|
|
baa4deda99
|
tests/e2e: WebAuthn E2E tests (#14461)
* a start of webauthn testing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* separate file, just do it via localhost
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove unneeded stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add auth and sfe tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* auto select device challenge if only 1
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* revert a thing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-06-07 09:31:16 +02:00 |
|
|
|
6549b303d5
|
enterprise/providers: SSF (#12327)
* init
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix some other stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix missing format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make it work, send verification event
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* save iss
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signals for MFA devices
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* refactor more
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-work auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add API to list ssf streams
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start rbac
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add ssf icon
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix web
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make events expire, rewrite sending logic
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add oidc token test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add stream list
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add jwks tests and fixes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update web ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix configuration endpoint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* replace port number correctly
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* better log what went wrong
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* linter has opinions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix messages
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix set status
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more debug logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix issuer here too
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove port :443...removal
apparently apple's HTTP logic is wrong and includes the port in the Host header even if the default port is used (80 or 443), which then fails as the URL doesn't exactly match what the admin configured...so instead of trying to add magic about this we'll add it in the docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix error when no request in context
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signal for admin session revoke
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* set txn based on request id
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* validate method and endpoint url
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix request ID detection
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add timestamp
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* temp migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix signal
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signal tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* the final commit
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* ok actually the last commit
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-02-05 17:52:14 +01:00 |
|
|
|
40a7135c0c
|
core: app entitlements (#12090)
* core: initial app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* base off of pbm
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add tests and oauth2
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add to proxy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rewrite to use bindings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make policy bindings form and list more customizable
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* double fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* refine permissions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add missing rbac modal to app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* separate scope for app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* include entitlements mapping in proxy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add API validation to prevent policies from being bound to entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make preview
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add initial docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove duplicate docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-12-18 14:32:44 +01:00 |
|
|
|
89f251d559
|
tests/e2e: add forward auth e2e test (#11374)
* add nginx forward_auth e2e tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add envoy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove even more duplicate code
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup more
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add traefik static config
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more cleanup, don't generate dex config cause they support env variables
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use default dex entrypoint to use templating
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove options that are always set as default
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix compose flag
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add caddy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* merge python files
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use whoami api to check better
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix envoy config
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* set invalidation flow
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix logout checks
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-10-16 18:01:59 +02:00 |
|
