|
|
50e493d692
|
internal: cleanup static file serving setup code (#8965)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2024-03-20 12:06:24 +01:00 |
|
|
|
abc0c2d2a2
|
root: Multi-tenancy (#7590)
* tenants -> brands, init new tenant model, migrate some config to tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* setup logging for tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* configure celery and cache
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* small fixes, runs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* task fixes, creation of tenant now works by cloning a template schema, some other small stuff
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix-tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* upstream fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix-pylint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix avatar tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* migrate config reputation_expiry as well
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix web rebase
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix migrations for template schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix migrations for template schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix migrations for template schema 3
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* revert reputation expiry migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix type
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix some more tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* website: tenants -> brands
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* try fixing e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* start frontend :help:
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add ability to disable tenants api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* delete embedded outpost if it is disabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* make sure embedded outpost is disabled when tenants are enabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* management commands: add --schema option where relevant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* store files per-tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix embedded outpost deletion
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix files migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add tenant api tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add domain tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add settings tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* make --schema-name default to public in mgmt commands
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* sources/ldap: make sure lock is per-tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix stuff I broke
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix remaining failing tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* try fixing e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* much better frontend, but save does not refresh form properly
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* update django-tenants with latest fixes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* i18n-extract
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* review comments
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* move event_retention from brands to tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* root: add support for storing media files in S3
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* use permissions for settings api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* blueprints: disable tenants management
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix embedded outpost create/delete logic
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* make gen
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* make sure prometheus metrics are correctly served
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* makefile: don't delete the go api client when not regenerating it
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* tenants api: add recovery group and token creation endpoints
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix startup
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix prometheus metrics
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix web stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix migrations from stable
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix oauth source type import
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* Revert "fix oauth source type import"
This reverts commit d015fd0244.
* try with setting_changed signal
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* try with connection_created signal
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix scim tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix web after merge
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix enterprise settings
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* Revert "try with connection_created signal"
This reverts commit 764a999db8.
* Revert "try with setting_changed signal"
This reverts commit 32b40a3bbb.
* lib/expression: refactor expression compilation
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix django version
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix web after merge
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* relock poetry
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix reconcile
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* try running tenant save in a transaction
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* black
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* test: export postgres logs for debugging and use failfast
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* test: fix container name for logs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* do not copy tenant data
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* Revert "try running tenant save in a transaction"
This reverts commit da6dec5a61.
* Revert "do not copy tenant data"
This reverts commit d07ae9423672f068b0bd8be409ff9b58452a80f2.
* Revert "Revert "do not copy tenant data""
This reverts commit 4bffb19704.
* fix clone with nodata
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* why not
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* remove failfast
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove postgres query logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update reconcile logic to clearly differentiate between tenant and global
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix reconcile app decorator
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* enable django checks
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* actually nodata was unnecessary as we're cloning from template and not from public
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* pylint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* update django-tenants with sequence fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* actually update
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix e2e tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add tests for settings api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add tests for recovery api
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* recovery tests: do them on a new tenant
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* web: fix system status being degraded when embedded outpost is disabled
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix recovery tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tenants tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint-fix
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* update UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add management command to create a tenant
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add docs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* release notes
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* more docs
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* checklist
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* self review
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* spelling
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* make web after upgrading
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* remove extra xlif file
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* prettier
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* Revert "add management command to create a tenant"
This reverts commit 39d13c0447.
* split api into smaller files, only import urls when tenants is enabled
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rewite some things on the release notes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* root: make sure install_id comes from public schema
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* require a license to use tenants
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix tenants tests
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* fix files migration
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* release notes: add warning about user sessions being invalidated
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* remove api disabled test, we can't test for it
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
|
2024-01-23 14:28:06 +01:00 |
|
|
|
240cf6dd94
|
enterprise/providers: Add RAC [AUTH-15] (#7291)
* add basic guacamole
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make everything mostly work
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add rac build to CI
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix resize, fix web lint, sendSize correctly
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* pre-send connection from client, format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* improve throughput
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rework TokenOutpostConsumer into middleware
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix some layout issues
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add outpost controllers
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start testing audio things
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix a bunch of things
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix to work with outpost group
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add simple loadbalancing
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add simple reconnect
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* show reconnecting text
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix error when checking ports
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* move to providers
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add flow check to interface
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix go lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix rac app label
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix audio
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add logging
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* cleanup
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* allow overriding all settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix duplicate keyboard, debug high DPI
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-add deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix missing __init__.py breaking model loading
I love python
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* bump successful ws connection to info
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* hide cursor since guac draws that
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add clipboard support (bidirectional)
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make codespell not want to break the code
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* run pr comment in separate task
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start endpoint and property mapping stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more endpoint things
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: fix event model_pk filtering with ints
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* unrelated: improve event display for changelog
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rebuild endpoint stuff again
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* idk special url
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* more stuff, connect token with session
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add disconnect
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rework disconnect
cleanly disconnect from guacd instead of just letting the connection timeout
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* clear cache when creating outpost
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* support host:port and fix protocol
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* center smaller viewport
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* rework connection to wait more and stop after some time
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add policy control to endpoints
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove provider protocol
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* don't switch to different outpost connection when already chosen
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start using property mappings, add static settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add some RAC mapping settings
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix lint
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* start adding tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add tests for event changes
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add tests and fix issues found by said tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add preview banner, move endpoints to main page
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add locale
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* auto-select endpoint if only one is available
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* backport https://github.com/goauthentik/authentik/pull/7831 to rac
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* dont select property mappings on endpoints
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* make table modal only load when opened
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* only auto-redirect when open
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix web deps
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* check for token expiry and terminate session
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* re-add endpoint name to title
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* disconnect connection when token is manually deleted
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add initial RAC docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* add connection expiry setting to provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix flaky tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-12-30 21:33:14 +01:00 |
|
|
|
5ea9595c9c
|
internal: fix cache-control header
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
#4525
|
2023-01-25 21:18:20 +01:00 |
|
|
|
53f224300b
|
internal: set ETag header on static resources to reduce cache issues
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#3456
|
2022-09-11 23:18:34 +02:00 |
|
|
|
10b48b27b0
|
internal: walk config in go, check, parse and load from scheme like in python
closes #2719
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-26 11:33:37 +02:00 |
|
|
|
d0ceafe79e
|
outposts/proxy: add X-authentik-meta-version
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:59:45 +01:00 |
|
|
|
f2023a7af2
|
*: don't use go embed to make using custom files easier
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:35:28 +01:00 |
|
|
|
d1bd8f333b
|
outposts/proxy: use disableIndex for static files
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-19 10:50:56 +01:00 |
|
|
|
7cf8a31057
|
internal: fix integrated docs not working
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-15 16:13:02 +01:00 |
|
|
|
8d72b3498d
|
internal: fix typo
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-24 10:44:28 +02:00 |
|
|
|
52bb774f73
|
internal: add asset paths for user interface
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-23 09:57:24 +02:00 |
|
|
|
7158c9d2ea
|
core: metrics v2 (#1370)
* outposts: add ldap metrics, move ping to 9100
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: add flow_executor metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use port 9300 for metrics, add core metrics port
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts/controllers/k8s: add service monitor creation support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-09 15:52:24 +02:00 |
|
