match with named groups (#2789 ) This adds an option to match domains by regex including two special named matching groups. User matches the username of the user, and Group matches the groups a user is a member of. These are both case-insensitive and you can see examples in the docs.	2022-04-01 22:38:49 +11:00
James Elliott	b2d35d88ec	feat(configuration): allow rfc4918 http verbs in acl (#2988 ) This allows the HTTP Method verbs from RFC4918 to be used. See https://datatracker.ietf.org/doc/html/rfc4918 for more information.	2022-04-01 21:53:10 +11:00
Alestrix	d393d80aee	docs: adjust acl policy example to be possible (#3008 ) An access control policy with a policy of bypass and subjects is not configurable, this addresses an example in the docs which shows this misconfiguration erroneously. Fixes #3006	2022-03-14 23:30:47 +11:00
James Elliott	03cf92ff48	docs: fix misleading config (#2966 )	2022-03-06 10:15:55 +11:00
James Elliott	0da770d900	docs: misc fixes (#2186 ) This fixes misc broken links in the docs as well as an invalid viewBox element.	2021-07-15 13:21:47 +10:00
James Elliott	524c6eb1dc	docs: refactor access control configuration sections (#1945 ) Refactors the access-control configuration documentation to be up-to-date and conform to our style guidelines. Additionally went over each part and reworded things that needed it.	2021-06-22 16:00:45 +10:00
James Elliott	1a43ca7b8a	docs(authorization): document changed resources behavior (#1819 ) I missed documenting this change, but prior to 4.27.0 the query param was never considered when matching resources. But that's no longer the case. Fixes #1817	2021-03-13 09:36:22 +11:00
David Chidell	5cf11f87c8	docs(authorizer): important headers for access-control networks (#1794 ) * Document X-Forwarded-For capabilities within access-control networks Adds a short paragraph detailing X-Forwarded-For header behaviour into the documentation. * Update docs/configuration/access-control.md Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com> Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2021-03-11 10:18:39 +11:00
James Elliott	4dce8f9496	perf(authorizer): preload access control lists (#1640 ) * adjust session refresh to always occur (for disabled users) * feat: adds filtering option for Request Method in ACL's * simplify flow of internal/authorization/authorizer.go's methods * implement query string checking * utilize authorizer.Object fully * make matchers uniform * add tests * add missing request methods * add frontend enhancements to handle request method * add request method to 1FA Handler Suite * add internal ACL representations (preparsing) * expand on access_control next * add docs * remove unnecessary slice for network names and instead just use a plain string * add warning for ineffectual bypass policy (due to subjects) * add user/group wildcard support * fix(authorization): allow subject rules to match anonymous users * feat(api): add new params * docs(api): wording adjustments * test: add request method into testing and proxy docs * test: add several checks and refactor schema validation for ACL * test: add integration test for methods acl * refactor: apply suggestions from code review * docs(authorization): update description	2021-03-05 15:18:31 +11:00
Amir Zarrinkafsh	9ca0e940da	[FEATURE] Validate ACLs and add network groups (#1568 ) * adds validation to ACL's * adds a new networks section that can be used as aliases in other sections (currently access_control)	2021-01-04 21:55:23 +11:00
Clément Michaud	86c4577127	[DOCS] Add a note on regexps in ACLs (#1533 ) Fixes #1523	2020-12-16 11:00:58 +11:00
Lukas Klass	518bc67ef9	[DOCS] Clarify use of multiple subjects in ACLs and their logical evaluation (#1454 ) * Clarify use of multiple subjects and their logical evaluation * Update docs/configuration/access-control.md Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2020-11-13 10:30:23 +11:00
Philipp Staiger	5c4edf2f4d	[FEATURE] Support for subject combinations in ACLs (#1142 )	2020-06-25 18:22:42 +10:00
James Elliott	a4cf2e675f	[DEPRECATE] Remove Google Analytics (#1021 ) * it doesn't work with our current CSP * it's probably not used by anyone * it isn't in harmony with our security purposes * literally removes all use of it * suggestions from code review * remove useless test. Co-authored-by: Amir Zarrinkafsh <nightah@me.com> Co-authored-by: Clement Michaud <clement.michaud34@gmail.com>	2020-05-16 09:41:42 +10:00
Dustin Sweigart	951dc71325	[FEATURE] Support multiple domains and multiple subjects in ACLs (#869 ) * added support for listing multiple domains and multiple subjects * updated documentation to show use of multiple domains and subjects * updated config.template.yml to display multiple domains as a list * updated config.template.yml to display multiple subjects as a list * updated docs/configuration/access-control.md to display multiple domains as a list * updated docs/configuration/access-control.md to display multiple subjects as a list * removed redundant check that always returned true * Commentary definition for `weak`	2020-04-16 10:18:11 +10:00
James Elliott	b0b3d61954	[DOCS] Adjust yaml snippets and misc adjustments (#855 ) * [DOCS] Adjust yaml snippets * use two spaces * use yaml syntax highlighting * other misc uniformity changes * fix misc grammar * add responsible disclosure link Co-Authored-By: Amir Zarrinkafsh <nightah@me.com>	2020-04-11 14:46:07 +10:00
Amir Zarrinkafsh	f3fd79d731	[DOCS] Review all docs and adjust since the initial refactoring (#698 ) * [DOCS] Review all docs and adjust since the initial refactoring * [DOCS] Minor tweaks	2020-03-10 09:37:46 +11:00
Clément Michaud	adf7bbaf5b	[DOCS] Bootstrap new documentation website based on just-the-docs (#659 )	2020-02-29 01:43:59 +01:00

19 Commits