Patch 1#2562
Open
majay7297-code wants to merge 4727 commits into
Open
Conversation
* WIP * temp hack for oathkeeper schema id * temp hack for oathkeeper schema id * revert schema urls * - added new config pages for OEL - updated dep - resolve internal refs in ory resolvers correctly
* flutter quickstart update * updating docs to handle the .env misnaming in the pubspec and the port mismatch * resolving default import issue with mdx for .env ref * doc change for flutter quickstart * fix: format * update: pubspec.lock * update: pubspec * update: pubspec to higher version * update: packages * debug: test * debug: test * upgrade: flutter to latest version| * remove: web renderer option for flutter
* feat: add kratos webhook header allowlist config details Signed-off-by: Mia <m@yarn.network> * fix: wording Signed-off-by: Mia <m@yarn.network> --------- Signed-off-by: Mia <m@yarn.network>
* chore: migration guide updates * chore: migration guide updates * chore: migration guide updates * chore: edits to migration guide * docs: updated migration strategies and identity schema content * Update docs/migrate-to-ory/migrate/create-project.mdx Co-authored-by: Jonas Hungershausen <jonas.hungershausen@ory.sh> * docs: final review comments * chore: format * chore: formatting fixes * chore: fixed tabs again * chore: formatting fixes * chore: fix formating * chore: fix formatting * chore: fix formating again * Update docs/migrate-to-ory/migrate/migrate-strategies.mdx Co-authored-by: Jonas Hungershausen <jonas.hungershausen@ory.sh> * docs: switch to calendar-based unified versioning (ory#2326) * docs: switch to calendar-based unified versioning * Update docs/ecosystem/upgrading.mdx * Update docs/ecosystem/upgrading.mdx * Update docs/ecosystem/upgrading.mdx * Update docs/ecosystem/upgrading.mdx * Update docs/ecosystem/upgrading.mdx * Update docs/ecosystem/upgrading.mdx * chore: format --------- Co-authored-by: unatasha8 <una.cogavin@ory.sh> Co-authored-by: vinckr <vincent@ory.sh> * docs: add device flow documentation (ory#2026) * docs: add device flow documentation * chore: Refine device verification UI section wording * chore: Update user code entropy configuration details Clarified the description of user code entropy options and their implications for user entry. * chore: Revise Device Authorization Grant documentation Updated the description and steps for the Device Authorization Grant to clarify the process and correct terminology. * chore: Update device authorization flow steps and formatting * chore: Added image for device authorization flow Added an image to illustrate the device authorization flow. * chore: Fix image path for device authorization flow * chore: Integrate Mermaid diagram for device authorization flow Added a sequence diagram to illustrate the device authorization flow using Mermaid. * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * Update docs/oauth2-oidc/device-authorization.mdx Co-authored-by: Patrik <zepatrik@users.noreply.github.com> * chore: address review comments and format * chore: add to sidebar * chore: fix grammar and typos --------- Co-authored-by: unatasha8 <una.cogavin@ory.sh> Co-authored-by: Patrik <zepatrik@users.noreply.github.com> Co-authored-by: vinckr <vincent@ory.sh> * fix: high-perf pooling doc (ory#2332) * fix: high-perf pooling doc * chore: apply suggestion from code review Co-authored-by: hackerman <3372410+aeneasr@users.noreply.github.com> * chore: apply suggestion from code review Co-authored-by: hackerman <3372410+aeneasr@users.noreply.github.com> * chore: apply suggestions from code review Co-authored-by: Arne Luenser <arne.luenser@ory.sh> * chore: omit slop --------- Co-authored-by: hackerman <3372410+aeneasr@users.noreply.github.com> Co-authored-by: Arne Luenser <arne.luenser@ory.sh> * chore(docs): update of OEL images (ory#2337) chore(docs): update OEL image tag * autogen(docs): generate cli docs * autogen(docs): generate cli docs * autogen(docs): generate cli docs * chore: added oel configuration schemas (ory#2279) * WIP * temp hack for oathkeeper schema id * temp hack for oathkeeper schema id * revert schema urls * - added new config pages for OEL - updated dep - resolve internal refs in ory resolvers correctly * docs: bump to 99e1d24edde1c46372cb61a1839961fde59dba8b * chore: clarify webhook config update (ory#2339) * fix: organizations docs (ory#2334) * feat: flutter quickstart (ory#2241) * flutter quickstart update * updating docs to handle the .env misnaming in the pubspec and the port mismatch * resolving default import issue with mdx for .env ref * doc change for flutter quickstart * fix: format * update: pubspec.lock * update: pubspec * update: pubspec to higher version * update: packages * debug: test * debug: test * upgrade: flutter to latest version| * remove: web renderer option for flutter * feat: add kratos webhook header allowlist config details (ory#2100) * feat: add kratos webhook header allowlist config details Signed-off-by: Mia <m@yarn.network> * fix: wording Signed-off-by: Mia <m@yarn.network> --------- Signed-off-by: Mia <m@yarn.network> * chore: migration guide updates * chore: migration updates * chore: migration guide updates * chore: update migration guide --------- Signed-off-by: Mia <m@yarn.network> Co-authored-by: Jonas Hungershausen <jonas.hungershausen@ory.sh> Co-authored-by: Adam Wałach <adam.walach@gmail.com> Co-authored-by: vinckr <vincent@ory.sh> Co-authored-by: Nikos Sklikas <nikos.sklikas@canonical.com> Co-authored-by: Patrik <zepatrik@users.noreply.github.com> Co-authored-by: hackerman <3372410+aeneasr@users.noreply.github.com> Co-authored-by: Arne Luenser <arne.luenser@ory.sh> Co-authored-by: ory-bot <60093411+ory-bot@users.noreply.github.com> Co-authored-by: Deepak Prabhakara <deepak.prabhakara@ory.sh> Co-authored-by: Parth <46842784+pi1814@users.noreply.github.com> Co-authored-by: Mia <m@yarn.network>
* chore: added image for device authorization flow * chore: adding wellknown endpoint discovery doc * docs: Adds article for OAuth2 and OIDC disovery endpoints * docs: fixed formatting issues * Update docs/oauth2-oidc/wellknown-endpoint-discovery.mdx Co-authored-by: Vincent <vincent@ory.sh> * Update docs/oauth2-oidc/wellknown-endpoint-discovery.mdx Co-authored-by: Vincent <vincent@ory.sh> * Update docs/oauth2-oidc/wellknown-endpoint-discovery.mdx Co-authored-by: Vincent <vincent@ory.sh> * git commit -a -m "chore: updated with feedback" * chore: updated format * chore: fix format --------- Co-authored-by: Vincent <vincent@ory.sh>
Converting OAuth2Api to OAuth2API
…os" (ory#2350) docs: update references from "ory.com/kratos" to "ory.sh/kratos" across multiple documentation files
* chore: update Go module dependencies and fix documentation URL * docs: add README for Protect page login example in Go and update tunnel command * docs: add additional note on server configuration in Protect page login example README * docs: update title in README for Protect page with login example in Go * docs: update README title to reflect Ory Authentication example in Go
* chore: update PHP dependencies and add README for protect-page-login example * docs: improve formatting in README for protect-page-login example * chore: add missing newline at end of composer.json for protect-page-login example * docs: refine README description for protect-page-login example * docs: update README title for clarity in protect-page-login example * docs: update README title to reflect authentication focus in protect-page-login php example * docs: update README link to reflect new Ory documentation URL
* fix: update footer and navbar links to remove redirects * fix: update chat links to point to direct slack url * chore: run format * chore: format code
* docs: update references from "ory.com/kratos" to "ory.sh/kratos" across multiple documentation files * docs: restore schema references to "ory.sh"
* chore: update dependencies and documentation for Vue example * chore: update README for Vue.js authentication example * docs: refine wording in Vue.js README
* feat: add Java Spring Boot authentication example * chore: add Scala to supported code languages in Docusaurus configuration * chore: build and test Java sample * docs: correct formatting in Java README
* fix: update quickstart guide link and configure trailing slash in Docusaurus * fix: format
…y#2359) chore: update logos for light and dark modes in navbar and footer
…direct checks (ory#2347) * added docs * chore: implement styleguide --------- Co-authored-by: vinckr <vincent@ory.sh>
…2330) * fix: correct Auth0 export users script and update documentation * docs: auth0 migration guid formatting improvements * docs: improve formatting in auth0 migration to follow our style guide. * docs: update Auth0 migration guide to correct project link * docs: refine Auth0 migration guide formatting and update project link reference * docs: update Auth0 migration guide for clarity and consistency * docs: clarify wording in Auth0 migration guide import script section * feat: enhance Auth0 migration script with environment variable checks. * docs: refine wording in Auth0 migration guide for bulk user export section * docs: remove redundant sections in Auth0 migration guide
* docs: remove CanonicalURL section from README.md * refactor: remove CanonicalUrl component and its usage from documentation * fix: code formatting
* fix: update documentation links to remove trailing slashes * fix: remove trailing slashes from documentation links * fix: remove trailing slash from documentation link * chore: run format
* chore: configure Vercel Speed Insights for docs project * chore: format code
* Fix typo in account linking mode description verify_with_existing_credential should be confirm_with_existing_credential based on API Spec. * chore: apply prettier formatting Prettier realigned the markdown table column spacing in 95_account-linking.mdx after the wire-value correction.
) * docs: document upstream MFA carry-over for OIDC social sign-in Adds a new page describing how Ory carries over upstream OIDC `acr` and `amr` claims into the resulting Ory session. Operators can configure per-provider `aal2_acr_values` and `aal2_amr_values` allowlists to mark sessions as AAL2 when the upstream identity provider has already performed multi-factor authentication. --------- Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* fix: kratos quickstart * chore: docker compose * chore: text * chore: shared quickstart * chore: text * chore: minimize png filesize * chore: fix images * chore: format * fix: format * chore: format
* fix: update internal links in documentation for consistency * fix: formatting
* chore: clarify console SSO * chore: typoe * chore: typo * chore: typo
* feat: introduce SameDeploymentLink component for deployment-aware navigation * chore: update CODEOWNERS to include @wassimoo for code examples and general ownership * refactor: simplify SameDeploymentLink component * fix: reflect deployment model context in sidebar picker
* feat: add AnnouncementBanner component with announcement content Co-authored-by: Copilot <copilot@github.com> * chore: update announcement content * docs: add turn banner on/off logic * docs: ran make format * Revert "docs: add turn banner on/off logic" This reverts commit b8dae8a. * fix: update announcement banner to disabled state --------- Co-authored-by: Copilot <copilot@github.com> Co-authored-by: unatasha8 <una.cogavin@ory.sh>
* wip docs * fix sidebar * [wip] * docs * format * add json snippets * add support code * wording * wording * wording * format * android emulator * format * acronym * flutter * flutter+macos * flutter+iOS * comment * comment * spell * Update docs/kratos/passwordless/08_deviceauthn.mdx Co-authored-by: Vincent <vincent@ory.sh> * consistent punctuation * remove boldness * proper links * add to sidebar --------- Co-authored-by: Vincent <vincent@ory.sh>
…n example (ory#2356) * chore: update dependencies and improve README for React authentication example * docs: update React application description to specify React Native * chore: apply suggestions from code review Co-authored-by: Vincent <vinckr@posteo.net> --------- Co-authored-by: Vincent <vincent@ory.sh> Co-authored-by: Vincent <vinckr@posteo.net>
* docs: add Landlock filesystem sandbox page Documents the new Landlock-based filesystem sandbox shipped with Kratos: the unconfigurable Jsonnet-worker layer (all channels), the kratos serve sandbox on Network/OEL, the `security.landlock.*` configuration knobs, symlink/cert-renewal caveats, the local `$ref` breaking change for identity schemas, and EPERM troubleshooting steps. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * docs: cross-link Landlock sandbox page from operator-facing topics Adds short callouts on identity-schema, courier-template, Jsonnet, TLS, production, and troubleshooting pages so self-hosted operators discover the filesystem-sandbox restrictions (auto-allowed paths, the local-\$ref breaking change, cert-renewal symlink swaps, and EPERM debugging) from the pages they already read. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * docs: reframe Landlock sandbox page as reference, not changelog Drops the "Breaking change" heading and "after the upgrade" / "keep the previous behaviour" phrasing so the page reads as a feature reference rather than a release note. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * fmt * docs: clarify Landlock symlink behavior for cert renewals Leaf grants on individual cert/key files do require a restart after a symlink swap, but a grant on the containing directory (e.g. /etc/letsencrypt) covers both the live/ symlink and the new archive/ target, so certbot and cert-manager renewals are transparent. Document this on both the TLS guide and the canonical Landlock page. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * docs: add Landlock symlink-swap verification program Single-process Go program that asserts the directory-grant claim in the Landlock sandbox page: with RWDirs on a directory, a symlink under it can be re-pointed to a sibling file at runtime and reads through the symlink keep working without any rule update. Mirrors the cert-manager / certbot renewal pattern. Linux 5.13+ only. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * trim * docs: track Landlock auto-discovery of every file:// config URI Kratos now walks the loaded config at startup and allow-lists every file:// URI it finds — identity schemas, OIDC mappers, courier templates, web-hook bodies, tokenizer JWKS files, and any future file:// field. Update the canonical Landlock page to describe the generic auto-discovery (and the caveat about legacy bare paths), flip the SMTP and courier-template callouts from "you must add to allowed_paths" to "auto-allowed, no action required", and broaden the production guide accordingly. Also adds SMTP client cert/key paths to the auto-allowed list. The $ref-inside-schema-body case still requires manual allow-listing (auto-discovery walks the config, not the JSON bodies the config points at). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * fmt * trim * trim --------- Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
|
Important Review skippedAuto reviews are disabled on base/target branches other than the default branch. Please check the settings in the CodeRabbit UI or the ⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Plus Run ID: You can disable this status message by setting the Use the checkbox below for a quick retry:
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
20 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Related Issue or Design Document
Checklist
If this pull request addresses a security vulnerability,
I confirm that I got approval (please contact security@ory.com) from the maintainers to push the changes.
Further comments