fix: update breaking changes (#253)

authelia · Aug 1, 2024 · 05fa315 · 05fa315
1 parent d8001d2
commit 05fa315
Show file tree

Hide file tree

Showing 3 changed files with 38 additions and 6 deletions.
diff --git a/charts/authelia/BREAKING.md b/charts/authelia/BREAKING.md
@@ -118,6 +118,33 @@ configMap:
 Several OpenID Connect 1.0 changes have occurred which will not be automatically detected if you're using old values and
 may cause an error if you're still using them.
 
+#### Client Option: id and secret
+
+Client options `id` and `secret` have been renamed to `client_id` and `client_secert` respectively to closely match the
+specification. In addition the `client_secret` must use one of the hash formats (even if it's the `$plaintext$` format).
+
+Before:
+
+```yaml
+configMap:
+  identity_providers:
+    oidc:
+      clients:
+      - id: 'myid'
+        secret: '$pbkdf2-sha512$310000$c8p78n7pUMln0jzvd4aK4Q$JNRBzwAo0ek5qKn50cFzzvE9RXV88h1wJn5KGiHrD0YKtZaR/nCb2CJPOsKaPK0hjf.9yHxzQGZziziccp6Yng'
+```
+
+After:
+
+```yaml
+configMap:
+  identity_providers:
+    oidc:
+      clients:
+      - client_id: 'myid'
+        client_secret: '$pbkdf2-sha512$310000$c8p78n7pUMln0jzvd4aK4Q$JNRBzwAo0ek5qKn50cFzzvE9RXV88h1wJn5KGiHrD0YKtZaR/nCb2CJPOsKaPK0hjf.9yHxzQGZziziccp6Yng'
+```
+
 #### Client Option: token_endpoint_auth_method
 
 Clients will be forced to use a specific authentication method. By default all clients will use `client_secret_post`
@@ -133,7 +160,7 @@ configMap:
   identity_providers:
     oidc:
       clients:
-      - id: 'myid'
+      - client_id: 'myid'
         token_endpoint_auth_method: 'client_secret_basic'
 ```
 
@@ -152,9 +179,9 @@ configMap:
   identity_providers:
     oidc:
       clients:
-      - id: 'example'
+      - client_id: 'example'
         # secret: '$pbkdf2-sha512$310000$c8p78n7pUMln0jzvd4aK4Q$JNRBzwAo0ek5qKn50cFzzvE9RXV88h1wJn5KGiHrD0YKtZaR/nCb2CJPOsKaPK0hjf.9yHxzQGZziziccp6Yng'  # The digest of 'insecure_secret'.
-        secret:
+        client_secret:
           # value: '$pbkdf2-sha512$310000$c8p78n7pUMln0jzvd4aK4Q$JNRBzwAo0ek5qKn50cFzzvE9RXV88h1wJn5KGiHrD0YKtZaR/nCb2CJPOsKaPK0hjf.9yHxzQGZziziccp6Yng'  # The digest of 'insecure_secret'.
           path: '/path/to/secret'
 ```

diff --git a/charts/authelia/Chart.yaml b/charts/authelia/Chart.yaml
@@ -1,6 +1,6 @@
 apiVersion: v2
 name: authelia
-version: 0.9.1
+version: 0.9.2
 kubeVersion: ">= 1.13.0-0"
 description: Authelia is a Single Sign-On Multi-Factor portal for web apps
 type: application

diff --git a/charts/authelia/values.local.yaml b/charts/authelia/values.local.yaml
@@ -1,11 +1,16 @@
 ---
 ## @formatter:off
-## values.yaml
+## values.local.yaml
 ##
 ## Repository: authelia https://charts.authelia.com
 ## Chart: authelia
 ##
-## This values file is a baseline for other values files.
+## This values file is designed for a StatefulSet deployment with a single pod. It is not intended for production environments
+## It uses the following providers:
+##   - authentication: file (yaml)
+##   - storage: local (SQLite3)
+##   - session: memory
+##   - notification: filesystem (yaml)
 
 ## Version Override allows changing some chart characteristics that render only on specific versions.
 ## This does NOT affect the image used, please see the below image section instead for this.