Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(configuration): disallow public suffix domains #4855

Merged
merged 5 commits into from
Feb 2, 2023
Merged

feat(configuration): disallow public suffix domains #4855

merged 5 commits into from
Feb 2, 2023

Conversation

james-d-elliott
Copy link
Member

@james-d-elliott james-d-elliott commented Jan 31, 2023
edited

This adds a check to the domains configuration to ensure the domain value is not part of the public suffix list at https://publicsuffix.org. These domains are special and users cannot write cookies with this domain value, this makes them unusable with Authelia and this more readily makes that apparent.

@authelia
Copy link

authelia bot commented Jan 31, 2023

Artifacts

These changes are published for testing on Buildkite, DockerHub and GitHub Container Registry.

Docker Container

  • docker pull authelia/authelia:feat-conf-public-suffix
  • docker pull ghcr.io/authelia/authelia:feat-conf-public-suffix

@james-d-elliott
feat(configuration): disallow public suffix domains
89b3533 
This adds a check to the domains configuration to ensure the domain value is not part of the public suffix list at https://publicsuffix.org. These domains are special and users cannot assign cookies with this domain value.
@codecov
Copy link

codecov bot commented Jan 31, 2023
edited

Codecov Report

Merging #4855 (0dea17f) into master (22d6fa1) will increase coverage by 0.02%.
The diff coverage is 100.00%.

❗ Current head 0dea17f differs from pull request most recent head b47e5a9. Consider uploading reports for the commit b47e5a9 to get more accurate results

Additional details and impacted files

Impacted file tree graph

@@            Coverage Diff             @@
##           master    #4855      +/-   ##
==========================================
+ Coverage   67.63%   67.66%   +0.02%     
==========================================
  Files         281      282       +1     
  Lines       20647    20662      +15     
  Branches      443      443              
==========================================
+ Hits        13965    13980      +15     
  Misses       5871     5871              
  Partials      811      811
Flag Coverage Δ
backend 68.01% <100.00%> (+0.02%) ⬆️
frontend 63.20% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files Coverage Δ
internal/configuration/validator/session.go 100.00% <100.00%> (ø)
internal/configuration/validator/util.go 100.00% <100.00%> (ø)

@netlify
Copy link

netlify bot commented Jan 31, 2023

Deploy Preview for authelia-staging ready!

Name Link
🔨 Latest commit 6d88515
🔍 Latest deploy log https://app.netlify.com/sites/authelia-staging/deploys/63d90f78474b8e0009014dd5
😎 Deploy Preview https://deploy-preview-4855--authelia-staging.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site settings.

@james-d-elliott james-d-elliott enabled auto-merge (squash) February 2, 2023 05:22
@james-d-elliott james-d-elliott enabled auto-merge (squash) February 2, 2023 05:23
@james-d-elliott james-d-elliott merged commit 598ea2b into master Feb 2, 2023
@james-d-elliott james-d-elliott deleted the feat-conf-public-suffix branch February 2, 2023 05:34
@james-d-elliott james-d-elliott added this to the v4.38.0 milestone Aug 2, 2023
@james-d-elliott james-d-elliott added the area/config Configuration related features/bugs label Aug 20, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
area/config Configuration related features/bugs
Projects
None yet
Milestone
v4.38.0
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@james-d-elliott