Commit Graph

1805 Commits (a31a17b2223cae0c3c56c462cde9e6ebb0bea46a)

Author SHA1 Message Date
Amir Zarrinkafsh a31a17b222
fix(cmd): retry clean tag logic for dockerhub (#1976)
This change will ensure that if the curl command for the cleaning of Docker tags on DockerHub fails it will be reattempted up to 2 more times (total of 3) with a 10 second sleep between each attempt.

The clean tag logic itself within curl attempts to execute the http request upto 3 times so this will ensure a maximum of 9 attempts.
2021-05-05 17:09:31 +10:00
Clément Michaud 4e8d472e46
release: v4.29.0 (#1972)
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-05-05 11:46:07 +10:00
renovate[bot] ea76455ff3
build(deps): update dependency @types/node to v15.0.2 (#1974)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-05-05 11:24:31 +10:00
James Elliott a984e2700b
refactor: use fatal log message on oidc init error (#1973)
Instead of using panic() when an unknown error was detected on OP initialization, use logger.Fatalf. This provides a more useful output to the user.
2021-05-05 10:50:24 +10:00
renovate[bot] 3c4b320096
build(deps): update dependency @types/react to v17.0.5 (#1970)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-05-05 09:32:40 +10:00
Clément Michaud e8e29831c1
docs: add oidc package in contributor guidelines (#1971) 2021-05-05 09:08:14 +10:00
James Elliott ddea31193b
feature(oidc): add support for OpenID Connect
OpenID connect has become a standard when it comes to authentication and
in order to fix a security concern around forwarding authentication and authorization information
it has been decided to add support for it.

This feature is in beta version and only enabled when there is a configuration for it.
Before enabling it in production, please consider that it's in beta with potential bugs and that there
are several production critical features still missing such as all OIDC related data is stored in
configuration or memory. This means you are potentially going to experience issues with HA
deployments, or when restarting a single instance specifically related to OIDC.

We are still working on adding the remaining set of features before making it GA as soon as possible.

Related to #189

Co-authored-by: Clement Michaud <clement.michaud34@gmail.com>
2021-05-05 00:15:36 +02:00
renovate[bot] 48d8e1e541
build(deps): update dependency eslint-formatter-rdjson to v1.0.4 (#1969)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-05-04 09:46:06 +02:00
Amir Zarrinkafsh 9f3bd0e589
build(deps): update swagger-ui to v3.48.0 (#1967) 2021-05-04 08:31:50 +10:00
renovate[bot] ec17389a54
build(deps): update module github.com/fasthttp/session/v2 to v2.3.2 (#1962)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-30 11:57:33 +10:00
renovate[bot] 908146d6f0
build(deps): update module github.com/fasthttp/router to v1.3.12 (#1961)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-30 09:54:49 +10:00
renovate[bot] 77c3058368
build(deps): update mariadb docker tag to v10.6.0 (#1958)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-29 15:59:16 +10:00
renovate[bot] 181f65f3c9
build(deps): update dependency @types/node to v15 (#1952)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-29 10:49:51 +10:00
renovate[bot] 7831212d02
build(deps): update module github.com/valyala/fasthttp to v1.24.0 (#1957)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-29 08:57:33 +10:00
renovate[bot] a4e7a794b8
build(deps): update dependency @material-ui/core to v4.11.4 (#1954)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 10:03:50 +02:00
renovate[bot] b2ca9b7805
build(deps): update dependency @craco/craco to v6.1.2 (#1955)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 09:19:10 +02:00
renovate[bot] 06a2fb8026
build(deps): update dependency @types/node to v14.14.43 (#1951)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 15:49:25 +10:00
renovate[bot] d6a767745b
build(deps): update dependency @types/chai to v4.2.17 (#1950)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 13:53:36 +10:00
renovate[bot] e7ce5c1ff7
build(deps): update dependency @types/jest to v26.0.23 (#1949)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-28 09:29:00 +10:00
renovate[bot] cf2687bb57
build(deps): update dependency @types/react to v17.0.4 (#1948)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-27 16:03:53 +10:00
renovate[bot] 3593c94511
build(deps): update dependency eslint-config-prettier to v8.3.0 (#1946)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-25 09:43:37 +02:00
renovate[bot] b952e9e71d
build(deps): update haproxy docker tag to v2.3.10 (#1942)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-24 10:43:48 +02:00
renovate[bot] d321ae9be1
build(deps): update dependency @types/classnames to v2.3.0 (#1937)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-23 10:57:16 +10:00
renovate[bot] dafd61f08d
build(deps): update module github.com/simia-tech/crypt to v0.5.0 (#1938)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-21 22:25:38 +02:00
dependabot[bot] 823be5d179
build(deps): bump ssri from 6.0.1 to 6.0.2 in /web (#1933)
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/npm/ssri/releases)
- [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md)
- [Commits](https://github.com/npm/ssri/compare/v6.0.1...v6.0.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-20 09:58:58 +10:00
allcontributors[bot] d1d0aa967d
docs: add jonbayl as a contributor (#1930)
* docs: update README.md

* docs: update .all-contributorsrc

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-04-18 19:13:40 +10:00
Amir Zarrinkafsh 3d08e03592
ci(buildkite): log ghcr id on branch tag removal (#1929) 2021-04-18 14:20:45 +10:00
James Elliott c16edda893
release: v4.28.2 (#1928) 2021-04-18 11:01:39 +10:00
James Elliott 706fbfdb2c
fix(session): ensure default cookie samesite value is lax (#1926)
This implements a change to the default behaviour of the cookies generated by the sessions package. The old behaviour was to set the SameSite=None, this changes it to SameSite=Lax. Additionally this puts the option in the hands of the end-user so they can decide for themselves what the best option is.
2021-04-18 10:02:04 +10:00
James Elliott 2f1e45071a
release: v4.28.1 (#1924) 2021-04-16 12:20:31 +10:00
James Elliott cc4f47f21c
fix: removed deprecated smtp/ldap options (#1912)
This removes the deprecated options from 4.25. This includes the LDAP filters which allow {0} or {1} placeholders. The new aliases are documented. Additionally it refactors the keys validator to use uniform messages for most replaced keys.
2021-04-16 11:44:37 +10:00
renovate[bot] 168dbf7265
build(deps): update dependency @types/node to v14.14.41 (#1923)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 21:42:57 +02:00
Clément Michaud 7c18081f57
ci: include version in the name of tar.gz artifacts (#1919)
This makes sure the version is included in GitHub artifacts.

Fix #1918

Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-04-15 17:56:32 +10:00
renovate[bot] 605fba0422
build(deps): update dependency eslint-plugin-prettier to v3.4.0 (#1922)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 14:27:16 +10:00
renovate[bot] f3e35baa29
build(deps): update dependency @types/node to v14.14.39 (#1920)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 14:06:07 +10:00
renovate[bot] 756ba04980
build(deps): update arm64v8/alpine docker tag to v3.13.5 (#1917)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 12:43:24 +10:00
Amir Zarrinkafsh db55325152
fix(suites): ensure k8s suite utilises the registry cache (#1921) 2021-04-15 12:07:19 +10:00
renovate[bot] 4318bb1e0c
build(deps): update alpine docker tag to v3.13.5 (#1915)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-15 08:54:56 +10:00
renovate[bot] 0684c953b8
build(deps): update arm32v7/alpine docker tag to v3.13.5 (#1916)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 22:08:50 +02:00
renovate[bot] fed55be3e1
build(deps): update module github.com/mattn/go-sqlite3 to v1.14.7 (#1914)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 21:49:42 +02:00
James Elliott 1e30b00f7e
fix(validator): misleading warning for empty acl domains (#1898)
This fixes misleading errors for ACL rules with an empty list of domains. This also enables admins to have a default policy with zero ACL rules as long as the default policy is not deny or bypass. It also adds a rule number to all ACL rule related log messages which is the position in the YAML list plus 1. Lastly it adds comprehensive per rule HIT/MISS logging when Authelia trace logging is enabled. This trace logging includes the rule number.
2021-04-14 20:53:23 +10:00
allcontributors[bot] a6ebf4ad4c
docs: add lavih as a contributor (#1913)
* docs: update README.md

* docs: update .all-contributorsrc

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-04-14 20:08:53 +10:00
renovate[bot] 9fad66596a
build(deps): update dependency eslint-config-prettier to v8.2.0 (#1911)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-04-14 11:28:07 +10:00
Clément Michaud 80216b9474
release: 4.28.0 (#1910) 2021-04-13 21:10:56 +10:00
Clément Michaud c9b853d736
docs: Add a page listing supported proxies. (#1907)
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-13 10:41:49 +02:00
James Elliott f0cb75e1e1
fix(handlers): logout redirection validation (#1908) 2021-04-13 10:38:12 +02:00
Clément Michaud 42cee0ed6c
docs(proxy): clarify the workflow of a client request payload. (#1838)
Fix #1836
2021-04-13 07:47:30 +10:00
Clément Michaud ce77aed178
fix: bump gems used to generate documentation. (#1902)
This solves the security issue reported by dependabot.

Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-04-12 14:21:06 +10:00
James Elliott 619da0f7ec
docs: misc fixes to documentation after overhaul (#1906) 2021-04-12 13:21:19 +10:00
James Elliott 9e7b73bd56
refactor(authentication): add trace logs for the user/group baseDN (#1904)
This logs the baseDN for user and group searching on startup as well as the users filter (with just input remaining). Additionally refactors the location of a few log messages, and exposes the logger to the provider to reduce calls to logging.Logger().
2021-04-12 11:10:50 +10:00