Skip to content

website/docs: add page about the Cobalt pentest#12249

Merged
tanberry merged 4 commits intomainfrom
docs-cobalt
Dec 9, 2024
Merged

website/docs: add page about the Cobalt pentest#12249
tanberry merged 4 commits intomainfrom
docs-cobalt

Conversation

@tanberry
Copy link
Contributor

@tanberry tanberry commented Dec 3, 2024
edited
Loading

This PR adds a page to cover the Cobalt pentest in fall 2024.

  • The documentation has been updated
  • The documentation has been formatted (make website)

@tanberry tanberry requested a review from fheisler December 3, 2024 02:37
@tanberry tanberry requested review from a team as code owners December 3, 2024 02:37
@netlify
Copy link

netlify bot commented Dec 3, 2024
edited
Loading

Deploy Preview for authentik-storybook canceled.

Name Link
🔨 Latest commit 7877ac3
🔍 Latest deploy log https://app.netlify.com/sites/authentik-storybook/deploys/6754c7ef4c8749000803bdab

@netlify
Copy link

netlify bot commented Dec 3, 2024
edited
Loading

Deploy Preview for authentik-docs ready!

Name Link
🔨 Latest commit 7877ac3
🔍 Latest deploy log https://app.netlify.com/sites/authentik-docs/deploys/6754c7ef0314e300083c2a79
😎 Deploy Preview https://deploy-preview-12249--authentik-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@codecov
Copy link

codecov bot commented Dec 3, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 92.69%. Comparing base (e077a5c) to head (7877ac3).
Report is 34 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #12249      +/-   ##
==========================================
+ Coverage   92.67%   92.69%   +0.01%     
==========================================
  Files         761      762       +1     
  Lines       38050    38156     +106     
==========================================
+ Hits        35263    35367     +104     
- Misses       2787     2789       +2
Flag Coverage Δ
e2e 49.15% <ø> (-0.07%) ⬇️
integration 24.76% <ø> (-0.07%) ⬇️
unit 90.21% <ø> (+<0.01%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@dominic-r
Copy link
Member

dominic-r commented Dec 3, 2024

This paragraph of SECURITY.md should also be updated if I'm not mistaken: https://github.com/goauthentik/authentik/blob/main/SECURITY.md#independent-audits-and-pentests

authentik-db-cooper
authentik-db-cooper approved these changes Dec 3, 2024
View reviewed changes
Copy link
Contributor

@authentik-db-cooper authentik-db-cooper left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@tanberry tanberry requested review from a team as code owners December 3, 2024 21:11
@fheisler
corrections and fix explanations
7877ac3 
Signed-off-by: Fletcher Heisler <fheisler@users.noreply.github.com>
fheisler
fheisler approved these changes Dec 7, 2024
View reviewed changes
Copy link
Member

@fheisler fheisler left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

assuming everything is linked + shows up correctly, all set to publish this 👍

@tanberry tanberry merged commit a117918 into main Dec 9, 2024
@tanberry tanberry deleted the docs-cobalt branch December 9, 2024 13:57
kensternberg-authentik added a commit that referenced this pull request Dec 9, 2024
@kensternberg-authentik
Merge branch 'main' into web/bug/grammar-on-stage-binding
c88fc40 
[Merge note: The two strings that were manually updated translate to, according to Google Translate:
"Evaluate the policies once the stage is presented to the user." (note the past tense)
"Evaluate the policies when the level is visible to the user." (note the ambiguous tense)

* main: (226 commits)
  website/docs: add page about the Cobalt pentest (#12249)
  core: bump aws-cdk-lib from 2.171.1 to 2.172.0 (#12296)
  website: bump aws-cdk from 2.171.1 to 2.172.0 in /website (#12295)
  core: bump sentry-sdk from 2.19.1 to 2.19.2 (#12297)
  core: bump coverage from 7.6.8 to 7.6.9 (#12299)
  core, web: update translations (#12290)
  root: fix override locale only if it is not empty (#12283)
  translate: Updates for file web/xliff/en.xlf in fr (#12276)
  core: bump twilio from 9.3.7 to 9.3.8 (#12282)
  website: bump path-to-regexp and express in /website (#12279)
  core: bump sentry-sdk from 2.19.0 to 2.19.1 (#12280)
  core: bump ruff from 0.8.1 to 0.8.2 (#12281)
  website/docs: fix lint (#12287)
  website/integrations: netbird: fix redirect URI regex (#12284)
  web: simplify `?inline` handler for Storybook (#12246)
  website/docs: Update Traefik middleware example to reflect latest version of Traefik (#12267)
  website/docs: add . in https://netbird.company* (#12166)
  core: bump goauthentik.io/api/v3 from 3.2024104.1 to 3.2024104.2 (#12263)
  core: bump pydantic from 2.10.2 to 2.10.3 (#12262)
  core: bump github.com/getsentry/sentry-go from 0.29.1 to 0.30.0 (#12264)
  ...
kensternberg-authentik added a commit that referenced this pull request Dec 10, 2024
@kensternberg-authentik
Merge branch 'main' into web/policy-wizard-3
9e0579a 
* main: (93 commits)
  flows: better test stage's challenge responses (#12316)
  enterprise/stages/authenticator_endpoint_gdtc: don't set frame options globally (#12311)
  stages/identification: fix invalid challenge warning when no captcha stage is set (#12312)
  website/docs: prepare 2024.10.5 release notes (#12309)
  website: bump nanoid from 3.3.7 to 3.3.8 in /website (#12307)
  flows: silent authz flow (#12213)
  root:  use healthcheck in depends_on for postgres and redis (#12301)
  ci: ensure mark jobs always run and reflect correct status (#12288)
  enterprise: allow deletion/modification of users when in read-only mode (#12289)
  web/flows: resize captcha iframes (#12260)
  website/docs: add page about the Cobalt pentest (#12249)
  core: bump aws-cdk-lib from 2.171.1 to 2.172.0 (#12296)
  website: bump aws-cdk from 2.171.1 to 2.172.0 in /website (#12295)
  core: bump sentry-sdk from 2.19.1 to 2.19.2 (#12297)
  core: bump coverage from 7.6.8 to 7.6.9 (#12299)
  core, web: update translations (#12290)
  root: fix override locale only if it is not empty (#12283)
  translate: Updates for file web/xliff/en.xlf in fr (#12276)
  core: bump twilio from 9.3.7 to 9.3.8 (#12282)
  website: bump path-to-regexp and express in /website (#12279)
  ...

Integration of the change from jwksSources -> (jwtFederatedSources, jwtFederatedProviders) by
hand, and necessitated an update of Wdio to 9.4.

All tests passing (thank Gnu).
kensternberg-authentik added a commit that referenced this pull request Jan 8, 2025
@kensternberg-authentik
Merge branch 'main' into dev
7bb6a3d 
* main:
  website/docs: add page about the Cobalt pentest (#12249)
  core: bump aws-cdk-lib from 2.171.1 to 2.172.0 (#12296)
  website: bump aws-cdk from 2.171.1 to 2.172.0 in /website (#12295)
  core: bump sentry-sdk from 2.19.1 to 2.19.2 (#12297)
  core: bump coverage from 7.6.8 to 7.6.9 (#12299)
  core, web: update translations (#12290)
  root: fix override locale only if it is not empty (#12283)
  translate: Updates for file web/xliff/en.xlf in fr (#12276)
  core: bump twilio from 9.3.7 to 9.3.8 (#12282)
  website: bump path-to-regexp and express in /website (#12279)
  core: bump sentry-sdk from 2.19.0 to 2.19.1 (#12280)
  core: bump ruff from 0.8.1 to 0.8.2 (#12281)
  website/docs: fix lint (#12287)
  website/integrations: netbird: fix redirect URI regex (#12284)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BeryJu BeryJu BeryJu approved these changes

@fheisler fheisler fheisler approved these changes

@gergosimonyi gergosimonyi gergosimonyi approved these changes

+1 more reviewer

@authentik-db-cooper authentik-db-cooper authentik-db-cooper approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@tanberry @dominic-r @BeryJu @fheisler @gergosimonyi @authentik-db-cooper