This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/blueprints/example
Jens L 8eb73d3a16
security: fix CVE 2022 46172 (#4275)
* fallback to current user in user_write, add flag to disable user creation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update api and web ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update default flows

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add cve post to website

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-12-23 14:18:09 +01:00
..
flows-enrollment-2-stage.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
flows-enrollment-email-verification.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
flows-login-2fa.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
flows-login-conditional-captcha.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
flows-recovery-email-verification.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
flows-unenrollment.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00