habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
12,130 Commits 205 Branches 395 Tags
3f4e17a6b88bf622cd9dc57829248f86d40b7f93
Commit Graph

2121 Commits

Author SHA1 Message Date
Jens L
d834ec4db9 web/elements: fix center text not scrolling with container (#4853) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-03-06 23:21:16 +01:00
Jens L
28ddeb124f providers: SCIM (#4835) 
* basic user sync

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add group sync and some refactor

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start API

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* allow null authorization flow

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add UI

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* make task monitored

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add missing dependency

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* make authorization_flow required for most providers via API

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* more UI

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* make task result better readable, exclude anonymous user

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add task UI

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add scheduled task for all sync

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* make scim errors more readable

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add mappings, migrate to mappings

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add mapping UI and more

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add scim docs to web

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start implementing membership

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* migrate signals to tasks

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* migrate fully to tasks

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* strip none keys, fix lint errors

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix things

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start adding tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix saml

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add scim schemas and validate against it

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* improve error handling

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add group put support, add group tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* send correct application/scim+json headers

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* stop sync if no mappings are confiugred

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add test for task sync

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add membership tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use decorator for tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* make tests better

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-03-06 19:39:08 +01:00
Jens L
2eb7c16a9a web/admin: set valid correctly when opened and radio is already selected (#4821) 
closes #4813

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-03-01 16:14:32 +01:00
Jens L
87fa50c492 web/admin: workaround for tenant certificate selection being cut off (#4820) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>

#4814
 2023-03-01 15:41:28 +01:00
Jens L
118765ab30 web: fetch custom.css via fetch and add stylesheet (#4804) 
* web: fetch custom.css via fetch and add stylesheet

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* don't hardcode path

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-27 19:54:19 +01:00
Jens L
39d0893303 flows: change default flow stage binding settings (#4784) 
* flows: change default flow stage binding settings

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fallback to correct value

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-27 15:21:26 +01:00
Jens L
612d1c76d4 web/admin: fix chart display with no sources (#4782) 2023-02-24 22:54:11 +01:00
Jens L
b7e4ad7234 web/user: fix source connections not being filtered (#4778) 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-24 10:22:02 +00:00
Jens L
80f4fccd35 providers/oauth2: OpenID conformance (#4758) 
* don't open inspector by default when debug is enabled

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* encode error in fragment when using hybrid grant_type

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* require nonce for all response_types that get an id_token from the authorization endpoint

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* don't set empty family_name

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* only set at_hash when response has token

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* cleaner way to get login time

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove authentication requirement from authentication flow

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use wrapper

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix auth_time not being handled correctly

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* minor cleanup

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add test files

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove USER_LOGIN_AUTHENTICATED

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* rework prompt=login handling

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* also set last login uid for max_age check to prevent double login when max_age and prompt=login is set

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-23 15:26:41 +01:00
Jens L
122055b38b stages/user_login: terminate others (#4754) 
* rework session list

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use sender filtering for signals when possible

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add terminate_other_sessions

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-22 14:09:28 +01:00
sdimovv
c4e24c04f6 core: Improve service account creation (#4751) 
* Added ability to select service account token expiration on creation

* Added call to user.set_unusable_password on service account creation

* Added forgotten call to save()

* Added and improved existsing tests

* Added accidentally deleted help text

* Fix lint
 2023-02-22 13:19:01 +01:00
dependabot[bot]
47e663f48c web: bump mermaid from 9.4.0 to 10.0.0 in /web (#4752) 
* web: bump mermaid from 9.4.0 to 10.0.0 in /web

Bumps [mermaid](https://github.com/mermaid-js/mermaid) from 9.4.0 to 10.0.0.
- [Release notes](https://github.com/mermaid-js/mermaid/releases)
- [Changelog](https://github.com/mermaid-js/mermaid/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/mermaid-js/mermaid/compare/v9.4.0...v10.0.0)

---
updated-dependencies:
- dependency-name: mermaid
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* update diagram element for mermaid v10

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-22 11:33:08 +01:00
Jens Langhammer
53c03f3635 web/admin: fix mismatched values in charts 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-21 11:59:33 +01:00
Jens Langhammer
6f1721a728 web: refactor rendering of source icons 
closes #4718

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-19 20:17:58 +01:00
Jens Langhammer
99baf1a29e web/elements: add loading spinner for charts, render middle text with css 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-19 20:10:37 +01:00
Jens Langhammer
a68fa06ff9 web/flows: fix fa:// icons in sources not shown correctly 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-19 19:45:57 +01:00
Jens Langhammer
d842fc4958 release: 2023.2.2 2023-02-15 19:53:42 +01:00
Jens Langhammer
dfb9ae548c web/admin: fix error when creating new users 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>

#4685
 2023-02-15 15:32:48 +01:00
Jens Langhammer
ade397fc24 web/user: revert truncate behaviour for application description 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-15 11:17:45 +01:00
Jens Langhammer
80de3ee853 release: 2023.2.1 2023-02-14 18:52:36 +01:00
Jens Langhammer
4c5b07a091 web/admin: use full page size for modals 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-14 16:16:26 +01:00
Jens Langhammer
fbd00bf5f8 web/admin: remove groups and users from users and group form to prevent accidental removal when updating 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-14 16:15:43 +01:00
Jens Langhammer
a598276aa0 web/admin: improve action button spinner on ldap source page 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-14 16:07:31 +01:00
Jens Langhammer
81d70e5d41 release: 2023.2.0 2023-02-14 13:15:47 +01:00
Jens Langhammer
3740b45e1a web/admin: refactor event geo display 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-13 11:14:40 +01:00
Jens Langhammer
eb8181daa0 web/admin: fix geo display with no city 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-13 10:39:29 +01:00
Jens Langhammer
6a25cf6c5d web/flow: fix layout for context in flow inspector 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-13 10:39:14 +01:00
Jens Langhammer
be42e5562d web: improve truncation of strings 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-13 10:38:48 +01:00
Jens L
af43330fd6 providers/oauth2: rework OAuth2 Provider (#4652) 
* always treat flow as openid flow

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* improve issuer URL generation

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* more refactoring

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update introspection

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* more refinement

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* migrate more

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix more things, update api

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* regen migrations

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix a bunch of things

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start updating tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix implicit flow, auto set exp

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix timeozone not used correctly

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix revoke

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* more timezone shenanigans

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix userinfo tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update web

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix proxy outpost

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix api tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix missing at_hash for implicit flows

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* re-include at_hash in implicit auth flow

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use folder context for outpost build

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-09 20:19:48 +01:00
Jens Langhammer
6a64d6b536 web/admin: clarify access code expiration 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>

#4191
 2023-02-08 23:26:33 +01:00
Jens Langhammer
243be8f7bb web/admin: default to disable policy execution logging 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-08 23:26:06 +01:00
Jens Langhammer
a7cf454760 web/admin: add notice for user_login stage session cookie behaviour 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-08 14:18:52 +01:00
Jens Langhammer
c5a935474b web/elements: improve consistency in row selection in table 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-08 00:11:12 +01:00
Jens Langhammer
89417ce455 web: fix token delete form not showing token identifiers 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-08 00:00:17 +01:00
Jens Langhammer
c6e638ddc2 web/flows: fix flow background overlay on firefox 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-07 23:09:28 +01:00
Jens Langhammer
0bbe74e2bf web/admin: fix token edit button 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-06 21:13:43 +01:00
Jens Langhammer
1919a9dd77 web/elements: fix click propagation from modal into table 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-06 16:47:46 +01:00
Jens Langhammer
b3323c5d00 web/elements: fix table selection handler firing when click isn't for tr 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-06 11:37:47 +01:00
Jens Langhammer
fd9ce531c9 web/elements: improve codemirror contrast in dark theme 
closes #4622

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-06 11:37:47 +01:00
Jens Langhammer
00a16bee76 web/elements: add dropdown css to DOM directly instead of including 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-05 23:32:54 +01:00
Jens Langhammer
b9a2323c51 web/elements: fix ak-expand not using correct font 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-05 00:58:30 +01:00
Jens Langhammer
de389e2385 web/admin: rework event info page to show all event infos 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-05 00:23:32 +01:00
Jens Langhammer
52a0b19f7e web/admin: fix dark theme for hover on tables 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-05 00:00:50 +01:00
Jens Langhammer
33f547c870 web/user: refactor loading of data in userinterface 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-04 18:38:40 +01:00
Jens Langhammer
c960601a1e web/admin: add debug page 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-04 17:55:54 +01:00
Jens Langhammer
ada44d84f8 web/elements: make table rows clickable to select items 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-02 22:37:59 +01:00
Jens Langhammer
095cb75d6c web/user: filter tokens by username 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-02-02 11:09:03 +01:00
Jens Langhammer
6345f99aa0 web/elements: fix clashing page url param 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-30 12:01:40 +01:00
Jens Langhammer
72168fae29 providers/oauth2: add user id as "sub" mode 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-29 16:15:03 +01:00
Jens Langhammer
93e665949f web/admin: fix certificate filtering for SAML verification certificate 
closes #4537

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-26 15:11:10 +01:00