fd44bc2bec
stages/authenticator_validate: add ability to limit webauthn device types ( #9180 )
...
* stages/authenticator_validate: add ability to limit webauthn device types
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* require enterprise attestation when a device restriction is configured as we need the aaguid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve error message
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add more tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-11 13:10:05 +02:00
a70363bd95
core: add user settable token durations ( #7410 )
...
* core: add support for user settable token duration
* web: add support for user settable token duration
* website: add documentation for user settable token duration
* core : fix locales
* web: fix tokenIntent when updating
* core: fix linting
* website: Update website/docs/user-group-role/user/user_ref.md
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Jean-Michel DILLY <48059109+jmdilly@users.noreply.github.com >
* make token duration system-wide configurable
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* small fixup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate token configs to tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add release notes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make website
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix migrations
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* nosec
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix migrations for real this time
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* trying with no model using default_token_key
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix save
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* use signal instead of overriding save
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: Jean-Michel DILLY <48059109+jmdilly@users.noreply.github.com >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-04-11 13:05:05 +02:00
d24fe25047
sources/oauth: make URLs not required, only check when no OIDC URLs are defined ( #9182 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-09 20:35:30 +02:00
9f6dca1170
stages/authenticator_webauthn: add MDS support ( #9114 )
...
* web: align style to show current user for webauthn enroll
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* ask for aaguid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* initial MDS import
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add API
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add restriction
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix api, add actual restriction
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* default authenticator name based on aaguid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* connect device with device type
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix typo in webauthn stage name
this typo has been around for 3 years 8708e487ae (diff-bb4aee4a37f4b95c8daa7beb6bf6251d8d2b6deb8c16dce0cd7cb0d6cd71900aR16)jens@goauthentik.io >
* add fido2 dep
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add CI pipeline to automate updating blob
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests, include device type
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* exclude icon for now
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add passkeys aaguid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make special unknown device type work, add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-08 12:21:26 +02:00
bb1f18d973
root: generate python client ( #9107 )
...
* generate api client
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# authentik/lib/expression/evaluator.py
# poetry.lock
* don't attempt to pr upgrade api client
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# poetry.lock
# pyproject.toml
* use new generator
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* t
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use upstream generator since that one is v2 already 🤦
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add missing help to makefile
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-04-04 15:39:42 +02:00
b8b6c0cd98
events: rework log messages returned from API and their rendering ( #8770 )
...
* events: initial log rework
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add migration code
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-03-28 17:34:34 +01:00
0b4822c1e3
website/docs: maintenance, re-add system settings ( #9026 )
...
* update screenshots
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: fix api schema
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* required working anchors
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add system settings page
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix broken anchors
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use client-side-redirects plugin
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Optimised images with calibre/image-actions
* Revert "use client-side-redirects plugin"
This reverts commit 3103433617jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2024-03-26 14:42:07 +01:00
06af8e3a35
sources/ldap: add ability to disable password write on login ( #8377 )
...
* sources/ldap: add ability to disable password write on login
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* reword docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-03-25 12:22:21 +00:00
d7e399dbf9
web/flow: general ux improvements ( #8558 )
...
* message fixes
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove inline css, reword
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* don't rely on flow naming to show message
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: roney <roney.dsilva@cdmx.in >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-03-25 12:54:40 +01:00
ce0775239d
admin: Handle latest version unknown in admin dashboard ( #8858 )
...
* Handle latest version unknown in admin dashboard
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tsc
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-03-15 17:49:02 +01:00
fdcc1dcb36
stages: source stage ( #8330 )
...
* stages: source stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include stage name in dummy stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use data instead of instance for login button
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make mostly work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix ident stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make it work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* pass more data
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix flow inspector not always loading
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix dark theme for stepper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix inspector styling
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* don't skip source stage unless returning
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* auto open flow inspector when debug
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fixup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix validation
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include raw saml response in flow context
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add some tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* move
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Apply suggestions from code review
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
Signed-off-by: Jens L. <jens@beryju.org >
* fix import
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com >
2024-03-14 19:46:27 +01:00
62e58f2fe9
release: 2024.2.2
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# pyproject.toml
2024-03-04 21:25:25 +01:00
1b24168791
sources/oauth: add gitlab type [AUTH-323] ( #8195 )
...
* sources/oauth: add gitlab type
* Use correct username field
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* format
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* web: add gitlab
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2024-02-29 16:53:08 +01:00
f740ba0ffe
core: rework recovery API to return better error messages ( #8655 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-02-22 22:57:47 +01:00
5ca929417b
release: 2024.2.1
2024-02-22 17:02:54 +01:00
a21683555a
root: cherry-pick version bump
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-02-21 15:56:45 +01:00
4733778460
enterprise/providers/rac: connection token management ( #8467 )
2024-02-14 18:57:11 +01:00
4dadcc1dfd
web/admin: hide expiry time if item is set to not expire ( #8457 )
...
* web/admin: hide expiry time if item is set to not expire
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-02-08 22:51:41 +01:00
84fdd4d737
events: fix SystemTask timestamps and scheduling ( #8435 )
...
* events: fix SystemTask timestamps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix error during prefill
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix prefill not running per tenants
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* run scheduled tasks on startup when needed
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove some explicit startup tasks
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix unrelated crypto warning
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix import loop on reputation policy
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* pass correct task params
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make enterprise task monitored
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* slightly different formatting for task list
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* also pre-squash migrations
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-02-07 15:58:33 +00:00
07ed5e1cd9
core: show all applications a user can access in admin interface ( #8343 )
...
* core: show all applications a user can access in admin interface
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* minor adjustments
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add relative time
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use relative time in most places
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve admin dashboard scaling
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-30 01:56:33 +01:00
50e7336720
release: 2023.10.7
2024-01-29 18:48:56 +01:00
0c4dee8f9f
providers: allow previewing mappings for other users ( #8297 )
...
* rework access check to do better validation
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* providers: allow previewing mappings for other users
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Revert "rework access check to do better validation"
This reverts commit 81077a7e7bjens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-29 13:58:51 +01:00
96b2a1a9ba
events: migrate SystemTasks to DB ( #8159 )
...
* events: migrate system tasks to save in DB
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* prefill in app startup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup api
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update web
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use string for status
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix enum
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* save start and end directly in timestamp from default_timer()
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve metrics
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rename globally to system task
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* recreate migrations, better denote anonymous user
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* events: lookup actual django app instead of using module path, fallback to module path
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix logger call
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-24 17:23:03 +01:00
4184f8a770
enterprise: add full audit log [AUTH-458] ( #8177 )
...
* enterprise: add full audit log
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* delegate enabled check to apps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* move audit middleware to separate app
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanse before diff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make cleanse include a hash of the values
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix sentry error during lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only use start of hash
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* don't use deepdiff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add diff ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix info for dict
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update release notes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* enable audit logging for tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix startup with tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include first 4 chars of raw value?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only log asterisks
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fixup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-24 11:36:06 +01:00
abc0c2d2a2
root: Multi-tenancy ( #7590 )
...
* tenants -> brands, init new tenant model, migrate some config to tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* setup logging for tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* configure celery and cache
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* small fixes, runs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* task fixes, creation of tenant now works by cloning a template schema, some other small stuff
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix-tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* upstream fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix-pylint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix avatar tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* migrate config reputation_expiry as well
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix web rebase
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix migrations for template schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix migrations for template schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix migrations for template schema 3
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* revert reputation expiry migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix type
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix some more tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* website: tenants -> brands
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* try fixing e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* start frontend :help:
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add ability to disable tenants api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* delete embedded outpost if it is disabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make sure embedded outpost is disabled when tenants are enabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* management commands: add --schema option where relevant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* store files per-tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix embedded outpost deletion
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix files migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add tenant api tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add domain tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add settings tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make --schema-name default to public in mgmt commands
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* sources/ldap: make sure lock is per-tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix stuff I broke
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix remaining failing tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* try fixing e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* much better frontend, but save does not refresh form properly
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* update django-tenants with latest fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* i18n-extract
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* review comments
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* move event_retention from brands to tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* root: add support for storing media files in S3
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* use permissions for settings api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* blueprints: disable tenants management
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix embedded outpost create/delete logic
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make gen
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make sure prometheus metrics are correctly served
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* makefile: don't delete the go api client when not regenerating it
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* tenants api: add recovery group and token creation endpoints
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix startup
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix prometheus metrics
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix web stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix migrations from stable
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix oauth source type import
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Revert "fix oauth source type import"
This reverts commit d015fd0244marc.schmitt@risson.space >
* try with connection_created signal
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix scim tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix web after merge
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix enterprise settings
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* Revert "try with connection_created signal"
This reverts commit 764a999db832b40a3bbbmarc.schmitt@risson.space >
* fix django version
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix web after merge
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* relock poetry
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix reconcile
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* try running tenant save in a transaction
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* black
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* test: export postgres logs for debugging and use failfast
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* test: fix container name for logs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* do not copy tenant data
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* Revert "try running tenant save in a transaction"
This reverts commit da6dec5a614bffb19704marc.schmitt@risson.space >
* why not
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* remove failfast
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove postgres query logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update reconcile logic to clearly differentiate between tenant and global
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix reconcile app decorator
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* enable django checks
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* actually nodata was unnecessary as we're cloning from template and not from public
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* pylint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* update django-tenants with sequence fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* actually update
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add tests for settings api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* add tests for recovery api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* recovery tests: do them on a new tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* web: fix system status being degraded when embedded outpost is disabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix recovery tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tenants tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* update UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add management command to create a tenant
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add docs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* release notes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* more docs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* checklist
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* self review
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* spelling
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* make web after upgrading
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* remove extra xlif file
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* prettier
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* Revert "add management command to create a tenant"
This reverts commit 39d13c0447jens@goauthentik.io >
* rewite some things on the release notes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* root: make sure install_id comes from public schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* require a license to use tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix tenants tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix files migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* release notes: add warning about user sessions being invalidated
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* remove api disabled test, we can't test for it
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2024-01-23 14:28:06 +01:00
85f1584844
providers/rac: fix property mapping without enterprise ( #8144 )
...
* make rac blueprint only run when enterprise is active
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make rac api same as other mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* automatically scale size sent by device pixel ratio
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually always allow creation of rac mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing application in flow context
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix wizard showing enterprise warning when license is installed
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-14 21:21:06 +01:00
d9eb4c5248
sources/oauth: fix OAuth source type serializer ( #8140 )
...
* sources/oauth: fix OAuth source type serializer
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-12 16:20:29 +01:00
50d3264be5
release: 2023.10.6
2024-01-09 19:31:47 +01:00
2064395434
enterprise/providers/rac: add option to limit concurrent connections to endpoint ( #8053 )
...
* enterprise/providers/rac: add option to limit concurrent connections to endpoint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: put outpost settings in group
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-04 16:27:16 +01:00
116ac30c72
enterprise/providers/rac: add alert that enterprise is required for RAC ( #8057 )
...
add alert that enterprise is required for RAC
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-01-04 16:18:12 +01:00
240cf6dd94
enterprise/providers: Add RAC [AUTH-15] ( #7291 )
...
* add basic guacamole
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make everything mostly work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add rac build to CI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix resize, fix web lint, sendSize correctly
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* pre-send connection from client, format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve throughput
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rework TokenOutpostConsumer into middleware
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix some layout issues
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add outpost controllers
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start testing audio things
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix a bunch of things
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix to work with outpost group
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add simple loadbalancing
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add simple reconnect
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* show reconnecting text
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix error when checking ports
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* move to providers
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add flow check to interface
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix go lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix rac app label
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix audio
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* allow overriding all settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix duplicate keyboard, debug high DPI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-add deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing __init__.py breaking model loading
I love python
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* bump successful ws connection to info
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* hide cursor since guac draws that
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add clipboard support (bidirectional)
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make codespell not want to break the code
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* run pr comment in separate task
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start endpoint and property mapping stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more endpoint things
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: fix event model_pk filtering with ints
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: improve event display for changelog
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rebuild endpoint stuff again
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* idk special url
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more stuff, connect token with session
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add disconnect
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rework disconnect
cleanly disconnect from guacd instead of just letting the connection timeout
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* clear cache when creating outpost
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* support host:port and fix protocol
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* center smaller viewport
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rework connection to wait more and stop after some time
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add policy control to endpoints
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove provider protocol
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* don't switch to different outpost connection when already chosen
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start using property mappings, add static settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add some RAC mapping settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start adding tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests for event changes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests and fix issues found by said tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add preview banner, move endpoints to main page
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add locale
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* auto-select endpoint if only one is available
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* backport https://github.com/goauthentik/authentik/pull/7831 to rac
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* dont select property mappings on endpoints
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make table modal only load when opened
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only auto-redirect when open
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix web deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* check for token expiry and terminate session
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-add endpoint name to title
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* disconnect connection when token is manually deleted
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add initial RAC docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add connection expiry setting to provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix flaky tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-30 21:33:14 +01:00
02869d8173
stages/user_login: session binding ( #7881 )
...
* start with user_login stage
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# authentik/root/settings.py
* fix and improve logout event
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* lint pass
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update authenticated session when IP changes and binding doesn't break
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update docs, always keep old and new IP in event
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-gen api schema
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-23 01:20:23 +01:00
7778a8fab2
release: 2023.10.5
2023-12-21 15:08:13 +01:00
2521073dba
providers/scim: use lock for sync ( #7948 )
...
* providers/scim: use lock for sync
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-21 14:43:40 +01:00
50860d7ffe
events: add ASN Database reader ( #7793 )
...
* events: add ASN Database reader
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix test config generator
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* de-duplicate code
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add enrich_context
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rename to context processors?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix cache
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use config deprecation system, update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update more docs and tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add test asn db
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* re-build schema with latest versions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-20 22:16:50 +01:00
3e530cf1b5
flows: add "require outpost" authentication_requirement ( #7921 )
...
* migrate get_client_ip to middleware
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use middleware directly without wrapper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add require_outpost setting for flows
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update schema
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update web ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fixup
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve fallback
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-19 13:32:10 +01:00
729ef4d786
root: bump python deps (django 5) ( #7862 )
...
* bump python deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* vendor pickle serializer for now
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
#7761
* cleanup some things and re-build api scheme
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix web and go
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually fix go...?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* better annotate json fields
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* use jsondictfield wherever
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove all virtualenvs?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* ?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* final version bump
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-18 22:07:59 +01:00
944368c4f2
events: add graph for event volume ( #7639 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-12-06 19:06:07 +02:00
18b2f489c0
release: 2023.10.4
2023-11-21 19:29:02 +01:00
44fc9ee80c
stages/identification: add option to pretend user exists ( #7610 )
...
* stages/identification: add option to pretend user exists
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* test CI permission fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-11-18 01:55:48 +01:00
b5e059dfd9
root: fix API schema for kotlin ( #7601 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-11-17 00:07:21 +01:00
f728bbb14b
sources/ldap: add check command to verify ldap connectivity ( #7263 )
...
* sources/ldap: add check command to verify ldap connectivity
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* default to checking all sources
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start adding an API for ldap connectivity
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add webui for ldap source connection status
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* better show sync status, clear previous tasks
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set timeout on redis lock for ldap sync
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix py lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix web lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-11-13 15:01:40 +01:00
c30a2406a9
release: 2023.10.3
2023-11-09 19:20:28 +01:00
8e72fcab59
release: 2023.10.2
2023-10-28 21:43:54 +02:00
64c38909ff
release: 2023.10.1
2023-10-26 20:06:05 +02:00
ed46fd629e
release: 2023.10.0
2023-10-26 16:51:57 +02:00
28053059ff
stages/user_write: allow setting user type when creating new user ( #7293 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-10-26 14:33:29 +02:00
63426bc9a8
sources/oauth: include default JWKS URLs for OAuth sources ( #6992 )
...
* sources/oauth: include default JWKS URLs for OAuth sources
makes it easier to use pre-defined types like github, google, azure with JWT M2M instead of needing to create a generic OAuth Source
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix error
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-10-20 16:54:03 +02:00
8aafa06259
providers/radius: TOTP MFA support ( #7217 )
...
* move CheckPasswordMFA to flow executor
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add mfa support field to radius
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2023-10-18 19:43:36 +02:00
a60f3b4b81
stage/deny: add custom message ( #7144 )
...
* stage/deny: add message
* add migration, tests and schema update
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add form
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2023-10-18 17:13:33 +02:00
