chore: publish 1.2.0+2022.11.3 release

update README
general way to copy assets using env variables
2022-12-20 11:28:17 +01:00 · 2022-12-20 11:11:27 +01:00 · 2022-12-20 10:41:32 +01:00 · 2022-12-02 12:14:33 +01:00 · 2022-12-02 12:04:15 +01:00 · 2022-11-24 21:13:19 -08:00
6 changed files with 44 additions and 37 deletions
--- a/.env.sample
+++ b/.env.sample
@ -1,7 +1,7 @@
 TYPE=authentik
 LETS_ENCRYPT_ENV=production

-DOMAIN={{ .Domain }}
+DOMAIN=authentik.example.com
 AUTHENTIK_POSTGRESQL__USER=authentik
 AUTHENTIK_POSTGRESQL__NAME=authentik
 AUTHENTIK_POSTGRESQL__HOST=db
@ -21,7 +21,7 @@ AUTHENTIK_LOG_LEVEL=info

 # Secret Versions
 SECRET_SECRET_KEY_VERSION=v1
-SECRET_DB_PASSWORD_VERSION=V1
+SECRET_DB_PASSWORD_VERSION=v1
 SECRET_ADMIN_TOKEN_VERSION=v1
 SECRET_ADMIN_PASS_VERSION=v1
 SECRET_EMAIL_PASS_VERSION=v1
@ -33,3 +33,4 @@ AUTHENTIK_COLOR_BACKGROUND_LIGHT=#1c1e21
 WELCOME_MESSAGE="Welcome to Authentik"
 DEFAULT_LANGUAGE=en
 AUTHENTIK_FOOTER_LINKS='[{"name": "My Organization","href":"https://example.com"}]'
+COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/"
--- a/README.md
+++ b/README.md
@ -20,7 +20,7 @@

 ## Quick start

-* `abra app new authentik --secrets`
+* `abra app new authentik`
 * `abra app config <app-name>`
 * `abra app secret insert <app_name> email_pass v1 <password>`
 * `abra app secret generate -a <app_name>
@ -39,14 +39,21 @@ abra app cmd <app_name> app set_admin_pass

 ## Customization

+Place the files you want to overwrite in a directory `<assets_path>`.
+Run `abra app config <app_name>` and define the env variable `COPY_ASSETS` in the following format:
+
+```
+"<source_file1>|<service>:<target_directory1> <source_file2>|<service>:<target_directory2> ...
+```
+
+For example:
+
+```
+COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/"
+```
+
 Run this command after every deploy/upgrade:

 `abra app command --local <app-name> customize <assets_path>`

-This command replaces the background image, the logo and the favicon with the following files placed in the `<assets_path>` directory:
-* `flow_background.jpg`
-* `icon_left_brand.svg`
-* `icon.png`
-
-
 For more, see [`docs.coopcloud.tech`](https://docs.coopcloud.tech).
--- a/abra.sh
+++ b/abra.sh
@ -1,6 +1,5 @@
 export CUSTOM_CSS_VERSION=v2
 export CUSTOM_FLOWS_VERSION=v2
-export RECOVERY_TEMPLATE_DE_VERSION=v1

 customize() {
    if [ -z "$1" ]
@ -8,22 +7,13 @@ customize() {
            echo "Usage: ... customize <assets_path>"
            exit 1
    fi
-    # TODO: use env to specify source and target files
-    if [ -e $1/flow_background.jpg ]
-    then
-        echo copy flow_background.jpg
-        abra app cp $APP_NAME $1/flow_background.jpg app:/web/dist/assets/images/
-    fi
-    if [ -e $1/icon_left_brand.svg ]
-    then
-        echo copy icon_left_brand.svg
-        abra app cp $APP_NAME $1/icon_left_brand.svg app:/web/dist/assets/icons/
-    fi
-    if [ -e $1/icon.png ]
-    then
-        echo copy icon.png
-        abra app cp $APP_NAME $1/icon.png app:/web/dist/assets/icons/
-    fi
+    asset_dir=$1
+    for asset in $COPY_ASSETS; do
+        source=$(echo $asset | cut -d "|" -f1)
+        target=$(echo $asset | cut -d "|" -f2)
+        echo copy $source to $target
+        abra app cp $APP_NAME $asset_dir/$source $target
+    done
 }

 set_admin_pass() {
--- a/compose.yml
+++ b/compose.yml
@ -27,7 +27,7 @@ x-env: &env
 version: '3.8'
 services:
  app:
-    image: ghcr.io/goauthentik/server:2022.10.1
+    image: ghcr.io/goauthentik/server:2022.11.3
    command: server
    secrets:
      - db_password
@ -41,8 +41,6 @@ services:
    configs:
      - source: custom_css
        target: /web/dist/custom.css
-      - source: recovery_template_de
-        target: /templates/password_reset_de.html
    networks:
      - internal
      - proxy
@ -69,10 +67,10 @@ services:
        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.customFrameOptionsValue=SAMEORIGIN"
        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.contentSecurityPolicy=frame-ancestors ${X_FRAME_OPTIONS_ALLOW_FROM}"
-        - "coop-cloud.${STACK_NAME}.version=0.6.0+2022.10.1"
+        - "coop-cloud.${STACK_NAME}.version=1.2.0+2022.11.3"

  worker:
-    image: ghcr.io/goauthentik/server:2022.10.1
+    image: ghcr.io/goauthentik/server:2022.11.3
    command: worker
    secrets:
      - db_password
@ -96,7 +94,7 @@ services:
    environment: *env

  db:
-    image: postgres:12.12-alpine
+    image: postgres:12.13-alpine
    secrets:
      - db_password
    volumes:
@ -164,9 +162,6 @@ configs:
    name: ${STACK_NAME}_custom_css_${CUSTOM_CSS_VERSION}
    file: custom.css.tmpl
    template_driver: golang
-  recovery_template_de:
-    name: ${STACK_NAME}_recovery_template_de_${RECOVERY_TEMPLATE_DE_VERSION}
-    file: password_reset_de.html
  custom_flows:
    name: ${STACK_NAME}_custom_flows_${CUSTOM_FLOWS_VERSION}
    file: custom_flows.yaml.tmpl
--- a/custom_flows.yaml.tmpl
+++ b/custom_flows.yaml.tmpl
@ -10,7 +10,6 @@ context:
  transl_password_repeat: {{ if eq (env "DEFAULT_LANGUAGE") "de" }} Passwort (wiederholen) {{ else }} Password (repeat) {{ end }}
  transl_username: {{ if eq (env "DEFAULT_LANGUAGE") "de" }} Benutzername {{ else }} Username {{ end }}
  transl_name: {{ if eq (env "DEFAULT_LANGUAGE") "de" }} Vor- und Nachname {{ else }} Full name {{ end }}
-  transl_template_recovery: {{ if eq (env "DEFAULT_LANGUAGE") "de" }} password_reset_de.html {{ else }} email/password_reset.html {{ end }}

 entries:
 ######## Email Recovery Flow ######## 
@ -57,7 +56,7 @@ entries:
    use_global_settings: true
    token_expiry: 30
    subject: authentik
-    template: !Context transl_template_recovery
+    template: email/password_reset.html
    activate_user_on_success: true
 - identifiers:
    name: default-recovery-user-write
--- a/releases/1.0.0+2022.10.1
+++ b/releases/1.0.0+2022.10.1
@ -0,0 +1,15 @@
+This upgrade replaces the passwords stored in env variables by docker secrets.
+You need to insert the following passwords as secret:
+
+`POSTGRES_PASSWORD` / `AUTHENTIK_POSTGRESQL__PASSWORD`:
+    `abra app secret insert <app_name> db_password v1 <password>`
+`AUTHENTIK_SECRET_KEY`:
+    `abra app secret insert <app_name> secret_key v1 <password>`
+`AK_ADMIN_TOKEN`:
+    `abra app secret insert <app_name> admin_token v1 <password>`
+`AK_ADMIN_PASS`:
+    `abra app secret insert <app_name> admin_pass v1 <password>`
+`AUTHENTIK_EMAIL__PASSWORD`:
+    `abra app secret insert <app_name> email_pass v1 <password>`
+
+These variables should be removed from the .env file.
Author	SHA1	Message	Date
Moritz	40afba88ae	chore: publish 1.2.0+2022.11.3 release	2022-12-20 11:28:17 +01:00
Moritz	3512cbe394	update README	2022-12-20 11:11:27 +01:00
Moritz	1dc2ba18d4	general way to copy assets using env variables	2022-12-20 10:41:32 +01:00
Philipp Rothmann	dd47cb56f6	chore: publish 1.1.1+2022.11.1 release	2022-12-02 12:14:33 +01:00
Philipp Rothmann	45f649e499	fix typo	2022-12-02 12:04:15 +01:00
3wc	c8100f0f4b	Switch to <recipe>.example.com	2022-11-24 21:13:19 -08:00
Moritz	335a65cc86	remove german translated password reset email template	2022-11-23 15:29:09 +01:00
Moritz	25fe883df3	chore: publish 1.1.0+2022.11.1 release	2022-11-23 15:20:30 +01:00
Moritz	fcb54027d0	chore: publish 1.0.0+2022.10.1 release	2022-11-22 11:12:35 +01:00