authentik

Author	SHA1	Message	Date
Jens Langhammer	a426a1a0b6	outposts: cleanup UserAgent config for API Client Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-14 20:33:35 +02:00
Lukas Söder	061c549a40	providers/ldap: fix: dn and member fields for virtual groups (#1143 ) * providers/ldap: fix: dn and member fields for virtual groups * Refactor GetGroupDN to use string name instead to allow more flexibility	2021-07-14 14:54:55 +00:00
Toboshii Nakama	efa09d5e1d	providers/ldap: fix: Return user DN with virtual group (#1142 ) * fix: incorrect ldap virtual group member DN Signed-off-by: Toboshii Nakama <toboshii@gmail.com> * fix: imports Signed-off-by: Toboshii Nakama <toboshii@gmail.com>	2021-07-14 10:59:40 +00:00
Lukas Söder	7f39399c32	providers/ldap: Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. (#1138 ) * Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. The starting number for uid/gid can be configured iva environtment variables and is by default 2000 which should work fine for most instances unless there are more than 999 local accounts on the server/computer. The uidNumber is just the users Pk + the starting number. The guidNumber is calculated by the last couple of bytes in the uuid of the group + the starting number, this should have a low enough chance for collisions that it's going to be fine for most use cases. I have not added any interface stuff for configuring the environment variables as I couldn't really find my way around all the places I'd have to edit to add it and the default values should in my opinion be fine for 99% use cases. * Add a 'fake' primary group for each user * First attempt att adding config to interface * Updated API to support new fields * Refactor code, update documentation and remove obsolete comment Simplify `GetRIDForGroup`, was a bit overcomplicated before. Add an additional class/struct `LDAPGroup` which is the new argument for `pi.GroupEntry` and util functions to create `LDAPGroup` from api.Group and api.User Add proper support in the interface for changing gidNumber and uidNumber starting points * make lint-fix for the migration files	2021-07-14 09:17:01 +02:00
Jens L	7dfc621ae4	LDAP Provider: TLS support (#1137 )	2021-07-13 18:24:18 +02:00
Jens Langhammer	adc4cd9c0d	release: 2021.6.4	2021-07-05 16:59:29 +02:00
Jens Langhammer	da8417a141	outposts/ldap: re-add old fields for backwards compatibility Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-04 18:10:39 +02:00
Jens Langhammer	4709dca33c	outposts/proxy: always redirect to session-end interface on sign_out Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-01 16:51:36 +02:00
Jens Langhammer	6064a481fb	outposts/proxy: set ValidateURL Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-01 15:42:48 +02:00
Jens Langhammer	ade8644da6	outposts/ldap: add support for boolean fields in ldap Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-01 11:51:07 +02:00
Jens Langhammer	680b182d95	release: 2021.6.3	2021-06-29 16:19:07 +02:00
linogics	2543b075be	outposts/ldap: fixed IsActive and IsSuperuser returning swapped incorrect values (#1078 ) IsActive and IsSuperuser attributes were interchanged.	2021-06-26 15:07:43 +02:00
Jens Langhammer	31a58e2c25	release: 2021.6.2	2021-06-22 23:35:10 +02:00
Jens Langhammer	b88eb430c1	outposts/proxy: fix additionalHeaders not being set closes #1050 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-19 15:24:51 +02:00
Jens Langhammer	fe6963c428	release: 2021.6.1	2021-06-17 22:14:52 +02:00
Jens Langhammer	e0f48a30b7	release: 2021.6.1-rc6	2021-06-15 21:18:33 +02:00
Jens Langhammer	3a88dde545	web: fix declaration of Intl Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-13 23:13:43 +02:00
Jens Langhammer	d824b09365	outposts/ldap: improve responses for unsuccessful binds Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-13 22:00:05 +02:00
Jens Langhammer	d78fda990a	release: 2021.6.1-rc5	2021-06-12 15:19:24 +02:00
Jens Langhammer	e25f6aea8c	release: 2021.6.1-rc4	2021-06-10 18:59:00 +02:00
Jens Langhammer	2c15ab9995	release: 2021.6.1-rc3	2021-06-10 18:04:59 +02:00
Jens Langhammer	6c985acb36	release: 2021.6.1-rc2	2021-06-10 14:10:47 +02:00
Jens Langhammer	f4a53c89ef	release: 2021.6.1-rc1	2021-06-09 11:01:14 +02:00
Jens L	dad24c03ff	outposts: set cookies for a domain to authenticate an entire domain (#971 ) * outposts: initial cookie domain implementation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add cookie domain setting Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: replace forward_auth_mode with general mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: rebuild proxy provider form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: re-add forward_auth_mode for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix data.mode not being set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * root: always set log level to debug when testing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: use new mode attribute Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only ingress /akprox on forward_domain Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: fix lint error Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix error on ProxyProviderForm when not using proxy mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix default for outpost form's type missing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add additional desc for proxy modes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts: fix service account permissions not always being updated Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost/proxy: fix redirecting to incorrect host for domain mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: improve error handling for network errors Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: fix image naming not matching main imaeg Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: fix redirects for domain mode and traefik Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: fix colour for paragraphs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix consent stage not showing permissions correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: add domain-level docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: fix broken links Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: remove dead code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix missing id for #header-text Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-08 23:10:17 +02:00
Jens Langhammer	70d72f340f	outpost: fix default value for buildHash Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-06 23:07:23 +02:00
Jens Langhammer	7524e114d9	outpost/ldap: add http server for healthchecks Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-06 23:07:13 +02:00
Jens Langhammer	523621daa2	core: make application's check_access API return a PolicyResult and accept for_user as superuser Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-26 11:47:23 +02:00
Jens Langhammer	127ebed5c6	flows: fix mismatched names Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-24 21:09:18 +02:00
Jens Langhammer	2a5926608f	outposts/ldap: return user info when user can't search Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-24 16:09:05 +02:00
Jens Langhammer	763c3fcfe0	outposts/ldap: fix client usage Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-24 15:58:59 +02:00
Jens Langhammer	25a88c17d1	outpost: update to new api schema Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-24 14:41:40 +02:00
Jens Langhammer	039a1e544e	outpost: use same http client for api requests and oauth token redeeming Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-23 19:27:08 +02:00
Jens Langhammer	0768b201a7	Merge branch 'version-2021.5'	2021-05-22 20:47:48 +02:00
Jens Langhammer	2d5c45543b	release: 2021.5.4	2021-05-22 20:15:23 +02:00
Jens Langhammer	7666c246c3	Merge branch 'version-2021.5'	2021-05-20 20:46:18 +02:00
Jens Langhammer	bf4cbb25fe	release: 2021.5.3	2021-05-20 20:17:39 +02:00
Jens Langhammer	56f1204c9b	outposts: fix update signal not being sent to correct instances Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-20 15:23:38 +02:00
Jens Langhammer	f6f93640c5	outposts: fix update signal not being sent to correct instances Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-20 15:23:18 +02:00
Jens Langhammer	f016095891	Merge branch 'master' into openapi-v3 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # Pipfile.lock	2021-05-17 20:37:18 +02:00
Jens Langhammer	5a465fbc36	release: 2021.5.2	2021-05-17 19:54:10 +02:00
Jens Langhammer	ab2bd622a8	Merge branch 'master' into openapi-v3 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # outpost/pkg/ak/api.go # outpost/pkg/ak/global.go # outpost/pkg/ldap/instance_bind.go	2021-05-16 21:36:24 +02:00
Jens Langhammer	6bd27d27ec	outpost: use shorter API Calls Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-16 21:35:23 +02:00
Jens Langhammer	a5233f89b2	outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-16 21:07:01 +02:00
Jens Langhammer	d0d3072c50	outposts/ldap: fix AUTHENTIK_INSECURE not being respected for API client during bind Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-16 00:01:16 +02:00
Jens Langhammer	6600d5bf69	providers/oauth2: use user.uid Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-15 14:08:49 +02:00
Andreas Egli	81056c3889	LDAP: use username instead of name for user dn (#883 )	2021-05-14 12:58:27 +02:00
Jens Langhammer	965db6eaf5	outposts/proxy: fix insecure TLS Skip closes #882 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-14 11:38:40 +02:00
Jens Langhammer	675ad7710c	outposts/proxy: fix error redeeming code when using non-standard ports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-14 11:13:57 +02:00
Jens Langhammer	0b7ebf0e07	release: 2021.5.1	2021-05-13 20:50:31 +02:00
Jens Langhammer	4d1500e0f3	outposts/proxy: revert to using request Host for redirect URI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-13 12:34:53 +02:00

1 2 3

140 Commits