authentik

Author	SHA1	Message	Date
Jens L	85fedec2f6	core: optionally don't return groups' users and users' groups by default (#9179 ) * core: don't return groups' users and users' groups by default Signed-off-by: Jens Langhammer <jens@goauthentik.io> * explicitly fetch users and groups in LDAP Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add indicies Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-15 13:27:44 +02:00
Jens L	4080080acd	internal: remove deprecated metrics (#7540 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-13 14:48:37 +01:00
Alexandre NICOLAIE	a2714ab1f1	outposts: make metrics compliant with Prometheus best-practices (#6398 ) web/outpost: make metrics compliant with Prometheus best-practices Today, all NewHistogramVec store values in nanoseconds without changing the default histogram bucket, which are made for seconds, making them a bit useless. In addition, some metrics names are not self-explanatoryand and do not comply with Prometheus best practices. This commit tries to fix all of this "issues". NOTE: I kept old metrics in order to avoid breaking changes with existing dashboards and metrics. Signed-off-by: Alexandre NICOLAIE <xunleii@users.noreply.github.com>	2023-07-27 18:51:08 +02:00
Jens L	ae7ea4dd11	outposts/ldap: add more tests (#6188 ) * outposts/ldap: add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing posixAccount Signed-off-by: Jens Langhammer <jens@goauthentik.io> * attempt to expand attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix routing without base DN Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more logging Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove our custom attribute filtering since this is done by the ldap library Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test for schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-07-08 20:51:05 +02:00
Jens L	54ef88a6fa	providers/ldap: rework Schema and DSE (#5838 ) * rework Root DSE Signed-off-by: Jens Langhammer <jens@goauthentik.io> * always parse filter objectClass Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding LDAP Schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update schema more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix cn for schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only include main DN in namingContexts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use schema from gh Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add description Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add response filtering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix response filtering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't return rootDSE entry when searching for singleLevel Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove currentTime Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix attribute filtering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set SINGLE-VALUE Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix numbers Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-06-08 15:16:40 +02:00
Jens L	0ce41a1b2d	providers/ldap: add StartTLS support (#5861 ) * providers/ldap: add StartTLS support Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add starttls test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update form and docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-add tls server name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-06-06 21:40:19 +02:00
Jens L	b7b62ba089	providers/ldap: correctly use pagination in search results in both modes (#5492 ) closes #4292 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-05-05 15:51:02 +03:00
Jens Langhammer	146d54813c	providers/ldap: fix error not being checked correctly when fetching users Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-03 18:10:06 +01:00
Jens L	3eb466ff4b	lifecycle: cleanup prometheus (#2972 ) * remove high cardinality labels Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * retry worker number for prometheus multiprocess id Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * revert to pid, use subdirectories Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup more Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use worker id based off of https://github.com/benoitc/gunicorn/issues/1352 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix missing app label Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests/e2e: remove static names Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-05-29 21:45:25 +02:00
Jens L	a286f999e2	api: migrate to openapi generator v6 (#2968 ) * migrate to openapi generator v6 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * bump api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-05-26 15:15:30 +02:00
Jens Langhammer	5c91658484	internal: fix nil pointer dereference in ldap outpost Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-05-21 15:48:50 +02:00
Jens Langhammer	b45a442447	outposts/ldap: fix contexts Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-03-19 18:28:27 +01:00
Simon Siebert	75a720ead1	outposts/ldap: prevent operations error from nil dereference (#2447 ) closes #2526	2022-03-19 18:26:26 +01:00
Jens Langhammer	62a939b91d	internal: bump api client to v3 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-03-03 10:40:07 +01:00
Ilya Kogan	947ecec02b	outposts/ldap: Fix more case sensitivity issues. (#2144 )	2022-01-25 11:27:27 +01:00
Ilya Kogan	40404ff41d	outposts/ldap: Rework/improve LDAP search logic. (#1687 ) * outposts/ldap: Refactor searching so we key primarily off base dn * docs: Updating guides on sssd and the ldap outpost.	2021-12-02 15:28:58 +01:00
Jens L	5a8c66d325	providers/ldap: memory Query (#1681 ) * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 10:37:30 +01:00

17 Commits