chore: publish 0.4.0+2022.8.2 release

add headers to embed authentik in iframes
chore: publish 0.3.0+2022.7.3 release
2022-09-12 11:21:48 +02:00 · 2022-09-12 10:56:11 +02:00 · 2022-07-21 14:24:20 +02:00
2 changed files with 12 additions and 5 deletions
--- a/.env.sample
+++ b/.env.sample
@ -31,3 +31,5 @@ AUTHENTIK_LOG_LEVEL=info
 # SECRET_SECRET_KEY_VERSION=v1
 # SECRET_ADMIN_TOKEN_VERSION=v1
 # SECRET_ADMIN_PASS_VERSION=v1
+
+# X_FRAME_OPTIONS_ALLOW_FROM=dashboard.example.org
--- a/compose.yml
+++ b/compose.yml
@ -24,7 +24,7 @@ x-env: &env
 version: '3.8'
 services:
  app:
-    image: ghcr.io/goauthentik/server:2022.6.3
+    image: ghcr.io/goauthentik/server:2022.8.2
    command: server
    # secrets:
    #   - db_password
@ -55,10 +55,15 @@ services:
        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`)"
        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
-        - "coop-cloud.${STACK_NAME}.version=0.2.0+2022.6.3"
+        - "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect,${STACK_NAME}-frameOptions"
+        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLForceHost=true"
+        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
+        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.customFrameOptionsValue=SAMEORIGIN"
+        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.contentSecurityPolicy=frame-ancestors ${X_FRAME_OPTIONS_ALLOW_FROM}"
+        - "coop-cloud.${STACK_NAME}.version=0.4.0+2022.8.2"

  worker:
-    image: ghcr.io/goauthentik/server:2022.6.3
+    image: ghcr.io/goauthentik/server:2022.8.2
    command: worker
    # secrets:
      # - db_password
@ -77,7 +82,7 @@ services:
    environment: *env

  db:
-    image: postgres:12.11-alpine
+    image: postgres:12.12-alpine
    # secrets:
      # - db_password
    volumes:
@ -102,7 +107,7 @@ services:
          backupbot.backup.path: "/tmp/backup/"

  redis:
-    image:  redis:7.0.2-alpine
+    image:  redis:7.0.4-alpine
    networks:
      - internal
    healthcheck:
Author	SHA1	Message	Date
Philipp Rothmann	a67caca935	chore: publish 0.4.0+2022.8.2 release	2022-09-12 11:21:48 +02:00
Philipp Rothmann	a23fb0f209	add headers to embed authentik in iframes	2022-09-12 10:56:11 +02:00
Philipp Rothmann	d59f464378	chore: publish 0.3.0+2022.7.3 release	2022-07-21 14:24:20 +02:00