search

goauthentik / authentik

The authentication glue you need.
https://goauthentik.io
Other
13.67k stars 915 forks source link

security: fix CVE 2024 52287 (cherry-pick #12114) #12117

Closed gcp-cherry-pick-bot[bot] closed 19 hours ago

gcp-cherry-pick-bot[bot] commented 20 hours ago

Cherry-picked security: fix CVE 2024 52287 (#12114)

Signed-off-by: Jens Langhammer jens@goauthentik.io

Signed-off-by: Jens Langhammer jens@goauthentik.io

Signed-off-by: Jens Langhammer jens@goauthentik.io

netlify[bot] commented 19 hours ago

Deploy Preview for authentik-docs ready!

Name Link
Latest commit a0c00b532fbe5e751a854b674b94d61e3f0aab93
Latest deploy log https://app.netlify.com/sites/authentik-docs/deploys/673f34303e7b5600085dde95
Deploy Preview https://deploy-preview-12117--authentik-docs.netlify.app
Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

codecov[bot] commented 19 hours ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 92.60%. Comparing base (d2b194f) to head (a0c00b5). Report is 2 commits behind head on version-2024.10.

:white_check_mark: All tests successful. No failed tests found.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## version-2024.10 #12117 +/- ## =================================================== - Coverage 92.66% 92.60% -0.06% =================================================== Files 761 761 Lines 37863 37891 +28 =================================================== + Hits 35085 35090 +5 - Misses 2778 2801 +23 ``` | [Flag](https://app.codecov.io/gh/goauthentik/authentik/pull/12117/flags?src=pr&el=flags&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=goauthentik) | Coverage Δ | | |---|---|---| | [e2e](https://app.codecov.io/gh/goauthentik/authentik/pull/12117/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=goauthentik) | `49.14% <18.18%> (-0.13%)` | :arrow_down: | | [integration](https://app.codecov.io/gh/goauthentik/authentik/pull/12117/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=goauthentik) | `24.87% <0.00%> (-0.02%)` | :arrow_down: | | [unit](https://app.codecov.io/gh/goauthentik/authentik/pull/12117/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=goauthentik) | `90.18% <100.00%> (+<0.01%)` | :arrow_up: | Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=goauthentik#carryforward-flags-in-the-pull-request-comment) to find out more.

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

🚨 Try these New Features:

github-actions[bot] commented 19 hours ago

authentik PR Installation instructions

Instructions for docker-compose Add the following block to your `.env` file: ```shell AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server AUTHENTIK_TAG=gh-a0c00b532fbe5e751a854b674b94d61e3f0aab93 AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s ``` For arm64, use these values: ```shell AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server AUTHENTIK_TAG=gh-a0c00b532fbe5e751a854b674b94d61e3f0aab93-arm64 AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s ``` Afterwards, run the upgrade commands from the latest release notes.
Instructions for Kubernetes Add the following block to your `values.yml` file: ```yaml authentik: outposts: container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s global: image: repository: ghcr.io/goauthentik/dev-server tag: gh-a0c00b532fbe5e751a854b674b94d61e3f0aab93 ``` For arm64, use these values: ```yaml authentik: outposts: container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s global: image: repository: ghcr.io/goauthentik/dev-server tag: gh-a0c00b532fbe5e751a854b674b94d61e3f0aab93-arm64 ``` Afterwards, run the upgrade commands from the latest release notes.