authentik

Author	SHA1	Message	Date
Tana M Berry	34b01d9785	website/docs: add more content about flows (#10527 ) * first pass * reordered config options to match UI, added more * tweaks * add content for creating flows, add links to policies, update Style Guide * tweaks * procedurals, info about bindings * stages stub file * messy * reorg procedurals * tweak titles * tweaks * images * images, remove old images * tweak * tweaks and fixes * smaller image * tweak * had to rollback * starting over after VS Code branch war * fix links * more tweaks * Optimised images with calibre/image-actions * fighting build break * remove dupe image * replace image with diagram code * add image of UI, and reformat to look more like field names, not headings in the document * Optimised images with calibre/image-actions * new image * rest of Jens' edits * Optimised images with calibre/image-actions * fix order of stages in example * fixed arrows in image --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-06 12:56:23 +00:00
Simonyi Gergő	f7b16ed723	policies: add GeoIP policy (#10454 ) * add GeoIP policy * handle empty lists of ASNs and countries * handle missing GeoIP database or missing IP from the database The exceptions raised here are `PolicyException`s to let admins bypass an execution failure. * fix translations whoops * remove `GeoIPPolicyMode` Use the policy binding's `negate` option instead * fix `DataProvision` typing `ak-dual-select-provider` can handle unpaginated data * use `django-countries` instead of a static list of countries for ISO-3166 * simplify `GeoIPPolicyForm` * pass `GeoIPPolicy` on empty policy * add backend tests to `GeoIPPolicy` * revise translations * move `iso-3166/` to `policies/geoip_iso3166/` * add client-side caching to ISO3166 API call * fix `GeoIPPolicy` creation The automatically generated APIs can't seem to handle `CountryField`, so I'll have to do this by hand too. * add docs for GeoIP Policy * docs: stylize add review suggestions from @tanberry * refactor `GeoIPPolicy` API It is now as declarative as I could make it. * clean up `api.py` and `views.py`	2024-08-06 10:37:29 +00:00
Marc 'risson' Schmitt	059f81735e	website/docs: update geoip and asn documentation following field changes (#10265 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-06-27 15:09:23 +02:00
Marc 'risson' Schmitt	7cadcbfa06	website/docs: update geoip and asn example to use the proper syntax (#10249 )	2024-06-26 08:40:41 -04:00
Tana M Berry	c89b7b74e0	website/docs: add more info and links about enforciing unique email addresses (#9154 ) * edits and new link * tweaked wording about default flow * Ken edit * Update website/docs/flow/index.md Co-authored-by: Jens L. <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-04-11 06:49:34 -05:00
Jens L	da2eddfb5a	website/docs: add example policy to enforce unique email address (#8955 ) * website/docs: add example policy to enforce unique email address Signed-off-by: Jens Langhammer <jens@goauthentik.io> * reword Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-03-21 17:04:55 +01:00
Tana M Berry	cfc065b41b	website/docs: new landing page for Providers (#8879 ) * stub file * draft content * edit sidebar * info re metadata SAML * fix links * polish --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-03-12 10:36:30 -05:00
Marc 'risson' Schmitt	a3bfb3d25c	website/docs: 2024.2 release notes (#8468 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Jens L. <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-02-14 20:52:56 +01:00
Rukk385	256187ebc6	website/docs: add expression example for geoip (#7739 ) * Update expression.mdx Added example for GeoIP Signed-off-by: Rukk385 <39340512+Rukk385@users.noreply.github.com> * Update website/docs/policies/expression.mdx Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Rukk385 <39340512+Rukk385@users.noreply.github.com> --------- Signed-off-by: Rukk385 <39340512+Rukk385@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2023-12-20 15:33:58 +01:00
Tana M Berry	84fdd3c750	website/docs: RBAC docs (#7191 ) * draft rbac docs * tweaks * add a permissions topic * tweaks * more changes * draft permissions topic * more content on roles * links * typo * more conceptual info * Optimised images with calibre/image-actions * more content on roles * add more x-ref links * fix links * more content * links * typos * polishing * Update website/docs/user-group-role/access-control/permissions.md Co-authored-by: Jens L. <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> * separwate conceptual vs procedural in permissions * finished groups procedurals * new page * added link * Update website/docs/user-group-role/access-control/permissions.md Co-authored-by: Jens L. <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> * polish * edits from PR review * restructured view section to remove repetition * rest of edits from PR review * polished flows and stages * polish * typo --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana Berry <tana@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens L. <jens@goauthentik.io>	2023-10-26 12:31:32 +02:00
Tana M Berry	78af350610	website/docs: Balok pr for User docs (#7139 ) * procedrual docs * restructure * new image, edit tweaks * more tweaks * edits * edits for new button labels * more content in invitations * tweaks * Optimised images with calibre/image-actions * fixed link * links * ken's edits * changed label name * spelling checks * fix links * links again * fighting with imports * ugh * add extensions back * fix link * tweak * rename file again * more links * added punctuation * use generated index Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana Berry <tana@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-10-12 21:45:21 +02:00
Jens L	9d894528e3	website: fix reference to flow stage binding option (#6701 ) the option name was changed a while back but the docs still used the old name Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-08-30 20:10:36 +02:00
Sandeep Gadhiya	4693c50701	website/docs: Troubleshooting Whitelist Email and Web-Dev Setup Docs (#6426 ) * Whitelist email troubleshooting docs * update preview website command * Update website/docs/troubleshooting/whitelist_email.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> * Update website/docs/troubleshooting/whitelist_email.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> * Update website/docs/troubleshooting/whitelist_email.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> * Update website/docs/troubleshooting/whitelist_email.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> * Update website/docs/troubleshooting/whitelist_email.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> * refactor policies section * refactor policies section --------- Signed-off-by: Sandeep Gadhiya <sandeepgadhiya22@gmail.com> Co-authored-by: sandeepgadhiya <sandeep.gadhiya@turtlemint.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2023-08-09 10:06:41 -05:00
Jens L	977757f561	policies: provider raw result for better policy reusability (#5189 ) * policies: include raw_result in PolicyResult Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move ak_call_policy to base evaluator Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-04-06 09:42:29 +02:00
Jens L	972dce1462	security: fix CVE-2023-26481 (#4832 ) fix CVE-2023-26481 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-02 20:15:33 +01:00
Jens L	cd12e177ea	providers/proxy: add initial header token auth (#4421 ) * initial implementation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * check for openid/profile claims Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include jwks sources in proxy provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add web ui for jwks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only show sources with JWKS data configured Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix introspection tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start basic Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add basic auth Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs, update admonitions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add client_id to api, add tab for auth Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update locale Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-13 16:22:03 +01:00
Jens Langhammer	ed3f36e72a	website/docs: update redirect docs closes #4248 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-05 12:38:38 +01:00
sev	f9b46145de	website/docs: Clarify request.user and add link to Django docs (#4287 ) * Clarify request.user and add link to doc Signed-off-by: sev <git@sev.monster> * rephrase a bit Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: sev <git@sev.monster> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-27 14:10:30 +01:00
Jens L	f4990bb5da	core: bundle geoip (#4250 ) * bundle geoip Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * correctly pass secrets Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add geoip docs and release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-20 22:09:30 +01:00
Jens Langhammer	1dfc0b2e93	website/docs: update flow context variables Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-13 14:37:37 +00:00
Jens L	88594075b2	policies/password: merge hibp add zxcvbn (#4001 ) * initial zxcvbn Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add api and port tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * more tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add ui Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add api diff Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-14 14:42:43 +01:00
Jens Langhammer	9f5c019daa	core: add helper function to create events from expressions, move ak_user_has_authenticator to base evaluator Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-09-14 21:52:41 +02:00
Jens Langhammer	7a50d5a4f8	website: add note for using request.user in policies when bound to flows Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-09-10 14:08:37 +02:00
Jens L	5e3f44dd87	flows: add shortcut to redirect current flow (#3192 )	2022-07-01 23:19:41 +02:00
Jens L	f9469e3f99	website: format docs with prettier (#2833 ) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-05-09 21:22:41 +02:00
Jens Langhammer	6209714f87	policies/expression: add ak_call_policy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-09 09:39:28 +01:00
Jens Langhammer	b86251255d	website/docs: add azure ad docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-01 15:58:59 +01:00
Jens Langhammer	61fab497cf	core: add user flag to prevent users from changing their usernames closes #1590 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-20 16:17:19 +02:00
Jens Langhammer	3b7e8e3931	website/docs: fix typos Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-19 15:45:15 +02:00
Jens Langhammer	95a2fddfa8	policies/expression: add ak_user_has_authenticator Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-20 19:13:41 +02:00
Jens Langhammer	b1ed2154ac	policies/password: fix PasswordStage not being usable with prompt stages, rework validation logic Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-29 00:40:36 +02:00
Jens Langhammer	eb02c96281	website/docs: make it clearer to use context[] Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-28 12:53:57 +02:00
Jens Langhammer	07a4f474f4	website/docs: add docs for `auth_method` and `auth_method_args` fields Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-23 17:23:55 +02:00
Jens Langhammer	b88eb430c1	outposts/proxy: fix additionalHeaders not being set closes #1050 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-19 15:24:51 +02:00
Jens L	dad24c03ff	outposts: set cookies for a domain to authenticate an entire domain (#971 ) * outposts: initial cookie domain implementation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add cookie domain setting Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: replace forward_auth_mode with general mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: rebuild proxy provider form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: re-add forward_auth_mode for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix data.mode not being set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * root: always set log level to debug when testing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: use new mode attribute Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only ingress /akprox on forward_domain Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: fix lint error Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix error on ProxyProviderForm when not using proxy mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix default for outpost form's type missing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add additional desc for proxy modes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts: fix service account permissions not always being updated Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost/proxy: fix redirecting to incorrect host for domain mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: improve error handling for network errors Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: fix image naming not matching main imaeg Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: fix redirects for domain mode and traefik Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: fix colour for paragraphs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix consent stage not showing permissions correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: add domain-level docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: fix broken links Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: remove dead code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix missing id for #header-text Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-08 23:10:17 +02:00
Jens Langhammer	d52cc30341	website/docs: fix website build Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-29 22:00:47 +02:00
Jens Langhammer	a4c28a28b4	website/docs: improve docs for expressions Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-29 21:47:35 +02:00
Jens Langhammer	da5de30d7b	docs: update expression docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-03-31 11:54:03 +02:00
Jens Langhammer	d3f8d7120f	docs: cleanup, add 2021.3 to sidebar	2021-03-02 22:10:54 +01:00
Jens Langhammer	417b5d61a4	root: add initial geoip implementation	2021-02-12 09:52:14 +01:00
Jens L	1cfe1aff13	wip: rename to authentik (#361 ) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * : new sentry dsn tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject	2020-12-05 22:08:42 +01:00
Jens L	7be680cbe5	Migrate to Docusaurus (#329 ) * docs: initial migration to docusaurus * website: add custom font, update blurbs and icons * website: update splash * root: update links to docs * flows: use .pbflow extension so docusaurus doesn't mangle the files * e2e: workaround prospector * Squashed commit of the following: commit `1248585dca` Author: Jens Langhammer <jens.langhammer@beryju.org> Date: Sun Nov 15 20:46:53 2020 +0100 e2e: attempt to fix prospector error again commit `1319c480c4` Author: Jens Langhammer <jens.langhammer@beryju.org> Date: Sun Nov 15 20:41:35 2020 +0100 ci: install previous python version for upgrade testing * web: update accent colours and format * website: format markdown files * website: fix colours for text * website: switch to temporary accent colour to improve readability * flows: fix path for TestTransferDocs * flows: fix formatting of tests	2020-11-15 22:42:02 +01:00

42 Commits