[main] Update Image ghcr.io/authelia/authelia to v4.38.0 (#3232)

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
|
[ghcr.io/authelia/authelia](https://togithub.com/authelia/authelia/pkgs/container/authelia)
([source](https://togithub.com/authelia/authelia)) | minor | `4.37.5` ->
`4.38.0` |

---

### Release Notes

<details>
<summary>authelia/authelia (ghcr.io/authelia/authelia)</summary>

###
[`v4.38.0`](https://togithub.com/authelia/authelia/releases/tag/v4.38.0)

[Compare
Source](https://togithub.com/authelia/authelia/compare/v4.37.5...v4.38.0)

See the [Release Notes on the
Blog](https://www.authelia.com/blog/4.38-release-notes/) or the change
log below for more information.

##### Bug Fixes

- **commands:** internal services not cleaned up properly
([#&#8203;4966](https://togithub.com/authelia/authelia/issues/4966))
([f44700c](https://togithub.com/authelia/authelia/commit/f44700c352e7420b80e374b045c30428a6576bdc)),
closes
[#&#8203;4963](https://togithub.com/authelia/authelia/issues/4963)
- **commands:** missing pkcs8 option
([#&#8203;5270](https://togithub.com/authelia/authelia/issues/5270))
([033d3c0](https://togithub.com/authelia/authelia/commit/033d3c0408d9d91434b328cea28ddfb6bbc8f809))
- **commands:** no args not enforced on crypto hash generate
([#&#8203;5237](https://togithub.com/authelia/authelia/issues/5237))
([0f4f5d5](https://togithub.com/authelia/authelia/commit/0f4f5d58482334129d6499321e73a025a474d533))
- **commands:** storage cmd fail when implicit config absent
([#&#8203;5213](https://togithub.com/authelia/authelia/issues/5213))
([569af0f](https://togithub.com/authelia/authelia/commit/569af0fef0168e60cb7b56697fb1f000bef8f34c))
- **configuration:** deprecated secrets not mapped
([#&#8203;6150](https://togithub.com/authelia/authelia/issues/6150))
([5446efb](https://togithub.com/authelia/authelia/commit/5446efb48a6e031080dbd22b418f023aa8efd6e5))
- **configuration:** fail to parse large int duration
([#&#8203;5408](https://togithub.com/authelia/authelia/issues/5408))
([713f8e9](https://togithub.com/authelia/authelia/commit/713f8e9ab77babcdc1eed05dd7c91626b771ff24))
- **configuration:** illogical refresh interval default
([#&#8203;6319](https://togithub.com/authelia/authelia/issues/6319))
([c49b973](https://togithub.com/authelia/authelia/commit/c49b973120c7fd755923a2b88afd794c7d320d6e))
- **configuration:** optional value not treated as optional
([#&#8203;5853](https://togithub.com/authelia/authelia/issues/5853))
([5edd5fc](https://togithub.com/authelia/authelia/commit/5edd5fcf69d8f17a6731e0f1b5cf8f8591823e56))
- **configuration:** regression in redis default port
([#&#8203;6428](https://togithub.com/authelia/authelia/issues/6428))
([f93a0b5](https://togithub.com/authelia/authelia/commit/f93a0b5bf9d2a1d29a08c7b8c699647ca627bdb8))
- **configuration:** secret permission errors panic
([#&#8203;5141](https://togithub.com/authelia/authelia/issues/5141))
([622bf42](https://togithub.com/authelia/authelia/commit/622bf42ed4f1a54347d70928e9aef9b3f0336647)),
closes
[#&#8203;5138](https://togithub.com/authelia/authelia/issues/5138)
- **configuration:** warning about log level env
([#&#8203;6784](https://togithub.com/authelia/authelia/issues/6784))
([c70c83f](https://togithub.com/authelia/authelia/commit/c70c83f74593c1ed75c2195e2dba74a5dfcd30cc))
- **handlers:** legacy authz failure on nginx
([#&#8203;4956](https://togithub.com/authelia/authelia/issues/4956))
([ab01fa6](https://togithub.com/authelia/authelia/commit/ab01fa6bca092162650836c157c1852dbfb44784))
- **logging:** injected time format inconsistent
([#&#8203;5004](https://togithub.com/authelia/authelia/issues/5004))
([b9a6856](https://togithub.com/authelia/authelia/commit/b9a6856ff5b10db149ef69484a24e1b3b605cdb7))
- **middlewares:** failure to detect remote ip
([#&#8203;5339](https://togithub.com/authelia/authelia/issues/5339))
([34ec813](https://togithub.com/authelia/authelia/commit/34ec813370f0b5fd1917ed9a5aece4829f2c4bef))
- **model:** yaml encoding of totp and webauthn fails
([#&#8203;5204](https://togithub.com/authelia/authelia/issues/5204))
([dfbbf1a](https://togithub.com/authelia/authelia/commit/dfbbf1a1f3a70bfdbed854549a0f8806c3e368bc))
- **notification:** error on non-normative login responses
([#&#8203;4729](https://togithub.com/authelia/authelia/issues/4729))
([8ef90ca](https://togithub.com/authelia/authelia/commit/8ef90caac9041aec5e82b13c93b557c2e7ecedc3)),
closes
[#&#8203;4717](https://togithub.com/authelia/authelia/issues/4717)
- **notification:** missing display name
([#&#8203;4653](https://togithub.com/authelia/authelia/issues/4653))
([a771cc6](https://togithub.com/authelia/authelia/commit/a771cc6c2b407199b3b231ff23e691d6bce59251))
- **notification:** missing use of timeout
([#&#8203;4652](https://togithub.com/authelia/authelia/issues/4652))
([a691131](https://togithub.com/authelia/authelia/commit/a69113128827b4fec259263a645639ab8f697d6e))
- **notification:** smtp auth not configured
([#&#8203;4647](https://togithub.com/authelia/authelia/issues/4647))
([7b8ed46](https://togithub.com/authelia/authelia/commit/7b8ed46537f8e7552a6fee53f3645f9af2567cec))
- **notifier:** mime parts in reverse order
([#&#8203;5623](https://togithub.com/authelia/authelia/issues/5623))
([13b54b4](https://togithub.com/authelia/authelia/commit/13b54b41dbf4309a7e06b684c80727b86e12b01b)),
closes
[#&#8203;5617](https://togithub.com/authelia/authelia/issues/5617)
- **ntp:** startup check skipped when it shouldn't be
([#&#8203;5701](https://togithub.com/authelia/authelia/issues/5701))
([934f68b](https://togithub.com/authelia/authelia/commit/934f68b3d3a46f5b2b5e6180ae8b14f138ccb60d))
- **ntp:** version 4 encoded incorrectly
([#&#8203;4773](https://togithub.com/authelia/authelia/issues/4773))
([b815521](https://togithub.com/authelia/authelia/commit/b815521384ef366954b94d0e71314978059654d9))
- **oidc:** client auth basic fails on correctly encoded header
([#&#8203;5632](https://togithub.com/authelia/authelia/issues/5632))
([cb116db](https://togithub.com/authelia/authelia/commit/cb116dbabf44c6faf9ee312c9dcacab4c32ddbfa))
- **oidc:** client credentials flow not populating session
([#&#8203;5797](https://togithub.com/authelia/authelia/issues/5797))
([62c36eb](https://togithub.com/authelia/authelia/commit/62c36eb0c0b0d53dbd32ee78ba9aaa8d00add891))
- **oidc:** client id not in audience whitelist
([#&#8203;5980](https://togithub.com/authelia/authelia/issues/5980))
([ad82ec7](https://togithub.com/authelia/authelia/commit/ad82ec7b28f96b614b085749a8987d046b2e08ae))
- **oidc:** csp blocks form_post response form submit
([#&#8203;4719](https://togithub.com/authelia/authelia/issues/4719))
([cf4010b](https://togithub.com/authelia/authelia/commit/cf4010b4fb36d97aebf349b08be5e66c54c75e2f)),
closes
[#&#8203;4669](https://togithub.com/authelia/authelia/issues/4669)
- **oidc:** default response mode not validated
([#&#8203;5129](https://togithub.com/authelia/authelia/issues/5129))
([c8f75b1](https://togithub.com/authelia/authelia/commit/c8f75b19aff91894c4488f6f81d3fb1d18b3ed30))
- **oidc:** failure to insert with client credentials grant
([#&#8203;5809](https://togithub.com/authelia/authelia/issues/5809))
([895cdc2](https://togithub.com/authelia/authelia/commit/895cdc28a05f61ab7efc763c9c48a4d72ee7def5))
- **oidc:** insufficient debug logs on some endpoints
([#&#8203;5783](https://togithub.com/authelia/authelia/issues/5783))
([f09dbee](https://togithub.com/authelia/authelia/commit/f09dbee8ef34b448089d7c066d042e8076d52402))
- **oidc:** par consent state error
([#&#8203;5880](https://togithub.com/authelia/authelia/issues/5880))
([321a380](https://togithub.com/authelia/authelia/commit/321a3803f52b01324fcbf0e5b12ae014bf075c1e))
- **oidc:** par context redirect
([#&#8203;6450](https://togithub.com/authelia/authelia/issues/6450))
([0d0fda8](https://togithub.com/authelia/authelia/commit/0d0fda8ac5adb0b0433820a63896a1c1406826a9))
- **oidc:** par model mapping
([#&#8203;5879](https://togithub.com/authelia/authelia/issues/5879))
([e42bbca](https://togithub.com/authelia/authelia/commit/e42bbca1efa3a596aaa7289a9a8c61e108d13a52))
- **oidc:** pkce session generated needlessly
([#&#8203;5762](https://togithub.com/authelia/authelia/issues/5762))
([896752c](https://togithub.com/authelia/authelia/commit/896752ce9c590b02abe1cab6fca7d6221af031da))
- **oidc:** pre-config audience not matched
([#&#8203;6513](https://togithub.com/authelia/authelia/issues/6513))
([aee9d28](https://togithub.com/authelia/authelia/commit/aee9d28f7cf77643359fb4dae749bce3c1ff00de))
- **oidc:** refresh flow scope parameter ignored
([#&#8203;5782](https://togithub.com/authelia/authelia/issues/5782))
([e250ad3](https://togithub.com/authelia/authelia/commit/e250ad31ebb4cf029ab5e02c67e79ca0d0d4dc94))
- **oidc:** userinfo endpoint returns additional audience
([#&#8203;5781](https://togithub.com/authelia/authelia/issues/5781))
([0919173](https://togithub.com/authelia/authelia/commit/0919173013a680f48a4ad2ada53974f879334a87))
- **server:** errors not logged
([#&#8203;4682](https://togithub.com/authelia/authelia/issues/4682))
([53a6275](https://togithub.com/authelia/authelia/commit/53a6275a7990d90495cfbf74beb602105f03ccca))
- **storage:** postgresql webauthn tbl invalid aaguid constraint
([#&#8203;5183](https://togithub.com/authelia/authelia/issues/5183))
([fa250ea](https://togithub.com/authelia/authelia/commit/fa250ea7ddb902132f4df74c407be84015577fa3)),
closes
[#&#8203;5182](https://togithub.com/authelia/authelia/issues/5182)
- **templates:** plain text email misleading
([#&#8203;5036](https://togithub.com/authelia/authelia/issues/5036))
([a91762c](https://togithub.com/authelia/authelia/commit/a91762c15bb33b3c155a989e1f10dbe61adc7487)),
closes
[#&#8203;4915](https://togithub.com/authelia/authelia/issues/4915)
- **utils:** fix suite setup timeout
([#&#8203;4771](https://togithub.com/authelia/authelia/issues/4771))
([56f0282](https://togithub.com/authelia/authelia/commit/56f028294b19168584cde6a2afa773f0dde70d2a)),
closes
[#&#8203;4751](https://togithub.com/authelia/authelia/issues/4751)
- webauthn credential user id missing
([#&#8203;5882](https://togithub.com/authelia/authelia/issues/5882))
([4903567](https://togithub.com/authelia/authelia/commit/490356754873c6d283d77c8683431859b8f96ac4))
- webauthn user handle encoding
([f567b67](https://togithub.com/authelia/authelia/commit/f567b67994d9f6ec8ffa4168a45184dcea14f5e7))

##### Features

- add systemd security hardening
([#&#8203;6480](https://togithub.com/authelia/authelia/issues/6480))
([648fdfe](https://togithub.com/authelia/authelia/commit/648fdfe93b5ac24f49624c4c24fc1cee4bce398b))
- **authentication:** ldap memberof group search
([#&#8203;5418](https://togithub.com/authelia/authelia/issues/5418))
([f79db58](https://togithub.com/authelia/authelia/commit/f79db588be089909e8b430a928213eb104ae2972)),
closes
[#&#8203;2161](https://togithub.com/authelia/authelia/issues/2161)
- **authentication:** ldap time replacements
([#&#8203;4483](https://togithub.com/authelia/authelia/issues/4483))
([d67554a](https://togithub.com/authelia/authelia/commit/d67554ab8886fc35439a4dbf8e6c0b53f170b96e)),
closes
[#&#8203;1964](https://togithub.com/authelia/authelia/issues/1964)
[#&#8203;1284](https://togithub.com/authelia/authelia/issues/1284)
- **authentication:** suport ldap over unix socket
([#&#8203;5397](https://togithub.com/authelia/authelia/issues/5397))
([fb5c285](https://togithub.com/authelia/authelia/commit/fb5c285c2549c344f5b24a1cae1fe724a89f11a0))
- **commands:** config template command
([#&#8203;6013](https://togithub.com/authelia/authelia/issues/6013))
([16b0e20](https://togithub.com/authelia/authelia/commit/16b0e202447d8b89fea791a6be8baa1b3783541e))
- **commands:** go build info
([#&#8203;5775](https://togithub.com/authelia/authelia/issues/5775))
([37ee009](https://togithub.com/authelia/authelia/commit/37ee0092c889a2aab24538b3edb58d33a4a8cd65))
- **commands:** storage import/export commands
([#&#8203;4545](https://togithub.com/authelia/authelia/issues/4545))
([d7ab3bb](https://togithub.com/authelia/authelia/commit/d7ab3bb6333af2c7bede8c10b99b216bbe215d07))
- **configuration:** disallow public suffix domains
([#&#8203;4855](https://togithub.com/authelia/authelia/issues/4855))
([598ea2b](https://togithub.com/authelia/authelia/commit/598ea2bb194cd1611c31cadea93be855d805bf41))
- **configuration:** env config file discovery
([#&#8203;4618](https://togithub.com/authelia/authelia/issues/4618))
([0130edb](https://togithub.com/authelia/authelia/commit/0130edb870137b86ceb686505616796bd20c9b1a))
- **configuration:** file filters
([#&#8203;4515](https://togithub.com/authelia/authelia/issues/4515))
([c7f4d59](https://togithub.com/authelia/authelia/commit/c7f4d5999d0b0b22594dcc917516257e4fe81747))
- **configuration:** freeipa ldap implementation
([#&#8203;4482](https://togithub.com/authelia/authelia/issues/4482))
([d0d80b4](https://togithub.com/authelia/authelia/commit/d0d80b4f6689df1ac441015bd43ad9c268faad4f)),
closes
[#&#8203;2177](https://togithub.com/authelia/authelia/issues/2177)
[#&#8203;2161](https://togithub.com/authelia/authelia/issues/2161)
- **configuration:** glauth ldap implementation
([#&#8203;4499](https://togithub.com/authelia/authelia/issues/4499))
([d3d87ff](https://togithub.com/authelia/authelia/commit/d3d87ffe30408df11f6b7a464ff31a3e4fa6fcf4))
- **configuration:** lldap implementation
([#&#8203;4498](https://togithub.com/authelia/authelia/issues/4498))
([5b8b314](https://togithub.com/authelia/authelia/commit/5b8b3145ade0f2108448b16bb9979835cbf8fef1))
- **configuration:** load config from directory
([#&#8203;4616](https://togithub.com/authelia/authelia/issues/4616))
([cc1e58e](https://togithub.com/authelia/authelia/commit/cc1e58e004ec31dd92e38301b351d20115197734))
- **configuration:** rfc2307bis implementation
([#&#8203;4900](https://togithub.com/authelia/authelia/issues/4900))
([2e6d17b](https://togithub.com/authelia/authelia/commit/2e6d17ba8a2295784f081d3bfc2513bc3ad321ba))
- **configuration:** unix socket listener subpath
([#&#8203;6463](https://togithub.com/authelia/authelia/issues/6463))
([7a97373](https://togithub.com/authelia/authelia/commit/7a9737381fae92ce619b757dbd539c1f2aed3a75))
- **handlers:** authz authrequest authelia url
([#&#8203;5181](https://togithub.com/authelia/authelia/issues/5181))
([2dcfc0b](https://togithub.com/authelia/authelia/commit/2dcfc0b04c3fbe57ecc11322487089bc8970e79f))
- **logging:** date time layout
([#&#8203;6333](https://togithub.com/authelia/authelia/issues/6333))
([786985e](https://togithub.com/authelia/authelia/commit/786985e7b16c717bc614ac079784e5672b746e10)),
closes
[#&#8203;6136](https://togithub.com/authelia/authelia/issues/6136)
- **metrics:** record openid connect histogram
([#&#8203;5769](https://togithub.com/authelia/authelia/issues/5769))
([bd04624](https://togithub.com/authelia/authelia/commit/bd04624c09932f651a7a62d9fffc02559ee270e6))
- **notification:** important events notifications
([#&#8203;4644](https://togithub.com/authelia/authelia/issues/4644))
([f685f24](https://togithub.com/authelia/authelia/commit/f685f247cfc571a162db24a9d7ff1a1c7612c5dc))
- oauth2 authorization bearer
([#&#8203;6774](https://togithub.com/authelia/authelia/issues/6774))
([fb50f1a](https://togithub.com/authelia/authelia/commit/fb50f1a70c66d96391a3e9cae5721c9c78c75d8d)),
closes
[#&#8203;2023](https://togithub.com/authelia/authelia/issues/2023)
[#&#8203;188](https://togithub.com/authelia/authelia/issues/188)
- **oidc:** auth policy applied per-subject
([#&#8203;5486](https://togithub.com/authelia/authelia/issues/5486))
([db6d95c](https://togithub.com/authelia/authelia/commit/db6d95cae921258f994b72171f8b55dec048a9b2)),
closes
[#&#8203;2621](https://togithub.com/authelia/authelia/issues/2621)
- **oidc:** client authentication modes
([#&#8203;5150](https://togithub.com/authelia/authelia/issues/5150))
([3d2da0b](https://togithub.com/authelia/authelia/commit/3d2da0b070d097129cc71b5e170692c3a6380b8f))
- **oidc:** client credentials grant type
([#&#8203;5729](https://togithub.com/authelia/authelia/issues/5729))
([b829e1b](https://togithub.com/authelia/authelia/commit/b829e1b8a4f61103512aa76e5fb4791e1acfb4ed))
- **oidc:** client_secret_jwt client auth
([#&#8203;5031](https://togithub.com/authelia/authelia/issues/5031))
([42671d3](https://togithub.com/authelia/authelia/commit/42671d3edb0d336794de1e164d147fb742364e11))
- **oidc:** client_secret_jwt client auth
([#&#8203;5253](https://togithub.com/authelia/authelia/issues/5253))
([1dbfbc5](https://togithub.com/authelia/authelia/commit/1dbfbc5f888f9d428ab023d0fd5919dd055b4354))
- **oidc:** disable minimum parameter entropy
([#&#8203;5495](https://togithub.com/authelia/authelia/issues/5495))
([32c6880](https://togithub.com/authelia/authelia/commit/32c68804e094f2c1fed5eec25a9b07ff9ebf300e))
- **oidc:** jwk selection by id
([#&#8203;5464](https://togithub.com/authelia/authelia/issues/5464))
([65f69ae](https://togithub.com/authelia/authelia/commit/65f69aeb4ee6a58267b9771fd657d2b5bc8bd9a5))
- **oidc:** jwt profile for oauth 2.0 access tokens
([#&#8203;5913](https://togithub.com/authelia/authelia/issues/5913))
([9a28de5](https://togithub.com/authelia/authelia/commit/9a28de558f8c51835ede658bb482bc3d25d0457b))
- **oidc:** jwt response for introspection
([#&#8203;5840](https://togithub.com/authelia/authelia/issues/5840))
([34b7a47](https://togithub.com/authelia/authelia/commit/34b7a47bc85f38b9d27184a7ecba238074406890))
- **oidc:** jwt secured authorization response mode
([#&#8203;5914](https://togithub.com/authelia/authelia/issues/5914))
([0196e0b](https://togithub.com/authelia/authelia/commit/0196e0b7ff5d0cc86a99e4cf474f8bc077246d9f))
- **oidc:** per-client custom token lifespans
([#&#8203;5741](https://togithub.com/authelia/authelia/issues/5741))
([788be59](https://togithub.com/authelia/authelia/commit/788be599c0fb8d7c30a8a18fa5705bacabe5dd27))
- **oidc:** per-client pkce enforcement policy
([#&#8203;4692](https://togithub.com/authelia/authelia/issues/4692))
([adaf069](https://togithub.com/authelia/authelia/commit/adaf069eab4722e2a621dba11af4a73103452db5))
- **oidc:** private_key_jwt client auth
([#&#8203;5280](https://togithub.com/authelia/authelia/issues/5280))
([65ecfe4](https://togithub.com/authelia/authelia/commit/65ecfe4b9ac0488c3021a14f91c7564d79755180))
- **oidc:** pushed authorization requests
([#&#8203;4546](https://togithub.com/authelia/authelia/issues/4546))
([ff6be40](https://togithub.com/authelia/authelia/commit/ff6be40f5e5497da1f312d2896e210201a24b048))
- **oidc:** requested audience policy
([#&#8203;6002](https://togithub.com/authelia/authelia/issues/6002))
([c950736](https://togithub.com/authelia/authelia/commit/c9507368abd3374364cca8e1e7b1cbe8494a7130))
- **oidc:** server issuer identification
([#&#8203;5912](https://togithub.com/authelia/authelia/issues/5912))
([0da4abf](https://togithub.com/authelia/authelia/commit/0da4abfd484a72dfcb0919315b459aa91f074e71))
- **oidc:** signed discovery
([#&#8203;6003](https://togithub.com/authelia/authelia/issues/6003))
([357ce8e](https://togithub.com/authelia/authelia/commit/357ce8efdc196800a7cfe2a78a189252d639d576))
- **server:** customizable authz endpoints
([#&#8203;4296](https://togithub.com/authelia/authelia/issues/4296))
([65705a6](https://togithub.com/authelia/authelia/commit/65705a646dfd31e4477af3ffb35c584eb49346a4)),
closes
[#&#8203;2753](https://togithub.com/authelia/authelia/issues/2753)
[#&#8203;3716](https://togithub.com/authelia/authelia/issues/3716)
- **server:** handle head method
([#&#8203;5003](https://togithub.com/authelia/authelia/issues/5003))
([a345490](https://togithub.com/authelia/authelia/commit/a3454908263f872d53bbcf2eeb598bfc5db57ce2))
- **server:** listen on unix sockets
([#&#8203;5038](https://togithub.com/authelia/authelia/issues/5038))
([90d1901](https://togithub.com/authelia/authelia/commit/90d190121d538318ca2b1358f77b890a1cbe1b9d))
- **server:** recover panics
([2c6a8e1](https://togithub.com/authelia/authelia/commit/2c6a8e18ba1496222452ada2f1f64d1af901d631))
- **server:** update default headers
([#&#8203;5881](https://togithub.com/authelia/authelia/issues/5881))
([e9e2969](https://togithub.com/authelia/authelia/commit/e9e2969bad9a56cbbd40c46ee60513e15c7e6cb5))
- **session:** multiple session cookie domains
([#&#8203;3754](https://togithub.com/authelia/authelia/issues/3754))
([8b29cf7](https://togithub.com/authelia/authelia/commit/8b29cf7ee849fa39aa211912e95b777a64bed7e3)),
closes
[#&#8203;1198](https://togithub.com/authelia/authelia/issues/1198)
- **session:** redirection by cookie domain
([#&#8203;6017](https://togithub.com/authelia/authelia/issues/6017))
([6a6059d](https://togithub.com/authelia/authelia/commit/6a6059dc228b20fe13aee274188911d00458fe24))
- **templates:** add multiline helper functions
([#&#8203;6227](https://togithub.com/authelia/authelia/issues/6227))
([00725ec](https://togithub.com/authelia/authelia/commit/00725ec7b12afec7a454d237e03022395b988a47))
- **templates:** templating functions
([#&#8203;4635](https://togithub.com/authelia/authelia/issues/4635))
([55a6794](https://togithub.com/authelia/authelia/commit/55a6794370d538b2b945ee704e2f59511837406a))
- **totp:** reuse policy
([5d3e7a0](https://togithub.com/authelia/authelia/commit/5d3e7a0183c9842c2cc4e6b12fe8300297110a71))
- **web:** add password policy visible feedback on password change
([#&#8203;5714](https://togithub.com/authelia/authelia/issues/5714))
([b0746dc](https://togithub.com/authelia/authelia/commit/b0746dc4d43eddb60d34644811749d2c3a948252)),
closes
[#&#8203;5048](https://togithub.com/authelia/authelia/issues/5048)
- **web:** caps lock detection
([61c30b3](https://togithub.com/authelia/authelia/commit/61c30b373f8c5ee14321e82c8d7210aae7d260c3))
- **web:** multiple webauthn credential registration
([c0dbdd9](https://togithub.com/authelia/authelia/commit/c0dbdd97ab2ac580e3da07a0137dbc7a1b9c9b83)),
closes [#&#8203;275](https://togithub.com/authelia/authelia/issues/275)
[#&#8203;4366](https://togithub.com/authelia/authelia/issues/4366)
- **web:** one-time codes for identity verification
([e618cf3](https://togithub.com/authelia/authelia/commit/e618cf341627a89b5fec594090cf765c86aafaad)),
closes
[#&#8203;3801](https://togithub.com/authelia/authelia/issues/3801)
- **web:** per-device two factor method
([b33dabb](https://togithub.com/authelia/authelia/commit/b33dabbe6e0a80356742a71de659811d58e6843c)),
closes
[#&#8203;1699](https://togithub.com/authelia/authelia/issues/1699)
- **web:** privacy policy url
([#&#8203;4625](https://togithub.com/authelia/authelia/issues/4625))
([a566c16](https://togithub.com/authelia/authelia/commit/a566c16d08677b03d3c6b66fd348ceec0bd23dda)),
closes
[#&#8203;2639](https://togithub.com/authelia/authelia/issues/2639)
- **web:** revoke reset password tokens
([2a38819](https://togithub.com/authelia/authelia/commit/2a388194fbf56e8c030dc734f980dc223760b8d9)),
closes [#&#8203;136](https://togithub.com/authelia/authelia/issues/136)
- **web:** second factor identity verification
([d62d79e](https://togithub.com/authelia/authelia/commit/d62d79e581046876638ab61b2125ad5a0e9f925f)),
closes [#&#8203;135](https://togithub.com/authelia/authelia/issues/135)
- **web:** user one-time password preferences
([87d2a34](https://togithub.com/authelia/authelia/commit/87d2a3419d6f29db900bc1aeb4cf5d7769a15ce3))

##### Performance Improvements

- **server:** cached openapi document
([#&#8203;4674](https://togithub.com/authelia/authelia/issues/4674))
([1c3219e](https://togithub.com/authelia/authelia/commit/1c3219e93f16cde768d90be3b360f0c6c78231cf))
- **web:** lazy loading
([87747a5](https://togithub.com/authelia/authelia/commit/87747a50ed310f97935d466e8ba72ef45c23fabc))

##### Docker Container

-   `docker pull authelia/authelia:4.38.0`
-   `docker pull ghcr.io/authelia/authelia:4.38.0`

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Renovate
Bot](https://togithub.com/renovatebot/renovate).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4yNDYuMSIsInVwZGF0ZWRJblZlciI6IjM3LjI0Ni4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->

Co-authored-by: repo-jeeves <106431701+repo-jeeves[bot]@users.noreply.github.com>

kubernetes/main/apps/security/authelia/app/helm-release.yaml

@@ -55,7 +55,7 @@ spec:
           main:
             image:
               repository: ghcr.io/authelia/authelia
-              tag: 4.37.5
+              tag: 4.38.0
             env:
               TZ: ${CONFIG_TIMEZONE}
               AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN: "ou=groups"