authentik

Author	SHA1	Message	Date
Jens L	6cf418a37e	stages/captcha: rework (#9959 ) * stages/captcha: rework Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update form with continue option Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs, add notes for scores Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also only raise error from success if needed Signed-off-by: Jens Langhammer <jens@goauthentik.io> * return full data Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-04 18:25:38 +09:00
Marc 'risson' Schmitt	6171443e61	stages/authenticator_webauthn: migrate device type import to systemtask and schedule (#9958 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-03 23:36:27 +09:00
Marc 'risson' Schmitt	a989390533	core: groups: optimize recursive children query (#9931 )	2024-06-03 11:49:31 +00:00
Marc 'risson' Schmitt	c3cb9bc778	stages/authenticator_webauthn: optimize device types creation (#9932 ) * stages/authenticator_webauthn: optimize device types creation Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * same for aaguid_import task Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-01 11:16:55 +02:00
authentik-automation[bot]	5f65a7c6cc	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9936 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-01 17:17:29 +09:00
Jens L	95d26563e7	providers/oauth2: don't handle api scope as special scope (#9910 ) * providers/oauth2: don't handle api scope as special scope Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make default scope selection less magic Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ensure missing folder exists Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix duplicate name Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-01 17:16:56 +09:00
Jens L	50fffa72cc	lib/providers/sync: improve outgoing sync (#9835 ) * make connection objects not updatable but allow creating with provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * save data returned from google/entra and show it in UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * pass connection object Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set immutable id on user automatically Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better define transient error codes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix entra Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-30 10:40:10 +09:00
Jens L	dae4bf0d6b	stages/authenticator_validate: fix priority of auth_method being set to auth_webauthn_pwl (#9909 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-30 09:41:21 +09:00
Marc 'risson' Schmitt	0e4737d38f	events: fix geoip enrich context not converting to json-seriazable data (#9885 )	2024-05-27 17:16:35 +00:00
Marc 'risson' Schmitt	609b10f7f8	stages/user_login: fix non-json-serializable being used (#9886 )	2024-05-27 17:15:45 +00:00
Marc 'risson' Schmitt	bd1ddfebd6	lib/sync/outgoing, sources/ldap: fix sync status endpoint (#9855 )	2024-05-24 11:49:22 +00:00
Jens L	0974456ac8	core: add option to select group for property mapping testing (#9834 ) * make naming consistent, p1 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * p2 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * core: add option to select group for property mapping testing Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 13:32:19 +02:00
Jens L	d44d5a44a1	policies: fix ak_call_policy failing when used in testing (#9853 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 13:29:54 +02:00
Jens L	c3445374c2	core: FIPS (#9683 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-23 17:34:52 +00:00
Jens L	ddd75f6d09	lib/sync: fix json error (#9827 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-23 17:37:39 +02:00
Marc 'risson' Schmitt	fbad02fac1	providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks (#9511 ) * providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * website/integrations: discord: fix typo Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix timeout logic Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * remove redis locks completely Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * Apply suggestions from code review Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L <jens@goauthentik.io>	2024-05-23 13:41:42 +02:00
dependabot[bot]	fbab822db1	core: bump ruff from 0.4.4 to 0.4.5 (#9819 ) * core: bump ruff from 0.4.4 to 0.4.5 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.4 to 0.4.5. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.4...v0.4.5) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-23 13:12:52 +02:00
Jens L	347746cbcd	enterprise/stages/source: fix error when creating source stage from blueprint (#9810 ) * enterprise/stages/source: fix error when creating source stage from blueprint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix error for pretend user Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated frontend bug Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-22 18:12:31 +02:00
authentik-automation[bot]	7a13046a27	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9729 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-22 11:38:35 +02:00
Jens L	6c4c535d57	web/admin: rework initial wizard pages and add grid layout (#9668 ) * remove @goauthentik/authentik as TS path Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial implementation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * oh yeah Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format earlier changes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * support plain alert Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial attempt at dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make it a base class Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate all wizards Signed-off-by: Jens Langhammer <jens@goauthentik.io> * create type create mixin to dedupe more, add icon to source create Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ldap icon Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions * match inverting we should probably replace all icons with coloured ones so we don't need to invert them...I guess Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make everything more explicit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add icons to provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add remaining provider icons Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework to not use inheritance Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated typo Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make app wizard use grid layout Signed-off-by: Jens Langhammer <jens@goauthentik.io> * keep wizard height consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-22 02:41:33 +02:00
Jens L	a5467c6e19	root: add primary-replica db router (#9479 ) * root: add primary-replica db router Signed-off-by: Jens Langhammer <jens@goauthentik.io> * copy all settings for database replicas Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * refresh read replicas config, switch to using a dict instead of a list for easier refresh Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add test for get_keys Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix getting override Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * nosec Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * small fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix replica settings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * generate config: add a dummy read replica Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add doc Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add healthchecks for replicas Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add note about hot reloading Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-21 20:15:49 +02:00
Jens L	44d7e81a93	providers/scim: optimize PropertyMapping fetching and execution (#9689 ) * add helper to mass-compile and re-use mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement for scim Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually make it even simpler Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate google Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate microsoft too Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove sleeps in tests with freezegun Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate ldap to propertymapping helper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move mapper to generic sync Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * apparently that doesn't work Signed-off-by: Jens Langhammer <jens@goauthentik.io> * forgot a sleep Signed-off-by: Jens Langhammer <jens@goauthentik.io> * backport fixes from #9783 Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 15:37:22 +02:00
Jens L	964c6a1050	core: fix auth_method and auth_method_args being overwritten by password stage (#9782 ) the assumption used to be that the password stage would always be first, but that doesn't have to be the case Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 15:03:25 +02:00
Jens L	90a1c5ab85	core: add include_users flag to single group retrieval (#9721 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 14:47:00 +02:00
Jens L	8162c1ec86	enterprise/providers/google_workspace: ensure no group is created when no property mappings are set (#9783 ) * enterprise/providers/google_workspace: ensure no group is created when no property mappings are set Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for that to all sync providers Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 14:16:34 +02:00
Jens L	5a61688472	rbac: fix some rough edges and inconsistencies (#9771 ) rbac: fix some rough edges Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 12:52:27 +02:00
Jens L	f28209548b	root: include task_id in events and logs (#9749 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-16 13:33:00 +02:00
Jens L	833c66a9dd	sources/saml: fix FlowPlanner error due to pickle (#9708 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-13 20:33:34 +02:00
Jens L	046b8d5cbf	lib/providers/sync: multiple minor fixes (#9667 ) * don't propagate from signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve retry Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 22:02:13 +02:00
Jens L	8b74b83983	core: fix source flow_manager not always appending save stage (#9659 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 19:04:32 +02:00
Jens L	2edc651582	web/admin: only show non-backchannel providers in application provider select (#9658 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 18:10:07 +02:00
Jens L	99ad492951	enterprise/providers/microsoft_entra: initial account sync to microsoft entra (#9632 ) * initial Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add entra mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make API endpoints more consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement more things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix most group tests + fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more group tests, fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing __init__ Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui for provisioned users Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add `creating` to property mapping env Signed-off-by: Jens Langhammer <jens@goauthentik.io> * always sync group members Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix group membership Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some types Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group member add test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * create sync status component to dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix discovery tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * get rid of more code and fix more issues Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add error handling for auth and transient Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sure autoretry is on Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * wait for task in signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add squashed google migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 15:41:23 +02:00
Jens L	aeb1b450eb	enterprise/providers/google: initial account sync to google workspace (#9384 ) * providers/google: initial account sync to google workspace Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start separating scim sync client Signed-off-by: Jens Langhammer <jens@goauthentik.io> * generalize more...ish Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set dispatch_uid Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start generalizing task Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fully separate tasks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix signals...? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start google dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * drawing the rest of the owl Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * juse use a whole lot less magic Signed-off-by: Jens Langhammer <jens@goauthentik.io> * member sync, better implement conflict/retry-able exceptions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * max wizards taller Signed-off-by: Jens Langhammer <jens@goauthentik.io> * gen api, basic UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch more bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * generalize sync status API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework sync chart Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add slugify to evaluator Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test property mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename to google workspace Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle existing objects Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix credential render Signed-off-by: Jens Langhammer <jens@goauthentik.io> * verify email has correct domain before syncing user Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing docstring Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lock not being used Signed-off-by: Jens Langhammer <jens@goauthentik.io> * abstract more common stuff away Signed-off-by: Jens Langhammer <jens@goauthentik.io> * backport time limit fix https://github.com/goauthentik/authentik/pull/9546 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start discovery Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement discover for google Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent same issue as with https://github.com/goauthentik/authentik/pull/9557 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix sync status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make group name unique in API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix reference to old wrapper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding tests man this api client is awful Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add SkipObject Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dont use weak ref Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user and group delete options Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set user agent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * if the api's testing tools are awful, let's just make our own Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more tests and already fix some more bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add discover Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add preview banner Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group import test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only import users/groups in the correct parent group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix conflicting args Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing schedule Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add default_group_email_domain Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-07 19:52:20 +02:00
Marc 'risson' Schmitt	6802614fbf	release: 2024.4.2	2024-05-07 18:45:37 +02:00
Jens L	74d29e2374	sources/scim: fix duplicate groups and invalid schema (#9466 ) * sources/scim: fix duplicate groups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing schema in response Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix members missing in returned group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * optimise queries Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 14:55:10 +02:00
Marc 'risson' Schmitt	801a28ef65	core: fix condition in task clean_expiring_models (#9603 )	2024-05-06 12:29:04 +00:00
Marc 'risson' Schmitt	244cbc5b6d	core: fix task clean_expiring_models removing valid sessions with using database storage (#9598 )	2024-05-06 12:02:03 +00:00
Jens L	06d1062423	tenants: fix scheduled tasks not running on default tenant (#9583 ) * tenants: fix scheduled tasks not running on default tenant Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some extra time to keep system task around Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sure we actually send it to all tenants Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 03:16:30 +02:00
Jens L	c45bb8e985	providers/proxy: rework redirect mechanism (#8594 ) * providers/proxy: rework redirect mechanism Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add session id, don't tie to state in session Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle state failing to parse Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * save session after creating state Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove debug Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include task expiry in status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix redirect URL detection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 03:07:08 +02:00
Jens L	3c54e94c6e	providers/scim: fix SCIM ID incorrectly used as primary key (#9557 ) * providers/scim: fix SCIM ID incorrectly used as primary key Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unique together Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add check for empty scim ID Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-05 17:32:19 +02:00
Jens L	26daaeb57d	core: fix source_flow_manager saving user-source connection too early (#9559 ) * core: fix source_flow_manager saving user-source connection too early Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ci: fix branch name Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-05 16:15:21 +02:00
Jens L	a60442fc2c	enterprise/audit: fix audit logging with m2m relations (#9571 )	2024-05-05 02:33:38 +02:00
Jens L	79df24f4eb	providers/scim: fix time_limit not set correctly (#9546 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-03 11:48:34 +02:00
Jens L	e33ca93f05	providers/saml: fix ecdsa support (#9537 ) * crypto: add option to select which alg to use to generate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing ecdsa options for XML signing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump xml libraries and remove disclaimer Signed-off-by: Jens Langhammer <jens@goauthentik.io> * lock djangoframework Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-02 15:18:14 +02:00
authentik-automation[bot]	d2b8bd3635	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9535 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-01 12:38:06 +02:00
Jens L	c5b099856d	core: only prefetch related objects when required (#9476 ) * core: only prefetch related objects when required Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests to assert query count Signed-off-by: Jens Langhammer <jens@goauthentik.io> * "optimize" another query away Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prefetch parent and roles Signed-off-by: Jens Langhammer <jens@goauthentik.io> * whops that needs to be pre-fetched Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-29 12:59:59 +02:00
Jens L	e9c84b8bfb	events: ensure all models' __str__ can be called without any further lookups (#9480 ) * events: ensure all models' __str__ can be called without any further lookups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow for additional queries for models using default_token_key Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-27 22:19:33 +02:00
Jens L	6aab505cd7	flows: fix execute API endpoint (#9478 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-27 01:56:59 +02:00
Jens L	a9c597bc08	sources/oauth: fix OAuth Client sending token request incorrectly (#9474 ) closes #9289 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 20:35:36 +02:00
Jens Langhammer	8f8c3e4944	release: 2024.4.1	2024-04-26 18:43:33 +02:00

1 2 3 4 5 ...

3292 Commits