ea38f2d120
Merge branch 'main' into celery-2-dramatiq
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-25 14:03:23 +02:00
ff966d763b
providers/oauth2: add conformance tools ( #15228 )
...
add conformance tools
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-06-25 00:43:15 +02:00
94867aaebf
task retries from admin ui
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-24 20:24:38 +02:00
07ff433134
Merge branch 'main' into celery-2-dramatiq
2025-06-23 16:54:44 +02:00
53d8f9bd8c
stages/authenticator_webauthn: add option to configure max attempts ( #15041 )
...
* house keeping - migrate to session part 1
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup v2
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add max_attempts
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* teeny tiny cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-06-23 01:49:07 +02:00
0fd478fa3e
better frontend task status
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-20 16:27:47 +02:00
374779102a
Merge branch 'main' into celery-2-dramatiq
2025-06-18 14:42:24 +02:00
36c9929e1f
events: add option to send notifications to event user ( #15083 )
...
* events: add option to send notifications to event user
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-06-18 13:39:56 +02:00
0ac854458a
Merge branch 'main' into celery-2-dramatiq
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-18 13:28:02 +02:00
f025d0d1d5
enterprise/search: ability to use more precise search queries ( #7698 )
...
* api: use DjangoQL for searches
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* expand search input and use textarea for multiline
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start implementing autocomplete
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only use ql for events
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make QL search opt in
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make pretend json relation work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix schema
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make autocomplete l1 work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use forked js lib with types, separate QL
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* first attempt at making it fit our UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make dark theme somewhat work, fix search
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make more parts work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make auto complete box be under cursor
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: ripplefcl <github@ripple.contact >
* remove django autocomplete for now
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-add event filtering
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix search when no ql is enabled
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make meta+enter submit, fix colour
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make dark theme
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* formatting
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* enterprise
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Update authentik/enterprise/search/apps.py
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens L. <jens@beryju.org >
* add json element autocomplete
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: ripplefcl <github@ripple.contact >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix query
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix search reset
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix dark theme
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: ripplefcl <github@ripple.contact >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-18 12:23:00 +02:00
da6d4ede51
root: backport version bump 2025.6.2 ( #15078 )
...
release: 2025.6.2
2025-06-17 00:21:39 +02:00
5ae69f5987
Merge branch 'main' into celery-2-dramatiq
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-16 15:05:45 +02:00
260800c60b
blueprints: add section support for organisation ( #15045 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-06-15 20:49:21 +02:00
5b8681b1af
Merge branch 'main' into celery-2-dramatiq
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-13 15:42:17 +02:00
7aa6593760
blueprints: sort schema items ( #15022 )
2025-06-13 13:34:49 +00:00
7ef547b357
restart front
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-11 17:25:23 +02:00
0e786f7040
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-10 15:42:40 +02:00
3f33519ec0
Merge branch 'main' into celery-2-dramatiq
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-10 14:49:45 +02:00
c60a145f95
root: backport 2025.6.1 bump ( #14970 )
...
release: 2025.6.1
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-09 04:15:33 +02:00
cae03beb6d
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-06-06 16:46:57 +02:00
3140325493
Merge branch 'main' into celery-2-dramatiq
2025-06-04 18:54:58 +02:00
7a8c2e7ad9
root: backport version bump 2025.6.0 ( #14904 )
...
* release: 2025.6.0-rc1
* release: 2025.6.0
2025-06-04 18:28:52 +02:00
9b556cf4c4
Merge branch 'main' into celery-2-dramatiq
2025-06-03 15:34:31 +02:00
59e686c8b9
sources/ldap: add user_membership_attribute ( #14784 )
2025-05-30 18:34:13 +02:00
c4bb19051d
sources/ldap: add forward deletion option ( #14718 )
...
* sources/ldap: add forward deletion option
* remove unnecessary `blank=True`
* clarify `validated_by` `help_text`
* add indices to `validated_by`
* factor out `get_identifier` everywhere and `get_attributes`
I don't know what that additional `in` check is for, but I'm not about
to find out.
* add tests for known good user and group
* fixup! add tests for known good user and group
* fixup! add tests for known good user and group
2025-05-28 13:22:59 +02:00
7118219544
Merge branch 'main' into celery-2-dramatiq
2025-05-26 18:29:26 +02:00
65517f3b7f
enterprise/stages: Add MTLS stage ( #14296 )
...
* prepare client auth with inbuilt server
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* introduce better IPC auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* init
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only allow trusted proxies to set MTLS headers
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more stage progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* dont fail if ipc_key doesn't exist
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually install app
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add some tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update API
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix unquote
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix int serial number not jsonable
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* init ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: fix git pull in makefile
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix parse helper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add test for outpost
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more tests and improvements
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve labels
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add support for multiple CAs on brand
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add support for multiple CAs to MTLS stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* dont log ipcuser secret views
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix go mod
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-05-19 22:48:17 +02:00
75a0ac9588
release: 2025.4.1 ( #14527 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# package.json
2025-05-15 20:12:41 +02:00
e76d388ce4
release: 2025.4.0 ( #14299 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-30 13:15:38 +00:00
475600ea87
Merge branch 'main' into celery-2-dramatiq
2025-04-22 16:11:42 +02:00
723dccdae3
enterprise/policies: Add Password Uniqueness History Policy ( #13453 )
...
Co-authored-by: David Gunter <david@davidgunter.ca >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-22 14:39:07 +02:00
5e6874cc1f
web: add remember me feature to IdentificationStage ( #10397 )
...
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-17 10:37:49 +00:00
155a31fd70
sources/oauth: introduce authorization code auth method ( #14034 )
...
Co-authored-by: Rsgm <rsgm123@gmail.com >
2025-04-16 13:00:08 +00:00
03d5dad867
rbac: add InitialPermissions ( #13795 )
...
* add `InitialPermissions` model to RBAC
This is a powerful construct between Permission and Role to set initial
permissions for newly created objects.
* use safer `request.user`
* fixup! use safer `request.user`
* force all self-defined serializers to descend from our custom one
See https://github.com/goauthentik/authentik/pull/10139
* reorganize initial permission assignment
* fixup! reorganize initial permission assignment
2025-04-14 17:55:49 +02:00
7fd35b1dfc
sources/ldap: add source connections ( #13796 )
2025-04-11 12:07:18 +00:00
5d2685341d
sources/ldap: lookup group memberships from user attribute ( #12661 )
...
* sources/ldap: add support for group lookups from user
* sources/ldap: implement working membership lookups
* sources/ldap: add schema changes
* sources/ldap: add group membership toggle ui element
* sources/ldap: lint changed files
* website/docs: add note about lookups to AD docs
* Update website/docs/users-sources/sources/directory-sync/active-directory/index.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Amélie Krejčí <amelie@krejci.vip >
* website/docs: simplify wording of attribute documentation
Follows suggestions from @jorhett
* sources/ldap: add missing spaces in docstrings
Follows suggestions from @jorhett
* Add a test for memberof attribute
* sources/ldap: implement test
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-migrate
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* revert website changes in favor of #13966
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* update frontend help text
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: Amélie Krejčí <amelie@krejci.vip >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Shawn Weeks <sweeks@weeksconsulting.us >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Jo Rhett <geek@jorhett.com >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-10 14:37:38 +02:00
e4d2a53ccc
release: 2025.2.4 ( #13830 )
...
* release: 2025.2.4
* bump version in uv.lock
2025-04-08 19:16:00 +00:00
3ad7f4dc24
sources: move identifier to parent model ( #13797 )
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-07 18:01:41 +02:00
c62f73400a
schedule form and helpers
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-03 16:51:24 +02:00
c3b0d09e04
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-04-03 15:04:59 +02:00
c5a40fced3
Merge branch 'main' into celery-2-dramatiq
2025-04-03 15:03:50 +02:00
46261a4f42
*/saml: allow for domainless SAML URLs ( #13737 )
2025-04-01 01:41:18 +02:00
781704fa38
Merge branch 'main' into celery-2-dramatiq
2025-03-28 17:35:05 +01:00
bcfd6fefa7
release: 2025.2.3 ( #13705 )
...
* release: 2025.2.3
* fix uv lock not being bumped
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-03-28 17:08:57 +01:00
43c5c1276d
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-03-27 14:33:42 +01:00
c982066235
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2025-03-25 18:31:43 +01:00
ce23209ae8
events: add configurable headers to webhooks ( #13602 )
...
* events: add configurable headers to webhooks
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make it a full thing
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-03-21 19:37:15 +00:00
27856ec301
brands: add option to set global default flow background ( #13079 )
...
* brands: add option to set global default flow background
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-03-20 01:07:05 +00:00
f37e1ca642
brands: migrate custom CSS to brands ( #13172 )
...
* brands: migrate custom CSS to brands
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing default
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* simpler migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add css to brand form
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-03-19 22:52:38 +00:00
c93d85731c
providers/saml: configurable AuthnContextClassRef ( #13566 )
...
* providers/saml: make AuthnContextClassRef configurable
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* providers/saml: fix incorrect AuthInstant
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2025-03-19 14:42:55 +00:00
