* Update website docs for docker outpost integration
- Changed the docker socket proxy link to point to a better and more maintained solution.
- Changed permissions to include System/Info.
- Added a section on how to connect to a docker socket proxy.
Signed-off-by: itskagee <17406594+itskagee@users.noreply.github.com>
* add description for System Info permission
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: itskagee <17406594+itskagee@users.noreply.github.com>
* website/docs: updated docker outpost integration for docker socket proxies
- Added additional information regarding docker socket proxies.
- Changed the layout to better present said information.
* Update website/docs/add-secure-apps/outposts/integrations/docker.md
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
---------
Signed-off-by: itskagee <17406594+itskagee@users.noreply.github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Update index.md
The scope needs to include 'profile' for Komga to be able to retrieve the 'preferred_username'.
Signed-off-by: SeeJayEmm <chris@threesheets.org>
* web: Add InvalidationFlow to Radius Provider dialogues
## What
- Bugfix: adds the InvalidationFlow to the Radius Provider dialogues
- Repairs: `{"invalidation_flow":["This field is required."]}` message, which was *not* propagated
to the Notification.
- Nitpick: Pretties `?foo=${true}` expressions: `s/\?([^=]+)=\$\{true\}/\1/`
## Note
Yes, I know I'm going to have to do more magic when we harmonize the forms, and no, I didn't add the
Property Mappings to the wizard, and yes, I know I'm going to have pain with the *new* version of
the wizard. But this is a serious bug; you can't make Radius servers with *either* of the current
dialogues at the moment.
* This (temporary) change is needed to prevent the unit tests from failing.
\# What
\# Why
\# How
\# Designs
\# Test Steps
\# Other Notes
* Revert "This (temporary) change is needed to prevent the unit tests from failing."
This reverts commit dddde09be5.
* web: adjust spacing issue for the login container
# What
Replaces the `space-evenly` flexbox instruction with `space-between`. `space-evenly` introduced
whitespace in column mode that pushed visible content off the page by introducing new margins inside
the flex container, which made content pushed around by those margins inaccessable via scrolling.
`space-between` creates the same desired effect, but with the margins top and bottom of the flexbox
column controlled by the parent container, which gives both more control and more suitable layout
handling.
# Links:
- Zendesk Ticket: [Tall Prompts/Flows cut off on
Safari](https://authentiksecurityinc.zendesk.com/agent/tickets/186). (This link is only visible to
Authentik employees. Sorry.)
* web/admin: migrate user interface and stop impersonation to nav bar
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* move version diff to banner
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make click on backdrop close about modal
just for you @rissson
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* web: Add InvalidationFlow to Radius Provider dialogues
## What
- Bugfix: adds the InvalidationFlow to the Radius Provider dialogues
- Repairs: `{"invalidation_flow":["This field is required."]}` message, which was *not* propagated
to the Notification.
- Nitpick: Pretties `?foo=${true}` expressions: `s/\?([^=]+)=\$\{true\}/\1/`
## Note
Yes, I know I'm going to have to do more magic when we harmonize the forms, and no, I didn't add the
Property Mappings to the wizard, and yes, I know I'm going to have pain with the *new* version of
the wizard. But this is a serious bug; you can't make Radius servers with *either* of the current
dialogues at the moment.
* This (temporary) change is needed to prevent the unit tests from failing.
\# What
\# Why
\# How
\# Designs
\# Test Steps
\# Other Notes
* Revert "This (temporary) change is needed to prevent the unit tests from failing."
This reverts commit dddde09be5.
* web: fix error handling bug in ui
# What
When I converted all of the Provider forms over to a unified structure, the RAC form
stood out as one that couldn't be directly converted, so two copies were retained.
The error handling was updated to a new format, but this one bit of older handling
was missed.
For now, we're going back to using `Record<string, string>` for errors, to stay as
close to the `./admin/providers/` style of handling.
# Testing
This error prevented the RAC Provider form from loading in the wizard. Seeing that it works in the
wizard should be sufficient.
feat(doc): update argocd oidc doc
Add `signing_key` to terraform example as it is needed for ArgoCD. They require a RS256 key and without it you get a HS256 key
Signed-off-by: ImOverlord <9958853+ImOverlord@users.noreply.github.com>
* main:
website: revise full development environment instructions (#12638)
website: bump typescript from 5.7.2 to 5.7.3 in /website (#12620)
website: bump aws-cdk from 2.174.1 to 2.175.0 in /website (#12621)
ci: bump docker/setup-qemu-action from 3.2.0 to 3.3.0 (#12622)
core: bump twilio from 9.4.1 to 9.4.2 (#12623)
core: bump python-kadmin-rs from 0.5.2 to 0.5.3 (#12624)
core: bump ruff from 0.8.6 to 0.9.0 (#12625)
core: bump pydantic from 2.10.4 to 2.10.5 (#12626)
core: bump google-api-python-client from 2.157.0 to 2.158.0 (#12628)
core: bump goauthentik.io/api/v3 from 3.2024121.3 to 3.2024122.1 (#12629)
web: bump API Client version (#12617)
release: 2024.12.2 (#12615)
website/docs: prepare 2024.12.2 release notes (#12614)
providers/saml: fix invalid SAML Response when assertion and response are signed (#12611)
core: fix error when creating new user with default path (#12609)
rbac: permissions endpoint: allow authenticated users (#12608)
website/docs: update customer portal (#12603)
website/docs: policy for email whitelist: modernize (#12558)
* website: revise full development environment instructions
Updates the full development environment instructions to make it clear you *will* need both
Docker and Golangci-Lint installed.
Adds the `poetry-plugin-shell` requirement, now that Poetry requires it.
Updates the per-platform development environment requirements to have a Linux-specific section,
and update the MacOS section to include poetry-plugin-shell and golangci-lint
Moves the instructions on what to do before committing to the bottom of the document; its location
was confusing and didn't clarify what steps were to be taken in what order.
Includes the instruction that, for a first-time run, you must run `make migrate` and `make gen` or
the TS-API won't be built, and in turn the WebUI build would otherwise fail.
We still need instructions for Windows.
* Prettier had opinions.
* Format error: "macOS," not "MacOS"
* Fixed some typos and cleaned up some prompts.
* Fixed 'under windows' -> 'on Windows'
* providers/saml: fix invalid SAML Response when assertion and response are signed
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* validate against schema too
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* website/docs: policy for email whitelist: revamp
Updates the documentation to add an expression for source authentication. Then, it fixes the existing expression to work with authentik 2024.12.1 . Finally, the documentation page it-self is cleaned up and touched up.
Signed-off-by: 4d62 <github-user@sdko.org>
* website/docs: policy for email whitelist: lowercase title
Sets the title back to being lowercase, oops
Signed-off-by: 4d62 <github-user@sdko.org>
* website/docs: customize: whatever-title-i-put-before: lint
Lints the code with prettier.
* remind me to not run npx prettier --write website/docs/
* suggestions
* Update website/docs/customize/policies/expression/whitelist_email.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: 4d62 <git@sdko.org>
* Update website/docs/customize/policies/expression/whitelist_email.md
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
---------
Signed-off-by: 4d62 <github-user@sdko.org>
Signed-off-by: 4d62 <git@sdko.org>
Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
* main:
lib: add expression helper ak_create_jwt to create JWTs (#12599)
api: cleanup owner permissions (#12598)
website: bump aws-cdk from 2.174.0 to 2.174.1 in /website (#12593)
core: bump aws-cdk-lib from 2.174.0 to 2.174.1 (#12594)
website/integrations: portainer: group config steps (#12548)
translate: Updates for file web/xliff/en.xlf in fi (#12586)
translate: Updates for file locale/en/LC_MESSAGES/django.po in fi (#12584)
website/docs: fix Nginx redirection example (#12561)
