Skip to content

Commit 20a023a

Browse files
james-d-elliottjames-d-elliott
authored
fix(authelia): encryption enc parameters set incorrectly (#284)
This fixes an issue where the client encryption_enc values were set incorrectly.
1 parent 7d616d8 commit 20a023a

File tree

2 files changed

+7
-7
lines changed

2 files changed

+7
-7
lines changed

charts/authelia/Chart.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
apiVersion: v2
22
name: authelia
3-
version: 0.10.0
3+
version: 0.10.1
44
kubeVersion: ">= 1.13.0-0"
55
description: Authelia is a Single Sign-On Multi-Factor portal for web apps
66
type: application

charts/authelia/files/configuration.oidc.client.yaml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -68,42 +68,42 @@
6868
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
6969
authorization_encrypted_response_key_id: {{ .Client.authorization_encrypted_response_key_id | default "" | squote }}
7070
authorization_encrypted_response_alg: {{ .Client.authorization_encrypted_response_alg | default "none" | squote }}
71-
authorization_encrypted_response_enc: {{ .Client.authorization_encrypted_response_enc | default "A128CBC-HS256" | squote }}
71+
authorization_encrypted_response_enc: {{ .Client.authorization_encrypted_response_enc | default "" | squote }}
7272
{{- end }}
7373
id_token_signed_response_alg: {{ .Client.id_token_signed_response_alg | default "RS256" | squote }}
7474
id_token_signed_response_key_id: {{ .Client.id_token_signed_response_key_id | default "" | squote }}
7575
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
7676
id_token_encrypted_response_key_id: {{ .Client.id_token_encrypted_response_key_id | default "" | squote }}
7777
id_token_encrypted_response_alg: {{ .Client.id_token_encrypted_response_alg | default "none" | squote }}
78-
id_token_encrypted_response_enc: {{ .Client.id_token_encrypted_response_enc | default "A128CBC-HS256" | squote }}
78+
id_token_encrypted_response_enc: {{ .Client.id_token_encrypted_response_enc | default "" | squote }}
7979
{{- end }}
8080
access_token_signed_response_alg: {{ .Client.access_token_signed_response_alg | default "none" | squote }}
8181
access_token_signed_response_key_id: {{ .Client.access_token_signed_response_key_id | default "" | squote }}
8282
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
8383
access_token_encrypted_response_key_id: {{ .Client.access_token_encrypted_response_key_id | default "" | squote }}
8484
access_token_encrypted_response_alg: {{ .Client.access_token_encrypted_response_alg | default "none" | squote }}
85-
access_token_encrypted_response_enc: {{ .Client.access_token_encrypted_response_enc | default "A128CBC-HS256" | squote }}
85+
access_token_encrypted_response_enc: {{ .Client.access_token_encrypted_response_enc | default "" | squote }}
8686
{{- end }}
8787
userinfo_signed_response_alg: {{ .Client.userinfo_signed_response_alg | default "none" | squote }}
8888
userinfo_signed_response_key_id: {{ .Client.userinfo_signed_response_key_id | default "" | squote }}
8989
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
9090
userinfo_encrypted_response_key_id: {{ .Client.userinfo_encrypted_response_key_id | default "" | squote }}
9191
userinfo_encrypted_response_alg: {{ .Client.userinfo_encrypted_response_alg | default "none" | squote }}
92-
userinfo_encrypted_response_enc: {{ .Client.userinfo_encrypted_response_enc | default "A128CBC-HS256" | squote }}
92+
userinfo_encrypted_response_enc: {{ .Client.userinfo_encrypted_response_enc | default "" | squote }}
9393
{{- end }}
9494
introspection_signed_response_alg: {{ .Client.introspection_signed_response_alg | default "none" | squote }}
9595
introspection_signed_response_key_id: {{ .Client.introspection_signed_response_key_id | default "" | squote }}
9696
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
9797
introspection_encrypted_response_key_id: {{ .Client.introspection_encrypted_response_key_id | default "" | squote }}
9898
introspection_encrypted_response_alg: {{ .Client.introspection_encrypted_response_alg | default "none" | squote }}
99-
introspection_encrypted_response_enc: {{ .Client.introspection_encrypted_response_enc | default "A128CBC-HS256" | squote }}
99+
introspection_encrypted_response_enc: {{ .Client.introspection_encrypted_response_enc | default "" | squote }}
100100
introspection_endpoint_auth_method: {{ .Client.introspection_endpoint_auth_method | default "client_secret_basic" | squote }}
101101
introspection_endpoint_auth_signing_alg: {{ .Client.introspection_endpoint_auth_signing_alg | default "RS256" | squote }}
102102
{{- end }}
103103
request_object_signing_alg: {{ .Client.request_object_signing_alg | default "" | squote }}
104104
{{- if semverCompare ">=4.39.0" (include "authelia.version" $) }}
105105
request_object_encryption_alg: {{ .Client.request_object_encryption_alg | default "none" | squote }}
106-
request_object_encryption_enc: {{ .Client.request_object_encryption_enc | default "A128CBC-HS256" | squote }}
106+
request_object_encryption_enc: {{ .Client.request_object_encryption_enc | default "" | squote }}
107107
{{- end }}
108108
token_endpoint_auth_method: {{ (include "authelia.config.oidc.client.token_endpoint_auth_method" .Client) | squote }}
109109
token_endpoint_auth_signing_alg: {{ .Client.token_endpoint_auth_signing_alg | default "" | squote }}

0 commit comments

Comments
 (0)