v0.1.53

taylorwalton released this 01 Apr 20:22

· 123 commits to main since this release

1677c31

What's Changed

774 alert timestamp update by @taylorwalton in #777
Cp dashboard by @taylorwalton in #780
[Snyk] Security upgrade requests from 2.31.0 to 2.33.0 by @taylorwalton in #781
feat: add SSO authentication (Azure / Google / Cloudflare Access) and opt-in TOTP 2FA by @maciekaz in #778

New Contributors

@maciekaz made their first contribution in #778

Full Changelog: v0.1.52...v0.1.53

IMPORTANT: Add to your .env:

SECURITY: JWT secret for token signing.

⚠️ The default value below is publicly known — change it before any deployment!

Generate a unique secret with: openssl rand -base64 32

JWT_SECRET=REPLACE_ME

SECURITY: Dedicated secret for signing OAuth2 state tokens (SSO flows).

If not set, falls back to JWT_SECRET — set this to isolate SSO state signing.

Generate with: openssl rand -base64 32

SSO_STATE_SECRET=REPLACE_ME

SECURITY: Fernet encryption key for TOTP secrets stored in the database.

If not set, falls back to a key derived from JWT_SECRET.

⚠️ Once set and users have enrolled 2FA, do NOT change this key — existing

TOTP secrets in the database will become unreadable.

Generate with: python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())"

TOTP_ENCRYPTION_KEY=REPLACE_ME

Contributors

taylorwalton and maciekaz

Assets 2