This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/authentik/stages
Jens L cd88b91686
security: fix CVE 2022 23555 (#4274)
* add flow to invitation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* show warning on invitation page

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add security advisory

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-12-23 14:18:13 +01:00
..
authenticator_duo stages/authenticator_duo: improved import (#3601) 2022-09-17 12:10:47 +02:00
authenticator_sms flows: optimise queries (#3818) 2022-10-19 22:53:07 +02:00
authenticator_static blueprints: add meta model to apply blueprint within blueprint for dependencies (#3486) 2022-08-29 21:20:58 +02:00
authenticator_totp *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
authenticator_validate tests: use create_test_flow where possible (#3606) 2022-09-17 13:16:53 +02:00
authenticator_webauthn ci: update pyright (#3546) 2022-09-07 00:23:25 +02:00
captcha *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
consent stages/consent: default to expiring consent instead of always_require 2022-09-10 13:25:28 +02:00
deny *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
dummy *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
email core: explicitly enable locales (#3889) 2022-10-28 19:42:49 +02:00
identification stages/identification: log invalid_login similar to event for easier log parsing 2022-10-20 19:31:22 +02:00
invitation security: fix CVE 2022 23555 (#4274) 2022-12-23 14:18:13 +01:00
password providers/oauth2: add device flow (#3334) 2022-10-11 12:42:10 +02:00
prompt tests: use create_test_flow where possible (#3606) 2022-09-17 13:16:53 +02:00
user_delete *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
user_login *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
user_logout *: fix type annotations for serializer model 2022-08-16 13:23:22 +02:00
user_write security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
__init__.py wip: rename to authentik (#361) 2020-12-05 22:08:42 +01:00