trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
13,119 Commits 95 Branches 330 Tags 336 MiB
Commit Graph

25 Commits

Author SHA1 Message Date
Philipp Kolberg 9db9ad3d66
root: Restructure broker / cache / channel / result configuration (#7097) 
* Initial commit

* Remove any remaining mentions of Redis URL

This is handled in https://github.com/goauthentik/authentik/pull/5395

* Allow setting broker transport options

This enables usage of other brokers that require additional settings

* Remove remaining reference to Redis URL

This functionality is not part of this PR

* Reset default TLS requirements to none

* Fix linter errors

* Move dict from base64 encoded json to config.py

Additionally add tests

* Replace ast.literal_eval with json.loads

* Use default channel and cache backend configuration

If more customization is desired users shall look at goauthentik.io/docs/installation/configuration#custom-python-settings

* Send config deprecation notification to all superusers

* Remove duplicate method

* Add configuration explanation

For channel layer settings

* Use Event for deprecation warning

* Fix remove duplicated method

* Add missing comma

* Update authentik/lib/config.py

Signed-off-by: Jens L. <jens@beryju.org>

* Fix Event deprecation handling

---------

Signed-off-by: Jens L. <jens@beryju.org>
Co-authored-by: Jens L <jens@beryju.org>
 2023-11-10 15:44:37 +01:00
Jens L d22d147c8e
security: fix CVE-2023-36456 (#6171) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-07-06 18:16:26 +02:00
Bardi Harborow 5c8f024d12
website: add documentation for AUTHENTIK_REDIS__TLS (#5349) 
* website: add documentation for AUTHENTIK_REDIS__TLS

Signed-off-by: Bardi Harborow <bardi@bardiharborow.com>

* add tls reqs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Bardi Harborow <bardi@bardiharborow.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
 2023-04-23 11:37:53 +03:00
Jens L 3f5effb1bc
providers/radius: simple radius outpost (#1796) 
* initial implementation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* cleanup

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add migrations

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix web

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* minor fixes

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use search-select

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update locale

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fixup

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix ip with port being sent to delegated ip

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add radius tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update docs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-03-20 16:54:35 +01:00
Jens Langhammer 9f431396c0
providers/proxy: ensure issuer is correct when browser url override is set 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>

#4715
 2023-02-19 17:35:29 +01:00
Jens Langhammer a9680d6088
internal: fix race condition with config loading on startup, add index on debug server 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-08 20:33:04 +01:00
Jens Langhammer 7eb6320d74
outposts: use common config loader for outposts to support loading values from file 
closes #4383

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2023-01-08 14:19:16 +01:00
Jens L 276af8457d
root: make sentry DSN configurable (#4016) 
* make sentry DSN configurable

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* make proxy smarter

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix typo in config struct

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-15 16:05:29 +01:00
Jens L 55aa1897af
root: use single redis db (#4009) 
* use single redis db

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* cleanup prefixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* ensure __str__ always returns string

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix remaining old prefixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add release notes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-15 14:31:29 +01:00
Jens Langhammer 85640d402f internal: fix race conditions when accessing settings before bootstrap 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-06 00:24:55 +02:00
Jens L 2ce8e18bab
internal: centralise config for listeners to use same config system everywhere (#3367) 
* centralise config for listeners to use same config system everywhere

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#3360

* add docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-03 21:33:27 +02:00
Jens Langhammer 82acba26af internal: fix sentry sample rate not applying to proxy 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-20 19:42:26 +01:00
Jens Langhammer 534689895c lib: remove old load_local_files setting 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-11 22:03:06 +01:00
Jens Langhammer 0d02dbf55c api: replace django sentry proxy with go proxy to prevent login issues 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-02 14:44:37 +01:00
Jens L 7158c9d2ea
core: metrics v2 (#1370) 
* outposts: add ldap metrics, move ping to 9100

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outpost: add flow_executor metrics

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use port 9300 for metrics, add core metrics port

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outposts/controllers/k8s: add service monitor creation support

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-09 15:52:24 +02:00
Jens Langhammer 4c3a9e69f2 outposts/proxy: fix securecookie: no codecs provided error with redis 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-09 10:23:46 +02:00
Jens Langhammer 502393ee56 outpost/proxyv2: allow port offset via yaml 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-08 21:07:06 +02:00
Jens Langhammer 45731d8069 cmd: add option to disable embedded outpost 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-29 19:19:13 +02:00
Jens Langhammer e02207f38d outpost/embedded: use redis session backend 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-07 22:12:22 +02:00
Jens L f01bc20d44
Embedded outpost (#1193) 
* api: allow API requests as managed outpost's account when using secret_key

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* root: load secret key from env

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outposts: make listener IP configurable

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outpost/proxy: run outpost in background and pass requests conditionally

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outpost: unify branding to embedded

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/admin: fix embedded outpost not being editable

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: fix mismatched host detection

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: fix LDAP test not including user for embedded outpost

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: fix user matching

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* api: add tests for secret_key auth

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* root: load environment variables using github.com/Netflix/go-env

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-07-29 11:30:30 +02:00
Jens Langhammer 1005f341e4 Merge branch 'master' into inbuilt-proxy 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	internal/constants/constants.go
#	outpost/pkg/version.go
 2021-06-23 20:41:06 +02:00
Jens Langhammer f6026fdb13 root: allow loading local /static files without debug flag 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-06-21 21:21:35 +02:00
Jens Langhammer 5d26fa0403 gproxy: add sentry integration 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-04 14:28:48 +02:00
Jens Langhammer 42f9ba8efe gproxy: load default config file for debug and listen statements 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-04 14:10:34 +02:00
Jens Langhammer 988cf15b71 root: initial go proxy, update compose and helm 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-03 09:39:09 +02:00