update: 2024.8.1 -> 2024.8.3 (security update)

Fixes CVE-2024-47070 and CVE-2024-47077 See https://docs.goauthentik.io/docs/releases/2024.8#fixed-in-202483 Dropped manually resolved lockfiles, fixed upstream in https://github.com/goauthentik/authentik/pull/11509 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/f5580d311d01f2202b666f76931ed04f30b9ec30' (2024-09-07) → 'github:goauthentik/authentik/91d2445c61da49026f76dceb7f5b524e30335a42' (2024-09-27)
2024-09-27 17:38:19 +02:00 · 2024-09-27 17:38:19 +02:00 · 1138b948d3
commit 1138b948d3
parent 63516a96c0
6 changed files with 6 additions and 50416 deletions
--- a/components/docs-manually-resolved-package-lock.json
+++ b/components/docs-manually-resolved-package-lock.json
--- a/components/docs.nix
+++ b/components/docs.nix
@ -20,15 +20,6 @@ buildNapalmPackage "${authentik-src}/website" {
    mv -v ../website $out
  '';

-  # upstream doesn't provide a fully resolved lock file
-  # see issues:
-  # - https://github.com/goauthentik/authentik/issues/6180
-  # - https://github.com/goauthentik/authentik/issues/11169
-  #
-  # see npm issue for the underlying issue:
-  # https://github.com/npm/cli/issues/4263
-  packageLock = ./docs-manually-resolved-package-lock.json;
-
  # These are lockfiles with extra deps that are required to successfully build
  # the module `paloaltonetworks/postman-code-generators`, that is getting
  # pulled in by `docusaurus-theme-openapi-doc`.
--- a/components/frontend-manually-resolved-package-lock.json
+++ b/components/frontend-manually-resolved-package-lock.json
--- a/components/frontend.nix
+++ b/components/frontend.nix
@ -21,13 +21,4 @@ buildNapalmPackage "${authentik-src}/web" rec {
    mv dist $out/dist
    cp -r authentik icons $out
  '';
-
-  # upstream doesn't provide a fully resolved lock file
-  # see issues:
-  # - https://github.com/goauthentik/authentik/issues/6180
-  # - https://github.com/goauthentik/authentik/issues/11169
-  #
-  # see npm issue for the underlying issue:
-  # https://github.com/npm/cli/issues/4263
-  packageLock = ./frontend-manually-resolved-package-lock.json;
 }
--- a/flake.lock
+++ b/flake.lock
@ -3,16 +3,16 @@
    "authentik-src": {
      "flake": false,
      "locked": {
-        "lastModified": 1725718494,
-        "narHash": "sha256-X4Bwm7s6/8HcvKE+kyqwU+M1GEK/+RVHtDK1GpkuM4s=",
+        "lastModified": 1727446911,
+        "narHash": "sha256-AlIzFSVfXBuvHkrlFqIBhcRohax5XFXvz/9ULelE8tw=",
        "owner": "goauthentik",
        "repo": "authentik",
-        "rev": "f5580d311d01f2202b666f76931ed04f30b9ec30",
+        "rev": "91d2445c61da49026f76dceb7f5b524e30335a42",
        "type": "github"
      },
      "original": {
        "owner": "goauthentik",
-        "ref": "version/2024.8.1",
+        "ref": "version/2024.8.3",
        "repo": "authentik",
        "type": "github"
      }
--- a/flake.nix
+++ b/flake.nix
@ -32,7 +32,7 @@
      };
    };
    authentik-src = { # change version string in outputs as well when updating
-      url = "github:goauthentik/authentik/version/2024.8.1";
+      url = "github:goauthentik/authentik/version/2024.8.3";
      flake = false;
    };
  };
@ -51,7 +51,7 @@
    { inherit inputs; }
    ({ inputs, lib, withSystem, ... }:
    let
-      authentik-version = "2024.8.1"; # to pass to the drvs of some components
+      authentik-version = "2024.8.3"; # to pass to the drvs of some components
    in {
      systems = import inputs.systems;
      flake = { self, ... }: {