authelia/CHANGELOG.md

6.8 KiB

Release Notes - Version 4.1.0

  • Add support of HAProxy as a reverse proxy.
  • Huge optimization of build time for standard and cross compiled targets (Many thanks to @nightah).
  • Statically link authelia binary.
  • Multiple optimizations to docker images to reduce size.
  • Add support of authentication mechanisms to SMTP notifier and enforce use of TLS (Many thanks to @james-d-elliott).
  • Introduce Buildkite build (will soon replace Travis. Many thanks to @nightah).
  • Fix Postgres bad column name.
  • Many fixes to the documentation.
  • Support hashes without {CRYPT} in file-based users database.
  • Allow blank additional_groups_dn and additional_users_dn.
  • Fix wrong remote IP in logs.

Release Notes - Version 4.0.0

  • Authelia is rewritten in Go.
  • Authelia frontend has been rewritten with Material-UI and simplified.
  • configuration.yml should include a secret for jwt issuance and verification.
  • Models in database have been updated to better fit with the Go library.
  • The local storage has been replaced by a good old sqlite3 database.
  • The mongo option for storing user preferences and device secrets has been deprecated in favor of SQL options: mysql and postgres.
  • The "secure" flag from the SMTP notifier configuration has been removed as TLS is used by default when available.
  • authelia-scripts tool has been rewritten in Go.
  • Use pure implementation of crypt.
  • Introduction of a "migrate" command to authelia-scripts to help migrating from v3 to v4.
  • Authelia is built and available on Dockerhub in 3 flavors: amd64, arm32v7 and arm64v8.
  • Introduction of suites in Go.
  • Add support of LDAP over TLS.
  • Publish Authelia as self-sufficient archives.
  • Remove the need of putting weird characters /%23/ in the redirection URL to portal.
  • Publish multiple docker tags per version (one for major, minor and patch)
  • Add host configuration to restring binding to local interface 127.0.0.1.
  • Add google_analytics configuration option to provide a tracking ID for admins to track the use of the portal thanks to a GA dashboard.

Release Notes - Version 3.16.3

  • Update changelog of previous versions.

Release Notes - Version 3.16.2

  • Update email footer to inform user of actions to take if she is receiving an unexpected email from Authelia.

Release Notes - Version 3.16.1

  • Update NPM API key.

Release Notes - Version 3.16.0

  • Configure a CA for LDAPS.
  • Password could be provided as env variables to avoid exposing them in a file (also simpler to use and protect in Kubernetes).

Release Notes - Version 3.15.0

  • Change license from MIT to Apache 2.0.

Release Notes - Version 3.14.0

  • [BREAKING] Add official support for Traefik with a dedicated suite.
  • Add support for network-based ACL rules allowing to apply different authorization strategies on different networks.
  • Several bug fixes (unusual error message when using U2F, X-Forwarded-User and X-Forwarded-Groups was not propagated on bypassed endpoints).

Release Notes - Version 3.13.0

  • Rewrite Authelia portal in Typescript.
  • Introduce concept of suites and authelia-scripts.
  • Add official support for Kubernetes and a suite.
  • Improve documentation for nginx.
  • Fix bypass policy not properly handled.
  • Implement Duo push notification as a second factor.
  • Display only available 2FA options (U2F if supported in browser, Duo push if configured).

Release Notes - Version 3.12.0

  • Add logs to troubleshoot LDAP sanitizer.
  • Add {uid} placeholder for LDAP search queries for groups.

Release Notes - Version 3.11.0

  • [BREAKING] Flatten ACL rules to enable some use cases. Configuration of ACLs must be updated.
  • Fix open redirection threat.
  • Define minimum level of authentication required for a resource in ACL to be authorized.
  • Allow Authelia to be built with different themes.
  • Fix bug in hash matching when using file-based users database.
  • Fix dead link in documentation.

Release Notes - Version 3.10.0

  • Add docker-compose for deploying Authelia on Swarm*.
  • Add "keep me logged in" checkbox in first factor page.
  • Fix U2F compatibility with Firefox.
  • Bump dependencies to fix vulnerabilities reported by snyk.
  • Improve documentation for dev setup.

Release Notes - Version 3.9.5

  • Fix images in README in NPM.

Release Notes - Version 3.9.4

  • Update Authelia icon & add documentation image.
  • Add snyk badge

Release Notes - Version 3.9.3

  • Fix npm publication.
  • Use IP coming from X-Forwarded-For header in logs.
  • Fix CONTRIBUTORS.md.

Release Notes - Version 3.9.2

  • Put back link to Gitter instead of Slack.

Release Notes - Version 3.9.1

  • Split the README in several parts.
  • Fix Kubernetes configuration file for Authelia.

Release Notes - Version 3.9.0

Features:

  • Add support for file users database to replace LDAP in development environments.
  • Add authentication configuration options for mongo and redis.

Configuration changes:

  • [BREAKING] ldap key has been nested in authentication_backend.
  • New username and password options for mongo storage.
  • New password option for redis.

Release Notes - Version 3.8.3

  • Fix ECONNRESET issues when LDAP queries failed. (#261).

Release Notes - Version 3.8.2

  • Fix publication to NPM.

Release Notes - Version 3.8.1

  • Fix publication to NPM.

Release Notes - Version 3.8.0

Features:

  • Add support for Kubernetes nginx ingress controller.
  • Add example configuration for kubernetes.
  • Disable forms when authentication is in progress.
  • Make most of configuration options optional and create a minimal configuration.
  • Introduce helmet package to improve security.

Configuration changes:

  • [Breaking] redirect= in nginx configuration has been replaced by rd= to be be compatible with Kubernetes ingress controller.

Release Notes - Version 3.7.1

Configuration change:

  • storage.mongo now contains two keys: url and database.

Release Notes - Version 3.7.0

Features:

  • Support basic authorization for single factor endpoints.
  • Add issuer and label in TOTP otp url.
  • Improve UI of second factor page.
  • Use SHA512 password encryption algorithm of LDAP.
  • Improve security of Authelia website.
  • Support for default redirection url.
  • Support for session inactivity timeout.

Bugs:

  • Fix U2F factor not working in Firefox