|
|
3cf0f07baf
|
*: fix API Schema for file uploads
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-17 23:12:52 +02:00 |
|
|
|
ef9f08553c
|
*: linting pass, rename from swagger to schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 15:22:57 +02:00 |
|
|
|
4fb71a6bdd
|
api: fix pagination schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 15:08:51 +02:00 |
|
|
|
0bac738090
|
*: fix static response descriptions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 14:07:29 +02:00 |
|
|
|
1324d03815
|
*: initial migration to openapi v3
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-15 23:57:28 +02:00 |
|
|
|
6600d5bf69
|
providers/oauth2: use user.uid
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-15 14:08:49 +02:00 |
|
|
|
a4278833d8
|
providers/proxy: fix ingress not being created with full https
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-15 13:45:41 +02:00 |
|
|
|
942905b9b1
|
providers/proxy: fix formatting issue
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-14 16:24:35 +02:00 |
|
|
|
8d7bb7da17
|
providers/proxy: connect ingress to https instead of http
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#882
|
2021-05-14 11:42:03 +02:00 |
|
|
|
0620324702
|
root: bump version of psf black
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-12 00:42:46 +02:00 |
|
|
|
84dfbcaaae
|
providers/api: return redirect_uris for proxy provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-11 20:02:17 +02:00 |
|
|
|
24f2932777
|
crypto: add ?download flag
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#861
|
2021-05-11 14:21:35 +02:00 |
|
|
|
932b19999e
|
providers/proxy: missing @property for noop
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-11 01:26:01 +02:00 |
|
|
|
788fd00390
|
outposts: use noop flag in each reconciler instead of raising Disabled and force use of get_referecen_object
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-11 00:27:29 +02:00 |
|
|
|
1f1d322958
|
*: fix api results when non-superuser
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-10 00:01:35 +02:00 |
|
|
|
a6a8eddf7c
|
providers/proxy: create ingress for forward_auth /akprox path
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-09 12:40:44 +02:00 |
|
|
|
8c0a87b710
|
outposts: improve logging for outpost controller
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-09 12:34:44 +02:00 |
|
|
|
5cad59a9f8
|
providers/proxy: fix being able to set empty internal_host
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-09 00:07:34 +02:00 |
|
|
|
e6dfa8294e
|
providers/proxy: use name.namespace for middleware service
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-07 10:07:30 +02:00 |
|
|
|
ea7f9f291f
|
outposts: create traefikmiddleware if forwardAuth is enabled
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-07 00:01:35 +02:00 |
|
|
|
4e9176ed2e
|
outposts: support different port on container vs exposed port
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-06 19:59:49 +02:00 |
|
|
|
701c140cfd
|
providers/proxy: fix logic error for ingress lookup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-05 20:28:13 +02:00 |
|
|
|
be8b2bf6f6
|
providers/proxy: don't create ingress for domains which use forwardAuth, don't create ingress at all if all providers are forward auth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-05 17:53:12 +02:00 |
|
|
|
9a15a66d85
|
outposts: make k8s object naming configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-05 15:36:27 +02:00 |
|
|
|
e674f03064
|
*/api: fix lookups per user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-04 21:58:20 +02:00 |
|
|
|
99d161e212
|
Merge branch 'master' into outpost-ldap
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# authentik/core/api/users.py
# authentik/policies/event_matcher/migrations/0013_alter_eventmatcherpolicy_app.py
|
2021-05-04 21:02:20 +02:00 |
|
|
|
c529340d6c
|
*: fix title not being set correctly for server-side rendered views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-02 12:22:50 +02:00 |
|
|
|
b55cb2b40c
|
Merge branch 'master' into outpost-ldap
|
2021-04-29 20:13:47 +02:00 |
|
|
|
2a409215d3
|
outpost: forwardAuth mode (#790)
|
2021-04-29 18:17:10 +02:00 |
|
|
|
c4e4e17f93
|
providers/oauth2: add access_code_validity (#795)
closes #794
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-28 21:03:43 +02:00 |
|
|
|
4d858c64e0
|
Merge branch 'master' into outpost-ldap
|
2021-04-27 17:08:26 +02:00 |
|
|
|
48c0c0baca
|
*/api: simplify lookups for per-user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-27 14:53:01 +02:00 |
|
|
|
fe28d216fe
|
providers/oauth2: always test JWT keys in tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-27 14:07:04 +02:00 |
|
|
|
3ce8b836dc
|
outposts: allow outposts to have non-object specific permissions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 23:28:26 +02:00 |
|
|
|
1d5958a78f
|
providers/ldap: add search_group to limit who can do search requests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 23:25:03 +02:00 |
|
|
|
fae4d34131
|
Merge branch 'master' into outpost-ldap
|
2021-04-26 17:11:50 +02:00 |
|
|
|
7ff7bfeb58
|
core: fix incorrect styling for bse_full template
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 16:44:13 +02:00 |
|
|
|
29da7dd8d6
|
providers/ldap: fix lint error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 15:49:19 +02:00 |
|
|
|
b3c8ffb96c
|
outposts/ldap: use authorization_flow instead of separate field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 15:09:41 +02:00 |
|
|
|
302b047f1a
|
outposts/ldap: add controllers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 14:26:31 +02:00 |
|
|
|
d741ed430a
|
web/admin: add UI for LDAP Provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 12:12:02 +02:00 |
|
|
|
f89479caf3
|
providers/ldap: add LDAP provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 11:52:42 +02:00 |
|
|
|
9341787fe7
|
providers/oauth2: replace deprecated jwkest with pyjwt
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 00:02:13 +02:00 |
|
|
|
d616bdd5d6
|
providers/oauth2: add proper support for non-http schemes as redirect URIs
closes #772
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-23 16:34:52 +02:00 |
|
|
|
3282b34431
|
providers/oauth2: fix TokenView not having CORS headers set even with proper Origin
and added tests. closes #771
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-22 23:48:28 +02:00 |
|
|
|
392d9bb10b
|
providers/oauth2: fix misleading name of cors_allow_any
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#771
|
2021-04-22 23:29:49 +02:00 |
|
|
|
d75284a587
|
flows: fix errors which occur during flow execution being sent to sentry malformed
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-22 20:14:37 +02:00 |
|
|
|
ce082ead5e
|
providers/oauth2: add unittests for authorize and token views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-18 21:05:49 +02:00 |
|
|
|
f328b21e89
|
providers/oauth2: Set CORS Headers for token endpoint, check Origin header against redirect URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-18 14:20:50 +02:00 |
|
|
|
32c5bf04b8
|
*: fix linting errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-17 20:08:49 +02:00 |
|
