James Elliott
bf5272dc61
refactor: totp
2023-04-21 21:33:58 +10:00
James Elliott
873749a28f
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
# Conflicts:
# web/package.json
# web/pnpm-lock.yaml
2023-04-21 21:32:32 +10:00
James Elliott
033d3c0408
fix(commands): missing pkcs8 option ( #5270 )
...
Several crypto generate situations could not generate PKCS #8 ASN.1 DER format keys. Ths fixes this.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-18 12:16:45 +10:00
renovate[bot]
4050bb6a64
build(deps): update envoyproxy/envoy docker tag to v1.26.0 ( #5268 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-18 11:43:03 +10:00
James Elliott
616fa3c48d
docs: header consistency ( #5266 )
2023-04-18 09:53:26 +10:00
James Elliott
c3e785872d
Merge remote-tracking branch 'origin/master' into feat-settings-ui
2023-04-16 07:59:08 +10:00
James Elliott
4db965e19f
refactor: interfaces ( #5252 )
...
Use any alias instead of empty interfaces.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 22:35:44 +10:00
James Elliott
a8a8089f33
fix: missing files
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 16:21:42 +10:00
James Elliott
29ddc73012
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
# Conflicts:
# internal/suites/scenario_backend_protection_test.go
2023-04-15 15:05:09 +10:00
James Elliott
eaddf11df6
refactor: http verbs etc ( #5248 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 15:03:14 +10:00
James Elliott
e464295c8b
fix: more webauthn consistency fixes
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 11:00:52 +10:00
James Elliott
1341ef79d6
Merge remote-tracking branch 'origin/master' into feat-settings-ui
2023-04-15 10:52:49 +10:00
James Elliott
d2cdbb23f3
refactor(authentication): remove deprecated func ( #5246 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 10:51:50 +10:00
James Elliott
53668e0c60
feat: backport changes
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 10:03:19 +10:00
James Elliott
6c89ee1f9c
Merge orgin/master into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 03:12:55 +10:00
James Elliott
370585d1de
refactor(web): webauthn references ( #5244 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 02:54:24 +10:00
James Elliott
86b525ce21
Merge remote tracking branch origin/master into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 02:14:23 +10:00
James Elliott
2733fc040c
refactor: webauthn naming ( #5243 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 02:04:42 +10:00
James Elliott
d97c0eb0ea
fix: remove gen files
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-15 01:28:47 +10:00
James Elliott
f549afd480
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
# Conflicts:
# internal/authentication/ldap_client_mock.go
# internal/authentication/types.go
2023-04-14 21:43:04 +10:00
James Elliott
a179775f6f
refactor: misc out of band changes ( #5238 )
...
This just implements some changes from feat-settings-ui that are out of scope.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-14 21:42:31 +10:00
James Elliott
774f64a932
Merge remote tracking branch 'origin/master' into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-14 20:58:49 +10:00
James Elliott
0f4f5d5848
fix(commands): no args not enforced on crypto hash generate ( #5237 )
...
This fixes an issue where the authelia crypto hash generate command does not require no arguments leading to some confusing output.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-14 20:46:43 +10:00
Manuel Nuñez
56c10eab76
test(configuration): add additional coverage ( #4779 )
2023-04-13 21:15:28 +10:00
James Elliott
3d2da0b070
feat(oidc): client authentication modes ( #5150 )
...
This adds a feature to OpenID Connect 1.0 where clients can be restricted to a specific client authentication mode, as well as implements some backend requirements for the private_key_jwt client authentication mode (and potentially the tls_client_auth / self_signed_tls_client_auth client authentication modes). It also adds some improvements to configuration defaults and validations which will for now be warnings but likely be made into errors.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-13 20:58:18 +10:00
renovate[bot]
85e9792cf3
build(deps): update envoyproxy/envoy docker tag to v1.25.5 ( #5229 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-13 15:17:54 +10:00
James Elliott
51e1f41620
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-11 22:21:00 +10:00
James Elliott
7fdcc351d4
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
# Conflicts:
# internal/handlers/handler_register_webauthn.go
# internal/handlers/webauthn.go
# internal/handlers/webauthn_test.go
# internal/mocks/storage.go
# internal/model/webauthn.go
# internal/storage/provider.go
# internal/storage/sql_provider.go
# web/package.json
# web/pnpm-lock.yaml
# web/src/layouts/LoginLayout.tsx
2023-04-11 21:34:45 +10:00
James Elliott
c8f75b19af
fix(oidc): default response mode not validated ( #5129 )
...
This fixes an issue where the default response mode (i.e. if the mode is omitted) would skip the validations against the allowed response modes.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-11 21:29:02 +10:00
James Elliott
dfbbf1a1f3
fix(model): yaml encoding of totp and webauthn fails ( #5204 )
...
This fixes an issue where the encoding of the YAML files fails when exporting TOTP/WebAuthn devices.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-11 21:11:11 +10:00
James Elliott
569af0fef0
fix(commands): storage cmd fail when implicit config absent ( #5213 )
...
This fixes an issue where if the implicit config location of configuration.yml does not exist that an error is returned. This does not affect the behavior when the method was either implicit or environment.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-11 20:52:04 +10:00
James Elliott
157675f1f3
docs: adjust references of webauthn ( #5203 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-10 17:01:23 +10:00
James Elliott
928df8a698
Merge remote-tracking branch 'origin/master' into feat-oidc-auth-mode
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
# Conflicts:
# internal/configuration/validator/const.go
2023-04-09 13:19:29 +10:00
Matthieu7503
13a45bd360
refactor: misleading host deprecation warning ( #5194 )
...
The host deprecation to sever.host is misleading this adjusts the message to be accurate.
2023-04-08 21:22:06 +10:00
James Elliott
622bf42ed4
fix(configuration): secret permission errors panic ( #5141 )
...
This fixes an issue where attempting to load secrets the process does not have read permissions for would cause panics as well as the bit size check of the OpenID Connect 1.0 private key can potentially panic on malformed private keys. This was caused by us returning values on errors instead of nil's.
Fixes #5138
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 16:02:34 +10:00
James Elliott
0424652940
refactor: adjust openapi ( #5192 )
...
Misc fixes to OpenAPI Specification that were missed.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 15:25:19 +10:00
James Elliott
2dcfc0b04c
feat(handlers): authz authrequest authelia url ( #5181 )
...
This adjusts the AuthRequest Authz implementation behave similarly to the other implementations in as much as Authelia can return the relevant redirection to the proxy and the proxy just utilizes it if possible. In addition it swaps the HAProxy examples over to the ForwardAuth implementation as that's now supported.
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 14:48:55 +10:00
James Elliott
fa250ea7dd
fix(storage): postgresql webauthn tbl invalid aaguid constraint ( #5183 )
...
This fixes an issue with the PostgreSQL schema where the webauthn tables aaguid column had a NOT NULL constraint erroneously.
Fixes #5182
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-08 11:36:34 +10:00
renovate[bot]
cd0437cab1
build(deps): update traefik docker tag to v2.9.10 ( #5187 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-07 10:28:16 +10:00
renovate[bot]
09ca8d37d2
build(deps): update envoyproxy/envoy docker tag to v1.25.4 ( #5177 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-05 22:33:01 +10:00
renovate[bot]
098320b609
build(deps): update golang docker tag to v1.20.3 ( #5174 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-04-05 09:36:06 +10:00
James Elliott
d6a8dec0be
build(deps): unbump github.com/go-webauthn/webauthn to v0.5.0 ( #5158 )
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-02 16:09:18 +10:00
James Elliott
1ba4f705f0
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
2023-04-02 14:14:29 +10:00
renovate[bot]
789f084454
build(deps): update alpine docker tag to v3.17.3 ( #5148 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-30 11:45:55 +11:00
renovate[bot]
d0a75dd362
build(deps): update haproxy docker tag to v2.7.6 ( #5149 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-30 11:11:57 +11:00
renovate[bot]
cee5b28176
build(deps): update envoyproxy/envoy docker tag to v1.25.3 ( #5121 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-25 11:05:52 +11:00
renovate[bot]
2d429fa03e
build(deps): update traefik docker tag to v2.9.9 ( #5110 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-22 08:12:19 +10:00
renovate[bot]
3887a3d77e
build(deps): update haproxy docker tag to v2.7.5 ( #5104 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2023-03-21 11:52:16 +10:00
James Elliott
4f46514fdf
Merge remote-tracking branch 'origin/master' into feat-settings-ui
...
# Conflicts:
# web/package.json
# web/pnpm-lock.yaml
2023-03-19 08:09:17 +11:00
James Elliott
2a2f2dfee2
build(deps): update module github.com/wneessen/go-mail to v0.3.9 ( #5086 )
2023-03-19 06:50:17 +10:00