Jens Langhammer
|
eaad564e23
|
release: 2022.1.5
|
2022-02-09 22:31:26 +01:00 |
Jens Langhammer
|
015810a2fd
|
internal: fix CSRF error caused by Host header
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:53 +01:00 |
Jens Langhammer
|
e70e6b84c2
|
internal: trace headers and url for backend requests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:50 +01:00 |
Jens Langhammer
|
d0b9c9a26f
|
internal: remove uvicorn server header
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:46 +01:00 |
Jens Langhammer
|
3e403fa348
|
internal: improve error handling for internal reverse proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:41 +01:00 |
Jens Langhammer
|
48f4a971ef
|
internal: don't attempt to lookup SNI Certificate if no SNI is sent
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:39 +01:00 |
Jens Langhammer
|
67d68629da
|
providers/proxy: fix Host/:Authority not being modified
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:22:08 +01:00 |
Jens Langhammer
|
0754821628
|
providers/proxy: improve error handling for invalid backend_override
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:21:55 +01:00 |
Jens Langhammer
|
cac8539d79
|
providers/proxy: fix nil error in claims
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-09 22:21:08 +01:00 |
Jens Langhammer
|
49dfb4756e
|
release: 2022.1.4
|
2022-02-01 20:12:55 +01:00 |
Jens Langhammer
|
f5cc6c67ec
|
providers/proxy: fix routing for external_host when using forward_auth_domain
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2180
|
2022-02-01 10:14:46 +01:00 |
Jens Langhammer
|
6021fc0f52
|
providers/proxy: fix backend override persisting for other users
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-30 22:29:34 +01:00 |
Jens Langhammer
|
7fd6be5abb
|
providers/proxy: add backend_override
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-30 21:35:08 +01:00 |
Jens Langhammer
|
67d550a80d
|
providers/proxy: don't include hostname and scheme in redirect when we only got a path and not a full URL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-27 18:23:08 +01:00 |
Jens Langhammer
|
ebb5711c32
|
providers/proxy: add support for X-Original-URI in nginx, better handle missing headers and report errors to authentik
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-27 18:14:02 +01:00 |
Jens Langhammer
|
c55f503b9b
|
release: 2022.1.3
|
2022-01-26 22:15:28 +01:00 |
Jens Langhammer
|
f47c936295
|
internal: add optional debug server listening on 9900
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-25 17:18:53 +01:00 |
Jens Langhammer
|
96ae68cf09
|
internal: make error message less confusing
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-25 15:45:21 +01:00 |
Jens Langhammer
|
63b3434b6f
|
website/docs: improve nginx examples
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-25 14:25:21 +01:00 |
Ilya Kogan
|
947ecec02b
|
outposts/ldap: Fix more case sensitivity issues. (#2144)
|
2022-01-25 11:27:27 +01:00 |
Jens Langhammer
|
1c2b452406
|
outposts/proxy: fix potential empty redirect, add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2141
|
2022-01-25 10:57:53 +01:00 |
Jens Langhammer
|
650e2cbc38
|
internal: remove duplicate log messages
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 22:25:35 +01:00 |
Jens Langhammer
|
b32800ea71
|
outposts/proxy: trace full headers to debug
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 22:08:31 +01:00 |
Jens Langhammer
|
e1c0c0b20c
|
internal: don't override server header
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 22:05:11 +01:00 |
Jens Langhammer
|
2f4c92deb9
|
Merge branch 'version-2022.1'
|
2022-01-24 21:42:12 +01:00 |
Jens Langhammer
|
ef335ec083
|
outposts/proxy: add more test cases for domain-level auth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 21:41:15 +01:00 |
Jens Langhammer
|
07b09df3fe
|
internal: add more outpost tests, add support for X-Original-URL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 20:50:13 +01:00 |
Jens Langhammer
|
e70e031a1f
|
internal: start adding tests to outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 20:12:25 +01:00 |
Jens Langhammer
|
3d724db0e3
|
release: 2022.1.2
|
2022-01-24 11:28:00 +01:00 |
Jens Langhammer
|
1dce408c72
|
internal/proxyv2: only allow access to /akprox in nginx mode when forward url could be extracted
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-24 09:30:33 +01:00 |
Jens Langhammer
|
f4a6c70e98
|
release: 2022.1.1
|
2022-01-22 18:28:40 +01:00 |
Jens Langhammer
|
af3fb5c2cd
|
internal: use math.MaxInt for compatibility
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1819
|
2022-01-21 23:11:17 +01:00 |
Jens Langhammer
|
3bfb8b2cb2
|
outposts/proxyv2: allow access to /akprox urls in forward auth mode to make routing in nginx/traefik easier
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-21 13:43:16 +01:00 |
Jens Langhammer
|
9fc5ff4b77
|
outposts/proxyv2: fix JWKS url pointing to localhost on embedded outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-21 13:29:51 +01:00 |
Jens Langhammer
|
41e7b9b73f
|
outposts/proxyv2: fix before-redirect url not being saved in proxy mode
closes #2109
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-19 19:16:30 +01:00 |
Jens Langhammer
|
7f47f93e4e
|
internal: cleanup log messages
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-19 19:01:24 +01:00 |
Jens Langhammer
|
14c7d8c4f4
|
internal: route traffic to proxy providers based on cookie domain when multiple domain-level providers exist
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2079
|
2022-01-18 23:19:43 +01:00 |
Jens Langhammer
|
819af78e2b
|
internal: make internal go version match python version
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-14 10:45:37 +01:00 |
Jens Langhammer
|
c07b8d95d0
|
outposts/proxy: remove deprecated headers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-07 17:01:23 +01:00 |
Jens Langhammer
|
bf347730b3
|
outposts/ldap: remove deprecated fields
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-07 09:52:19 +01:00 |
Jens Langhammer
|
ececfc3a30
|
internal: fix comment formatting for TODOs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-07 09:51:41 +01:00 |
Jens Langhammer
|
c15e4b24a1
|
release: 2021.12.5
|
2022-01-06 21:29:12 +01:00 |
Jens Langhammer
|
c741c13132
|
internal: fix listen attempt on shutdown
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-03 12:36:11 +01:00 |
Jens Langhammer
|
f246da6b73
|
outposts/proxy: fix error checking for type assertion
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-26 14:57:32 +01:00 |
Jens Langhammer
|
27e4c7027c
|
web: fix potential panic
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-26 14:24:44 +01:00 |
Jens Langhammer
|
410d1b97cd
|
outposts/proxy: add support for multiple states, when multiple requests are redirect at once
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-26 14:16:02 +01:00 |
Jens Langhammer
|
884c546f32
|
outposts: clean up flow executor
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-24 19:52:19 +01:00 |
Jens Langhammer
|
47356915b1
|
outposts: fix outpost's sentry not sending release
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-23 19:01:32 +01:00 |
Jens Langhammer
|
9c42b75567
|
release: 2021.12.4
|
2021-12-23 10:32:48 +01:00 |
Jens Langhammer
|
87e99625e6
|
internal: update tenant certificates on outpost refresh
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-23 00:38:49 +01:00 |