6821679fbc
*: add support for bearer authentication on API
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-04-13 20:01:30 +02:00
a31fc8319d
policies: fix policybinding API returning wrong policy objects
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-04-06 17:24:32 +02:00
fc1caf1469
api: remove js i18n catalog
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-04-03 19:07:54 +02:00
5a6b6c369e
admin: add API to get all installed apps
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-04-02 16:13:09 +02:00
b1214f6c35
*: add new base class for non-model serializers
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-30 15:50:00 +02:00
c7dcf92a2e
api: add tests for swagger generation
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-30 15:23:37 +02:00
54c50f6446
policies: add test API
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 23:40:36 +02:00
21ea527623
api: fix invalid swagger schema
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 22:34:24 +02:00
3a2f285a87
flows: add API to debug-execute a flow and import flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 22:21:04 +02:00
7d74e1d2c4
*: revert to drf-yasg upstream
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 21:04:54 +02:00
372cf4a8cb
api: add error responses to swagger schema
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 18:09:45 +02:00
b3d54b7620
api: cleanup args for @permission_required
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 17:33:55 +02:00
5d37012075
api: allow @permission_required with no object permission
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 17:28:28 +02:00
0793fff222
*: simplify API permissions checking, add API for user recovery
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-29 15:36:35 +02:00
533a719914
sources/oauth: migrate to webcomponents
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-24 20:35:00 +01:00
ffd8c59c8e
api: use common skeleton in swagger template
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-24 17:46:41 +01:00
17f7a97ef3
sources/oauth2: add API For UserSourceConnection
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-24 14:46:08 +01:00
33787d0685
web: remove pf-c-card-aggregate
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-23 16:05:37 +01:00
0671d712fa
policies: remove deprecated group_membership policy
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-23 14:43:24 +01:00
fe7f23238c
Static SPA ( #648 )
...
* core: initial migration to /if
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* core: move jsi18n to api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* tests: fix static URLs in tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: add new html files to rollup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: fix rollup config and nginx config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* core: add Impersonation support to user API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: add banner for impersonation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* tests: fix test_user function for new User API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* flows: add background to API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: set background from flow API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* core: make root view login_required for redirect
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* flows: redirect to root-redirect instead of if-admin direct
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* api: add header to prevent Authorization Basic prompt in browser
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
* web: redirect to root when user/me request fails
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-22 13:44:17 +01:00
7e47906475
api: add Footer links to config API
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-21 17:35:00 +01:00
4c49209f71
core: add user metrics API
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-20 17:30:01 +01:00
fe054136b1
website: add comparison based on vector.dev's site
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-18 22:09:54 +01:00
d82dfc65b7
api: replace rest_framework browser with rapi-doc
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-18 20:35:12 +01:00
5b4c5d0f31
stages/consent: add API to get user's given consent
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-18 16:07:33 +01:00
9ad10863de
providers/oauth2: add API for auth codes and refresh tokens
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-03-18 15:59:38 +01:00
34a3d81eff
stages/authenticator_*: add API for authenticator devices
2021-03-09 10:38:07 +01:00
2852fa3c5e
web: use generated API Client ( #616 )
...
* api: fix types for config API
* api: remove broken swagger UI
* admin: re-fix system task enum
* events: make event optional
* events: fix Schema for notification transport test
* flows: use APIView for Flow Executor
* core: fix schema for Metrics APIs
* web: rewrite to use generated API client
* web: generate API Client in CI
* admin: use x_cord and y_cord to prevent yaml issues
* events: fix linting errors
* web: don't lint generated code
* core: fix fields not being required in TypeSerializer
* flows: fix missing permission_classes
* web: cleanup
* web: fix rendering of graph on Overview page
* web: cleanup imports
* core: fix missing background image filter
* flows: fix flows not advancing properly
* stages/*: fix warnings during get_challenge
* web: send Flow response as JSON instead of FormData
* web: fix styles for horizontal tabs
* web: add base chart class and custom chart for application view
* root: generate ts client for e2e tests
* web: don't attempt to connect to websocket in selenium tests
* web: fix UserTokenList not being included in the build
* web: fix styling for static token list
* web: fix CSRF Token missing
* stages/authenticator_static: fix error when disable static tokens
* core: fix display issue when updating user info
* web: fix Flow executor not showing spinner when redirecting
2021-03-08 11:14:00 +01:00
466723573c
api: fix types for config API
2021-03-03 20:05:43 +01:00
f4580a1097
api: remove legacy messages API as its WS only
2021-03-03 15:02:20 +01:00
c002c4b610
api: make pagination required
2021-03-03 10:37:03 +01:00
28cd08bbba
core: make user settings use vertical tabs
2021-03-03 10:05:12 +01:00
3cb0575a1e
root: fix swagger pagination not matching API
2021-03-03 09:28:22 +01:00
743aaea15e
policies: improve logging
2021-03-02 15:04:31 +01:00
c65b2944b3
stages/reputation: add API for user and IP Score
2021-03-01 20:22:37 +01:00
2ae5a81c15
stages/deny: add deny stage
2021-03-01 20:16:54 +01:00
391ee10cb8
Merge branch 'master' into stage-challenge
...
# Conflicts:
# authentik/api/v2/urls.py
2021-02-20 12:51:10 +01:00
854d94056e
web: migrate remaining list views to web
2021-02-20 00:19:53 +01:00
a76cbf8b70
flows: separate flows api into smaller files
2021-02-19 19:14:16 +01:00
bd6a473d4f
flows: add cached as action to flow API
2021-02-19 16:34:12 +01:00
b229b2f40d
Merge branch 'master' into stage-challenge
...
# Conflicts:
# authentik/stages/authenticator_validate/stage.py
# authentik/stages/identification/stage.py
2021-02-18 14:04:35 +01:00
e4f0613fab
*: replace tuple and set from typing with normal
2021-02-18 13:53:57 +01:00
eb01b42425
flows: mount executor under api, implement initial challenge design
2021-02-17 23:52:49 +01:00
8708e487ae
stages: add WebAuthn stage ( #550 )
...
* core: add User.uid for globally unique user ID
* admin: fix ?next for Flow list
* stages: add initial webauthn implementation
* web: add ak-flow-submit event to submit flow stage
* web: show error message for webauthn registration
* admin: fix next param not redirecting correctly
* stages/webauthn: remove form
* stages/webauthn: add API
* web: update flow diagram on ak-refresh
* stages/webauthn: add initial authentication
* stages/webauthn: initial authentication implementation
* web: cleanup webauthn utils
* stages: rename otp_* to authenticator and move webauthn to authenticator
* docs: fix broken links
* stages/authenticator_*: fix template paths
* stages/authenticator_validate: add device classes
* stages/authenticator_webauthn: implement django_otp.devices
* stages/authenticator_*: update default stage names
* web: add button to create stage on flow page
* web: don't minify HTML, remove nbsp
* admin: fix typo in stage list
* stages/*: use common base class for stage serializer
* stages/authenticator_*: create default objects after rename
* tests/e2e: adjust stage order
2021-02-17 20:49:58 +01:00
efc46f52e6
outposts: move health to API
2021-02-08 19:01:10 +01:00
0f5e6d0d8c
api: add dark theme for API Browser
2021-02-06 18:09:24 +01:00
192dbe05c4
events: triggers -> rules
2021-01-16 14:15:23 +01:00
1ccf6dcf6f
events: Notifications ( #418 )
...
* events: initial alerting implementation
* policies: move error handling to process, ensure policy UUID is saved
* policies: add tests for error handling in PolicyProcess
* events: improve loop detection
* events: add API for action and trigger
* policies: ensure http_request is not used in context
* events: adjust unittests for user handling
* policies/event_matcher: add policy type
* events: add API tests
* events: add middleware tests
* core: make application's provider not required
* outposts: allow blank kubeconfig
* outposts: validate kubeconfig before saving
* api: fix formatting
* stages/invitation: remove invitation_created signal as model_created functions the same
* stages/invitation: ensure created_by is set when creating from API
* events: rebase migrations on master
* events: fix missing Alerts from API
* policies: fix unittests
* events: add tests for alerts
* events: rename from alerting to notifications
* events: add ability to specify severity of notification created
* policies/event_matcher: Add app field to match on event app
* policies/event_matcher: fix EventMatcher not being included in API
* core: use objects.none() when get_queryset is used
* events: use m2m for multiple transports, create notification object in task
* events: add default triggers
* events: fix migrations return value
* events: fix notification_transport not being in the correct queue
* stages/email: allow sending of email without backend
* events: implement sending via webhook + slack/discord + email
2021-01-11 18:43:59 +01:00
bc9e7e8b93
build(deps): bump structlog from 20.1.0 to 20.2.0 ( #445 )
...
* build(deps): bump structlog from 20.1.0 to 20.2.0
Bumps [structlog](https://github.com/hynek/structlog ) from 20.1.0 to 20.2.0.
- [Release notes](https://github.com/hynek/structlog/releases )
- [Changelog](https://github.com/hynek/structlog/blob/master/CHANGELOG.rst )
- [Commits](https://github.com/hynek/structlog/compare/20.1.0...20.2.0 )
Signed-off-by: dependabot[bot] <support@github.com >
* *: use structlog.stdlib instead of structlog for type-hints
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org >
2021-01-01 15:39:43 +01:00
c95f8e8418
api: fix formatting
2020-12-24 16:26:01 +01:00
