Stephen Kent
2584e3d328
feat: move webauthn device enrollment flow to new settings ui ( #4376 )
...
The current 2-factor authentication method registration flow requires
email verification for both initial 2FA registration, and 2FA
re-registration even if the user is already logged in with 2FA.
This change removes email ID verification for users who are already
logged in with 2-factor authentication. Users who have only completed
first factor authentication (password) are still required to complete
email ID verification.
2022-11-19 16:48:47 +11:00
James Elliott
ff26673659
feat: better menu matching and overview page ( #4384 )
2022-11-15 19:26:09 +11:00
James Elliott
164fc5e80d
feat: settings i18n [skip test] ( #4372 )
2022-11-14 14:49:34 +11:00
James Elliott
1a1b85489c
feat: settings ui device details ( #4369 )
...
This adds details to the settings ui.
2022-11-14 13:19:18 +11:00
James Elliott
9b66bb4fe2
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
# Conflicts:
# internal/model/webauthn.go
2022-11-13 09:19:22 +11:00
Clément Michaud
a69ba22f46
feat: implement a ui for supporting multiple u2f devices
2022-10-30 09:52:49 +01:00
James Elliott
a283fda6d6
fix(oidc): handle authorization post requests ( #4270 )
...
This fixes an issue where the authorization endpoint was not handling post requests as per the specification. It also fixes the missing CORS middleware on the authorization endpoint.
2022-10-26 19:14:43 +11:00
James Elliott
e3d82bcfa0
refactor: fix misc alignment issues and gen ( #4239 )
2022-10-23 07:42:19 +11:00
James Elliott
00ab279336
refactor: csp gen ( #4163 )
...
Generator for CSP.
2022-10-22 22:19:32 +11:00
James Elliott
3aaca0604f
feat(oidc): implicit consent ( #4080 )
...
This adds multiple consent modes to OpenID Connect clients. Specifically it allows configuration of a new consent mode called implicit which never asks for user consent.
2022-10-20 13:16:36 +11:00
James Elliott
3a70f6739b
feat(authentication): file password algorithms ( #3848 )
...
This adds significant enhancements to the file auth provider including multiple additional algorithms.
2022-10-17 21:51:59 +11:00
James Elliott
3107e493e7
refactor: adjust defaults ( #4137 )
...
* refactor: adjust defaults
* refactor: adjust level
* refactor: adjust level
* refactor: fix templates
2022-10-07 13:52:01 +11:00
James Elliott
ed7092c59a
feat: envoy support ( #3793 )
...
Adds support for Envoy and Istio using the X-Authelia-URL header. The documentation will be published just before the release.
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2022-10-01 21:47:09 +10:00
James Elliott
b25578392f
i18n: update translations ( #4053 )
2022-09-24 08:27:10 +10:00
James Elliott
c756c7b67b
i18n: update translations ( #3972 )
2022-09-16 15:01:22 +10:00
James Elliott
15110b732a
fix(server): i18n etags missing ( #3973 )
...
This fixes missing etags from locales assets.
2022-09-16 11:19:16 +10:00
James Elliott
d7fd9ca506
refactor(logging): implement common interfaces ( #3994 )
...
This implements and leverages some common library logging interfaces.
2022-09-10 18:02:57 +10:00
James Elliott
cd9bfe3f90
fix(web): i18n explicit lang ignored ( #3961 )
...
This fixes an issue where explicit languages such as nl-NL, pt-PT, zh-CH, and zh-TW are ignored even though they're supported.
2022-09-06 09:09:33 +10:00
James Elliott
9c5a8b77aa
i18n: update translations for portal.json (chinese simplified) ( #3962 )
2022-09-06 06:08:05 +10:00
James Elliott
305619f324
i18n: update translation for portal.json (portuguese) ( #3932 )
2022-09-01 06:22:22 +10:00
James Elliott
0f64618cb6
i18n: update translations ( #3699 )
2022-08-09 10:35:33 +10:00
James Elliott
342497a869
refactor(server): use errgroup to supervise services ( #3755 )
...
Uses the errgroup package and pattern for supervising services like servers etc.
2022-08-09 07:50:12 +10:00
James Elliott
f12346e39c
fix(server): missing cache-control header ( #3737 )
...
This fixes a missing cache control header.
Fixes #3732 .
2022-07-25 20:43:50 +10:00
James Elliott
f115f77df8
fix(web): offline_access consent description ( #3679 )
2022-07-11 16:24:09 +10:00
James Elliott
394dafde01
refactor(server): factorize and improve csp ( #3509 )
2022-07-09 12:00:21 +10:00
James Elliott
3b7c858477
i18n: update translations ( #3544 )
...
* i18n: update translation for portal.json (Chinese Simplified)
* i18n: update translation for portal.json (Dutch)
* i18n: update translation for portal.json (German)
* i18n: update translation for portal.json (French)
2022-07-08 23:34:43 +10:00
James Elliott
d2f1e5d36d
feat(configuration): automatically map old keys ( #3199 )
...
This performs automatic remapping of deprecated configuration keys in most situations.
2022-06-28 13:15:50 +10:00
James Elliott
001589cd6d
feat(metrics): implement prometheus metrics ( #3234 )
...
Adds ability to record metrics and gather them for Prometheus.
2022-06-14 17:20:13 +10:00
James Elliott
5e3a1fd863
fix(server): handled errors not logged correctly ( #3507 )
...
This fixes an issue where errors handled by the ErrorHandler were not correctly logged. It also ensures the errors are logged with fields to make them easy to diagnose.
Fixes #3506
2022-06-12 09:26:28 +10:00
Amir Zarrinkafsh
a22e320f42
refactor(server): alphabetize translations ( #3499 )
2022-06-10 11:55:38 +10:00
James Elliott
a50d425863
refactor(middlewares): convert the bridge to a builder ( #3338 )
...
This adjusts the bridge to be utilized as a builder in order to make it more reusable.
2022-06-10 11:34:43 +10:00
Manuel Nuñez
37de389c2f
feat(web): translation for page title/footer ( #3401 )
...
Add translations for title and footer.
2022-06-09 11:46:15 +10:00
James Elliott
a793ef8b5a
i18n: update translations ( #3447 )
2022-05-28 17:01:54 +10:00
haowei
3a2804928f
i18n: add zh-tw translation for portal.json ( #3439 )
2022-05-28 14:43:21 +10:00
SvanGlan
71c47c7344
i18n: update sv translation of portal.json ( #3430 )
...
Correct a few issues in the Swedish translation files.
2022-05-25 21:28:40 +10:00
James Elliott
aa5bee68f7
i18n: update translations ( #3425 )
2022-05-25 12:46:47 +10:00
James Elliott
77ac770585
i18n: update translations ( #3399 )
2022-05-24 22:07:24 +10:00
SvanGlan
40bfef9aaa
i18n: add sv translation for portal.json ( #3421 )
2022-05-24 21:48:02 +10:00
Auzborn123
2e1bfaa7db
i18n: fix ru translation ( #3384 )
...
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-05-18 15:09:23 +10:00
Auzborn123
5dacdd1278
i18n: add ru translation for portal.json ( #3367 )
2022-05-16 11:19:28 +10:00
James Elliott
0855ea2f71
fix(server): missing cache and xss headers ( #3289 )
...
Addresses documentation and a couple of headers which were missed.
2022-05-04 14:47:23 +10:00
James Elliott
556a115c83
fix(server): missing modern security headers ( #3288 )
...
This fixes an issue with missing modern security headers such as the X-Content-Type-Options, Referer-Policy, etc.
2022-05-03 12:19:30 +10:00
James Elliott
4710de33a4
refactor(configuration): remove ptr for duoapi and notifier ( #3200 )
...
This adds to the ongoing effort to remove all pointers to structs in the configuration without breaking backwards compatibility.
2022-04-16 09:34:26 +10:00
James Elliott
79935c7e2e
fix(server): locale format incorrect ( #3154 )
...
This fixes an issue where the locale would be formatted as en-en instead of en-US.
2022-04-09 21:38:17 +10:00
James Elliott
f9da940bfc
fix(web): description of profile scope is not accurate ( #3146 )
...
This adjusts the profile scope to be described as "Access your profile information" as it accesses more than the display name now.
2022-04-09 08:47:21 +10:00
James Elliott
66a450ed38
feat(oidc): pre-configured consent ( #3118 )
...
Allows users to pre-configure consent if enabled by the client configuration by selecting a checkbox during consent.
Closes #2598
2022-04-08 15:35:21 +10:00
James Elliott
4503ac07be
fix(web): lowercase locales are not consistent with localization platforms ( #3141 )
...
This fixes an issue with localization platforms and the docs regarding localization, and the forcing locale names to lowercase.
2022-04-08 14:53:46 +10:00
James Elliott
ce6bf74c8d
fix(server): incorrect remote ip logged in error handler ( #3139 )
...
This fixes edge cases where the remote IP was not correctly logged. Generally this is not an issue as most errors do not hit this handler, but in instances where a transport error occurs this is important.
2022-04-08 14:13:47 +10:00
James Elliott
90edf11b88
feat(web): add user display name to oidc consent view ( #3138 )
...
This adds the current logged in users display name to the consent page as well as some other minor tweaks.
Closes #2595
2022-04-08 12:50:55 +10:00
James Elliott
4ebd8fdf4e
feat(oidc): provide cors config including options handlers ( #3005 )
...
This adjusts the CORS headers appropriately for OpenID Connect. This includes responding to OPTIONS requests appropriately. Currently this is only configured to operate when the Origin scheme is HTTPS; but can easily be expanded in the future to include additional Origins.
2022-04-07 10:58:51 +10:00