Commit Graph

2339 Commits (cee5a684223a7d01cd57524b2080450ca3a61244)

Author SHA1 Message Date
renovate[bot] 65dd2a1341
build(deps): update traefik docker tag to v1.7.32 (#2458)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-07 09:05:05 +11:00
renovate[bot] 451f84f13f
build(deps): update haproxy docker tag to v2.4.7 (#2455) 2021-10-06 20:54:05 +11:00
renovate[bot] 6370c16c95
build(deps): update traefik docker tag to v1.7.31 (#2450)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-06 08:38:29 +11:00
Amir Zarrinkafsh 209b39ffd0
docs: fix required flag for smtp notifier sender option (#2446)
Fixes: #2445.
2021-10-04 13:44:59 +11:00
allcontributors[bot] 9a7968e4c9
docs: add mpdcampbell as a contributor for doc (#2444)
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2021-10-04 12:17:52 +11:00
Michael Campbell 5db9adc7e3
docs: fix broken url in config.template.yml (#2443)
* docs: fix broken url in config.template.yml
2021-10-04 12:13:54 +11:00
renovate[bot] 8251b7a785
build(deps): update dependency @types/react to v17.0.27 (#2442)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-04 10:21:48 +11:00
renovate[bot] 0e120b187d
build(deps): update dependency @testing-library/react to v12.1.2 (#2441)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-04 09:48:02 +11:00
renovate[bot] 6bd41838e4
build(deps): update module github.com/knadh/koanf to v1.2.4 (#2440)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-03 21:55:55 +11:00
renovate[bot] 9e22516f2c
build(deps): update module github.com/ory/herodot to v0.9.11 (#2437)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-03 12:06:23 +11:00
renovate[bot] 858bab0831
build(deps): update module github.com/ory/herodot to v0.9.10 (#2434)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-02 16:27:07 +10:00
Amir Zarrinkafsh a32d030144
ci(buildkite): remove automatic retries for lint step (#2435)
* ci(buildkite): remove automatic retries for lint step

* refactor(web): refactor commitlint hook for windows
2021-10-02 15:56:46 +10:00
renovate[bot] 0351546cf0
build(deps): update dependency axios to v0.22.0 (#2433)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-01 21:42:36 +10:00
Amir Zarrinkafsh 33fe1262bd
docs: fix typo in secrets env var (#2432) 2021-10-01 13:30:56 +10:00
renovate[bot] 28e702f5c8
build(deps): update postgres docker tag to v14 (#2430)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-01 11:03:06 +10:00
renovate[bot] 19aff56748
build(deps): update dependency @types/react to v17.0.26 (#2429)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-01 10:49:09 +10:00
renovate[bot] ed451648c0
build(deps): update module github.com/ory/herodot to v0.9.9 (#2428)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-10-01 10:21:21 +10:00
Amir Zarrinkafsh e8a52f4794
refactor: replace sqlite library with the original cgo variant (#2427)
* refactor: replace sqlite library with the original cgo variant

This change reverts our SQLite library back to the original for compatibility and performance reasons now that we always package with CGO.

* fix: cgo and build flags

* fix: gcc requirement

* fix: gcc in dev workflow too
2021-10-01 09:58:33 +10:00
renovate[bot] cbe1aad7fe
build(deps): update dependency @types/react to v17.0.25 (#2426) 2021-09-30 08:38:58 +10:00
Amir Zarrinkafsh 3d312cf3b9
refactor: replace yarn with pnpm (#2424)
* Check for pnpm in authelia-scripts
* Improve husky hooks to check for required apps
* Use pnpm in coverage dockerfile
* Use pnpm in dev workflow
* Stop buildx log truncation
* Ignore pnpm lockfile in yamllint
* Update versions required for docker and docker-compose in contributing docs
2021-09-29 17:24:21 +10:00
renovate[bot] 2f3f0818c3
build(deps): update commitlint monorepo to v13.2.0 (#2421)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-29 11:16:56 +10:00
renovate[bot] a80b8d4933
build(deps): update dependency @testing-library/react to v12.1.1 (#2419)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-29 10:04:45 +10:00
dependabot[bot] 3b2e4ad477
build(deps): bump nokogiri from 1.11.4 to 1.12.5 in /docs (#2420)
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.11.4 to 1.12.5.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.11.4...v1.12.5)

---
updated-dependencies:
- dependency-name: nokogiri
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-09-29 09:24:34 +10:00
Amir Zarrinkafsh f37cb76f6f
feat(web): remove sourcemap generation (#2423) 2021-09-28 17:09:31 +10:00
Amir Zarrinkafsh c9f5b3de88
feat(web): replace babel-loader and terser with esbuild (#2422) 2021-09-28 16:27:06 +10:00
James Elliott 6a75fc6f67
build(deps): update module github.com/golang-jwt/jwt/v4 to v4.1.0 (#2418) 2021-09-26 22:06:11 +10:00
Amir Zarrinkafsh d7763a20ec
build(deps): update swagger-ui to v3.52.3 (#2412) 2021-09-26 12:25:14 +10:00
Amir Zarrinkafsh bd6a8e3ea2
feat: hardened authelia binaries (#2410)
* feat: hardened authelia binaries

This change ensures that all Authelia binaries which are compiled and distributed are hardened with the following standards:

* RELRO
* Stack canary
* NX
* PIE/ASLR
* Stripped RPATH AND RUNPATH
* Stripped Symbols
* Fortify

The musl variants currently [do not support Fortify](https://wiki.musl-libc.org/future-ideas.html#Fortify).

* refactor: docker pull for authelia/crossbuild in background
2021-09-26 12:08:47 +10:00
renovate[bot] bbd85bd558
build(deps): update dependency @types/react-router-dom to v5.3.0 (#2408)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-22 14:11:07 +10:00
renovate[bot] 958829f2f5
build(deps): update dependency @types/react to v17.0.24 (#2407)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-09-22 13:58:04 +10:00
contrun 64e7f80d41
docs: update traefik forwardauth link 2021-09-22 13:38:02 +10:00
dependabot[bot] e5ffd8dae9
build(deps): bump tmpl from 1.0.4 to 1.0.5 in /web (#2405)
Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/daaku/nodejs-tmpl/releases)
- [Commits](https://github.com/daaku/nodejs-tmpl/commits/v1.0.5)

---
updated-dependencies:
- dependency-name: tmpl
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-09-22 13:32:42 +10:00
renovate[bot] 0f3bddb15a
build(deps): update module github.com/fasthttp/session/v2 to v2.4.3 (#2402)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-22 09:56:35 +10:00
renovate[bot] 6343f70f01
build(deps): update traefik docker tag to v2.5.3 (#2401)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-21 10:40:22 +10:00
renovate[bot] fac597cb2f
build(deps): update dependency @types/react to v17.0.22 (#2399)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-20 20:18:08 +10:00
Amir Zarrinkafsh 7ab6175cf4
ci(buildkite): fix post-manifest tag cleanup (#2395) 2021-09-18 18:09:19 +10:00
Amir Zarrinkafsh cb0b9a09ab
ci(buildkite): improve logging for post-manifest tag cleanup (#2394) 2021-09-18 15:48:23 +10:00
Amir Zarrinkafsh 7bb878ffff
ci(buildkite): fix ghcr tag cleanup (#2390)
* ci(buildkite): fix ghcr tag cleanup

* ci(buildkite): do not remove empty tags
2021-09-18 00:15:43 +10:00
Amir Zarrinkafsh 57a35abd3b
ci(buildkite): fix index update post release (#2388) 2021-09-17 20:59:41 +10:00
Amir Zarrinkafsh 26aa806e9c
release: v4.31.0 (#2387) 2021-09-17 20:08:15 +10:00
James Elliott aed9099ce2
refactor: factorize startup checks (#2386)
* refactor: factorize startup checks

* refactor: address linting issues
2021-09-17 19:53:59 +10:00
allcontributors[bot] 8e4dc91b81
docs: add you1996 as a contributor for code (#2385)
* docs: update README.md

* docs: update .all-contributorsrc
2021-09-17 15:56:18 +10:00
Clément Michaud 92d328926d
refactor(handlers): lower case error messages (#2289)
* refactor(handlers): lower case error messages

also refactor verifyAuth function to detect malicious activity both with session
cookie and authorization header.

* refacto(handlers): simplify error construction

* fix(handlers): check prefix in authorization header to determine auth method

* fix(handlers): determining the method should be done with headers instead of query arg

* refacto(handlers): rollback changes of verifyAuth

* don't lowercase log messages

* Apply suggestions from code review

Make sure logger errors are not lowercased.

* fix: uppercase logger errors and remove unused param

* Do not lowercase logger errors
* Remove unused param targetURL
* Rename url variable to not conflict with imported package

Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-09-17 15:53:40 +10:00
yossbg 05406cfc7b
feat(ntp): check clock sync on startup (#2251)
This adds method to validate the system clock is synchronized on startup. Configuration allows adjusting the server address, enabled state, desync limit, and if the error is fatal.

Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-09-17 14:44:35 +10:00
Amir Zarrinkafsh fad6317bb5
ci(buildkite): remove test concurrency step (#2384)
* ci(buildkite): remove test concurrency step

* fix: remove concurrency_group from integration test steps
2021-09-17 11:09:38 +10:00
Amir Zarrinkafsh 57705be468
refactor: use authelia/debpackager:latest manifest (#2383) 2021-09-17 10:08:57 +10:00
Amir Zarrinkafsh 92ec00d7c5
feat: builds with gox and buildx (#2381)
* feat: builds with gox and buildx

This change builds all of Authelia respective binaries in parallel within a single step and distributes as necessary to subsequent steps, we now also build and distribute for the following OS/Architecture: freebsd/amd64.

Our CI/CD pipeline now also utilises docker buildx as a default for builds and pushes.

* refactor: clean up docker helper

* Remove `authelia-scripts docker push-image` command as all pushes will be performed with buildx and manifests
* Rename the --arch flag to --container
* Add Dockerfile.dev for users that want to build an Authelia container from source without utilising suites
* Set Dockerfile.dev as default for `authelia-scripts docker build` command

* refactor: variant -> container
2021-09-16 22:39:18 +10:00
renovate[bot] e1ca24344a
build(deps): update dependency prettier to v2.4.1 (#2382)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
2021-09-16 19:59:26 +10:00
Amir Zarrinkafsh 11032bdf93
fix(server): remove obselete memory check warning (#2380)
Given the fact that many Linux OSes are defaulting to CGroups v2 and also Authelia changing the default memory config for argon2id this warning is now obselete.
2021-09-16 12:26:34 +10:00
Alex Gustafsson a88c5588e8
feat: add config flag to hash-password tool (#2047)
This change implements a --config flag for the hash-password which parses the config and validates it just as it would at run-time. The values specified in the config replace those specified as parameters.

* feat(cmd): add config flag to hash-password tool
* fix(cmd): fix linting issue

Closes: #1709.
2021-09-16 10:20:42 +10:00