205hlab-mirrors/authentik
2
0
Fork 0
mirror of https://github.com/goauthentik/authentik.git synced 2026-06-18 03:19:51 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
30d41ded812e7745828842fb139ef7496c85c99d
authentik/authentik
T
History
Kolega.dev a90870437e brands: fix Domain Matching in Brand Resolution (#19976) 
security: add dot-boundary check in brand domain matching

The domain matching used iendswithout boundary checking, allowing
'fake-example.com' to match a brand configured for 'example.com'.
Added explicit check for either exact match or subdomain match with
dot boundary to prevent partial domain suffix attacks.

Co-authored-by: kolega.dev <faizan@kolega.ai>
2026-02-04 15:18:29 +01:00
..
admin
root: revert enterprise loading behaviour (#19485)
2026-02-03 18:28:52 +01:00
api
common: introduce common (#19852)
2026-01-30 16:27:41 +01:00
blueprints
root: revert enterprise loading behaviour (#19485)
2026-02-03 18:28:52 +01:00
brands
brands: fix Domain Matching in Brand Resolution (#19976)
2026-02-04 15:18:29 +01:00
commands
core: bump django to 5.2.7 (#16324)
2025-10-06 19:24:17 +02:00
common
common: introduce common (#19852)
2026-01-30 16:27:41 +01:00
core
root: revert enterprise loading behaviour (#19485)
2026-02-03 18:28:52 +01:00
crypto
crypto: Add ED25519 and ED448 support to the certificate builder (#19465)
2026-02-03 14:29:33 +01:00
endpoints
ci: always generate API clients (#19906)
2026-02-02 13:38:21 +01:00
enterprise
common: introduce common (#19852)
2026-01-30 16:27:41 +01:00
events
rbac: clean up roles and permissions (#19588)
2026-01-29 19:12:38 +01:00
flows
rbac: clean up roles and permissions (#19588)
2026-01-29 19:12:38 +01:00
lib
core: bump ruff from 0.14.14 to 0.15.0 (#20001)
2026-02-04 15:18:22 +01:00
outposts
outposts: fix docker_tls created files permission (#19978)
2026-02-03 23:32:50 +01:00
policies
rbac: clean up roles and permissions (#19588)
2026-01-29 19:12:38 +01:00
providers
core: bump ruff from 0.14.14 to 0.15.0 (#20001)
2026-02-04 15:18:22 +01:00
rbac
rbac: clean up roles and permissions (#19588)
2026-01-29 19:12:38 +01:00
recovery
recovery: consume token in transaction (#19967)
2026-02-03 17:38:32 +01:00
root
root: revert enterprise loading behaviour (#19485)
2026-02-03 18:28:52 +01:00
sources
common: introduce common (#19852)
2026-01-30 16:27:41 +01:00
stages
stages/authenticator_webauthn: fix double JSON encoding of webauthn options (#19952)
2026-02-03 21:59:48 +01:00
tasks
tests: improve e2e/integration test reliability (#19540)
2026-01-20 02:15:35 +01:00
tenants
enterprise/audit: Expanded Diff (#19726)
2026-01-26 14:30:37 +01:00
__init__.py
root: bump version to 2026.2.0-rc1 (#18794)
2025-12-12 20:59:47 +00:00