2f3a0a3701
[MISC] (deps): Bump enzyme from 3.10.0 to 3.11.0 in /web ( #744 )
...
Bumps [enzyme](https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme ) from 3.10.0 to 3.11.0.
- [Release notes](https://github.com/airbnb/enzyme/releases )
- [Changelog](https://github.com/enzymejs/enzyme/blob/master/CHANGELOG.md )
- [Commits](https://github.com/airbnb/enzyme/commits/enzyme@3.11.0/packages/enzyme )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-20 10:27:29 +11:00
dc4c2ae59e
[MISC] (deps): Bump react from 16.12.0 to 16.13.1 in /web ( #755 )
...
Bumps [react](https://github.com/facebook/react/tree/HEAD/packages/react ) from 16.12.0 to 16.13.1.
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/HEAD/packages/react )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-20 10:08:47 +11:00
a7edc0c983
[MISC] (deps): Bump enzyme-adapter-react-16 in /web ( #738 )
...
Bumps [enzyme-adapter-react-16](https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16 ) from 1.15.1 to 1.15.2.
- [Release notes](https://github.com/airbnb/enzyme/releases )
- [Changelog](https://github.com/enzymejs/enzyme/blob/master/CHANGELOG.md )
- [Commits](https://github.com/airbnb/enzyme/commits/enzyme-adapter-react-16@1.15.2/packages/enzyme-adapter-react-16 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-20 09:13:23 +11:00
42d09da6ca
[MISC] (deps): Bump github.com/fasthttp/router from 0.6.1 to 0.7.0 ( #737 )
...
Bumps [github.com/fasthttp/router](https://github.com/fasthttp/router ) from 0.6.1 to 0.7.0.
- [Release notes](https://github.com/fasthttp/router/releases )
- [Commits](https://github.com/fasthttp/router/compare/v0.6.1...v0.7.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 23:28:29 +11:00
883a2103da
[MISC] Add dependabot configuration ( #736 )
2020-03-19 23:04:32 +11:00
da347abca1
[MISC] (deps): bump @fortawesome/react-fontawesome from 0.1.8 to 0.1.9 in /web ( #724 )
...
Bumps [@fortawesome/react-fontawesome](https://github.com/FortAwesome/react-fontawesome ) from 0.1.8 to 0.1.9.
- [Release notes](https://github.com/FortAwesome/react-fontawesome/releases )
- [Changelog](https://github.com/FortAwesome/react-fontawesome/blob/master/CHANGELOG.md )
- [Commits](https://github.com/FortAwesome/react-fontawesome/compare/0.1.8...0.1.9 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 22:32:37 +11:00
d3d680cd90
[MISC] (deps): bump react-test-renderer from 16.12.0 to 16.13.0 in /web ( #723 )
...
Bumps [react-test-renderer](https://github.com/facebook/react/tree/HEAD/packages/react-test-renderer ) from 16.12.0 to 16.13.0.
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v16.13.0/packages/react-test-renderer )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 22:11:18 +11:00
12d666af87
[MISC] (deps): bump react-dom from 16.12.0 to 16.13.0 in /web ( #722 )
...
Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom ) from 16.12.0 to 16.13.0.
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v16.13.0/packages/react-dom )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 21:51:14 +11:00
c21dde5705
[MISC] (deps): bump @types/classnames from 2.2.9 to 2.2.10 in /web ( #725 )
...
Bumps [@types/classnames](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/classnames ) from 2.2.9 to 2.2.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/classnames )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 21:29:30 +11:00
64dd3e89f3
[DEPS] Bump @types/enzyme from 3.10.4 to 3.10.5 in /web ( #721 )
...
Bumps [@types/enzyme](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/enzyme ) from 3.10.4 to 3.10.5.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/enzyme )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 20:56:54 +11:00
89a81b7a05
[DEPS] Bump go.mongodb.org/mongo-driver from 1.1.3 to 1.3.1 ( #731 )
...
Bumps [go.mongodb.org/mongo-driver](https://github.com/mongodb/mongo-go-driver ) from 1.1.3 to 1.3.1.
- [Release notes](https://github.com/mongodb/mongo-go-driver/releases )
- [Commits](https://github.com/mongodb/mongo-go-driver/compare/v1.1.3...v1.3.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 20:32:50 +11:00
57cb342d0a
[DEPS] Bump github.com/lib/pq from 1.2.0 to 1.3.0 ( #732 )
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/lib/pq/releases )
- [Commits](https://github.com/lib/pq/compare/v1.2.0...v1.3.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 20:09:10 +11:00
ebd13cad46
[DEPS] Bump github.com/mattn/go-sqlite3 from 1.11.0 to 1.13.0 ( #729 )
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.11.0 to 1.13.0.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.11.0...v1.13.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 19:46:49 +11:00
e174853564
[DEPS] Bump github.com/fasthttp/session from 1.1.3 to 1.1.7 ( #730 )
...
Bumps [github.com/fasthttp/session](https://github.com/fasthttp/session ) from 1.1.3 to 1.1.7.
- [Release notes](https://github.com/fasthttp/session/releases )
- [Commits](https://github.com/fasthttp/session/compare/v1.1.3...v1.1.7 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 19:28:17 +11:00
309695fa7f
[DEPS] Bump github.com/spf13/cobra from 0.0.5 to 0.0.6 ( #733 )
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 0.0.5 to 0.0.6.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/0.0.5...v0.0.6 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-19 17:40:58 +11:00
de2bf6e5bc
[DEPS] Bump github.com/golang/mock from 1.3.1 to 1.4.3 ( #728 )
...
Bumps [github.com/golang/mock](https://github.com/golang/mock ) from 1.3.1 to 1.4.3.
- [Release notes](https://github.com/golang/mock/releases )
- [Changelog](https://github.com/golang/mock/blob/master/.goreleaser.yml )
- [Commits](https://github.com/golang/mock/compare/1.3.1...v1.4.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 17:16:59 +11:00
29b78508ea
[DEPS] Bump github.com/stretchr/testify from 1.4.0 to 1.5.1 ( #727 )
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.4.0 to 1.5.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.4.0...v1.5.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 16:51:22 +11:00
7eddf07155
[Buildkite] Clean Docker environment on exit ( #734 )
2020-03-19 16:15:54 +11:00
298d56dea3
[DEPS] Fix gopkg.in/ldap.v3 import for dependabot ( #726 )
2020-03-19 15:22:46 +11:00
3666343be8
[DEPS] Bump github.com/otiai10/copy from 1.0.2 to 1.1.1 ( #720 )
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.0.2 to 1.1.1.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.0.2...v1.1.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 14:11:28 +11:00
18c7f06655
[DEPS] Bump github.com/fasthttp/router from 0.5.2 to 0.6.1 ( #719 )
...
Bumps [github.com/fasthttp/router](https://github.com/fasthttp/router ) from 0.5.2 to 0.6.1.
- [Release notes](https://github.com/fasthttp/router/releases )
- [Commits](https://github.com/fasthttp/router/compare/v0.5.2...v0.6.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 13:51:32 +11:00
ca0b3388bc
[DEPS] Bump gopkg.in/yaml.v2 from 2.2.4 to 2.2.8 ( #718 )
...
Bumps [gopkg.in/yaml.v2](https://github.com/go-yaml/yaml ) from 2.2.4 to 2.2.8.
- [Release notes](https://github.com/go-yaml/yaml/releases )
- [Commits](https://github.com/go-yaml/yaml/compare/v2.2.4...v2.2.8 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 13:04:29 +11:00
4a9997b959
[DEPS] Bump github.com/Workiva/go-datastructures from 1.0.50 to 1.0.52 ( #717 )
...
Bumps [github.com/Workiva/go-datastructures](https://github.com/Workiva/go-datastructures ) from 1.0.50 to 1.0.52.
- [Release notes](https://github.com/Workiva/go-datastructures/releases )
- [Commits](https://github.com/Workiva/go-datastructures/compare/v1.0.50...v1.0.52 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 12:33:00 +11:00
7e7148c804
[DEPS] Bump github.com/go-sql-driver/mysql from 1.4.1 to 1.5.0 ( #716 )
...
Bumps [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/go-sql-driver/mysql/releases )
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-sql-driver/mysql/compare/v1.4.1...v1.5.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-19 12:11:38 +11:00
4f95865d56
[RELEASE] v4.7.2 ( #714 )
2020-03-16 20:32:06 +11:00
eeabb96dd0
[BUGFIX] LDAP group retrieval of users with parenthesis in their name ( #713 )
...
This aligns the search filter escaping to [RFC4515](https://tools.ietf.org/search/rfc4515 ).
`base.ldif` has also been updated to be a closer match to RFC 2307.
2020-03-16 19:55:03 +11:00
7145ccc228
[RELEASE] v4.7.1 ( #712 )
2020-03-15 23:41:56 +11:00
b0fb84cb7c
[MISC] Bump acorn from 5.7.3 to 5.7.4 in /web ( #705 )
...
Bumps [acorn](https://github.com/acornjs/acorn ) from 5.7.3 to 5.7.4.
- [Release notes](https://github.com/acornjs/acorn/releases )
- [Commits](https://github.com/acornjs/acorn/compare/5.7.3...5.7.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-03-15 23:25:17 +11:00
359dd48092
[BUGFIX] Make users_filter configuration of LDAP backend optional. ( #710 )
...
This PR aligns the situation with what is currently documented.
2020-03-15 23:10:13 +11:00
06e36f89e3
[Buildkite] Fix unbound variable for docs bypass ( #711 )
2020-03-15 22:01:52 +11:00
a24ca937cd
[Buildkite] Fix docs bypass for tagged releases ( #709 )
2020-03-15 21:07:23 +11:00
c575fda619
[RELEASE] v4.7.0 ( #708 )
2020-03-15 19:07:02 +11:00
cc6650dbcd
[BUGFIX] [BREAKING] Set username retrieved from authentication backend in session. ( #687 )
...
* [BUGFIX] Set username retrieved from authentication backend in session.
In some setups, binding is case insensitive but Authelia is case
sensitive and therefore need the actual username as stored in the
authentication backend in order for Authelia to work correctly.
Fixes #561 .
* Use uid attribute as unique user identifier in suites.
* Fix the integration tests.
* Update config.template.yml
* Compute user filter based on username attribute and users_filter.
The filter provided in users_filter is now combined with a filter
based on the username attribute to perform the LDAP search query
finding a user object from the username.
* Fix LDAP based integration tests.
* Update `users_filter` reference examples
2020-03-15 18:10:25 +11:00
7a3d43a12a
[Buildkite] Adjust pipeline for dependabot ( #707 )
...
Minor tweak to skip the whole deployment pipeline rather than individual steps.
2020-03-15 14:48:18 +11:00
cd561ef094
[Buildkite] Fix pipeline to work alongside dependabot ( #706 )
...
This change will continue to perform unit and integration testing, however, disables deployment steps in association with dependabot PRs.
Deployment comments on the PR with autheliabot are also disabled.
2020-03-15 13:49:57 +11:00
0d9a5812c7
[Buildkite] Update musl-cross-make toolchain to gcc 9.2.0 ( #703 )
...
Built using `musl-1.1.24`, `linux-headers-headers-4.19.88`
2020-03-14 12:45:55 +01:00
8b80be4061
[Buildkite] Utilise annotations for build notifications ( #700 )
...
* [Buildkite] Utilise annotations for artifact and doc bypass notifications
* [Buildkite] Add context to annotations
* [Buildkite] Adjust docs annotation to display for PRs
2020-03-11 10:25:47 +11:00
7d7ad9bd28
[MISC] Adjust TLS log messages ( #701 )
...
* [MISC] Adjust TLS log messages
* [MISC] Fix integration tests
2020-03-10 18:14:28 +11:00
f3fd79d731
[DOCS] Review all docs and adjust since the initial refactoring ( #698 )
...
* [DOCS] Review all docs and adjust since the initial refactoring
* [DOCS] Minor tweaks
2020-03-10 09:37:46 +11:00
c429488738
[FEATURE] [BREAKING] Support writing logs in a file. ( #686 )
...
* [FEATURE] Support writing logs in a file.
* Add documentation about logs file path.
* Rename logs_level and logs_file_path into log_level and log_file_path.
* Update BREAKING.md
Fixes #338
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-03-09 20:57:53 +01:00
6af27cb3f9
[Buildkite] Fix CI docs bypass by ensuring HEAD diff for master is correct ( #699 )
2020-03-09 17:45:15 +11:00
7a0d217b67
[Buildkite] Reorder git fetch in pipeline ( #697 )
...
This will ensure that we always will have up-to-date refs for the repo post-checkout.
2020-03-09 16:53:13 +11:00
df431b32c8
[Buildkite] Compare to `origin/master` for docs bypass ( #696 )
2020-03-09 15:59:58 +11:00
49c40ca0a0
[DOCS] Reorganize file auth config docs ( #693 )
2020-03-09 13:02:14 +11:00
b70c4a744f
[Buildkite] Ignore unnecessary CI steps for docs/* only based commits ( #690 )
...
* [Buildkite] Ignore build and deploy steps for [DOCS] only based commits
* [Buildkite] Convert static pipelines into dynamic pipelines
* [Buildkite] Convert dynamic pipeline steps into heredocs
* [Buildkite] Fix indentation for aurpackages.sh
* [Buildkite] Rename docs bypass env variable
* [Buildkite] Fix automatic retries in integration tests
2020-03-09 12:32:07 +11:00
3c8babbd4f
[DOCS] Proxy documentation not available anymore. ( #692 )
2020-03-08 16:29:16 +01:00
aea1728afc
[RELEASE] v4.6.0 ( #688 )
2020-03-06 22:26:25 +01:00
cc25b565c7
[MISC] Update Golang and QEMU to v1.14.0 and v4.2.0-6 respectively ( #685 )
...
* [MISC] Update Golang and QEMU to v1.14.0 and v4.2.0-6 respectively
* Argon2id memory in MB for Config Template
* Doc Fix
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-03-06 19:40:56 +11:00
26369fff3d
[FEATURE] Support Argon2id password hasing and improved entropy ( #679 )
...
* [FEATURE] Support Argon2id Passwords
- Updated go module github.com/simia-tech/crypt
- Added Argon2id support for file based authentication backend
- Made it the default method
- Made it so backwards compatibility with SHA512 exists
- Force seeding of the random string generator used for salts to ensure they are all different
- Added command params to the authelia hash-password command
- Automatically remove {CRYPT} from hashes as they are updated
- Automatically change hashes when they are updated to the configured algorithm
- Made the hashing algorithm parameters completely configurable
- Added reasonably comprehensive test suites
- Updated docs
- Updated config template
* Adjust error output
* Fix unit test
* Add unit tests and argon2 version check
* Fix new unit tests
* Update docs, added tests
* Implement configurable values and more comprehensive testing
* Added cmd params to hash_password, updated docs, misc fixes
* More detailed error for cmd, fixed a typo
* Fixed cmd flag error, minor refactoring
* Requested Changes and Minor refactoring
* Increase entropy
* Update docs for entropy changes
* Refactor to reduce nesting and easier code maintenance
* Cleanup Errors (uniformity for the function call)
* Check salt length, fix docs
* Add Base64 string validation for argon2id
* Cleanup and Finalization
- Moved RandomString function from ./internal/authentication/password_hash.go to ./internal/utils/strings.go
- Added SplitStringToArrayOfStrings func that splits strings into an array with a fixed max string len
- Fixed an error in validator that would allow a zero salt length
- Added a test to verify the upstream crypt module supports our defined random salt chars
- Updated docs
- Removed unused "HashingAlgorithm" string type
* Update crypt go mod, support argon2id key length and major refactor
* Config Template Update, Final Tests
* Use schema defaults for hash-password cmd
* Iterations check
* Docs requested changes
* Test Coverage, suggested edits
* Wording edit
* Doc changes
* Default sanity changes
* Default sanity changes - docs
* CI Sanity changes
* Memory in MB
2020-03-06 12:38:02 +11:00
72a3f1e0d7
[BUGFIX] Skip 2FA step if no ACL rule is two_factor ( #684 )
...
When no rule is set to two_factor in ACL configuration, 2FA is
considered disabled. Therefore, when a user cannot be redirected
correctly because no target URL is provided or the URL is unsafe,
the user is either redirected to the default URL or to the
'already authenticated' view instead of the second factor view.
Fixes #683
2020-03-06 11:31:09 +11:00
dependabot-preview[bot]
Amir Zarrinkafsh
dependabot[bot]
Clément Michaud
James Elliott