This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/blueprints/default
Jens L 8eb73d3a16
security: fix CVE 2022 46172 (#4275)
* fallback to current user in user_write, add flag to disable user creation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update api and web ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update default flows

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add cve post to website

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-12-23 14:18:09 +01:00
..
0-flow-password-change.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
10-flow-default-authentication-flow.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
10-flow-default-invalidation-flow.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-authenticator-static-setup.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-authenticator-totp-setup.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-authenticator-webauthn-setup.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-provider-authorization-explicit-consent.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-provider-authorization-implicit-consent.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-source-authentication.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
20-flow-default-source-enrollment.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
20-flow-default-source-pre-authentication.yaml *: backport CVE-2022-46145 fix 2022-12-01 10:40:51 +02:00
30-flow-default-user-settings-flow.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00
40-events-default.yaml blueprints: docs (#3376) 2022-08-06 00:52:12 +02:00
90-default-tenant.yaml blueprints: add meta model to apply blueprint within blueprint for dependencies (#3486) 2022-08-29 21:20:58 +02:00
91-flow-oobe.yaml security: fix CVE 2022 46172 (#4275) 2022-12-23 14:18:09 +01:00