authelia

Commit Graph

Author	SHA1	Message	Date
James Elliott	11eafba079	docs: update blog (#5251 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-15 16:08:29 +10:00
James Elliott	773387291a	docs: update branding docs (#5249 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-15 15:39:13 +10:00
James Elliott	f549afd480	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # internal/authentication/ldap_client_mock.go # internal/authentication/types.go	2023-04-14 21:43:04 +10:00
James Elliott	a179775f6f	refactor: misc out of band changes (#5238 ) This just implements some changes from feat-settings-ui that are out of scope. Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-14 21:42:31 +10:00
James Elliott	f35e49a1fd	fix: misc Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-14 21:11:03 +10:00
James Elliott	774f64a932	Merge remote tracking branch 'origin/master' into feat-settings-ui Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-14 20:58:49 +10:00
James Elliott	3d2da0b070	feat(oidc): client authentication modes (#5150 ) This adds a feature to OpenID Connect 1.0 where clients can be restricted to a specific client authentication mode, as well as implements some backend requirements for the private_key_jwt client authentication mode (and potentially the tls_client_auth / self_signed_tls_client_auth client authentication modes). It also adds some improvements to configuration defaults and validations which will for now be warnings but likely be made into errors. Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-13 20:58:18 +10:00
James Elliott	db130dad48	docs: github links (#5230 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-13 20:10:12 +10:00
James Elliott	7fdcc351d4	Merge remote-tracking branch 'origin/master' into feat-settings-ui Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com> # Conflicts: # internal/handlers/handler_register_webauthn.go # internal/handlers/webauthn.go # internal/handlers/webauthn_test.go # internal/mocks/storage.go # internal/model/webauthn.go # internal/storage/provider.go # internal/storage/sql_provider.go # web/package.json # web/pnpm-lock.yaml # web/src/layouts/LoginLayout.tsx	2023-04-11 21:34:45 +10:00
James Elliott	ecdae9e5d2	build: update lockfiles (#5212 ) * build: update lockfiles Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com> * refactor(web): update pnpm dep configuration --------- Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com> Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2023-04-11 12:16:41 +10:00
James Elliott	157675f1f3	docs: adjust references of webauthn (#5203 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-10 17:01:23 +10:00
James Elliott	304467c10f	docs: fix missing migration (#5202 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-10 13:12:13 +10:00
James Elliott	928df8a698	Merge remote-tracking branch 'origin/master' into feat-oidc-auth-mode Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com> # Conflicts: # internal/configuration/validator/const.go	2023-04-09 13:19:29 +10:00
James Elliott	2dcfc0b04c	feat(handlers): authz authrequest authelia url (#5181 ) This adjusts the AuthRequest Authz implementation behave similarly to the other implementations in as much as Authelia can return the relevant redirection to the proxy and the proxy just utilizes it if possible. In addition it swaps the HAProxy examples over to the ForwardAuth implementation as that's now supported. Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-08 14:48:55 +10:00
James Elliott	3b52ddb137	docs: add adaptation blurbs (#5163 ) Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-08 10:00:36 +10:00
James Elliott	904b659fcb	Merge remote-tracking branch 'origin/master' into feat-settings-ui Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-02 16:12:08 +10:00
James Elliott	1ba4f705f0	Merge remote-tracking branch 'origin/master' into feat-settings-ui Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-02 14:14:29 +10:00
James Elliott	19d1b1bbcb	docs: fix gitea example (#5156 ) Fixes the gitea example and a few other minor issues. Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-02 13:12:01 +10:00
Joakim Pettersen	9fe2ed9a46	docs(oidc): firezone integration (#5125 ) This adds a Firezone VPN integration with OpenID Connect 1.0.	2023-03-28 20:29:13 +11:00
Trung Le	154110d4d9	docs: correct the link to the docs (#5112 )	2023-03-22 13:55:31 +10:00
boomam	0bf40f63ea	docs(oidc): minio integration (#5100 ) Add MinIO OpenID Connect 1.0 documentation. Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-03-21 11:21:23 +11:00
James Elliott	b03c1d0be2	docs: include pull request review checklist (#5094 ) Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2023-03-20 15:03:52 +11:00
James Elliott	ae719a8e51	docs: include hardening in measures (#5093 )	2023-03-20 12:30:12 +10:00
James Elliott	0fb5ac78a7	docs: misc improvements (#5092 ) * docs: misc improvements * docs: misc improvements	2023-03-20 11:25:21 +11:00
James Elliott	d5a4de2d98	docs: misc fixes (#5088 )	2023-03-19 16:57:26 +10:00
James Elliott	a2b3cbd794	docs: openssf best practices (#5079 ) * docs: openssf best practices * docs: update csp * docs: update sponsors and governance	2023-03-19 16:29:12 +10:00
James Elliott	4f46514fdf	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # web/package.json # web/pnpm-lock.yaml	2023-03-19 08:09:17 +11:00
tetricky	a048c48da7	docs: misago oidc (#5024 ) This adds Misago integration docs for OpenID Connect. Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-03-14 08:51:13 +11:00
James Elliott	e584e0c4a3	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-03-12 11:41:31 +11:00
James Elliott	482f23b506	docs: gen (#5054 )	2023-03-12 09:33:40 +11:00
James Elliott	7ef1ba23df	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # docs/package.json # docs/pnpm-lock.yaml # internal/configuration/validator/identity_providers_test.go # web/package.json # web/pnpm-lock.yaml	2023-03-12 00:09:42 +11:00
James Elliott	fdd9901361	docs: add accessibility resolution recommendations (#5046 )	2023-03-09 13:03:39 +11:00
James Elliott	e593ab5916	docs: bump deps (#5043 )	2023-03-08 12:10:38 +11:00
James Elliott	b6883a337f	Merge origin/master into feat-settings-ui	2023-03-07 10:12:49 +11:00
James Elliott	3306c42cc6	docs: accessibility guidelines (#5033 )	2023-03-06 20:17:57 +11:00
James Elliott	ff6be40f5e	feat(oidc): pushed authorization requests (#4546 ) This implements RFC9126 OAuth 2.0 Pushed Authorization Requests. See https://datatracker.ietf.org/doc/html/rfc9126 for the specification details.	2023-03-06 14:58:50 +11:00
James Elliott	0565be3db1	docs: faq (#5032 )	2023-03-06 11:32:06 +11:00
James Elliott	fca8e2130a	docs: update integration docs (#4986 )	2023-03-04 15:53:48 +11:00
James Elliott	e64661af3f	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-02-28 20:40:51 +11:00
James Elliott	b9a6856ff5	fix(logging): injected time format inconsistent (#5004 ) This fixes an issue where the injected log time format is inconsistent with a normalized time format. This adjusts it to use a RFC3339 format.	2023-02-28 20:40:04 +11:00
James Elliott	e6ef74fd8e	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # go.mod # web/package.json # web/pnpm-lock.yaml	2023-02-25 13:46:06 +11:00
James Elliott	f62b4d4cd3	docs: update ngnix docs (#4980 )	2023-02-22 15:26:10 +11:00
James Elliott	8253b44e5d	docs: update swag docs (#4979 )	2023-02-22 15:11:11 +11:00
James Elliott	a6cc022e5c	Merge remote tracking branch origin/master into feat-settings-ui	2023-02-19 11:53:11 +11:00
James Elliott	891f1de9f2	refactor(commands): x509 bundling (#4942 ) This adds another bundling mode to the certificate command.	2023-02-17 14:29:07 +11:00
James Elliott	236fcb1e37	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-02-13 18:53:54 +11:00
James Hillyerd	ad689275d3	docs: improve gitea oidc guidance (#4808 ) Make the non-obvious relationship between the Gitea `Authentication Name` and the path of the redirect URI explicit. Signed-off-by: James Hillyerd <james@hillyerd.com>	2023-02-13 07:49:43 +11:00
James Elliott	f920ef9dd9	build: update lockfiles	2023-02-12 03:01:51 +11:00
James Elliott	3b6f5482b8	fix: multi-cookie domain webauthn	2023-02-12 02:47:03 +11:00
James Elliott	852dc808bd	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-02-11 14:13:18 +11:00
James Elliott	8e4b660f15	refactor: certs (#4912 ) This refactors the suites to use a Enterprise Root CA PKI signed certificate so the CA public certificate can be trusted. This is particularly useful for webauthn in Chrome.	2023-02-11 14:11:40 +11:00
James Elliott	1f1210c6ac	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-02-08 13:52:07 +11:00
James Elliott	e9fd4160e4	docs: add important note for implicit consent (#4901 )	2023-02-08 13:51:23 +11:00
James Elliott	2e6d17ba8a	feat(configuration): rfc2307bis implementation (#4900 ) This adds configuration defaults for RFC2307bis LDAP implementations such as OpenLDAP with the RFC2307bis LDIF which should service most user needs.	2023-02-08 13:35:57 +11:00
James Elliott	d1147f9ac4	docs: refactor oidc config docs (#4892 )	2023-02-08 01:29:43 +11:00
James Elliott	726850fe43	refactor: add some more useful templating funcs (#4891 )	2023-02-08 01:28:09 +11:00
James Elliott	9e5aa1c1a9	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # web/package.json # web/pnpm-lock.yaml	2023-02-05 20:19:40 +11:00
James Elliott	a7ccf3652f	docs: fix rfc references and fix misc issues (#4879 )	2023-02-05 18:11:30 +11:00
James Elliott	64312c644a	docs: fix env values (#4873 )	2023-02-03 11:27:23 +11:00
James Elliott	d101b2aa51	docs: use go 1.19.5 (#4872 )	2023-02-03 10:45:50 +11:00
James Elliott	370a3b1e8d	build: update to go 1.20 (#4866 )	2023-02-02 21:19:28 +11:00
James Elliott	e408cb19b1	test: adjust tests and docs to be similar (#4856 )	2023-02-02 18:13:18 +11:00
James Elliott	598ea2bb19	feat(configuration): disallow public suffix domains (#4855 ) This adds a check to the domains configuration to ensure the domain value is not part of the public suffix list at https://publicsuffix.org. These domains are special and users cannot write cookies with this domain value, this makes them unusable with Authelia and this more readily makes that apparent.	2023-02-02 16:34:49 +11:00
James Elliott	7e285f461f	docs: add common oidc shortcode and update (#4862 )	2023-02-02 12:30:06 +11:00
James Elliott	a2965183f7	docs: fix missing yaml example (#4853 )	2023-01-31 10:28:00 +11:00
James Elliott	a36c45f1e1	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-01-30 09:52:33 +11:00
Krasimir Nedelchev	9eb9e29b13	docs: fix typo (#4842 ) Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-01-29 10:01:41 +11:00
Krasimir Nedelchev	b3b24f4479	docs: fix ip addresses (#4843 ) Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-01-29 09:25:32 +11:00
James Elliott	4bed5d2461	Merge branch 'master' into feat-settings-ui	2023-01-27 11:27:12 +11:00
James Elliott	deb47264d5	docs: gen (#4833 )	2023-01-26 19:04:46 +11:00
James Elliott	8cd88e83c1	docs: fix typo (#4832 )	2023-01-26 18:39:56 +11:00
James Elliott	1ac4321013	docs: fix misc issues (#4831 )	2023-01-26 16:38:08 +11:00
James Elliott	ea9ec80af0	docs: add missing features (#4830 )	2023-01-26 16:22:56 +11:00
James Elliott	d653bc9c0b	docs: add pre-release / beta info (#4829 )	2023-01-26 16:14:06 +11:00
James Elliott	a1517f18e5	docs: add version to the docs data misc generator (#4827 )	2023-01-26 14:17:50 +11:00
James Elliott	b42a84340d	docs: env adjustment (#4826 )	2023-01-26 13:23:02 +11:00
James Elliott	8319778b5d	docs: adjust key generators (#4825 )	2023-01-26 11:24:06 +11:00
James Elliott	a33b37a9cd	docs: make several openid connect areas uniform (#4824 )	2023-01-26 10:59:18 +11:00
James Elliott	7d17c39c52	Merge origin/master into feat-settings-ui	2023-01-25 22:11:41 +11:00
James Elliott	65705a646d	feat(server): customizable authz endpoints (#4296 ) This allows users to customize the authz endpoints. Closes #2753, Fixes #3716 Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2023-01-25 20:36:40 +11:00
electrofloat	ce65764948	docs: fix copy paste typo (#4815 ) Fixed a copy-paste bug in the description of the idle server timeout. This change only fixes that bug, but this part of the documentation need better explaining. (Something called "idle" in the "Server Timeouts" section of course configures server idle timeout, but what is server in this context, when happens when the time defined in idle expires, etc.)	2023-01-24 09:58:57 +11:00
James Elliott	a566c16d08	feat(web): privacy policy url (#4625 ) This allows users to customize a privacy policy URL at the bottom of the login view. Closes #2639	2023-01-22 19:58:07 +11:00
James Elliott	d16f63f01a	docs: blog 4.38 pre-release notes (#4789 )	2023-01-21 00:18:00 +11:00
James Elliott	bd279900ca	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2023-01-20 17:56:06 +11:00
James Elliott	96c6a76ea5	docs(deps): bump deps (#4787 )	2023-01-18 13:08:12 +11:00
James Elliott	d696593d6d	docs: fix incorrect env name (#4768 )	2023-01-15 12:02:38 +11:00
Dinh Bao Dang	98604dc7eb	docs: fix links and npm install command (#4755 ) Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>	2023-01-12 22:02:13 +11:00
Manuel Nuñez	8b29cf7ee8	feat(session): multiple session cookie domains (#3754 ) This adds support to configure multiple session cookie domains. Closes #1198 Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com> Co-authored-by: Amir Zarrinkafsh <nightah@me.com>	2023-01-12 21:57:44 +11:00
James Elliott	49d421e910	Merge remote-tracking branch 'origin/master' into feat-settings-ui # Conflicts: # api/openapi.yml # web/src/views/DeviceRegistration/RegisterWebauthn.tsx # web/src/views/LoginPortal/SecondFactor/WebauthnMethod.tsx	2023-01-07 11:50:19 +11:00
James Elliott	3182925bef	docs: elaborate on version policy (#4707 )	2023-01-05 18:51:49 +11:00
James Elliott	adaf069eab	feat(oidc): per-client pkce enforcement policy (#4692 ) This implements a per-client PKCE enforcement policy with the ability to enforce that it's used, and the specific challenge mode.	2023-01-04 02:03:23 +11:00
James Elliott	08cda5d165	refactor: include additional important template funcs (#4690 ) * refactor: include additional important template funcs * fix: use of interface * test: improve test cases	2023-01-04 00:11:10 +11:00
James Elliott	9282b0512f	docs: improve server override docs (#4687 )	2023-01-03 22:44:14 +11:00
James Elliott	1c3219e93f	perf(server): cached openapi document (#4674 ) This should lead to a small performance gain by caching the openapi.yml with etags as well as eliminating the use of nonce crypto generation when not required.	2023-01-03 14:49:02 +11:00
James Elliott	acaadd81cb	docs: adjust image links (#4680 ) * docs: adjust image links * docs: adjust envoy logo	2023-01-03 12:27:02 +11:00
James Elliott	beda108d86	docs: update caddy logo (#4679 )	2023-01-03 12:10:40 +11:00
Chris D	8a4c65b548	docs: fix mistakes in swag docs (#4665 ) Co-authored-by: Chris <=>	2022-12-31 10:45:55 +11:00
James Elliott	0e2770e72d	Merge remote-tracking branch 'origin/master' into feat-settings-ui	2022-12-27 20:05:02 +11:00
James Elliott	f685f247cf	feat(notification): important events notifications (#4644 ) This adds important event notifications.	2022-12-27 19:59:08 +11:00
James Elliott	3b699b8604	build(deps): bump docs deps (#4636 )	2022-12-24 18:10:48 +11:00

1 2 3 4 5 ...

679 Commits (f06bdec6830048b06937337b7effa9685c3b9fdc)