chore: publish 1.3.0+2022.12.2 release

feat: add token expiry and email subject template
fix image metadata
2023-01-05 18:23:46 +01:00 · 2022-12-20 20:39:04 +01:00 · 2022-12-20 16:02:12 +01:00 · 2022-12-20 15:56:35 +01:00 · 2022-12-20 12:54:39 +01:00
5 changed files with 22 additions and 13 deletions
--- a/.env.sample
+++ b/.env.sample
@ -28,9 +28,13 @@ SECRET_EMAIL_PASS_VERSION=v1

 # X_FRAME_OPTIONS_ALLOW_FROM=dashboard.example.org
 AUTHENTIK_COLOR_BACKGROUND_LIGHT=#1c1e21
+AUTHENTIK_IMPERSONATION=true

 ## FLOW OPTIONS
 WELCOME_MESSAGE="Welcome to Authentik"
 DEFAULT_LANGUAGE=en
 AUTHENTIK_FOOTER_LINKS='[{"name": "My Organization","href":"https://example.com"}]'
 COPY_ASSETS="flow_background.jpg|app:/web/dist/assets/images/ icon_left_brand.svg|app:/web/dist/assets/icons/ icon.png|app:/web/dist/assets/icons/"
+
+EMAIL_SUBJECT="Account Recovery"
+EMAIL_TOKEN_EXPIRY_MINUTES=30
--- a/README.md
+++ b/README.md
@ -9,7 +9,7 @@

 * **Category**: Apps
 * **Status**: 0, work-in-progress
-* **Image**: [ghcr/goauthentik/server](https://ghcr.io/goauthentik/server)
+* **Image**: [ghcr/goauthentik/server](https://ghcr.io/goauthentik/server), 4, upstream
 * **Healthcheck**: Yes
 * **Backups**: Yes
 * **Email**: Yes
@ -23,12 +23,14 @@
 * `abra app new authentik`
 * `abra app config <app-name>`
 * `abra app secret insert <app_name> email_pass v1 <password>`
-* `abra app secret generate -a <app_name>
+* `abra app secret generate -a <app_name>`
 * `abra app deploy <app-name>`
 * `abra app cmd <app_name> app set_admin_pass`

 ## Rotate Secrets

+Increment the secret versions using `abra app config <app_name>`
+
 ```
 abra app secret generate -a <app_name>
 abra app undeploy <app_name>
--- a/abra.sh
+++ b/abra.sh
@ -1,5 +1,5 @@
 export CUSTOM_CSS_VERSION=v2
-export CUSTOM_FLOWS_VERSION=v2
+export CUSTOM_FLOWS_VERSION=v3

 customize() {
    if [ -z "$1" ]
@ -31,7 +31,7 @@ if (token:= Token.objects.filter(identifier='authentik-bootstrap-token').first()
    token.key=key
    token.save()
    print('Changed authentik-bootstrap-token')
-else: 
+else:
    Token.objects.create(
        identifier='authentik-bootstrap-token',
        user=akadmin,
--- a/compose.yml
+++ b/compose.yml
@ -20,14 +20,17 @@ x-env: &env
    - AUTHENTIK_SETTINGS__THEME__BACKGROUND
    - AUTHENTIK_COLOR_BACKGROUND_LIGHT
    - AUTHENTIK_FOOTER_LINKS
+    - AUTHENTIK_IMPERSONATION
    - WELCOME_MESSAGE
    - DEFAULT_LANGUAGE
+    - EMAIL_SUBJECT
+    - EMAIL_TOKEN_EXPIRY_MINUTES
    - DOMAIN

 version: '3.8'
 services:
  app:
-    image: ghcr.io/goauthentik/server:2022.11.3
+    image: ghcr.io/goauthentik/server:2022.12.2
    command: server
    secrets:
      - db_password
@ -67,10 +70,10 @@ services:
        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.customFrameOptionsValue=SAMEORIGIN"
        - "traefik.http.middlewares.${STACK_NAME}-frameOptions.headers.contentSecurityPolicy=frame-ancestors ${X_FRAME_OPTIONS_ALLOW_FROM}"
-        - "coop-cloud.${STACK_NAME}.version=1.2.0+2022.11.3"
+        - "coop-cloud.${STACK_NAME}.version=1.3.0+2022.12.2"

  worker:
-    image: ghcr.io/goauthentik/server:2022.11.3
+    image: ghcr.io/goauthentik/server:2022.12.2
    command: worker
    secrets:
      - db_password
--- a/custom_flows.yaml.tmpl
+++ b/custom_flows.yaml.tmpl
@ -12,7 +12,7 @@ context:
  transl_name: {{ if eq (env "DEFAULT_LANGUAGE") "de" }} Vor- und Nachname {{ else }} Full name {{ end }}

 entries:
-######## Email Recovery Flow ######## 
+######## Email Recovery Flow ########
 - identifiers:
    slug: default-recovery-flow
  id: recovery_flow
@ -54,8 +54,8 @@ entries:
  model: authentik_stages_email.emailstage
  attrs:
    use_global_settings: true
-    token_expiry: 30
-    subject: authentik
+    token_expiry: {{ env "EMAIL_TOKEN_EXPIRY_MINUTES" }}
+    subject: "{{ env "EMAIL_SUBJECT" }}"
    template: email/password_reset.html
    activate_user_on_success: true
 - identifiers:
@ -174,7 +174,7 @@ entries:



-######## Authentication Flow ######## 
+######## Authentication Flow ########
 - attrs:
    designation: authentication
    name: custom-authentication-flow
@ -236,7 +236,7 @@ entries:
    target: !KeyOf authentication_flow
  model: authentik_flows.flowstagebinding

-######## Invitation Enrollment Flow ######## 
+######## Invitation Enrollment Flow ########
 - attrs:
    designation: enrollment
    name: invitation-enrollment-flow
@ -336,7 +336,7 @@ entries:

 ######## System Tenant ##########
 - attrs:
-    attributes: 
+    attributes:
      settings:
        locale: {{ env "DEFAULT_LANGUAGE" }}
    # branding_favicon: /static/dist/assets/icons/icon.png
Author	SHA1	Message	Date
Moritz	26d02d51dd	chore: publish 1.3.0+2022.12.2 release	2023-01-05 18:23:46 +01:00
Philipp Rothmann	4bab09a1cf	feat: add token expiry and email subject template	2022-12-20 20:39:04 +01:00
Moritz	b7df357395	fix image metadata	2022-12-20 16:02:12 +01:00
Moritz	9273fbcb1a	fix README	2022-12-20 15:56:35 +01:00
Moritz	a01559d61a	add AUTHENTIK_IMPERSONATION env for disabling impersonation	2022-12-20 12:54:39 +01:00