arunavo4/gitea-mirror v2.19.0

on GitHub

🎉 Major Features

UI-Based Authentication Configuration

• Setup Wizard: First-time users are greeted with an intuitive setup wizard at /setup to configure authentication
• Admin Settings: Authentication can now be managed through the web UI at /admin/settings without editing configuration files
• Real-time Changes: Authentication method switching takes effect immediately without requiring a restart
• Visual Configuration: User-friendly forms for configuring OIDC and Forward Auth with validation

Multiple Authentication Methods

• Local Authentication: Simple username/password (default)
• OIDC/SSO: Support for Authentik, Keycloak, Auth0, Google, Azure AD, and more
• Forward Auth: Header-based authentication for reverse proxies (Authelia, Traefik, nginx)

🚀 Improvements

User Experience

• Non-technical users can now configure SSO without editing configuration files
• Configuration testing available before saving changes
• Clear visual feedback for authentication settings
• Comprehensive error messages and troubleshooting guidance

Developer Experience

• Database storage for authentication settings (new auth_configs table)
• Environment variables serve as fallback/pre-configuration option
• UI configuration takes precedence over environment variables
• Enhanced security with proper OIDC token validation
• Async validation for forward authentication

📚 Documentation

New Guides

• Authentication Guide: Comprehensive guide covering all auth methods with provider-specific examples
• Auth Migration Guide: Step-by-step instructions for existing users to migrate from env-based to UI-based configuration

Updated Documentation

• README now emphasizes UI-based configuration
• Docker compose files updated with notes about optional auth environment variables
• Added Proxmox VE Community Scripts link for LXC container deployment
• Contributing section now properly references CONTRIBUTING.md

🧹 Cleanup

• Removed OIDC_TESTING_GUIDE.md (superseded by comprehensive authentication guide)
• Removed test-security-fix.js (temporary test file no longer needed)

🔄 Migration Notes

For Existing Users

• No action required - existing local auth installations continue to work without changes
• Environment variable configurations are still supported and continue to work
• Optional migration to UI-based configuration available through Admin Settings

For New Users

• Setup wizard guides through authentication configuration on first run
• No need to edit configuration files for auth setup
• Can start with local auth and switch to SSO later through the UI

🔧 Technical Details

Database Changes

• Added auth_configs table for storing authentication configuration
• Configuration is cached for performance (1-minute cache duration)

API Changes

• New endpoints for auth configuration management:
  • GET /api/auth/config - Get current auth configuration
  • POST /api/auth/config - Update auth configuration
  • POST /api/auth/config/test - Test auth configuration

Environment Variables

All auth-related environment variables are now optional and serve as defaults if no UI configuration exists:

• AUTH_METHOD
• AUTH_OIDC_* variables
• AUTH_FORWARD_* variables

📦 Docker Images

# Docker Hub
docker pull arunavo4/gitea-mirror:2.19.0
docker pull arunavo4/gitea-mirror:latest

# GitHub Container Registry
docker pull ghcr.io/arunavo4/gitea-mirror:2.19.0
docker pull ghcr.io/arunavo4/gitea-mirror:latest

🔗 Links

• Full Changelog
• Authentication Guide
• Migration Guide
• Proxmox VE Script

Note: This release maintains full backward compatibility. Existing users can upgrade without any configuration changes.