habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
10,156 Commits 205 Branches 395 Tags
d5329432fed9ed2a025ca0f7f3aa0317b44cfa85
Commit Graph

236 Commits

Author SHA1 Message Date
Jens Langhammer
5019346ab6 events: save login event in session after login 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#4070
 2022-11-25 11:21:00 +01:00
Jens L
9f5fb692ba sources: add custom icon support (#4022) 
* add source icon

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to oauth form

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to other browser sources

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add migration, return icon in UI challenges

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* deduplicate file upload

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-16 14:10:10 +01:00
Jens Langhammer
e5241ac574 core: fix error when propertymappings return complex value 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-15 16:28:15 +01:00
Jens L
55aa1897af root: use single redis db (#4009) 
* use single redis db

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* cleanup prefixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* ensure __str__ always returns string

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix remaining old prefixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add release notes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-15 14:31:29 +01:00
Daniel
85c790728f core: simplify group serializer for user API endpoint (#3899) 
* core/api: Adding simple group serializer to improve user retrieval performance

Due to the exhaustive use of the user_obj the performance suffers
greatly if the users are assigned to large groups. This simple fix adds
a new serializer that does not expose the user_obj within a group.

* core/api: Update schema

Update to the schema based on the new SimpleGroupSerializer

* core/api: Fix black and pylint

* make naming consistent, remove unnecessary fields

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-11-09 11:19:40 +01:00
Jens L
30d708dd1f core: explicitly enable locales (#3889) 
* activate locales

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* set locale for email templates

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-28 19:42:49 +02:00
Jens Langhammer
6882445937 *: handle PermissionError when saving files, ensure permission bits are set correctly 
closes #3817

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-19 20:24:28 +02:00
Jens Langhammer
9f5c019daa core: add helper function to create events from expressions, move ak_user_has_authenticator to base evaluator 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-14 21:52:41 +02:00
Jens Langhammer
5886688fae core: make request in context optional for Applications API 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#3482
 2022-08-28 15:59:34 +02:00
Jens L
89fef0ae72 blueprints: docs (#3376) 
* further blueprint cleanup

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* more

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* make group users and parent optional

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix api client usage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-06 00:52:12 +02:00
Jens L
89c84f10d0 blueprints: v1 (#1573) 
* managed: move flowexporter to managed

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: implement SerializerModel in all models

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* managed: add initial api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* managed: start blueprint

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* managed: spec

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* version blueprint

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* yep

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* remove v2, improve v1

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* start custom tag, more rebrand

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add default flows

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* move blueprints out of website

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* try new things

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add !lookup, fix web

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update and cleanup default

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix tags in lists

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* don't save field if its set to default value

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* more flow cleanup

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* format web

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix missing serializer for sms

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* ignore _set fields

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* remove custom file extension

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* migrate default flow to tenant

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* include blueprints

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-07-31 17:11:44 +02:00
Jens Langhammer
83eba36f8d core: add API Endpoint to get all MFA devices, add web ui to delete MFA devices of any user 
closes #3237

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-07-28 23:50:25 +02:00
Jens L
c39a5933e1 core: create FlowToken instead of regular token for generated recovery links (#3193) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2749
 2022-07-02 14:17:41 +02:00
Jens L
504338ea66 web/admin: application wizard (part 1) (#2745) 
* initial

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* remove log

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* start oauth

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use form for all type wizard pages

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* more oauth

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* basic wizard actions

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* make resets work

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add hint in provider wizard

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* render correct icon in empty state in table page

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* improve empty state

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* more

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add more pages

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add group PK to service account creation response

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use wizard-level isValid prop

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* re-add old buttons

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-26 00:46:40 +02:00
Jens Langhammer
f28509608b core: mark session as modified instead of saving it directly to bump expiry 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-22 08:48:14 +02:00
Jens L
1c62a3db6e core: user paths (#3085) 
* init

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add user_path_template

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to sources and flow

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add outposts & api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* dark theme for treeview

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add search

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add docs and tests for validation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to user write stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add web ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: improve error handling

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 12:12:26 +02:00
Frédérick Permantier
2dfa6c2c82 core: add setting to open application launch URL in a new browser tab (#3037) 
* core: add setting to open application launch URL in a new browser tab

* core: fix failing applications unit tests

* core: fix formatting

* core: include models only generated when debug mode is enabled
 2022-06-05 14:32:22 +02:00
Jens Langhammer
c11435780d sources/oauth: fix twitter client missing basic auth 
closes #3038

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 14:21:32 +02:00
Jens Langhammer
817d538b8f core: add additional filters to source viewset 
https://github.com/goauthentik/terraform-provider-authentik/issues/184
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 00:56:46 +02:00
Jens L
2c6d82593e root: cleanup session keys to use common format (#3003) 
cleanup session keys to use common format

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-31 21:53:23 +02:00
Jens Langhammer
34bcc2df1a root: disable session_save_every_request as it overwrites the session with old data 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2991
 2022-05-31 20:46:27 +02:00
Jens L
80c1dbdfbb ensure all viewsets have filter and search and add tests (#2946) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 22:01:18 +02:00
Jens Langhammer
482491e93c core: fix username validator not allowing changes that can be done via flows 
closes #2755

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 19:40:54 +02:00
Jens Langhammer
d4fd6153c8 api: fix OwnerFilter filtering out objects for superusers 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-14 21:36:00 +02:00
Jens L
ab2299ba1e outposts/ldap: cached bind (#2824) 
* initial cached ldap bind support

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add web

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* clean up api generation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use gh action for golangci-lint

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-08 16:48:53 +02:00
Jens Langhammer
2303a97bb9 core: add method to set key of token 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2574
 2022-04-11 20:43:39 +02:00
Jens Langhammer
5861d41ad3 tenants: add tenant-level attributes, applied to users based on request 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-06 10:41:35 +02:00
Jens Langhammer
20262f3f4b core: mark provider_obj as read_only 
closes #2637

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-04 10:17:59 +02:00
Jens L
633296503d core: add grouping to applications (#2648) 
* core: add grouping to applications

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: add new field to tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-02 23:08:58 +02:00
Jens Langhammer
86a8d00b3f policies: sanitze_dict when returning log messages during tests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-02 17:15:44 +02:00
Jens Langhammer
d84ff2bbca policies: add policy log messages to test endpoints 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-01 22:07:35 +02:00
Jens Langhammer
0c2b32da31 core: add num_pk to group for applications that need a numerical group id 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2497
 2022-03-22 21:37:11 +01:00
Jens Langhammer
54f170650a core: replace uid with uuid search 
uid can't be searched it as its a computed field

closes #2480

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-14 10:35:55 +01:00
Jens Langhammer
1e1d9f1bdd core/api: allow filtering users by uid, add uid to search 
closes #2428

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-03 10:19:56 +01:00
Jens L
4f4f954693 core: customisable user settings (#2397) 
* tenants: add user_settings flow, add basic flow and basic new executor

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: use flow PromptStage instead of custom stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: add tenant to StageHost interface

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: fix form missing component

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: re-add success message

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: improve support for multiple error messages

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: allow expressions in prompt placeholders

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: always set pending user

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: never cache stage configuration flow plans

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/user_write: fix error when pending user is anonymous user

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/admin: add checkbox for prompt placeholder expression

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* website/docs: add prompt expression docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: add ak-locale field type

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tenants: fix default policy

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: add function to do global refresh

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: fix rendering of ak-locale

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tenants: fix default policy, add error handling to placeholder, fix locale attribute

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-03 00:13:06 +01:00
Jens L
677bcaadd7 core: add initial app launch url (#2367) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-23 22:48:55 +01:00
Jens Langhammer
80f218a6bf core: also handle TypeError for invalid app URL formatting 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-17 18:23:11 +01:00
Jens L
df362dd9ea core: handle error when formatting launch URL fails closes #2304 2022-02-14 12:02:51 +01:00
Jens Langhammer
e741caa6b3 core: allow formatting strings to be used for applications' launch URLs 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-08 23:46:23 +01:00
Jens Langhammer
a5adc4f8ed core: fix view_token permission not being assigned on token creation for non-admin user 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-31 20:00:30 +01:00
Jens Langhammer
2543224c7c core: dont return 404 when trying to view key of expired token 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-10 17:53:09 +01:00
Jens Langhammer
03503363e5 core: fix UserSelfSerializer's save() overwriting other user attributes 
closes #2070

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-06 18:23:06 +01:00
Jens Langhammer
5769ff45b5 core: add goauthentik.io/user/can-change-name 
closes #2054

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-04 19:03:12 +01:00
Jens Langhammer
3e22740eac core: add API endpoint to directly set user's password 
closes #2040

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-03 13:31:58 +01:00
Jens Langhammer
3740e65906 web/admin: add dashboard with user creation/login statistics 
closes #1867

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 22:08:41 +01:00
Jens Langhammer
30386cd899 events: add custom manager with helpers for metrics 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 21:49:33 +01:00
Jens Langhammer
e4841d54a1 *: migrate ui_* properties to functions to allow context being passed 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-13 23:56:35 +01:00
Jens Langhammer
340a9bc8ee core: fix error when using invalid key-values in attributes query 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-09 19:53:47 +01:00
Jens Langhammer
c1ea78c422 core: fix missing permission check for group creating when creating service account 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-06 12:33:29 +01:00
Jens Langhammer
5c54de66fc *: add meta_model_name field to all models with inheritance 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-26 10:32:39 +01:00