46acab3b2e
providers/scim: add API endpoint to sync single user ( #8486 )
...
* add api
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-08-22 16:38:55 +02:00
c3d7f9808c
core: fix flaky tests ( #10647 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-07-26 13:30:24 +02:00
61c6887e82
providers/radius: Add support for custom attributes ( #10509 )
...
* unrelated: show logs for failed blueprints
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add dictionaries
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated: remove some unused api functions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add initial api
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* placeholder backend
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* idk
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add proper mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-07-25 19:08:33 +02:00
619707e485
lib/sync: handle SkipObject in direct triggered tasks ( #10590 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-07-23 15:38:20 +02:00
a5e45ba78e
core: revert backchannel only filtering ( #10455 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-07-11 16:57:19 +02:00
942019d31f
core: rework base for SkipObject exception to better support control flow exceptions ( #10186 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-20 16:16:24 +09:00
5201a37214
core: fix error when raising SkipObject in mapping ( #10153 )
...
* core: fix error when raising SkipObject in mapping
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix events not being saved
thanks tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-19 23:44:42 +09:00
2c781ae423
root: use custom model serializer that saves m2m without bulk ( #10139 )
...
* use custom model serializer that saves m2m without bulk
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-18 22:48:05 +09:00
6d7bebbcc3
providers/enterprise: import user/group data when manually linking objects ( #10089 )
...
* providers/enterprise: import user/group data when manually linking objects
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* select immutable ID
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* generalize and implement for all
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix more
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-14 22:34:33 +09:00
7bb90b1661
providers/microsoft_entra: fix error when updating connection attributes ( #10039 )
...
* providers/microsoft_entra: fix error when updating connection attributes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include URL to field references
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only set gws user password when creating by default
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* merge instead of replace connection attributes
an update might not return all attributes so we don't want to fully replace the attributes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-11 16:03:23 +09:00
88e9c9b669
providers/sync: improve v3 ( #9966 )
...
* make external id field externally visible
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* catch up scim provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add missing views to scim provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make neither user nor group required for mapping testing
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve SkipObject handling
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* allow deletion of connection objects
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make entra logs less noisy
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make event_matcher less noisy
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-06-06 12:47:48 +09:00
50fffa72cc
lib/providers/sync: improve outgoing sync ( #9835 )
...
* make connection objects not updatable but allow creating with provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* save data returned from google/entra and show it in UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* pass connection object
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set immutable id on user automatically
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* better define transient error codes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix entra
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-30 10:40:10 +09:00
bd1ddfebd6
lib/sync/outgoing, sources/ldap: fix sync status endpoint ( #9855 )
2024-05-24 11:49:22 +00:00
ddd75f6d09
lib/sync: fix json error ( #9827 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-23 17:37:39 +02:00
fbad02fac1
providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks ( #9511 )
...
* providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* website/integrations: discord: fix typo
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* fix timeout logic
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* remove redis locks completely
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
* Apply suggestions from code review
Signed-off-by: Jens L. <jens@beryju.org >
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Jens L <jens@goauthentik.io >
2024-05-23 13:41:42 +02:00
44d7e81a93
providers/scim: optimize PropertyMapping fetching and execution ( #9689 )
...
* add helper to mass-compile and re-use mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* implement for scim
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually make it even simpler
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate google
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate microsoft too
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove sleeps in tests with freezegun
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* migrate ldap to propertymapping helper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* move mapper to generic sync
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* apparently that doesn't work
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* forgot a sleep
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* backport fixes from #9783
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-20 15:37:22 +02:00
046b8d5cbf
lib/providers/sync: multiple minor fixes ( #9667 )
...
* don't propagate from signal
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* improve retry
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-09 22:02:13 +02:00
99ad492951
enterprise/providers/microsoft_entra: initial account sync to microsoft entra ( #9632 )
...
* initial
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add entra mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix some stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make API endpoints more consistent
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* implement more things
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add user tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix most group tests + fix bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more group tests, fix bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing __init__
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add ui for provisioned users
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix a bunch of bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add `creating` to property mapping env
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* always sync group members
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix stuff
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix group membership
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix some types
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add group member add test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* create sync status component to dedupe
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix discovery tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* get rid of more code and fix more issues
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add error handling for auth and transient
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make sure autoretry is on
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format web
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* wait for task in signal
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add squashed google migration
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-09 15:41:23 +02:00
aeb1b450eb
enterprise/providers/google: initial account sync to google workspace ( #9384 )
...
* providers/google: initial account sync to google workspace
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start separating scim sync client
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* generalize more...ish
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set dispatch_uid
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start generalizing task
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fully separate tasks
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix more
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix signals...?
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start google dedupe
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* drawing the rest of the owl
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* juse use a whole lot less magic
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* member sync, better implement conflict/retry-able exceptions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* max wizards taller
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* gen api, basic UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix some bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix a bunch more bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* generalize sync status API
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rework sync chart
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add slugify to evaluator
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add test property mappings
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* rename to google workspace
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* handle existing objects
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix credential render
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* verify email has correct domain before syncing user
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing docstring
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix lock not being used
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* abstract more common stuff away
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* backport time limit fix
https://github.com/goauthentik/authentik/pull/9546
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start discovery
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* implement discover for google
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* prevent same issue as with https://github.com/goauthentik/authentik/pull/9557
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix sync status
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* make group name unique in API
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix reference to old wrapper
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start adding tests
man this api client is awful
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add SkipObject
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* dont use weak ref
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add group tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add user and group delete options
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* set user agent
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* if the api's testing tools are awful, let's just make our own
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add more tests and already fix some more bugs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add discover
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add preview banner
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add group import test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* only import users/groups in the correct parent group
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix conflicting args
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing schedule
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix web ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add default_group_email_domain
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2024-05-07 19:52:20 +02:00
