99326c2688
build(deps): update dependency haproxy to v2.5.5 ( #3018 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-16 13:43:33 +11:00
f8d9c6eab7
build(deps): update dependency haproxy to v2.5.4 ( #2931 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2022-03-01 15:04:34 +11:00
eb76de6cdc
build(deps): update dependency haproxy to v2.5.3 ( #2897 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-02-24 03:12:26 +11:00
535ad2a697
build(deps): update haproxy docker tag to v2.5.1 ( #2793 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2022-01-12 23:54:50 +11:00
c128359c74
build(deps): update haproxy docker tag to v2.5.0 ( #2624 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-11-24 11:36:46 +11:00
83488d52a6
refactor(suites): replace selenium with go-rod ( #2534 )
...
* refactor(suites): replace selenium with go-rod
This change replaces [tebeka/selenium](https://github.com/tebeka/selenium ) with [go-rod](https://github.com/go-rod/rod ).
We no longer have a chromedriver/external driver dependency to utilise Selenium as we instead utilise the Chrome Dev Protocol to communicate with the browser.
Rod [documents](https://go-rod.github.io/#/why-rod ) benefits of choosing the library as opposed to the available alternatives.
2021-11-06 00:14:42 +11:00
ed0efb76b3
build(deps): update haproxy docker tag to v2.4.8 ( #2563 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-11-04 12:00:23 +11:00
451f84f13f
build(deps): update haproxy docker tag to v2.4.7 ( #2455 )
2021-10-06 20:54:05 +11:00
4da10f9cea
build(deps): update haproxy docker tag to v2.4.4 ( #2351 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-08 09:52:49 +10:00
956db2dbaa
build(deps): update haproxy docker tag to v2.4.3 ( #2295 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-08-18 14:50:49 +10:00
d2422e9965
build(deps): update haproxy docker tag to v2.4.2 ( #2168 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-07-09 08:49:30 +10:00
9640b48b60
build(deps): update haproxy docker tag to v2.4.1 ( #2120 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-06-27 14:22:29 +10:00
d28d36b568
build(deps): update haproxy docker tag to v2.4.0 ( #2004 )
...
* build(deps): update haproxy docker tag to v2.4.0
* fix(suites): fix haproxy dockerfile user
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-05-26 14:13:53 +10:00
b952e9e71d
build(deps): update haproxy docker tag to v2.3.10 ( #1942 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-24 10:43:48 +02:00
d33d6c2f00
ci: add yamllint ( #1895 )
...
This change implements yamllint and adjusts all yaml files to abide by our linting setup. This excludes config.template.yml as this will be done in an alternate commit.
2021-04-11 06:51:00 +10:00
92da7a21de
build(deps): update haproxy docker tag to v2.3.9 ( #1873 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-03-31 13:52:05 +11:00
5ab334dcdc
build(deps): update haproxy docker tag to v2.3.8 ( #1858 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-03-28 02:06:58 +11:00
e7c9d55c23
build(deps): update haproxy docker tag to v2.3.7 ( #1834 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-03-17 08:51:46 +11:00
4dce8f9496
perf(authorizer): preload access control lists ( #1640 )
...
* adjust session refresh to always occur (for disabled users)
* feat: adds filtering option for Request Method in ACL's
* simplify flow of internal/authorization/authorizer.go's methods
* implement query string checking
* utilize authorizer.Object fully
* make matchers uniform
* add tests
* add missing request methods
* add frontend enhancements to handle request method
* add request method to 1FA Handler Suite
* add internal ACL representations (preparsing)
* expand on access_control next
* add docs
* remove unnecessary slice for network names and instead just use a plain string
* add warning for ineffectual bypass policy (due to subjects)
* add user/group wildcard support
* fix(authorization): allow subject rules to match anonymous users
* feat(api): add new params
* docs(api): wording adjustments
* test: add request method into testing and proxy docs
* test: add several checks and refactor schema validation for ACL
* test: add integration test for methods acl
* refactor: apply suggestions from code review
* docs(authorization): update description
2021-03-05 15:18:31 +11:00
455b859047
build(deps): update haproxy docker tag to v2.3.6 ( #1779 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-03-04 14:15:01 +11:00
59b3c2cbd8
build(deps): update haproxy docker tag to v2.3.5 ( #1737 )
...
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-02-22 15:06:10 +11:00
8fa76499cb
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1601 )
...
Bumps haproxy from 2.3.3-alpine to 2.3.4-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-01-15 10:45:36 +11:00
6aa0e5fa7d
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1591 )
...
Bumps haproxy from 2.3.2-alpine to 2.3.3-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-01-11 10:01:26 +11:00
c9837568b5
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1501 )
...
Bumps haproxy from 2.3.1-alpine to 2.3.2-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-03 09:54:21 +11:00
495e57b46c
[DOCS] Make HAProxy regex case insensitive ( #1478 )
2020-11-24 12:35:38 +11:00
f42b1ea229
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1463 )
...
Bumps haproxy from 2.3.0-alpine to 2.3.1-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-11-16 11:49:52 +11:00
a5f07d7ade
[MISC] (deps): Bump haproxy from 2.2.4-alpine to 2.3.0-alpine in /internal/suites/example/compose/haproxy ( #1431 )
...
* [MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy
Bumps haproxy from 2.2.4-alpine to 2.3.0-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
* Fix HAProxy suite
Looks like the new version of HAProxy has config validation which expects a newline at the bottom of `haproxy.cfg`.
CI was failing with the following error:
[NOTICE] 313/021816 (1) : haproxy version is 2.3.0-1c0a722
[ALERT] 313/021816 (1) : parsing [/usr/local/etc/haproxy/haproxy.cfg:80]: Missing LF on last line, file might have been truncated at position 42.
[ALERT] 313/021816 (1) : Error(s) found in configuration file : /usr/local/etc/haproxy/haproxy.cfg
[ALERT] 313/021816 (1) : Fatal errors found in configuration.
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-11-09 13:35:18 +11:00
a83ccd7188
[FEATURE] Add Remote-Name and Remote-Email headers ( #1402 )
2020-10-26 22:38:08 +11:00
4a9ed76f32
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1359 )
...
Bumps haproxy from 2.2.3-alpine to 2.2.4-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-10-08 10:46:43 +11:00
607f829431
[DOCS] Clean HAProxy examples ( #1338 )
...
Remove headers that are not required and fix a typo.
2020-09-23 17:29:46 +10:00
5b98b4d090
[BUGFIX] Fix HAProxy redirects ( #1333 )
...
Including updates to docs examples.
2020-09-23 09:06:26 +10:00
01760d167f
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1312 )
...
Bumps haproxy from 2.2.2-alpine to 2.2.3-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-09-10 11:21:20 +10:00
771c220d38
[FEATURE] Support updated haproxy-auth-request ( #1310 )
...
* [FEATURE] Support updated haproxy-auth-request
This version removes the dependency of lua-socket which seemed to result in many unsupported and broken BSD/Pfsense deployments.
* Fix docs indentation
* Add haproxy-lua-http to TLS enabled configuration
2020-09-10 10:52:57 +10:00
ed17c8fbc4
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1250 )
...
Bumps haproxy from 2.2.1-alpine to 2.2.2-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-08-04 08:02:35 +10:00
f6a616ae3d
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1235 )
...
Bumps haproxy from 2.2.0-alpine to 2.2.1-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-07-28 11:18:16 +10:00
fea58c52e0
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1190 )
...
Bumps haproxy from 2.1-alpine to 2.2.0-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-07-13 14:21:45 +10:00
af5754bcab
[MISC] Add coverage for Remote-User and Remote-Groups ( #982 )
...
* Fix dev workflow.
* Fix dev workflow.
* Cover Remote-User and Remote-Groups using Traefik.
* Cover Remote-User and Remote-Groups using HAProxy.
* Fix redirection after unauthorized response when using HAProxy.
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-05-06 11:50:37 +10:00
730e88df9d
[FEATURE] Make Authelia serve over TLS in all suites ( #864 )
...
* [BUGFIX] Fix dev workflow by using TLS for all suites.
* Fix traefik 1.x and 2.x suites.
* Display authelia logs on suite failure.
* Fix HAProxy suite.
* Extend timeout of test case.
* Display current URL in verify assertion.
* fix doLoginTwoFactor by adding a timeout
* when doLoginTwoFactor is used with blank target and a protected domain is quickly visited authelia sometimes redirects back to the portal
* fix by adding one second timeout
* bump go version to 1.14.2
* Fix Kube suite and bump dashboard.
* Update dist authelia-frontend to proxy_pass with variable
* Apply suggestions from code review
Co-Authored-By: Amir Zarrinkafsh <nightah@me.com>
* Apply suggestions from code review
Co-Authored-By: Amir Zarrinkafsh <nightah@me.com>
* Remove debug logs since it's polluting logs.
Also set timeout back to 5 seconds in HA suite.
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-04-14 09:57:28 +10:00
0189688588
[MISC] Allow HEAD method on /api/verify ( #850 )
...
This is to natively support the upstream HAProxy module haproxy-auth-request without patching.
2020-04-11 12:14:26 +10:00
f1a89de2e7
[MISC] Restructure repo folder layout ( #628 )
2020-02-09 18:04:27 +01:00
renovate[bot]
Amir Zarrinkafsh
James Elliott
dependabot-preview[bot]
Timo
Clément Michaud