|
|
b0e6558a4f
|
current version
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-06-13 16:09:00 +02:00 |
|
|
|
13bd4069e4
|
core: fix transaction test case (#15021)
* move patched ct to root
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use our transaction test case as base
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix...?
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* well apparently that works
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-06-13 01:48:26 +02:00 |
|
|
|
aaf76bab92
|
core: bump selenium/standalone-chrome from 136.0 to 137.0 in /tests/e2e (#14963)
Bumps selenium/standalone-chrome from 136.0 to 137.0.
---
updated-dependencies:
- dependency-name: selenium/standalone-chrome
dependency-version: '137.0'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-06-09 03:32:59 +02:00 |
|
|
|
814f3fc43d
|
core: bump axllent/mailpit from v1.25.1 to v1.26.0 in /tests/e2e (#14964)
Bumps axllent/mailpit from v1.25.1 to v1.26.0.
---
updated-dependencies:
- dependency-name: axllent/mailpit
dependency-version: v1.26.0
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-06-09 03:32:51 +02:00 |
|
|
|
baa4deda99
|
tests/e2e: WebAuthn E2E tests (#14461)
* a start of webauthn testing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* separate file, just do it via localhost
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove unneeded stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add auth and sfe tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* auto select device challenge if only 1
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* revert a thing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-06-07 09:31:16 +02:00 |
|
|
|
10f4fae711
|
stages/email: fix email scanner voiding token (#14325)
* stages/email: fix email scanner voiding flow token
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* misc
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* improve consent stage error handling and testing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* draw the rest of the owl
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add e2e test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* idk why this is broken now?
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix other e2e test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix the other test too
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-05-28 13:09:30 +02:00 |
|
|
|
15d84d30ba
|
tests/e2e: fix flaky SAML Source test (#14708)
|
2025-05-27 13:18:03 +02:00 |
|
|
|
d8c6a2417d
|
core: bump axllent/mailpit from v1.25.0 to v1.25.1 in /tests/e2e (#14693)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-26 14:25:34 +02:00 |
|
|
|
0be9c60a71
|
core: bump django-guardian from 2.4.0 to v3.0.0 (#14453)
* core: bump django-guardian from 2.4.0 to v3.0.0
* Use GUARDIAN_MONKEY_PATCH_USER instead of deprecated GUARDIAN_MONKEY_PATCH
* ???
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix issue in outpost tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* patch all outpost tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fixup guardian lock
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
|
2025-05-20 14:40:43 +02:00 |
|
|
|
7c9fe53b47
|
core: bump axllent/mailpit from v1.24.2 to v1.25.0 in /tests/e2e (#14564)
Bumps axllent/mailpit from v1.24.2 to v1.25.0.
---
updated-dependencies:
- dependency-name: axllent/mailpit
dependency-version: v1.25.0
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-19 13:37:57 +02:00 |
|
|
|
0cf6bff93c
|
tests/e2e: add test for authentication flow in compatibility mode (#14392)
* tests/e2e: add test for authentication flow in compatibility mode
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* web: Add prefix class to CSS for easier debugging of constructed stylesheets.
- Use CSS variables for highlighter.
* web: Fix issue where MDX components apply styles out of order.
* web: Fix hover color.
* web: Fix CSS module types. Clean up globals.
* web: Fix issues surrounding availability of shadow root in compatibility mode.
* web: Fix typo.
* web: Partial fixes for storybook dark theme.
* web: Fix overflow.
* web: Fix issues surrounding competing interfaces attempting to apply styles.
* fix padding in ak-alert in. markdown
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* web: Minimize use of sub-module exports.
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Teffen Ellis <teffen@sister.software>
|
2025-05-15 16:51:11 +02:00 |
|
|
|
381a1a2c49
|
tests/e2e: Add E2E tests for Flow SFE (#14484)
* add e2e test for SFE login
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add helper text in SFE on password stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* build sfe for e2e
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix ci e2e cache key not considering sfe
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix sfe missing from docker build
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* sigh I forgot npm
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-05-13 12:03:12 +02:00 |
|
|
|
b4a6189bfa
|
core: bump selenium from 4.31.0 to v4.32.0 (#14394)
* core: bump selenium from 4.31.0 to v4.32.0
* deal with selenium breaking stuff on minor versions
https://github.com/SeleniumHQ/selenium/pull/15641
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
|
2025-05-06 16:53:20 +02:00 |
|
|
|
e92fa5df0b
|
core: bump selenium/standalone-chrome from 135.0 to 136.0 in /tests/e2e (#14407)
Bumps selenium/standalone-chrome from 135.0 to 136.0.
---
updated-dependencies:
- dependency-name: selenium/standalone-chrome
dependency-version: '136.0'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-06 15:02:45 +02:00 |
|
|
|
b99fd36f86
|
core: bump axllent/mailpit from v1.24.1 to v1.24.2 in /tests/e2e (#14390)
Bumps axllent/mailpit from v1.24.1 to v1.24.2.
---
updated-dependencies:
- dependency-name: axllent/mailpit
dependency-version: v1.24.2
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-05 12:55:06 +02:00 |
|
|
|
1912991682
|
core: bump axllent/mailpit from v1.6.5 to v1.24.1 in /tests/e2e (#14341)
Bumps axllent/mailpit from v1.6.5 to v1.24.1.
---
updated-dependencies:
- dependency-name: axllent/mailpit
dependency-version: v1.24.1
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-03 21:34:51 +02:00 |
|
|
|
71b9117f53
|
core: bump selenium/standalone-chrome from 122.0 to 135.0 in /tests/e2e (#14342)
Bumps selenium/standalone-chrome from 122.0 to 135.0.
---
updated-dependencies:
- dependency-name: selenium/standalone-chrome
dependency-version: '135.0'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-05-03 21:34:43 +02:00 |
|
|
|
6aaec08496
|
Revert "policies: buffered policy access view for concurrent authorization attempts when unauthenticated (#13629)" (#14180)
|
2025-04-22 15:45:45 +00:00 |
|
|
|
35ff418c42
|
policies: buffered policy access view for concurrent authorization attempts when unauthenticated (#13629)
* policies: buffered policy access view for concurrent authorization attempts when unauthenticated
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* better cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more polish
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix multiple redirects, add e2e test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: add sp initiated post test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add SAML parallel test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* optimise detection of when authentication is in progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* better backoff timing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-03-30 19:56:03 +02:00 |
|
|
|
6549b303d5
|
enterprise/providers: SSF (#12327)
* init
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix some other stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix missing format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make it work, send verification event
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* save iss
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signals for MFA devices
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* refactor more
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-work auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add API to list ssf streams
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start rbac
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add ssf icon
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix web
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make events expire, rewrite sending logic
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add oidc token test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add stream list
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add jwks tests and fixes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update web ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix configuration endpoint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* replace port number correctly
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* better log what went wrong
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* linter has opinions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix messages
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix set status
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more debug logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix issuer here too
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove port :443...removal
apparently apple's HTTP logic is wrong and includes the port in the Host header even if the default port is used (80 or 443), which then fails as the URL doesn't exactly match what the admin configured...so instead of trying to add magic about this we'll add it in the docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix error when no request in context
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signal for admin session revoke
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* set txn based on request id
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* validate method and endpoint url
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix request ID detection
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add timestamp
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* temp migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix signal
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add signal tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* the final commit
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* ok actually the last commit
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2025-02-05 17:52:14 +01:00 |
|
|
|
baf8f18d54
|
events: make sure password set event has the correct IP (#12585)
* events: make sure password set event has the correct IP
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
|
2025-01-13 20:38:14 +01:00 |
|
|
|
629d5df763
|
flows/inspector: add button to open flow inspector (#12656)
* flows: differentiate between flow inspector being available and open
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add overlay button to open inspector
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Jens L. <jens@beryju.org>
* fix perm check
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rewrite docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
|
2025-01-13 19:55:34 +01:00 |
|
|
|
4a8329649c
|
tests/e2e: manually remove containers for better debugging (#11772)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-12-20 22:03:29 +01:00 |
|
|
|
40a7135c0c
|
core: app entitlements (#12090)
* core: initial app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* base off of pbm
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add tests and oauth2
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add to proxy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rewrite to use bindings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make policy bindings form and list more customizable
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* double fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* refine permissions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add missing rbac modal to app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* separate scope for app entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* include entitlements mapping in proxy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add API validation to prevent policies from being bound to entitlements
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make preview
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add initial docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove duplicate docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-12-18 14:32:44 +01:00 |
|
|
|
1a1d499833
|
sources/oauth: allow creation of user connection objects with parameters (#12195)
* sources/oauth: allow creation of user connection objects with parameters
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix web
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* tix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add for all
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* align
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-12-18 13:28:22 +01:00 |
|
|
|
3996bdac33
|
website: Bump prettier from 3.3.3 to 3.4.1 in /website (#12205)
* website: Bump prettier from 3.3.3 to 3.4.1 in /website
Bumps [prettier](https://github.com/prettier/prettier) from 3.3.3 to 3.4.1.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/3.3.3...3.4.1)
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* update formatting
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* disable flaky test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
|
2024-11-27 15:14:19 +01:00 |
|
|
|
85bb638243
|
security: fix CVE 2024 52289 (#12113)
* initial migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* migrate tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix loading
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start dynamic ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* initial ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add serialize
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add error message handling
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix/add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* prepare docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* migrate to new input
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-11-21 14:46:43 +01:00 |
|
|
|
3bdb287b78
|
providers/oauth2: fix amr claim not set due to login event not associated (#11780)
* providers/oauth2: fix amr claim not set due to login event not associated
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add sid claim
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* import engine only once
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove manual sid extraction from proxy, add test, make session key hashing more obvious
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated string fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-10-23 21:29:18 +02:00 |
|
|
|
2fa50de470
|
tests/e2e: fix dex tests failing (#11761)
* tests/e2e: fix dex tests failing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* force no special chars
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-10-22 01:52:16 +02:00 |
|
|
|
89f251d559
|
tests/e2e: add forward auth e2e test (#11374)
* add nginx forward_auth e2e tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add envoy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove even more duplicate code
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup more
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add traefik static config
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more cleanup, don't generate dex config cause they support env variables
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use default dex entrypoint to use templating
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove options that are always set as default
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix compose flag
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add caddy
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* merge python files
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use whoami api to check better
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix envoy config
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* set invalidation flow
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix logout checks
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-10-16 18:01:59 +02:00 |
|
|
|
5b66dbe890
|
flows: provider invalidation (#5048)
* add initial
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add web stage for session end
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* migrate saml and tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* group flow settings when providers have multiple flows
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* adjust name for default provider invalidation
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-make migrations
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add invalidation_flow to saml importer
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-do migrations again
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update web stuff to get rid of old libraries
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make unbind flow for ldap configurable
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix flow inspector
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* handle invalidation_flow as optional, as it should be
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* also fix ldap outpost
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* don't generate URL in client
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* actually make it work???
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix migration breaking things...?
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start fixing tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix fallback
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-migrate
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix duplicate flow setting
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix race condition with brand
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix oauth test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix SAML tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add to wizard, fix required
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make required, start release notes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-10-14 15:35:12 +02:00 |
|
|
|
8886532ed6
|
providers/ldap: fix incorrect permission check for search access (#11217)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-09-05 01:19:11 +02:00 |
|
|
|
8f53d0b9f3
|
providers/ldap: Remove search group (#10639)
* remove search_group
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make api operations cleaerer
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* actually use get
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use correct api client for ldap
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix migration warning
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix styling issue in dark mode
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated-ish fix button order in wizard
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix missing css import
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Optimised images with calibre/image-actions
* Update index.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Jens L. <jens@beryju.org>
* Update index.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Jens L. <jens@beryju.org>
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Jens L. <jens@beryju.org>
* update release notes based on new template
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
|
2024-08-14 16:31:11 +02:00 |
|
|
|
83b02a17d5
|
sources: add property mappings for all oauth and saml sources (#8771)
Co-authored-by: Jens L. <jens@goauthentik.io>
|
2024-08-07 19:14:22 +02:00 |
|
|
|
61c6887e82
|
providers/radius: Add support for custom attributes (#10509)
* unrelated: show logs for failed blueprints
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add dictionaries
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: remove some unused api functions
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add initial api
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* placeholder backend
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* idk
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add proper mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-07-25 19:08:33 +02:00 |
|
|
|
ced4533890
|
sources/ldap: rename ldappropertymapping to ldapsourcepropertymapping (#10606)
|
2024-07-25 16:09:36 +02:00 |
|
|
|
5a8d580c86
|
core: b2c improvements p1 (#9257)
* add default app and restrict
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* also pass raw email token for custom email templates
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* revoke access token when user logs out
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remigrate
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add command to change user types
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add some docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* blankable
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* actually fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-07-23 11:10:38 +02:00 |
|
|
|
1a6ac4740d
|
sources: introduce new property mappings per user and group (#8750)
* sources: introduce new property mappings per-user and group
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* sources/ldap: migrate to new property mappings
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint-fix and make gen
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* web changes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* update tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* remove flatten for generic implem
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* rework migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix migrations
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* re-add field migration to property mappings
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix migrations
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* more migrations fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* easy fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* migrate to propertymappingmanager
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* ruff and small fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* move mapping things into a separate class
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* migrations: use using(db_alias)
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* migrations: use built-in variable
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add docs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add release notes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
|
2024-07-22 15:26:22 +02:00 |
|
|
|
3338a79ef0
|
sources/oauth: fix link not being saved (#10374)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-07-04 16:31:33 +02:00 |
|
|
|
8bd514e17d
|
sources/saml: fix pickle error, add saml auth tests (#10348)
* test with persistent nameid
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix pickle
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* user_write: dont attempt to write to read only property
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add test for enroll + auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unwrap lazy user
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-07-03 18:28:31 +02:00 |
|
|
|
8915904cc7
|
tests/e2e: fix ldap tests following #10270 (#10288)
|
2024-06-28 11:02:14 +00:00 |
|
|
|
b1050e8825
|
tests/e2e: docker-compose.yml: remove version element forgotten last time (#10067)
|
2024-06-11 16:16:24 +02:00 |
|
|
|
49ac0eb662
|
sources/scim: cleanup service account when source is deleted (#9319)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-04-17 22:57:05 +02:00 |
|
|
|
3c28cf1909
|
sources: add SCIM source (#3051)
* initial
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* rebuild migration
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* include root URL in API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add UI base URL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* only allow SCIM basic auth for testing and debug
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* start user tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* antlr for scim filter parsing, why
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix url mountpoint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* ...turns out we don't need antlr
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start to revive this PR
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
Signed-off-by: Jens L. <jens@beryju.org>
* don't put doc structure changes into this
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix web ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make mostly work
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add filter support
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add e2e tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix helper
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-add codecov oidc
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove unused fields from API
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix group membership
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix backchannel helper text size
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* test against authentik as SCIM server I guess?
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix scim provider task render
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add preview banner
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Revert "re-add codecov oidc"
This reverts commit fdeeb391afba710645e77608e0ab2e97485c48d1.
* add API for connection objects
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix preview banner
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add UI for users and groups
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
|
2024-04-15 14:23:43 +02:00 |
|
|
|
bc9984f516
|
web/admin: rework captcha stage (#9256)
* web/admin: rework captcha stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* idk man selenium is an enigma to me
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-04-15 12:38:01 +02:00 |
|
|
|
06af8e3a35
|
sources/ldap: add ability to disable password write on login (#8377)
* sources/ldap: add ability to disable password write on login
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* reword docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
|
2024-03-25 12:22:21 +00:00 |
|
|
|
9cd94f639c
|
tests: fix e2e flow tests (#8835)
* maybe fix e2e
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* actually fix e2e
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-03-07 17:57:54 +01:00 |
|
|
|
b225b0200e
|
root: early spring clean for linting (#8498)
* remove pyright
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove pylint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* replace pylint with ruff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* ruff fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix UP038
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix DJ012
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix default arg
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix UP031
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rename stage type to view
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix DJ008
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix remaining upgrade
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix PLR2004
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix B904
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix PLW2901
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix remaining issues
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* prevent ruff from breaking the code
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* stages/prompt: refactor field building
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fully remove isort
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
|
2024-02-24 18:13:35 +01:00 |
|
|
|
8949464294
|
root: reformat with latest black version and fix tests (#8376)
* format files
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix pyright
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* revert #8367
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-01-31 15:24:45 +01:00 |
|
|
|
25e72558eb
|
core: optimise user list endpoint (#8353)
* unrelated changes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* optimization pass 1: reduce N tenant lookups by taking tenant from request, reduce get_anonymous calls
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make it easier to exclude anonymous user
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix?
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-01-30 01:55:26 +01:00 |
|
