Skip to content

stages/user_write: Fix user attributes are not sanitized under certains conditions #17890

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

stages/user_write: Fix user attributes are not sanitized under certains conditions #17890

wants to merge 1 commit into from

Conversation

@se7kn8
Copy link

@se7kn8 se7kn8 commented Nov 1, 2025

Details

This PR fixes a case where certain prompt types (like the date prompt) lead to a failure in the user write stage, because of unsanitized attributes. The original issue was reported in #8708 and later fixed in #8926. However, the fix in #8926 only worked if the prompt would write to attributes_foo or attributes.foo.bar. If the normal syntax is used attributes.foo the stage would try to directly update the user attributes, which lead to unsanitized values. This PR fixes that case.

Checklist

  • Local tests pass (ak test authentik/)
  • The code has been formatted (make lint-fix)

If an API change has been made

  • The API schema has been updated (make gen-build)

If changes to the frontend have been made

  • The code has been formatted (make web)

If applicable

  • The documentation has been updated
  • The documentation has been formatted (make docs)

@se7kn8 se7kn8 requested a review from a team as a code owner November 1, 2025 18:55
@netlify
Copy link

netlify bot commented Nov 1, 2025
edited
Loading

Deploy Preview for authentik-docs ready!

Name Link
🔨 Latest commit 36cf019
🔍 Latest deploy log https://app.netlify.com/projects/authentik-docs/deploys/690657a0ac35ab00081e7583
😎 Deploy Preview https://deploy-preview-17890--authentik-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@netlify
Copy link

netlify bot commented Nov 1, 2025
edited
Loading

Deploy Preview for authentik-storybook ready!

Name Link
🔨 Latest commit 36cf019
🔍 Latest deploy log https://app.netlify.com/projects/authentik-storybook/deploys/690657a0f7294c00084deeb7
😎 Deploy Preview https://deploy-preview-17890--authentik-storybook.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@netlify
Copy link

netlify bot commented Nov 1, 2025
edited
Loading

Deploy Preview for authentik-integrations canceled.

Name Link
🔨 Latest commit 36cf019
🔍 Latest deploy log https://app.netlify.com/projects/authentik-integrations/deploys/690657a08f06510008c40572

@rissson rissson requested a review from BeryJu November 3, 2025 13:57
@rissson rissson moved this from Todo to Needs review in authentik Core Nov 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BeryJu BeryJu Awaiting requested review from BeryJu

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

area:backend

Projects

authentik Core
Status: Needs review

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@se7kn8 @rissson