chore(deps): update container image authelia/authelia to v4.37.2

[renovate[bot]]

This PR contains the following updates:

Package	Update	Change
authelia/authelia	minor	4.34.5 -> 4.37.2

---

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.

---

Release Notes

authelia/authelia

v4.37.2

Compare Source

Bug Fixes

• authentication: erroneously escaped group base dn (#​4288) (a048ab6)
• oidc: handle authorization post requests (#​4270) (a283fda)

Docker Container

• docker pull authelia/authelia:4.37.2
• docker pull ghcr.io/authelia/authelia:4.37.2

v4.37.1

Compare Source

Bug Fixes

• storage: postgresql default port incorrect (#​4251) (53c1b64), closes #​4249

Docker Container

• docker pull authelia/authelia:4.37.1
• docker pull ghcr.io/authelia/authelia:4.37.1

v4.37.0

Compare Source

Bug Fixes

• authorization: subject wildcard domain rule not matching (#​4187) (a4edf21), closes #​4186
• storage: mysql timestamp parsed incorrectly (#​4230) (1d821a0)

Features

• authentication: disabled users in yaml file (#​4193) (d610874)
• authentication: file case-insensitive and email search (#​4194) (a0b2e78), closes #​3383
• authentication: file password algorithms (#​3848) (3a70f67)
• authentication: file provider hot reload (#​4188) (84cb457)
• authentication: permit feature detection failures (#​4061) (66ea374)
• authorization: query parameter filtering (#​3990) (52102ee), closes #​2708
• commands: add webauthn device commands (#​3671) (24e41ae)
• commands: random character generator (#​4213) (3113ec2)
• configuration: comment unnecessary template lines (#​4222) (5c981e7)
• configuration: mtls clients (#​4221) (9532823), closes #​4044
• envoy support (#​3793) (ed7092c)
• notification: add disable_starttls option (#​3855) (c8fa19e)
• oidc: hashed client secrets (#​4026) (248f1d4)
• oidc: implicit consent (#​4080) (3aaca06)
• oidc: issuer jwk certificates (#​3989) (6810c91)
• storage: tls connection support (#​4233) (69c4c02)
• storage: unix socket support (#​4231) (1ea29cb)
• web: i18n local storage detector (#​3968) (18a2bde)

Docker Container

• docker pull authelia/authelia:4.37.0
• docker pull ghcr.io/authelia/authelia:4.37.0

v4.36.9

Compare Source

Bug Fixes

• authorization: regex subj doesn't redirect anon user (#​4037) (8cdf4a5)

Docker Container

• docker pull authelia/authelia:4.36.9
• docker pull ghcr.io/authelia/authelia:4.36.9

v4.36.8

Compare Source

Bug Fixes

• server: i18n etags missing (#​3973) (15110b7)
• web: broadcastchannel not supported on old safari (#​4014) (1ba6eff)

Docker Container

• docker pull authelia/authelia:4.36.8
• docker pull ghcr.io/authelia/authelia:4.36.8

v4.36.7

Compare Source

Bug Fixes

• commands: potential nil ptr error on shutdown (#​3947) (6cc182d)
• handlers: verify handler (#​3956) (ca85992), closes #​3084
• web: i18n explicit lang ignored (#​3961) (cd9bfe3)

Docker Container

• docker pull authelia/authelia:4.36.7
• docker pull ghcr.io/authelia/authelia:4.36.7

v4.36.6

Compare Source

Bug Fixes

• configuration: incorrect deprecated version (#​3935) (84f9e0c)
• web: update locales (#​3934) (c265741)

Docker Container

• docker pull authelia/authelia:4.36.6
• docker pull ghcr.io/authelia/authelia:4.36.6

v4.36.5

Compare Source

Bug Fixes

• notification: text emails not encoded properly (#​3854) (319a8cf)

Docker Container

• docker pull authelia/authelia:4.36.5
• docker pull ghcr.io/authelia/authelia:4.36.5

v4.36.4

Compare Source

Bug Fixes

• lints (#​3802) (77f60a9)
• utils: domain suffix improperly checked (#​3799) (9c00104)

Docker Container

• docker pull authelia/authelia:4.36.4
• docker pull ghcr.io/authelia/authelia:4.36.4

v4.36.3

Compare Source

Bug Fixes

• authorization: final slash in url matches ignored (#​3717) (f55082d), closes #​3692
• commands: acl check panic on decode failure (#​3697) (7d170f0)
• handlers: consent session prevents standard flow (#​3668) (b2cbcf3)
• notification: incorrect date header format (#​3684) (df016be)
• server: missing cache-control header (#​3737) (f12346e), closes #​3732
• web: offline_access consent description (#​3679) (f115f77)

Docker Container

• docker pull authelia/authelia:4.36.3
• docker pull ghcr.io/authelia/authelia:4.36.3

v4.36.2

Compare Source

Bug Fixes

• authorization: object path not normalized (#​3661) (664d65d)
• configuration: address parsing failure (#​3653) (290a38e)
• handlers: fix redirect with timed out sessions on rules with bypass policy (#​3599) (da012ab), closes #​3587
• suites: fix passive health checks for caddy suite (#​3627) (0f7da4f)

Docker Container

• docker pull authelia/authelia:4.36.2
• docker pull ghcr.io/authelia/authelia:4.36.2

v4.36.1

Compare Source

Bug Fixes

• configuration: missing password_reset disable key (#​3616) (e1ee5a5)
• configuration: storage encryption_key required log grammar issue (#​3617) (f355a45)

Docker Container

• docker pull authelia/authelia:4.36.1
• docker pull ghcr.io/authelia/authelia:4.36.1

v4.36.0

Compare Source

Note: A user has reported some invalid YAML syntax which was previously ignored is now being correctly detected as invalid by the parser. We recommend validating your YAML (and we generally recommend using an editor with this feature) if you see a YAML parsing issue in the logs at startup after upgrading to this version.

Bug Fixes

• authentication: poorly formatted log message (#​3563) (0236022)
• commands: hash-password usage instructions (#​3437) (2037a0e)
• handler: oidc two factor handling (#​3512) (607bbcc)
• model: potential panic (#​3538) (d9c7cd6)
• oidc: session refresh failure (#​3603) (a6a05ef)
• server: handled errors not logged correctly (#​3507) (5e3a1fd), closes #​3506
• web: add @​types/jest dev dependency (#​3467) (ab2119d)

Features

• authentication: unauthenticated ldap bind (#​3291) (25b5c1e)
• authorization: acl resource regex named groups (#​3597) (ab1d0c5)
• commands: enhance crypto generation capabilities (#​2842) (fcac438)
• configuration: automatically map old keys (#​3199) (d2f1e5d)
• logging: allow time replacement in log file name (#​3330) (46d84e4), closes #​3210
• major documentation refresh (#​3475) (b2c60ef)
• metrics: implement prometheus metrics (#​3234) (001589c)
• web: auto-redirect on appropriate authentication state changes (#​3187) (1991c44), closes #​3000
• web: translation for page title/footer (#​3401) (37de389)

Docker Container

• docker pull authelia/authelia:4.36.0
• docker pull ghcr.io/authelia/authelia:4.36.0

v4.35.6

Compare Source

Bug Fixes

• pnpm permissions in dev mode (#​3386) (3a8fdb3)

Docker Container

• docker pull authelia/authelia:4.35.6
• docker pull ghcr.io/authelia/authelia:4.35.6

v4.35.5

Compare Source

Bug Fixes

• authentication: err when user/display name same ldap attribute (#​3364) (c427b8f)

Docker Container

• docker pull authelia/authelia:4.35.5
• docker pull ghcr.io/authelia/authelia:4.35.5

v4.35.4

Compare Source

Bug Fixes

• web: loading from root instead of base path (#​3342) (cb46e90)

Docker Container

• docker pull authelia/authelia:4.35.4
• docker pull ghcr.io/authelia/authelia:4.35.4

v4.35.3

Compare Source

Bug Fixes

• authentication: utilize msad password history control (#​3256) (150e54c)
• handler: missing notification values (#​3321) (a7106ad), closes #​3319

Docker Container

• docker pull authelia/authelia:4.35.3
• docker pull ghcr.io/authelia/authelia:4.35.3

v4.35.2

Compare Source

Bug Fixes

• authentication: follow ldap referrals (#​3251) (c7d992f)
• oidc: pre-conf consent skipped entirely for anon users (#​3250) (1db0071)
• server: missing cache and xss headers (#​3289) (0855ea2)
• server: missing modern security headers (#​3288) (556a115)
• web: resolve missing peer dependencies (#​3290) (2001291)

Docker Container

• docker pull authelia/authelia:4.35.2
• docker pull ghcr.io/authelia/authelia:4.35.2

v4.35.1

Compare Source

Bug Fixes

• commands: invalid opaque id service name (#​3235) (06ba312)
• oidc: subject generated for anonymous users (#​3238) (abf1c86)
• suites: add missing traefik routes (#​3217) (92e219b)

Docker Container

• docker pull authelia/authelia:4.35.1
• docker pull ghcr.io/authelia/authelia:4.35.1

v4.35.0

Compare Source

Important Change: OpenID Connect subject identifiers have changed as per ad84c8c. You may be required by relying parties to remap/relink users to the new subject identifiers which are now opaque id's rather than the username in order to comply with the OpenID Connect standard. While we aim to keep changes like this to a minimum, OpenID Connect is still in beta as we iron out all the important functionality.

Bug Fixes

• configuration: missing valid keys (#​3207) (5aa25ec)
• configuration: remove unused password policy option (#​3149) (9d5ac45)
• configuration: sector identifier not parsed correctly (#​3142) (44bd707)
• oidc: missing amr claim supported in discovery (#​3147) (148ec1e)
• oidc: show detailed error reasons (#​3175) (f97474f)
• server: incorrect remote ip logged in error handler (#​3139) (ce6bf74)
• server: locale format incorrect (#​3154) (79935c7)
• server: respond with 404/405 appropriately (#​3087) (2502d89)
• web: description of profile scope is not accurate (#​3146) (f9da940)
• web: lowercase locales are not consistent with localization platforms (#​3141) (4503ac0)
• web: update client rendering method (#​3106) (fa143ea)

Features

• authentication: password policy (#​2723) (8659ba3)
• authorization: domain regex match with named groups (#​2789) (3c1bb3e)
• commands: user opaque identifiers commands (#​3144) (5a0a15f)
• configuration: allow rfc4918 http verbs in acl (#​2988) (b2d35d8)
• configuration: configurable default second factor method (#​3081) (e99fb7a)
• implement mutual tls in the web server (#​3065) (3ca438e), closes #​3041
• notification: password reset notification custom templates (#​2828) (bfd5d66), closes #​2755 #​2756
• oidc: client id claims (#​3150) (e7112bf)
• oidc: implement amr claim (#​2969) (0116506)
• oidc: opaque subject identifiers (#​3129) (ad84c8c)
• oidc: pairwise subject identifiers (#​3116) (8bb8207)
• oidc: persistent storage (#​2965) (0a970ae)
• oidc: pre-configured consent (#​3118) (66a450e), closes #​2598
• oidc: provide cors config including options handlers (#​3005) (4ebd8fd)
• server: zxcvbn password policy server side (#​3151) (92aba8e)
• templates: display link in mails sent by authelia (#​2785) (1bae65a)
• totp: secret customization (#​2681) (9b6bcca)
• web: add de i18n translation (#​3043) (c3faa38)
• web: add user display name to oidc consent view (#​3138) (90edf11), closes #​2595
• web: i18n asset overrides (#​3040) (aac4c47)
• web: password reset custom url (#​3111) (a2eb031), closes #​1934 #​2854

Docker Container

• docker pull authelia/authelia:4.35.0
• docker pull ghcr.io/authelia/authelia:4.35.0

v4.34.6

Compare Source

Bug Fixes

• configuration: expvars and pprof mapped incorrectly (#​3068) (a0bffe3)
• disable healthcheck in systemd unit file (#​3066) (e96459f)
• server: healthcheck ipv6 format is invalid (#​3055) (2f31db2)
• web: show appropriate default and available methods (#​2999) (70ab8aa)

Docker Container

• docker pull authelia/authelia:4.34.6
• docker pull ghcr.io/authelia/authelia:4.34.6

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.