authentik

Author	SHA1	Message	Date
Jens Langhammer	e8b5e4c127	release: 2024.8.4	2024-10-30 20:05:23 +01:00
gcp-cherry-pick-bot[bot]	81ec98b198	providers/scim: handle no members in group in consistency check (cherry-pick #11801 ) (#11812 ) providers/scim: handle no members in group in consistency check (#11801) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-25 14:39:52 +02:00
gcp-cherry-pick-bot[bot]	c46ab19e79	providers/scim: clamp batch size for patch requests (cherry-pick #11797 ) (#11802 ) providers/scim: clamp batch size for patch requests (#11797) * providers/scim: clamp batch size for patch requests * sanity check for empty patch request instead --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-25 01:52:57 +02:00
gcp-cherry-pick-bot[bot]	de9fc5de6b	providers/scim: add comparison with existing group on update and delta update users (cherry-pick #11414 ) (#11796 ) providers/scim: add comparison with existing group on update and delta update users (#11414) * fix incorrect default group mapping * providers/scim: add comparison with existing group on update and delta update users * fix * fix * fix another exception when creating groups * fix users to add check --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-24 18:28:06 +02:00
gcp-cherry-pick-bot[bot]	eab3d9b411	web/admin: fix sync single button throwing error (cherry-pick #11727 ) (#11730 ) web/admin: fix sync single button throwing error (#11727) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-18 19:12:55 +02:00
gcp-cherry-pick-bot[bot]	7cb40d786f	policies/event_matcher: fix inconsistent behaviour (cherry-pick #11724 ) (#11726 ) policies/event_matcher: fix inconsistent behaviour (#11724) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-18 19:11:57 +02:00
gcp-cherry-pick-bot[bot]	b4fce08bbc	web/admin: fix invalid create date shown for MFA registered before date was saved (cherry-pick #11728 ) (#11729 ) web/admin: fix invalid create date shown for MFA registered before date was saved (#11728) web/admin: fix invalid create date shown for MFA registered before date was tracked Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-18 19:00:56 +02:00
gcp-cherry-pick-bot[bot]	8a2ba1c518	providers/oauth2: don't overwrite attributes when updating service acccount (cherry-pick #11709 ) (#11723 ) providers/oauth2: don't overwrite attributes when updating service acccount (#11709) providers/oauth2: don't overwrite attributes when updating service account Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-18 13:37:48 +02:00
gcp-cherry-pick-bot[bot]	25b4306693	providers/saml: fix incorrect ds:Reference URI (cherry-pick #11699 ) (#11701 ) providers/saml: fix incorrect ds:Reference URI (#11699) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-16 17:18:35 +02:00
gcp-cherry-pick-bot[bot]	1e279950f1	blueprints: fix validation error when using internal storage (cherry-pick #11654 ) (#11656 ) blueprints: fix validation error when using internal storage (#11654) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-10-11 14:48:56 +02:00
gcp-cherry-pick-bot[bot]	960429355f	core: fix permission check for scoped impersonation (cherry-pick #11603 ) (#11650 ) core: fix permission check for scoped impersonation (#11603) * fix: permission check for scoped impersonation set global permission to have higher priority than the permission on a specific object * add tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: walhallyus <walhallyus@gmail.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-10-10 17:27:21 +02:00
gcp-cherry-pick-bot[bot]	b4f3748353	internal: restore /ping behaviour for embedded outpost (cherry-pick #11568 ) (#11570 ) internal: restore /ping behaviour for embedded outpost (#11568) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-30 18:44:39 +02:00
Jens Langhammer	91d2445c61	release: 2024.8.3	2024-09-27 16:21:51 +02:00
gcp-cherry-pick-bot[bot]	dd8f809161	security: fix CVE-2024-47070 (cherry-pick #11536 ) (#11539 ) security: fix CVE-2024-47070 (#11536) * security: fix CVE-2024-47070 * Update website/docs/security/CVE-2024-47070.md --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L. <jens@goauthentik.io> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-09-27 16:20:41 +02:00
gcp-cherry-pick-bot[bot]	57a31b5dd1	security: fix CVE-2024-47077 (cherry-pick #11535 ) (#11537 ) security: fix CVE-2024-47077 (#11535) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-27 16:19:24 +02:00
Jens Langhammer	09125b6236	web: reformat package lock files Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-09-27 14:02:44 +02:00
gcp-cherry-pick-bot[bot]	832126c6fe	sources/ldap: fix ms_ad userAccountControl not checking for lockout (cherry-pick #11532 ) (#11534 ) sources/ldap: fix ms_ad userAccountControl not checking for lockout (#11532) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-27 13:58:06 +02:00
Jan van Brügge	25fe489b34	web: Fix missing integrity fields in package-lock.json (#11509 ) * web: Fix missing integrity fields in lockfile * website: revert lockfile lint, re-add integrity * web,website: Require integrity also for subpackages Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # web/package-lock.json # website/package-lock.json # website/package.json	2024-09-27 13:38:42 +02:00
gcp-cherry-pick-bot[bot]	18078fd68f	sources/ldap: fix mapping check, fix debug endpoint (cherry-pick #11442 ) (#11498 ) sources/ldap: fix mapping check, fix debug endpoint (#11442) * run connectivity check always * don't run sync if either sync_ option is enabled and no mappings are set * misc label fix * misc writing changse * add api validation * fix debug endpoint --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-24 19:02:02 +02:00
gcp-cherry-pick-bot[bot]	4fa71d995d	web/admin: fix Authentication flow being required (cherry-pick #11496 ) (#11497 ) web/admin: fix Authentication flow being required (#11496) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-24 18:32:44 +02:00
gcp-cherry-pick-bot[bot]	22cec64234	providers/proxy: fix traefik label generation (cherry-pick #11460 ) (#11480 ) fix: proxy provider - docker traefik label (#11460) Signed-off-by: Diogo Andrade <143538553+dandrade-wave@users.noreply.github.com> Co-authored-by: Diogo Andrade <143538553+dandrade-wave@users.noreply.github.com>	2024-09-23 13:32:29 +02:00
gcp-cherry-pick-bot[bot]	a87cc27366	events: always use expiry from current tenant for events, not only when creating from HTTP request (cherry-pick #11415 ) (#11416 ) events: always use expiry from current tenant for events, not only when creating from HTTP request (#11415) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-17 18:44:06 +02:00
Jens Langhammer	ad7ad1fa78	release: 2024.8.2	2024-09-16 14:13:04 +02:00
Jens L	c70e609e50	website/docs: prepare release notes for 2024.8.2 (#11394 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # website/docs/releases/2024/v2024.8.md	2024-09-16 14:12:28 +02:00
Jens L	5f08485fff	web: revert lockfile lint, re-add integrity (#11380 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # web/package-lock.json	2024-09-14 23:16:56 +02:00
gcp-cherry-pick-bot[bot]	3a2ed11821	providers/proxy: fix URL path getting lost when partial URL is given to rd= (cherry-pick #11354 ) (#11355 ) providers/proxy: fix URL path getting lost when partial URL is given to rd= (#11354) * providers/proxy: fix URL path getting lost when partial URL is given to rd= * better fallback + tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-12 18:58:47 +02:00
gcp-cherry-pick-bot[bot]	ee04f39e28	enterprise: fix API mixin license validity check (cherry-pick #11331 ) (#11342 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io> fix API mixin license validity check (#11331)	2024-09-11 13:22:01 +00:00
gcp-cherry-pick-bot[bot]	2c6aa72f3c	sources/ldap: fix missing search attribute (cherry-pick #11125 ) (#11340 ) sources/ldap: fix missing search attribute (#11125) * unrelated * sources/ldap: fix ldap sync not requesting uniqueness attribute * check object_uniqueness_field for none --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-11 14:03:12 +02:00
gcp-cherry-pick-bot[bot]	bd0afef790	enterprise: show specific error if Install ID is invalid in license (cherry-pick #11317 ) (#11319 ) enterprise: show specific error if Install ID is invalid in license (#11317) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-10 19:38:45 +02:00
gcp-cherry-pick-bot[bot]	fc11cc0a1a	core: fix permission check for scoped impersonation (cherry-pick #11315 ) (#11316 ) core: fix permission check for scoped impersonation (#11315) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-10 14:19:30 +02:00
gcp-cherry-pick-bot[bot]	fb78303e8f	web/admin: fix notification property mapping forms (cherry-pick #11298 ) (#11300 ) web/admin: fix notification property mapping forms (#11298) * fix incorrect base class * fix doclink url closes #11276 * fix sidebar order in website --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-09 19:27:29 +02:00
gcp-cherry-pick-bot[bot]	2ea04440db	events: optimise marking events as seen (cherry-pick #11297 ) (#11299 ) events: optimise marking events as seen (#11297) * events: optimise marking events as seen * add tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-09 19:26:43 +02:00
gcp-cherry-pick-bot[bot]	96e1636be3	core: ensure all providers have correct priority (cherry-pick #11280 ) (#11281 ) core: ensure all providers have correct priority (#11280) follow up to #11267 which broke SAML lookup Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-08 16:09:09 +02:00
gcp-cherry-pick-bot[bot]	c546451a73	root: fix ensure `outpost_connection_discovery runs on worker startup (cherry-pick #11260 ) (#11270 ) root: fix ensure `outpost_connection_discovery runs on worker startup (#11260) * root: fix ensure outpost_connection_discovery runs on worker startup Make outpost_connection_discovery a startup task for default_tenant to ensure it's ran during worker startup. Without this waiting for the 8 hour schedule to fire is required. fixes: https://github.com/goauthentik/authentik/issues/10933 * format --------- Signed-off-by: Anthony Rabbito <arabbito@coreweave.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Anthony Rabbito <hello@anthonyrabbito.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-09-07 21:54:30 +02:00
gcp-cherry-pick-bot[bot]	61778053b4	core: ensure proxy provider is correctly looked up (cherry-pick #11267 ) (#11269 ) core: ensure proxy provider is correctly looked up (#11267) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-07 21:53:30 +02:00
Jens Langhammer	f5580d311d	release: 2024.8.1	2024-09-07 16:14:54 +02:00
gcp-cherry-pick-bot[bot]	99d292bce0	web/users: show - if device was registered before we started saving the time (cherry-pick #11256 ) (#11257 ) web/users: show - if device was registered before we started saving the time (#11256) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-06 21:13:03 +02:00
gcp-cherry-pick-bot[bot]	b2801641bc	internal: fix go paginator not setting page correctly (cherry-pick #11253 ) (#11255 ) internal: fix go paginator not setting page correctly (#11253) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-06 18:46:18 +02:00
gcp-cherry-pick-bot[bot]	bfaa1046b2	core: fix missing argument name escaping for property mapping (cherry-pick #11231 ) (#11252 ) core: fix missing argument name escaping for property mapping (#11231) * escape property mapping args * improve display of error * fix error handling, missing dry_run argument * use different sanitisation * update docs --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-06 16:47:27 +02:00
gcp-cherry-pick-bot[bot]	95c30400cc	providers/ldap: rework search_group migration to work with read replicas (cherry-pick #11228 ) (#11229 ) providers/ldap: rework search_group migration to work with read replicas (#11228) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-05 15:57:01 +02:00
gcp-cherry-pick-bot[bot]	e77480ee1d	web/admin: improve error handling (cherry-pick #11212 ) (#11219 ) web/admin: improve error handling (#11212) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-05 13:48:28 +02:00
gcp-cherry-pick-bot[bot]	905800e535	providers/ldap: fix incorrect permission check for search access (cherry-pick #11217 ) (#11218 ) providers/ldap: fix incorrect permission check for search access (#11217) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-05 01:30:48 +02:00
gcp-cherry-pick-bot[bot]	fadeaef4c6	web/admin: fix missing Sync object button SCIM Provider (cherry-pick #11211 ) (#11213 ) web/admin: fix missing Sync object button SCIM Provider (#11211) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-04 21:34:34 +02:00
gcp-cherry-pick-bot[bot]	437efda649	website/docs: add note about terraform provider (cherry-pick #11206 ) (#11208 ) website/docs: add note about terraform provider (#11206) * website/docs: add note about terraform provider * Update website/docs/releases/2024/v2024.8.md --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Jens L. <jens@goauthentik.io> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-09-04 19:50:00 +02:00
Jens L	dd75d5f54b	web/admin: fix misc dual select on different forms (#11203 ) * fix prompt stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix identification stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix OAuth JWKS sources Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix oauth provider default scopes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix outpost form Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix webauthn Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix transport form Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # web/src/admin/applications/wizard/methods/oauth/ak-application-wizard-authentication-by-oauth.ts # web/src/admin/applications/wizard/methods/proxy/AuthenticationByProxyPage.ts	2024-09-04 13:46:45 +02:00
gcp-cherry-pick-bot[bot]	392a2e582e	core: bump cryptography from 43.0.0 to 43.0.1 (cherry-pick #11185 ) (#11202 ) core: bump cryptography from 43.0.0 to 43.0.1 (#11185) Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.0 to 43.0.1. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/43.0.0...43.0.1) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-09-04 12:27:54 +02:00
gcp-cherry-pick-bot[bot]	a1da183721	root: backport s3 storage changes (cherry-pick #11181 ) (#11183 ) root: backport s3 storage changes (#11181) re-add _strip_signing_parameters removed in https://github.com/jschneier/django-storages/pull/1402 could probably be re-factored to use the same approach that PR uses Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-03 22:08:55 +02:00
gcp-cherry-pick-bot[bot]	feea2df0b1	core: fix change_user_type always requiring usernames (cherry-pick #11177 ) (#11178 ) core: fix change_user_type always requiring usernames (#11177) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-03 19:09:53 +02:00
gcp-cherry-pick-bot[bot]	b47acd8c76	web/admin: fix error in Outpost creation form (cherry-pick #11173 ) (#11175 ) web/admin: fix error in Outpost creation form (#11173) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-03 18:26:37 +02:00
gcp-cherry-pick-bot[bot]	6fd87d9ced	providers/ldap: fix migration assuming search group is set (cherry-pick #11170 ) (#11172 ) providers/ldap: fix migration assuming search group is set (#11170) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-09-03 16:27:06 +02:00
Jens L	acbb065808	website/docs: update release notes (#11151 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # website/docs/releases/2024/v2024.8.md	2024-09-03 14:05:18 +02:00
Jens Langhammer	2fb097061d	release: 2024.8.0	2024-09-02 14:14:03 +02:00
gcp-cherry-pick-bot[bot]	8962d17e03	web: fix dual-select with dynamic selection (cherry-pick #11133 ) (#11134 ) web: fix dual-select with dynamic selection (#11133) * web: fix dual-select with dynamic selection For dynamic selection, the property name is `.selector` to message that it's a function the API layer uses to select the elements. A few bits of lint picked. * web: added comment to clarify what the fallback selector does Co-authored-by: Ken Sternberg <133134217+kensternberg-authentik@users.noreply.github.com>	2024-08-30 19:07:36 +02:00
gcp-cherry-pick-bot[bot]	8326e1490c	ci: fix failing release attestation (cherry-pick #11107 ) (#11120 ) ci: fix failing release attestation (#11107) * ci: fix failing release attestation * fix --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-08-29 13:29:47 +02:00
gcp-cherry-pick-bot[bot]	091e4d3e4c	enterprise: fix incorrect comparison for latest validity date (cherry-pick #11109 ) (#11110 ) enterprise: fix incorrect comparison for latest validity date (#11109) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-08-29 01:58:56 +02:00
gcp-cherry-pick-bot[bot]	6ee77edcbb	website/docs: 2024.8 release notes: reword group sync disable and fix typo (cherry-pick #11103 ) (#11108 ) website/docs: 2024.8 release notes: reword group sync disable and fix… (#11103) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-29 01:34:33 +02:00
Jens Langhammer	763e2288bf	release: 2024.8.0-rc2	2024-08-28 20:22:52 +02:00
Jens L	9cdb177ca7	website/docs: a couple of minor rewrite things (#11099 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # website/docs/releases/2024/v2024.8.md	2024-08-28 20:22:21 +02:00
gcp-cherry-pick-bot[bot]	6070508058	providers/oauth2: audit_ignore last_login change for generated service account (cherry-pick #11085 ) (#11086 ) providers/oauth2: audit_ignore last_login change for generated service account (#11085) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-08-27 14:32:17 +02:00
Jens Langhammer	ec13a5d84d	release: 2024.8.0-rc1	2024-08-26 16:34:53 +02:00
Jens Langhammer	057de82b01	schemas: fix XML Schema loading...for some reason? Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-26 16:34:47 +02:00
dependabot[bot]	4316fa9e5c	web: bump mermaid from 10.9.1 to 11.0.2 in /web (#11066 ) * web: bump mermaid from 10.9.1 to 11.0.2 in /web Bumps [mermaid](https://github.com/mermaid-js/mermaid) from 10.9.1 to 11.0.2. - [Release notes](https://github.com/mermaid-js/mermaid/releases) - [Changelog](https://github.com/mermaid-js/mermaid/blob/develop/CHANGELOG.md) - [Commits](https://github.com/mermaid-js/mermaid/compare/v10.9.1...mermaid@11.0.2) --- updated-dependencies: - dependency-name: mermaid dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * temporarily let web tests fail Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-26 11:43:31 +02:00
dependabot[bot]	8099a4a291	core: bump github.com/jellydator/ttlcache/v3 from 3.2.0 to 3.2.1 (#11059 ) Bumps [github.com/jellydator/ttlcache/v3](https://github.com/jellydator/ttlcache) from 3.2.0 to 3.2.1. - [Release notes](https://github.com/jellydator/ttlcache/releases) - [Commits](https://github.com/jellydator/ttlcache/compare/v3.2.0...v3.2.1) --- updated-dependencies: - dependency-name: github.com/jellydator/ttlcache/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:39:15 +02:00
Aterfax	5d2d9c90ff	Fix incorrect size redefinition for Discord avatar acquisition code. (#11050 ) Fix incorrect size redefinition. Signed-off-by: Aterfax <Aterfax@users.noreply.github.com>	2024-08-26 11:31:26 +02:00
authentik-automation[bot]	befce18eda	core, web: update translations (#11051 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-26 11:30:30 +02:00
dependabot[bot]	af3ace47b0	website: bump micromatch from 4.0.5 to 4.0.8 in /website (#11052 ) Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.5 to 4.0.8. - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/4.0.8/CHANGELOG.md) - [Commits](https://github.com/micromatch/micromatch/compare/4.0.5...4.0.8) --- updated-dependencies: - dependency-name: micromatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:30:21 +02:00
dependabot[bot]	11e506bb94	core: bump django-pglock from 1.5.1 to 1.6.0 (#11058 ) Bumps [django-pglock](https://github.com/Opus10/django-pglock) from 1.5.1 to 1.6.0. - [Release notes](https://github.com/Opus10/django-pglock/releases) - [Changelog](https://github.com/Opus10/django-pglock/blob/main/CHANGELOG.md) - [Commits](https://github.com/Opus10/django-pglock/compare/1.5.1...1.6.0) --- updated-dependencies: - dependency-name: django-pglock dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:30:12 +02:00
dependabot[bot]	5c6704d4e7	core: bump goauthentik.io/api/v3 from 3.2024063.13 to 3.2024064.1 (#11060 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.13 to 3.2024064.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.13...v3.2024064.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:29:54 +02:00
dependabot[bot]	b29cb1d36d	core: bump github.com/prometheus/client_golang from 1.20.1 to 1.20.2 (#11061 ) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.1 to 1.20.2. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.1...v1.20.2) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:29:44 +02:00
dependabot[bot]	a87a111b8b	web: bump the swc group across 2 directories with 11 updates (#11062 ) Bumps the swc group with 1 update in the /web directory: [@swc/core](https://github.com/swc-project/swc). Bumps the swc group with 1 update in the /web/sfe directory: [@swc/core](https://github.com/swc-project/swc). Updates `@swc/core` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-darwin-arm64` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-darwin-x64` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm64-gnu` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm64-musl` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-x64-gnu` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-x64-musl` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-arm64-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-ia32-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-x64-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-darwin-arm64` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-darwin-x64` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm64-gnu` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-arm64-musl` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-x64-gnu` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-linux-x64-musl` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-arm64-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-ia32-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) Updates `@swc/core-win32-x64-msvc` from 1.7.14 to 1.7.18 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.14...v1.7.18) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:28:49 +02:00
dependabot[bot]	e83a1c65f6	web: bump tslib from 2.6.3 to 2.7.0 in /web (#11063 ) Bumps [tslib](https://github.com/Microsoft/tslib) from 2.6.3 to 2.7.0. - [Release notes](https://github.com/Microsoft/tslib/releases) - [Commits](https://github.com/Microsoft/tslib/compare/v2.6.3...v2.7.0) --- updated-dependencies: - dependency-name: tslib dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:28:37 +02:00
dependabot[bot]	d8a74435f8	web: bump @eslint/js from 9.9.0 to 9.9.1 in /web (#11064 ) Bumps [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) from 9.9.0 to 9.9.1. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md) - [Commits](https://github.com/eslint/eslint/commits/v9.9.1/packages/js) --- updated-dependencies: - dependency-name: "@eslint/js" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:28:29 +02:00
dependabot[bot]	4e910446ed	web: bump syncpack from 12.4.0 to 13.0.0 in /web (#11065 ) Bumps [syncpack](https://github.com/JamieMason/syncpack) from 12.4.0 to 13.0.0. - [Release notes](https://github.com/JamieMason/syncpack/releases) - [Changelog](https://github.com/JamieMason/syncpack/blob/main/CHANGELOG.md) - [Commits](https://github.com/JamieMason/syncpack/compare/12.4.0...13.0.0) --- updated-dependencies: - dependency-name: syncpack dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:28:16 +02:00
dependabot[bot]	cfd8d7cf91	web: bump @goauthentik/api from 2024.6.3-1724337552 to 2024.6.3-1724414734 in /web/sfe (#11067 ) web: bump @goauthentik/api in /web/sfe Bumps [@goauthentik/api](https://github.com/goauthentik/authentik) from 2024.6.3-1724337552 to 2024.6.3-1724414734. - [Release notes](https://github.com/goauthentik/authentik/releases) - [Commits](https://github.com/goauthentik/authentik/commits) --- updated-dependencies: - dependency-name: "@goauthentik/api" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-26 11:26:17 +02:00
Ken Sternberg	133181f7d6	web: Provide tests for the aggregate cards, fix a few minor things (#9744 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: provide a test framework As is typical of a system where a new build engine is involved, this thing is sadly fragile. Use the wrong import style in wdio.conf.js and it breaks; there are several notes in tsconfig.test.conf and wdio.conf.ts to tell eslint or tsc not to complain, it's just a different build with different criteria, the native criteria don't apply. On the other hand, writing tests is easy and predictable. We can test behaviors at the unit and component scale in a straightforward manner, and validate our expectations that things work the way we believe they should. * Rolling back a reversion. * web: update storybook, storybook a few things, fix a few things After examining how people like Adobe and Salesforce do things, I have updated the storybook configuration to provide run-time configuration of light/dark mode (although right now nothing happens), inject the correct styling into the page, and update the preview handling so that we can see the components better. We'll see how this pans out. I have provided stories for the AggregateCard, AggregatePromiseCard, and a new QuickActionsCard. I also fixed a bug in AggregatePromiseCard where it would fail to report a fetch error. It will only report that "the operation falied," but it will give the full error into the console. As an experiment, I have changed the interpreter for `lint:precommit` and `build:watch` to use [Bun](https://bun.sh/) instead of NodeJS. We have observed significant speed-ups and much better memory management with Bun for these two operations. Those are both developer-facing operations, the behavior of the system undur current CI/CD should not change. And finally, I've switched the QuickActionsCard view in Admin-Overview to use the new component. Looks the same. Reads way easier. :-) * Slight revision in exception logic. * Added a ton of documentation; made the failure message configurable. * A few documentation changes. * Adjusting paths to work with tests. * web: Provide tests for the aggregate cards, fix a few minor things This commit provides tests alongside the stories for the aggregate cards. The tests are fairly basic, but they're good enough for starting and they provide a pretty good example of how to test when a promise with a delay is involved. Two minor fixes in this code: - The subtext was given a small amount of whitespace above, to remove the crowding that happened. It looks much better with a half-rem of space. - In the rare case that we have a card header with no icon, the ' ' symbol that separates the icon from the header is now not rendered. In the previous form, it would push the header to the left, making it "hang in space" one rem to the right of the visual line formed by the rightmost content border. The padding between the header, body, and footer is odd; body is 1 rem, the header and footer 2rems. This looks good for the graphs, but for the text, not so much. * Prettier had opinions. * Merge and catching up with the evolution of our test framework.	2024-08-24 14:23:49 +02:00
Jens L.	811823e648	enterprise: fix license status progress bar (#11048 ) * clamp width to 100% width Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add case for unlicensed and set to infinity when users of a type exists that dont have licenses Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework license status into separate component... Signed-off-by: Jens Langhammer <jens@goauthentik.io> * enable coverage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove annoying disable-search-engine-choice-screen Signed-off-by: Jens Langhammer <jens@goauthentik.io> * refactor percentage calculation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bug found by tests, yay Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for enterprise status card Signed-off-by: Jens Langhammer <jens@goauthentik.io> * upgrade vite-tsconfig-paths Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ...? Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-24 14:23:32 +02:00
Jens L.	a6225ad7a7	root: backport version bump (#11045 ) * fix outpost form not loading apps for correct type Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix bug from previous pr Signed-off-by: Jens Langhammer <jens@goauthentik.io> * release: 2024.6.4 --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-23 16:33:07 +02:00
Jens L.	5007476457	web/flows: update flow background (#11044 ) * web/flows: update flow background image: https://unsplash.com/photos/aerial-view-of-road-beside-body-of-water-during-daytime-KuNCuOPcLUU collection of all images: https://unsplash.com/collections/kWwNJY-96wA/authentik-backgrounds Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-23 15:08:12 +02:00
authentik-automation[bot]	22d84654ff	web: bump API Client version (#11043 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-23 14:08:37 +02:00
Aterfax	ff4ff15e4e	website/integrations: Correct Discord avatar code and add warning. (#11031 ) There's a mispelling which causes the avatar gathered to not be the desired size. Additionally, larger avatars appear to cause "Header too large" errors when users attempt to access services (at least for me via a proxy providers.) This can also be seen users have a very large JWT in their request headers. (You can use https://github.com/traefik/whoami for debugging). Signed-off-by: Aterfax <Aterfax@users.noreply.github.com>	2024-08-23 14:08:26 +02:00
authentik-automation[bot]	fec4014aab	core, web: update translations (#11032 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-23 14:07:40 +02:00
dependabot[bot]	1f31964887	website: bump docusaurus-theme-openapi-docs from 4.0.0 to 4.0.1 in /website (#11034 ) website: bump docusaurus-theme-openapi-docs in /website Bumps [docusaurus-theme-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-theme-openapi-docs) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases) - [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md) - [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v4.0.1/packages/docusaurus-theme-openapi-docs) --- updated-dependencies: - dependency-name: docusaurus-theme-openapi-docs dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:07:19 +02:00
dependabot[bot]	11a681f32a	core: bump ruff from 0.6.1 to 0.6.2 (#11035 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.6.1 to 0.6.2. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.6.1...0.6.2) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:06:29 +02:00
dependabot[bot]	b820ea1533	core: bump goauthentik.io/api/v3 from 3.2024063.12 to 3.2024063.13 (#11036 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.12 to 3.2024063.13. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.12...v3.2024063.13) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:06:21 +02:00
dependabot[bot]	b0ff7d8ac9	web: bump the babel group across 1 directory with 3 updates (#11038 ) Bumps the babel group with 3 updates in the /web directory: [@babel/plugin-transform-private-methods](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-methods), [@babel/plugin-transform-runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-runtime) and [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/plugin-transform-private-methods` from 7.24.7 to 7.25.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.4/packages/babel-plugin-transform-private-methods) Updates `@babel/plugin-transform-runtime` from 7.24.7 to 7.25.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.4/packages/babel-plugin-transform-runtime) Updates `@babel/preset-env` from 7.25.3 to 7.25.4 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.4/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/plugin-transform-private-methods" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: babel - dependency-name: "@babel/plugin-transform-runtime" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:06:13 +02:00
dependabot[bot]	29a050b786	web: bump wireit from 0.14.7 to 0.14.8 in /web (#11039 ) Bumps [wireit](https://github.com/google/wireit) from 0.14.7 to 0.14.8. - [Changelog](https://github.com/google/wireit/blob/main/CHANGELOG.md) - [Commits](https://github.com/google/wireit/compare/v0.14.7...v0.14.8) --- updated-dependencies: - dependency-name: wireit dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:06:04 +02:00
dependabot[bot]	4d8bda8ebf	web: bump @goauthentik/api from 2024.6.3-1723921843 to 2024.6.3-1724337552 in /web/sfe (#11040 ) web: bump @goauthentik/api in /web/sfe Bumps [@goauthentik/api](https://github.com/goauthentik/authentik) from 2024.6.3-1723921843 to 2024.6.3-1724337552. - [Release notes](https://github.com/goauthentik/authentik/releases) - [Commits](https://github.com/goauthentik/authentik/commits) --- updated-dependencies: - dependency-name: "@goauthentik/api" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-23 14:05:53 +02:00
Jens L.	41fbb6dbd7	enterprise: add up-to-date license status (#11042 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-23 14:05:19 +02:00
Jens L.	b301048a27	website/docs: cve release notes (#11026 ) website/docs: prepare cve releases Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 17:28:09 +02:00
Jens L.	3daf8f8db4	security: fix CVE-2024-42490 (#11022 ) CVE-2024-42490 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 17:17:06 +02:00
authentik-automation[bot]	72f2f97410	web: bump API Client version (#11021 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-22 16:42:39 +02:00
Jens L.	eafb7093c9	providers/scim: optimize sending all members within a group (#9968 ) * providers/scim: optimize sending all members within a group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * correctly batch requests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 16:39:18 +02:00
Jens L.	46acab3b2e	providers/scim: add API endpoint to sync single user (#8486 ) * add api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 16:38:55 +02:00
dependabot[bot]	e428e4cf5e	web: bump chromedriver from 127.0.3 to 128.0.0 in /tests/wdio (#11017 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 127.0.3 to 128.0.0. - [Commits](https://github.com/giggio/node-chromedriver/compare/127.0.3...128.0.0) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-22 11:59:25 +02:00
Ken Sternberg	3de78ebb09	web: dual-select uses, part 2: dual-select harder (#9377 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: replace multi-select with dual-select for all propertyMapping invocations All of the uses of <select> to show propertyMappings have been replaced with an invocation to a variant of dual select that allows for dynamic production of the "selected" list. Instead of giving a "selected" list of elements, a "selector" function is passed that can, given the elements listed by the provider, generated the "selected" list dynamically. This feature is required for propertyMappings because many of the propertyMappings have an alternative "default selected" feature whereby an object with no property mappings is automatically granted some by the `.managed` field of the property mapping. The `DualSelectPair` type is now tragically mis-named, as it it's now a 4-tuple, the fourth being whatever object or field is necessary to figure out what the default value might be. For example, the Oauth2PropertyMappingsSelector looks like this: ``` export function makeOAuth2PropertyMappingsSelector(instanceMappings: string[] \| undefined) { const localMappings = instanceMappings ? new Set(instanceMappings) : undefined; return localMappings ? ([pk, _]: DualSelectPair) => localMappings.has(pk) : ([_0, _1, _2, scope]: DualSelectPair<ScopeMapping>) => scope?.managed?.startsWith("goauthentik.io/providers/oauth2/scope-") && scope?.managed !== "goauthentik.io/providers/oauth2/scope-offline_access"; } ``` If there are instanceMappings, we create a Set of them and just look up the pk for "is this selected" as we generate the component. If there is not, we look at the `scope` object itself (Oauth2PropertyMappings were called "scopes" in the original source) and perform a token analysis. It works well, is reasonably fast, and reasonably memory-friendly. In the case of RAC, OAuth2, and ProxyProviders, I've also provided external definitions of the MappingProvider and MappingSelector, so that they can be shared between the Provider and the ApplicationWizard. The algorithm for finding the "alternative (default) selections" was different between the two instances of both Oauth and Proxy. I'm not marking this as "ready" until Jens (@BeryJu) and I can go over why that might have been so, and decide if using a common implementation for both is the correct thing to do. Also, a lot of this is (still) cut-and-paste; the dual-select invocation, and the definitions of Providers and Selectors have a bit of boilerplate that it just didn't make sense to try and abstract away; the code is DAMP (Descriptive and Meaningful Phrases), and I can live with it. Unfortunately, that also points to the possibility of something being off; the wrong default token, or the wrong phrase to describe the "Available" and "Selected" columns. So this is not (yet) ready for a full pull review. On the other hand, if this passes muster and we're happy with it, there are 11 more places to put DualSelect, four of which are pure cut-and-paste lookups of the PaginatedOauthSourceList, plus a miscellany of Prompts, Sources, Stages, Roles, EventTransports and Policies. Despite the churn, the difference between the two implementations is 438 lines removed, 231 lines added, 121 lines new. 86 LOC deleted. Could be better. :-) * web: make the ...Selector semantics uniform across the definition set. * web: fix proxy property mapping default criteria * web: restoring dropped message to user. * Completed one. Stashing momentarily. * Ensuring the neccessary components are imported. * I hate trying to coax MacOS into accepting case changes. * Still trying to rename that thing. * OAuth2 Sources multiple implementation completed. * web: replace remaining multi-selects with dual-selects This commit replaces the remaining multi-selects with their dual-select equivalents. * web: fix problem with 'selector' overselecting The 'selector' feature was overselecting, preventing items from being removed from the "selected" list if they were part of the host object. This has the shortcoming that `default` items must be in the first page of options from the server, or they probably won't be registered. Fortunately, that's currently the case. * fix a Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix b Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate new providers Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove old incorrect help message Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix incorrect copy paste Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix status label for gorups Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 11:59:03 +02:00
Ken Sternberg	85eb104966	web: fix flash of unstructured content, add tests for it (#11013 ) * web: fix Flash of Unstructured Content while SearchSelect is loading from the backend Provide an alternative, readonly, disabled, unindexed input object with the text "Loading...", to be replaced with the _real_ input element after the content is loaded. This provides the correct appearance and spacing so the content doesn't jiggle about between the start of loading and the SearchSelect element being finalized. It was visually distracting and unappealing. * web: comment on state management in API layer, move file to point to correct component under test. * web: test for flash of unstructured content - Add a unit test to ensure the "Loading..." element is displayed correctly before data arrives - Demo how to mock a `fetchObjects()` call in testing. Very cool. - Make distinguishing rule sets for code, tests, and scripts in nightmare mode - In SearchSelect, Move the `styles()` declaration to the top of the class for consistency. - To test for the FLOUC issue in SearchSelect. This is both an exercise in mocking @beryju's `fetchObjects()` protocol, and shows how we can unit test generic components that render API objects.	2024-08-22 11:17:30 +02:00
dependabot[bot]	40b93e9b10	core: bump drf-orjson-renderer from 1.7.2 to 1.7.3 (#11015 ) Bumps [drf-orjson-renderer](https://github.com/brianjbuck/drf_orjson_renderer) from 1.7.2 to 1.7.3. - [Commits](https://github.com/brianjbuck/drf_orjson_renderer/commits) --- updated-dependencies: - dependency-name: drf-orjson-renderer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-22 10:55:03 +02:00
dependabot[bot]	116a3e75da	core: bump github.com/gorilla/sessions from 1.3.0 to 1.4.0 (#11002 ) * core: bump github.com/gorilla/sessions from 1.3.0 to 1.4.0 Bumps [github.com/gorilla/sessions](https://github.com/gorilla/sessions) from 1.3.0 to 1.4.0. - [Release notes](https://github.com/gorilla/sessions/releases) - [Commits](https://github.com/gorilla/sessions/compare/v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: github.com/gorilla/sessions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * tidy Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump golangci Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump golang docker image to 1.23 too Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-22 10:53:58 +02:00
Andreas	351a83a400	website/docs: Correct the forward authentication configuration template for Caddy (#11012 ) Correct the forward authentication configuration template for Caddy The directives were not executed in the given order, but instead, using the implicit sequence defined in https://caddyserver.com/docs/caddyfile/directives#directive-order. Surrounding the directives with route {} fixes this. Signed-off-by: Andreas <43118918+eulores@users.noreply.github.com>	2024-08-21 14:19:34 -05:00
Fletcher Heisler	e0b199f2fe	root: Update README from old description (#11014 ) Update README from old description Signed-off-by: Fletcher Heisler <fheisler@users.noreply.github.com>	2024-08-21 14:35:55 -04:00
dependabot[bot]	eac97ab4c1	website: bump the docusaurus group across 1 directory with 9 updates (#10898 ) * website: bump the docusaurus group across 1 directory with 9 updates Bumps the docusaurus group with 7 updates in the /website directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@docusaurus/core](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/plugin-client-redirects](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-plugin-client-redirects) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/plugin-content-docs](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-plugin-content-docs) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/preset-classic](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-preset-classic) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/theme-common](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-theme-common) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/theme-mermaid](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-theme-mermaid) \| `3.4.0` \| `3.5.2` \| \| [@docusaurus/tsconfig](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-tsconfig) \| `3.4.0` \| `3.5.2` \| Updates `@docusaurus/core` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus) Updates `@docusaurus/plugin-client-redirects` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-plugin-client-redirects) Updates `@docusaurus/plugin-content-docs` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-plugin-content-docs) Updates `@docusaurus/preset-classic` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-preset-classic) Updates `@docusaurus/theme-common` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-theme-common) Updates `@docusaurus/theme-mermaid` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-theme-mermaid) Updates `@docusaurus/module-type-aliases` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-module-type-aliases) Updates `@docusaurus/tsconfig` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-tsconfig) Updates `@docusaurus/types` from 3.4.0 to 3.5.2 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.5.2/packages/docusaurus-types) --- updated-dependencies: - dependency-name: "@docusaurus/core" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/plugin-client-redirects" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/plugin-content-docs" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/preset-classic" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/theme-common" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/theme-mermaid" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/module-type-aliases" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/tsconfig" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/types" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus ... Signed-off-by: dependabot[bot] <support@github.com> * bump api plugin Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-21 18:20:36 +02:00
dependabot[bot]	720b02357d	core: bump google-api-python-client from 2.141.0 to 2.142.0 (#11001 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.141.0 to 2.142.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.141.0...v2.142.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-21 18:02:09 +02:00
authentik-automation[bot]	75e2dfd1dd	core, web: update translations (#10999 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-21 18:02:02 +02:00
dependabot[bot]	a35556301e	web: bump chart.js from 4.4.3 to 4.4.4 in /web (#11008 ) Bumps [chart.js](https://github.com/chartjs/Chart.js) from 4.4.3 to 4.4.4. - [Release notes](https://github.com/chartjs/Chart.js/releases) - [Commits](https://github.com/chartjs/Chart.js/compare/v4.4.3...v4.4.4) --- updated-dependencies: - dependency-name: chart.js dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-21 17:09:12 +02:00
dependabot[bot]	5e74676b4a	website: bump @types/react from 18.3.3 to 18.3.4 in /website (#11005 ) Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.3.3 to 18.3.4. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: "@types/react" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-21 17:08:58 +02:00
dependabot[bot]	c50bc239a3	core: bump github.com/prometheus/client_golang from 1.20.0 to 1.20.1 (#11003 ) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.0 to 1.20.1. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/v1.20.1/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.0...v1.20.1) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-21 17:08:44 +02:00
dependabot[bot]	cd0f3fd0de	web: bump core-js from 3.38.0 to 3.38.1 in /web (#11009 ) Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) from 3.38.0 to 3.38.1. - [Release notes](https://github.com/zloirock/core-js/releases) - [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md) - [Commits](https://github.com/zloirock/core-js/commits/v3.38.1/packages/core-js) --- updated-dependencies: - dependency-name: core-js dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-21 17:08:26 +02:00
Ken Sternberg	b6cf889298	web: remove cssImportMap hack from WDIO. It's a storybook-only-ism. (#10997 ) * web: remove cssImportMap hack from WDIO. It's a storybook-only-ism. * web: remove unused import that was blocking CI lint pass	2024-08-20 22:48:43 +02:00
Jens L.	5d33f3ccaa	lifecycle: refresh PostgreSQL connection params on startup while testing connection (#10996 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-20 20:22:03 +02:00
Ikko Eltociear Ashimine	d54718c8d9	website/developer-docs: update index.md (#10958 ) currenetly -> currently Signed-off-by: Ikko Eltociear Ashimine <eltociear@gmail.com>	2024-08-20 11:06:27 +00:00
Christian Clauss	a5babb4976	docsmg/README.md: Fix typos (#10956 ) Signed-off-by: Christian Clauss <cclauss@me.com>	2024-08-20 11:06:00 +00:00
transifex-integration[bot]	1b7413e243	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10978 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-20 12:46:18 +02:00
transifex-integration[bot]	e2d7c815e9	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#10976 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-20 12:46:05 +02:00
transifex-integration[bot]	66db598515	translate: Updates for file web/xliff/en.xlf in zh_CN (#10977 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-20 12:45:50 +02:00
dependabot[bot]	f4780f26e7	web: bump @patternfly/elements from 3.0.2 to 4.0.0 in /web (#10989 ) Bumps [@patternfly/elements](https://github.com/patternfly/patternfly-elements/tree/HEAD/elements) from 3.0.2 to 4.0.0. - [Release notes](https://github.com/patternfly/patternfly-elements/releases) - [Changelog](https://github.com/patternfly/patternfly-elements/blob/main/elements/CHANGELOG.md) - [Commits](https://github.com/patternfly/patternfly-elements/commits/@patternfly/elements@4.0.0/elements) --- updated-dependencies: - dependency-name: "@patternfly/elements" dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-20 12:36:05 +02:00
transifex-integration[bot]	52dfbfeea2	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#10979 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-20 12:35:05 +02:00
dependabot[bot]	cd7d810149	web: bump the swc group across 2 directories with 11 updates (#10988 ) Bumps the swc group with 1 update in the /web directory: [@swc/core](https://github.com/swc-project/swc). Bumps the swc group with 1 update in the /web/sfe directory: [@swc/core](https://github.com/swc-project/swc). Updates `@swc/core` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-darwin-arm64` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-darwin-x64` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm64-gnu` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm64-musl` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-x64-gnu` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-x64-musl` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-arm64-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-ia32-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-x64-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-darwin-arm64` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-darwin-x64` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm64-gnu` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-arm64-musl` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-x64-gnu` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-linux-x64-musl` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-arm64-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-ia32-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) Updates `@swc/core-win32-x64-msvc` from 1.7.12 to 1.7.14 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.12...v1.7.14) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-20 12:34:52 +02:00
dependabot[bot]	5e8d691c1f	web: bump typescript-eslint from 8.1.0 to 8.2.0 in /web (#10990 ) Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.1.0 to 8.2.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.2.0/packages/typescript-eslint) --- updated-dependencies: - dependency-name: typescript-eslint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-20 12:34:34 +02:00
dependabot[bot]	88aea5bfc0	web: bump @goauthentik/api from 2024.6.3-1723645891 to 2024.6.3-1723921843 in /web/sfe (#10991 ) web: bump @goauthentik/api in /web/sfe Bumps [@goauthentik/api](https://github.com/goauthentik/authentik) from 2024.6.3-1723645891 to 2024.6.3-1723921843. - [Release notes](https://github.com/goauthentik/authentik/releases) - [Commits](https://github.com/goauthentik/authentik/commits) --- updated-dependencies: - dependency-name: "@goauthentik/api" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-20 12:34:26 +02:00
Jens L.	6a9dcdea71	providers/saml: fix incorrect migration for sign_response (#10975 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-19 16:28:40 +02:00
dependabot[bot]	da05f7e9e6	web: bump rollup from 4.20.0 to 4.21.0 in /web (#10969 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.20.0 to 4.21.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.20.0...v4.21.0) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 16:09:22 +02:00
Davide	7fee9fd868	website/docs: fix formatting on CVE-2024-23647 (#10955 ) Update CVE-2024-23647.md Formatting errors fixed Signed-off-by: Davide <69810644+ItzDavi@users.noreply.github.com>	2024-08-19 14:06:44 +02:00
dependabot[bot]	d43ce7b91f	core: bump ruff from 0.6.0 to 0.6.1 (#10964 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.6.0 to 0.6.1. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.6.0...0.6.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:44:35 +02:00
Jens L.	eb5842fa5a	rbac: generate blueprint schema permissions from defined models not DB (#10962 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-19 13:44:13 +02:00
dependabot[bot]	19e1db33b7	web: bump the swc group across 2 directories with 11 updates (#10967 ) Bumps the swc group with 1 update in the /web directory: [@swc/core](https://github.com/swc-project/swc). Bumps the swc group with 1 update in the /web/sfe directory: [@swc/core](https://github.com/swc-project/swc). Updates `@swc/core` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-darwin-arm64` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-darwin-x64` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm64-gnu` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm64-musl` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-x64-gnu` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-x64-musl` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-arm64-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-ia32-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-x64-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-darwin-arm64` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-darwin-x64` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm64-gnu` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-arm64-musl` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-x64-gnu` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-linux-x64-musl` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-arm64-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-ia32-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) Updates `@swc/core-win32-x64-msvc` from 1.7.11 to 1.7.12 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.11...v1.7.12) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:39:39 +02:00
dependabot[bot]	bf18052730	core: bump goauthentik.io/api/v3 from 3.2024063.11 to 3.2024063.12 (#10963 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.11 to 3.2024063.12. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.11...v3.2024063.12) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:37:05 +02:00
dependabot[bot]	a3e7783e23	web: bump the rollup group across 1 directory with 3 updates (#10966 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.20.0 to 4.21.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.20.0...v4.21.0) Updates `@rollup/rollup-linux-arm64-gnu` from 4.20.0 to 4.21.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.20.0...v4.21.0) Updates `@rollup/rollup-linux-x64-gnu` from 4.20.0 to 4.21.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.20.0...v4.21.0) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:36:54 +02:00
dependabot[bot]	97a29c6532	web: bump esbuild from 0.23.0 to 0.23.1 in /web (#10970 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.23.0 to 0.23.1. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.23.0...v0.23.1) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:36:46 +02:00
dependabot[bot]	27c3b4fa20	web: bump rollup from 4.20.0 to 4.21.0 in /web/sfe (#10971 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.20.0 to 4.21.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.20.0...v4.21.0) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-19 13:36:38 +02:00
dependabot[bot]	341fc6581c	web: bump ws, @wdio/cli and @wdio/local-runner in /tests/wdio (#10952 ) Bumps [ws](https://github.com/websockets/ws) to 8.18.0 and updates ancestor dependencies [ws](https://github.com/websockets/ws), [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli) and [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner). These dependencies need to be updated together. Updates `ws` from 8.16.0 to 8.18.0 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](https://github.com/websockets/ws/compare/8.16.0...8.18.0) Updates `@wdio/cli` from 8.40.2 to 9.0.3 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.3/packages/wdio-cli) Updates `@wdio/local-runner` from 8.40.2 to 9.0.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.1/packages/wdio-local-runner) --- updated-dependencies: - dependency-name: ws dependency-type: indirect - dependency-name: "@wdio/cli" dependency-type: direct:development - dependency-name: "@wdio/local-runner" dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-18 16:01:26 +02:00
transifex-integration[bot]	c9782a1c00	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10953 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-18 15:55:45 +02:00
authentik-automation[bot]	fc2148065c	core, web: update translations (#10954 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-18 15:55:32 +02:00
authentik-automation[bot]	6972cb27f8	web: bump API Client version (#10951 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-17 21:22:17 +02:00
Jens L.	d577152f83	providers/SAML: encryption support (#10934 ) * providers/saml: add option to sign assertion and or response Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add encryption Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add form option Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for API Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-17 21:10:28 +02:00
Tana M Berry	53b89b71e2	website/scripts: final-ish readme with troubleshooting tips (#10948 ) * added note to readme * fixed env file * tweaks * moved env file * add more troubleshooting * ran make website --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-08-16 10:54:09 -05:00
RMT	d75cdfeaf1	internal: Use loop instead of recursion in NewAPIController (#10745 ) use loop instead of recursion	2024-08-16 15:04:07 +02:00
Jens L.	c3d3646645	web/flows: clean up loading, syntax and transitions (#10792 ) * remove redundant bindings to ${true} Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better ui for loading during autosubmit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * default to loading label when setting ?loading Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove more html`` Signed-off-by: Jens Langhammer <jens@goauthentik.io> * refactor non_field_errors Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove more html`` Signed-off-by: Jens Langhammer <jens@goauthentik.io> * no loading label for overlay Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix py Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Revert "web: bump the wdio group across 2 directories with 5 updates (#10945)" This reverts commit `ea14c57989`. --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-16 14:10:08 +02:00
authentik-automation[bot]	4b21588d8b	core, web: update translations (#10939 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-16 12:19:54 +02:00
transifex-integration[bot]	221922d273	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#10941 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-16 12:04:29 +02:00
transifex-integration[bot]	3851d497ad	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#10942 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-16 12:04:16 +02:00
dependabot[bot]	13ee5cb682	website: bump elliptic from 6.5.5 to 6.5.7 in /website (#10947 ) Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.5 to 6.5.7. - [Commits](https://github.com/indutny/elliptic/compare/v6.5.5...v6.5.7) --- updated-dependencies: - dependency-name: elliptic dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-16 12:00:11 +02:00
dependabot[bot]	1ceeb9e8d3	core: bump ruff from 0.5.7 to 0.6.0 (#10944 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.7 to 0.6.0. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.7...0.6.0) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-16 11:58:26 +02:00
dependabot[bot]	ea14c57989	web: bump the wdio group across 2 directories with 5 updates (#10945 ) Bumps the wdio group with 4 updates in the /tests/wdio directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Bumps the wdio group with 4 updates in the /web directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework), [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter) and [@wdio/browser-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-browser-runner). Updates `@wdio/cli` from 8.40.2 to 9.0.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.1/packages/wdio-cli) Updates `@wdio/local-runner` from 8.40.2 to 9.0.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.1/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.40.2 to 9.0.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.0/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.39.0 to 9.0.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.0/packages/wdio-spec-reporter) Updates `@wdio/cli` from 8.40.2 to 9.0.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.1/packages/wdio-cli) Updates `@wdio/mocha-framework` from 8.40.2 to 9.0.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.0/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.39.0 to 9.0.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.0/packages/wdio-spec-reporter) Updates `@wdio/browser-runner` from 8.40.2 to 9.0.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v9.0.1/packages/wdio-browser-runner) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio - dependency-name: "@wdio/browser-runner" dependency-type: direct:development update-type: version-update:semver-major dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-16 11:57:57 +02:00
dependabot[bot]	d7a2da0af7	web: bump @codemirror/legacy-modes from 6.4.0 to 6.4.1 in /web (#10946 ) Bumps [@codemirror/legacy-modes](https://github.com/codemirror/legacy-modes) from 6.4.0 to 6.4.1. - [Changelog](https://github.com/codemirror/legacy-modes/blob/main/CHANGELOG.md) - [Commits](https://github.com/codemirror/legacy-modes/compare/6.4.0...6.4.1) --- updated-dependencies: - dependency-name: "@codemirror/legacy-modes" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-16 11:57:40 +02:00
Jens L.	3259908ee4	website/docs: fix missing optional Authorization headers (#10932 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-15 19:21:51 +02:00
transifex-integration[bot]	233e43c579	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10926 ) * Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. * Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-15 14:57:09 +02:00
transifex-integration[bot]	07aa230b9b	translate: Updates for file web/xliff/en.xlf in zh_CN (#10916 ) * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-15 14:57:01 +02:00
rickra	1d5d096ffc	website/docs: use default container name from helm chart in recovery documentation for kubernetes (#10919 ) * use default container name from helm chart the default name for the worker container is worker and not authentik. see https://github.com/goauthentik/helm/blob/main/charts/authentik/values.yaml#L603 Signed-off-by: rickra <richardkraus98@pm.me> * fix container name everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: rickra <richardkraus98@pm.me> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-15 14:56:52 +02:00
transifex-integration[bot]	0754d9c3d4	translate: Updates for file web/xliff/en.xlf in fr (#10928 ) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-15 14:56:41 +02:00
transifex-integration[bot]	b95a9bdc38	translate: Updates for file web/xliff/en.xlf in ru (#10929 ) Translate web/xliff/en.xlf in ru 100% translated source file: 'web/xliff/en.xlf' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-15 14:56:39 +02:00
dependabot[bot]	69734e08d3	website: bump docusaurus-theme-openapi-docs from 3.0.1 to 3.0.2 in /website (#10918 ) * website: bump docusaurus-theme-openapi-docs in /website Bumps [docusaurus-theme-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-theme-openapi-docs) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases) - [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md) - [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v3.0.2/packages/docusaurus-theme-openapi-docs) --- updated-dependencies: - dependency-name: docusaurus-theme-openapi-docs dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * bump both Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-15 14:56:09 +02:00
dependabot[bot]	e970a2a8e4	web: bump @sentry/browser from 8.25.0 to 8.26.0 in /web in the sentry group across 1 directory (#10921 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.25.0 to 8.26.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.25.0...8.26.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:59 +02:00
dependabot[bot]	094797616e	web: bump the swc group across 2 directories with 11 updates (#10922 ) Bumps the swc group with 1 update in the /web directory: [@swc/core](https://github.com/swc-project/swc). Bumps the swc group with 1 update in the /web/sfe directory: [@swc/core](https://github.com/swc-project/swc). Updates `@swc/core` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-darwin-arm64` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-darwin-x64` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm64-gnu` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm64-musl` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-x64-gnu` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-x64-musl` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-arm64-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-ia32-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-x64-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-darwin-arm64` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-darwin-x64` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm64-gnu` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-arm64-musl` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-x64-gnu` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-linux-x64-musl` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-arm64-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-ia32-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) Updates `@swc/core-win32-x64-msvc` from 1.7.10 to 1.7.11 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.10...v1.7.11) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:49 +02:00
dependabot[bot]	fdb1de79c3	web: bump axios from 1.6.7 to 1.7.4 in /tests/wdio (#10930 ) Bumps [axios](https://github.com/axios/axios) from 1.6.7 to 1.7.4. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](https://github.com/axios/axios/compare/v1.6.7...v1.7.4) --- updated-dependencies: - dependency-name: axios dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:42 +02:00
dependabot[bot]	c20d1de10a	core: bump google-api-python-client from 2.140.0 to 2.141.0 (#10920 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.140.0 to 2.141.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.140.0...v2.141.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:24 +02:00
dependabot[bot]	1a60a955e2	web: bump chromedriver from 127.0.2 to 127.0.3 in /tests/wdio (#10923 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 127.0.2 to 127.0.3. - [Commits](https://github.com/giggio/node-chromedriver/compare/127.0.2...127.0.3) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:09 +02:00
dependabot[bot]	3af812682c	web: bump turnstile-types from 1.2.1 to 1.2.2 in /web (#10924 ) Bumps [turnstile-types](https://github.com/le0developer/turnstile-types) from 1.2.1 to 1.2.2. - [Changelog](https://github.com/Le0Developer/turnstile-types/blob/master/HISTORY.md) - [Commits](https://github.com/le0developer/turnstile-types/compare/v1.2.1...v1.2.2) --- updated-dependencies: - dependency-name: turnstile-types dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:21:00 +02:00
dependabot[bot]	dc233deb41	web: bump @goauthentik/api from 2024.6.3-1723497462 to 2024.6.3-1723645891 in /web/sfe (#10925 ) web: bump @goauthentik/api in /web/sfe Bumps [@goauthentik/api](https://github.com/goauthentik/authentik) from 2024.6.3-1723497462 to 2024.6.3-1723645891. - [Release notes](https://github.com/goauthentik/authentik/releases) - [Commits](https://github.com/goauthentik/authentik/commits) --- updated-dependencies: - dependency-name: "@goauthentik/api" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:20:53 +02:00
dependabot[bot]	923efc103e	core: bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 (#10915 ) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:15:15 +02:00
authentik-automation[bot]	1cf7b634e6	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10913 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-15 14:15:07 +02:00
authentik-automation[bot]	2c6c9c260e	core, web: update translations (#10912 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-15 14:14:06 +02:00
dependabot[bot]	1586a8f1fb	web: bump the storybook group across 1 directory with 7 updates (#10900 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.8` \| `8.2.9` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.8` \| `8.2.9` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.8` \| `8.2.9` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.8` \| `8.2.9` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.8` \| `8.2.9` \| Updates `@storybook/addon-essentials` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/addons/links) Updates `@storybook/blocks` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/frameworks/web-components-vite) Updates `storybook` from 8.2.8 to 8.2.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.9/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-15 14:13:55 +02:00
Jens L.	8f81237fc5	web/admin: fix authentication/enrollment flow in sources being marked as required (#10911 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-15 00:50:14 +02:00
transifex-integration[bot]	e773ce2681	translate: Updates for file locale/en/LC_MESSAGES/django.po in fr (#10907 ) Translate locale/en/LC_MESSAGES/django.po in fr 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-14 20:40:54 +02:00
transifex-integration[bot]	deab8a7e0f	translate: Updates for file web/xliff/en.xlf in fr (#10909 ) Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-14 20:40:41 +02:00
Jens L.	afb99c5ede	providers/radius: property mapping docs (#10908 ) * migrate protocols to table Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add radius property mapping example Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * add to release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-08-14 16:38:24 +00:00
Ken Sternberg	752735d480	web: search select with focus, autocomplete, and progressive search (#10728 ) * web: much better focus discipline Fix the way focus is handled in SearchSelect so that the drop-down isn't grabbing the focus away from the Input when the user wants to type in their selection. Because it was broken otherwise! There's still a bug where it's possible to type in a complete value Label, then leave the component's focus (input and menu) completely, in which case the Label remains, looking innocent and correct, but it is not reflective of the value as understood by the SearchSelect API controller. Gonna try to fix that next. But I'm saving this as a useful checkpoint. * . * root: insert daphne app in correct order Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: implement ak-list-select Creates a new element, ak-list-select, which is a scrollable list that reports when an element is clicked or selected by the keyboard. I was hideously over-engineering ak-search-select-menu, and I decided to try something simpler. This is that something. The events we care about are just "change" and "lost focus", and both of those can be attached by the parent regardless of portaling. * web: ak-list-select is complete An extraction of the "menu" and "list" features from SearchSelect and DualSelect, this is a very simplified version of a visible list that emulates the Radio/Select behavior (i.e only one from the collection may be "valued" at the time). It has no visible indicators of selection (aside from some highlighting), as it's meant to be used to present the list rather than be indicative of any state of the list. I was seriously over-engineering the menu. It turns out, it's just not that difficult after all. The only things we care about, really, are "did the user change the selection," "did the user click out of the list," and "did the user press the escape key." Those are pre-existing events (click w/value, blur, and keydown w/keycode, respectively), so there was no need for me to introduce new custom events to handler them. * web: downgrade sonarjs again, because dependabot Dammit, really need to tell that machine to leave our versions alone. * web: search select After a lot of testing and experimenting, it's finally starting to look stable. What a pain in the neck this has all been. * web: hold * web: search select with focus and progressive search - New component: ak-list-select, which allows you to select from a list of elements, with keyboard control. - New component: ak-portal, which manages elements by moving "slotted" content into a distant component, usually one attached to the body, and positions it relative to an existing element. - ak-search-select-view has been revamped to handle focus, change, input, and blur using the browser native event handlers, rather than inventing my own. - ak-search-select has been turned into a simple driver that manages the view. - ak-search-select has a new declarative syntax for the most common use case. I seriously over-engineered this thing, leaning too heavily on outdated knowledge or assumptions about how the browser works. The native event handlers attached at the component's borders works more than fine, and by attaching the event handlers to the portaled component before sending it off to the slots, the correct handlers get the message. This revision leverages the browser a lot more, and gets much more effective interaction with much less code. `<ak-list-select>` is a new component that replaces the ad-hoc menu object of the old SearchSelect. It is a standalone component that just shows a list, allows someone to navigate that list with the keyboard or the mouse. By default, it is limited to half the height of the viewport. The list does not have an indicator of "selected" at this time. That's just a side effect of it being developed as an adjunct to search-select. Its design does not preclude extension. It has a lot of CSS components that can be customized. The properties and events are documented, but there is only one event: `change`. Consistent with HTML, the value is not sent with the `change` event; clients are expected to extract it with `change:event.target.value`. Like all HTML components, it is completely stringly defined; the value is either a string or undefined. `<ak-portal>` is a somewhat specialized "portal" component that places an `ak-list-select` in an object on top of the existing DOM content. It can generalized to do this with any component, though, and can be extended. It has no events or CSS, since it's "just" managing the portaling relationship. `<ak-search-select-view>` is the heart of the system. It takes a collection options and behaves like an autocomplete component for them. The only unique event it sends out is `change`, and like `ak-list-select`, it expects the client to retrieve the value. Like all HTML components, it is completely stringly defined; the value is either a string or undefined. This is the SearchSelect component we've all known to come and love, but with a better pop-up and cleaner keyboard interaction. It emits only one event, `ak-change`, which does carry the value with it. The Storybooks have been updated to show the current version of Search Select, with a (simulated) API layer as well as more blunt stringly-typed tests for the View layer. A handful of tests have been provided to cover a number of edge cases that I discovered during testing. These run fine with the `npx` command, and I would love to see them integrated into CI/CD. The search select fields `renderElement`, `renderDescription`, and `value` properties of `ak-search-select` have been modified to take a string. For example, the search for the list of user looks like this: ``` <ak-search-select .fetchObjects=${async (query?: string): Promise<User[]> => { const args: CoreUsersListRequest = { ordering: "username" }; if (query !== undefined) { args.search = query; } const users = await new CoreApi(DEFAULT_CONFIG).coreUsersList(args); return users.results; }} .renderElement=${(user: User): string => { return user.username; }} .renderDescription=${(user: User): TemplateResult => { return html`${user.name}`; }} .value=${(user: User \| undefined): string \| undefined => { return user?.username; }} ></ak-search-select> ``` The most common syntax for the these three fields is "just return the string contents of a field by name," in the case of the description wrapped in a TemplateResult with no DOM components. By automating that initialization in the `connectedCallback` of the `ak-search-select` component, this object would look like: <ak-search-select .fetchObjects=${async (query?: string): Promise<User[]> => { const args: CoreUsersListRequest = { ordering: "username" }; if (query !== undefined) { args.search = query; } const users = await new CoreApi(DEFAULT_CONFIG).coreUsersList(args); return users.results; }} .renderElement=${"username"} .renderDescription=${"name"} .value=${"username"} ></ak-search-select> ``` Due to a limitation in the way properties (such as functions) are interpreted, the syntax `renderElement="username"` is invalid; it has to be a property expression. Sorry; best I could do. The old syntax works just fine. This is a "detect and extend at runtime" enhancement. * Added comments to the Component Driver Harness. * Added more safety and comments. * web: remove string-based access to API; replace with a consolidated "adapter" layer. Clean out the string-based API layer in SearchSelect. Break SearchSelect into a "Base" that does all the work, and then wrap it in two different front-ends: one that conforms to the old WCAPI, and one with a slightly new WCAPI: ``` <ak-search-select-ez .config=${{ fetchObjects: async (query?: string): Promise<Group[]> => { const args: CoreGroupsListRequest = { ordering: "name", includeUsers: false, }; if (query !== undefined) { args.search = query; } const groups = await new CoreApi(DEFAULT_CONFIG).coreGroupsList( args, ); return groups.results; }, renderElement: (group: Group): string => group.name, value: (group: Group \| undefined): string \| undefined => group?.pk, selected: (group: Group): boolean => group.pk === this.instance?.group }} blankable > </ak-search-select-ez> ``` * Prettier had opinions. In one case, an important opinion. * Rename test and fix lint error. * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-14 18:35:00 +02:00
Marc 'risson' Schmitt	6aee405397	providers/ldap: fix lint (#10910 )	2024-08-14 15:53:27 +00:00
Marc 'risson' Schmitt	5d2a3dfab0	providers/ldap: fix missing using in migrations (#10906 )	2024-08-14 15:22:17 +00:00
authentik-automation[bot]	86a2791e82	web: bump API Client version (#10905 ) * web: bump API Client version Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * fix go dep Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-14 15:01:55 +00:00
Jens L.	8f53d0b9f3	providers/ldap: Remove search group (#10639 ) * remove search_group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make api operations cleaerer Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually use get Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use correct api client for ldap Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated: fix migration warning Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated: fix styling issue in dark mode Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated-ish fix button order in wizard Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated: fix missing css import Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions * Update index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * Update index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * update release notes based on new template Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-08-14 16:31:11 +02:00
transifex-integration[bot]	3815803264	translate: Updates for file web/xliff/en.xlf in ru (#10902 ) * Translate web/xliff/en.xlf in ru 100% translated source file: 'web/xliff/en.xlf' on 'ru'. * Translate web/xliff/en.xlf in ru 100% translated source file: 'web/xliff/en.xlf' on 'ru'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-14 12:56:36 +02:00
dependabot[bot]	8e8511ef85	web: bump axios from 1.7.3 to 1.7.4 in /web (#10903 ) Bumps [axios](https://github.com/axios/axios) from 1.7.3 to 1.7.4. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](https://github.com/axios/axios/compare/v1.7.3...v1.7.4) --- updated-dependencies: - dependency-name: axios dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-14 12:06:59 +02:00
authentik-automation[bot]	c18cd248e4	core, web: update translations (#10895 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-14 11:54:00 +02:00
dependabot[bot]	96fe4abedb	core: bump uvicorn from 0.30.5 to 0.30.6 (#10896 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.30.5 to 0.30.6. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.30.5...0.30.6) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-14 11:53:35 +02:00
dependabot[bot]	a2fd63a31a	core: bump sentry-sdk from 2.12.0 to 2.13.0 (#10897 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.12.0 to 2.13.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.12.0...2.13.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-14 11:53:26 +02:00
Ken Sternberg	5a2ed5bf30	web: bug - licenseStatus is not defined on initial render (#10894 ) * web: bug / licenseStatus is not defined on initial render - Test if the licenseStatus is available before rendering the banner - The banner is rendered correctly when the status becomes available. The loading sequence is such that if the user reloads the page, the first attempt to render the license banner fails because the licenseStatus field is not yet populated; the result is an ugly `licenseStatus is undefined` on the console. Because the licenseStatus is a live context, when it is updated any objects that subscribe to it are scheduled for a re-render. This is why the system appears to behave correctly now. While this is invisible to the user, it's still undesirable behavior. Returning `nothing` requires that we remove the type declarations as return values from the renderers. Typescript's inferers do just fine. * fix some other small things Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-13 13:39:13 -07:00
transifex-integration[bot]	ed49017f2d	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10884 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-08-13 12:22:59 +02:00
authentik-automation[bot]	a9a6dc575f	core, web: update translations (#10887 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-13 12:22:42 +02:00
dependabot[bot]	764d51b6b1	web: bump typescript-eslint from 8.0.1 to 8.1.0 in /web (#10889 ) Bumps [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) from 8.0.1 to 8.1.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.1.0/packages/typescript-eslint) --- updated-dependencies: - dependency-name: typescript-eslint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-13 12:22:31 +02:00
dependabot[bot]	4af5636c34	web: bump @goauthentik/api from 2024.6.3-1723234818 to 2024.6.3-1723497462 in /web/sfe (#10890 ) web: bump @goauthentik/api in /web/sfe Bumps [@goauthentik/api](https://github.com/goauthentik/authentik) from 2024.6.3-1723234818 to 2024.6.3-1723497462. - [Release notes](https://github.com/goauthentik/authentik/releases) - [Commits](https://github.com/goauthentik/authentik/commits) --- updated-dependencies: - dependency-name: "@goauthentik/api" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-13 12:22:21 +02:00
dependabot[bot]	3ead288e2f	core: bump goauthentik.io/api/v3 from 3.2024063.8 to 3.2024063.10 (#10891 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.8 to 3.2024063.10. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.8...v3.2024063.10) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-13 12:21:49 +02:00
authentik-automation[bot]	779f5c65d8	web: bump API Client version (#10886 )	2024-08-12 23:32:00 +02:00
Jens L.	bb9e679b9a	outposts: add better UI for showing mismatched versions (#10885 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-12 23:17:15 +02:00
Inferno_geek	fccb805dbd	website/integrations: Add Semgrep (#10849 ) * website/docs: integrations: Add Semgrep integration * website/docs: integrations: fix SAML provider settings * website/docs: integrations: clean up wordings * website/integrations: fix a typo * website/integrations: Rewrite to match Style Guide * website/integrations: fix the typos --------- Co-authored-by: inferno-geek <mishaad051@gmail.com>	2024-08-12 13:33:03 -05:00
Jens L.	5c46de39ec	web/elements: fix empty enterprise banner (#10882 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-12 18:28:54 +02:00
Marc 'risson' Schmitt	194c1a2fcc	root: fix docker build warnings (#10881 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-12 16:09:54 +00:00
authentik-automation[bot]	dc89c3ab3c	website/integrations: compress images (#10880 ) [create-pull-request] automated change Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: tanberry <9368837+tanberry@users.noreply.github.com>	2024-08-12 16:03:45 +00:00
Inferno_geek	5217d48442	website/integrations: add Frappe (#10797 ) * website/docs: integrations: add Frappe integration * website/docs: integrations: add Frappe integration website/docs: integrations: fixed the errors * website/docs: integrations: Fixed wording and added verification steps. * website/docs: integrations: fix the wording for application creation. * website/docs: integrations: fix a typo * website/docs: integrations: fix the UI elements highlight --------- Co-authored-by: inferno-geek <mishaad051@gmail.com>	2024-08-12 10:44:31 -05:00
transifex-integration[bot]	fea79dd120	translate: Updates for file web/xliff/en.xlf in ru (#10878 ) * Translate web/xliff/en.xlf in ru 100% translated source file: 'web/xliff/en.xlf' on 'ru'. * add locale Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-12 17:28:49 +02:00
authentik-automation[bot]	a9832a79fd	core, web: update translations (#10877 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-12 14:04:05 +00:00
authentik-automation[bot]	5db22c9543	web: bump API Client version (#10876 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-12 13:33:50 +00:00
Marc 'risson' Schmitt	a7203be850	providers: add provider/ prefix for property mappings API (#10874 )	2024-08-12 13:13:08 +00:00
authentik-automation[bot]	dab41fe0b9	core, web: update translations (#10831 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-08-12 14:41:41 +02:00
dependabot[bot]	efcd6bba0c	core: bump gunicorn from 22.0.0 to 23.0.0 (#10861 ) Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 22.0.0 to 23.0.0. - [Release notes](https://github.com/benoitc/gunicorn/releases) - [Commits](https://github.com/benoitc/gunicorn/compare/22.0.0...23.0.0) --- updated-dependencies: - dependency-name: gunicorn dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 14:06:43 +02:00
dependabot[bot]	2e16633f09	web: bump the swc group across 2 directories with 11 updates (#10868 ) Bumps the swc group with 1 update in the /web directory: [@swc/core](https://github.com/swc-project/swc). Bumps the swc group with 1 update in the /web/sfe directory: [@swc/core](https://github.com/swc-project/swc). Updates `@swc/core` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-darwin-arm64` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-darwin-x64` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm64-gnu` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm64-musl` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-x64-gnu` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-x64-musl` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-arm64-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-ia32-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-x64-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-darwin-arm64` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-darwin-x64` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm-gnueabihf` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm64-gnu` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-arm64-musl` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-x64-gnu` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-linux-x64-musl` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-arm64-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-ia32-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) Updates `@swc/core-win32-x64-msvc` from 1.7.6 to 1.7.10 - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.6...v1.7.10) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-arm64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-darwin-x64" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm-gnueabihf" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-arm64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-gnu" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-linux-x64-musl" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-arm64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-ia32-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc - dependency-name: "@swc/core-win32-x64-msvc" dependency-type: indirect update-type: version-update:semver-patch dependency-group: swc ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 14:06:32 +02:00
dependabot[bot]	484dcf5de7	web: bump ts-pattern from 5.2.0 to 5.3.1 in /web (#10870 ) Bumps [ts-pattern](https://github.com/gvergnaud/ts-pattern) from 5.2.0 to 5.3.1. - [Release notes](https://github.com/gvergnaud/ts-pattern/releases) - [Commits](https://github.com/gvergnaud/ts-pattern/compare/v5.2.0...v5.3.1) --- updated-dependencies: - dependency-name: ts-pattern dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 14:06:16 +02:00
dependabot[bot]	46b02e47bd	web: bump @eslint/js from 9.8.0 to 9.9.0 in /web (#10871 ) Bumps [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) from 9.8.0 to 9.9.0. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md) - [Commits](https://github.com/eslint/eslint/commits/v9.9.0/packages/js) --- updated-dependencies: - dependency-name: "@eslint/js" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 14:05:36 +02:00
dependabot[bot]	ef7990e4cd	web: bump @sentry/browser from 8.24.0 to 8.25.0 in /web in the sentry group across 1 directory (#10853 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.24.0 to 8.25.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.24.0...8.25.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 13:06:42 +02:00
dependabot[bot]	d4111440d7	core: bump goauthentik.io/api/v3 from 3.2024063.6 to 3.2024063.8 (#10850 ) * core: bump goauthentik.io/api/v3 from 3.2024063.6 to 3.2024063.8 Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.6 to 3.2024063.8. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.6...v3.2024063.8) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * merge swc updates Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-12 13:06:24 +02:00
dependabot[bot]	29ff4bc270	core: bump paramiko from 3.4.0 to 3.4.1 (#10862 ) Bumps [paramiko](https://github.com/paramiko/paramiko) from 3.4.0 to 3.4.1. - [Commits](https://github.com/paramiko/paramiko/compare/3.4.0...3.4.1) --- updated-dependencies: - dependency-name: paramiko dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 11:59:47 +02:00
dependabot[bot]	0c2c8732ab	core: bump lxml from 5.2.2 to 5.3.0 (#10863 ) Bumps [lxml](https://github.com/lxml/lxml) from 5.2.2 to 5.3.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.2.2...lxml-5.3.0) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 11:59:31 +02:00
dependabot[bot]	39b51a7c02	core: bump watchdog from 4.0.1 to 4.0.2 (#10864 ) Bumps [watchdog](https://github.com/gorakhargosh/watchdog) from 4.0.1 to 4.0.2. - [Release notes](https://github.com/gorakhargosh/watchdog/releases) - [Changelog](https://github.com/gorakhargosh/watchdog/blob/master/changelog.rst) - [Commits](https://github.com/gorakhargosh/watchdog/compare/v4.0.1...v4.0.2) --- updated-dependencies: - dependency-name: watchdog dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-12 11:57:12 +02:00
authentik-automation[bot]	75ca253d76	web: bump API Client version (#10844 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-09 22:25:30 +02:00
dependabot[bot]	e6f6f7fd5b	core: bump aiohttp from 3.9.5 to 3.10.2 (#10843 ) Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.5 to 3.10.2. - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](https://github.com/aio-libs/aiohttp/compare/v3.9.5...v3.10.2) --- updated-dependencies: - dependency-name: aiohttp dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-09 22:20:14 +02:00
Jens L.	a073b7a5b1	enterprise: add support for license flags (#10842 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-09 22:20:01 +02:00
Tana M Berry	25a06716ff	website/docs: update docs about "stay logged in" option (#10832 ) * reformatted and tweaked wording * fixed change to anchor * again with broken anchor * aligned code example --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-08-09 11:39:41 -05:00
Tana M Berry	ddd689fbdf	website/docs: add link from Ent to Upgrade (#10841 ) add link from Ent to Upgrade Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-08-09 18:19:33 +02:00
4d62	ec38e09510	website/integrations: add netbird (#10798 ) * add netbird sidebar Signed-off-by: 4d62 <github-user@sdko.org> * add netbird configuration Signed-off-by: 4d62 <github-user@sdko.org> * small upgrades Signed-off-by: 4d62 <github-user@sdko.org> * oops Signed-off-by: 4d62 <github-user@sdko.org> * revert innstallation and little fix Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/netbird/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * codeblock * lint --------- Signed-off-by: 4d62 <github-user@sdko.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-08-09 08:20:47 -05:00
authentik-automation[bot]	4de46b1d42	web: bump API Client version (#10839 )	2024-08-09 14:36:13 +02:00
Jens L.	4b5bb77d99	enterprise: UI improvements, better handling of expiry (#10828 ) * web/admin: show enterprise banner on the very top Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework license Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some more tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix middleware Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for and fix read only mode Signed-off-by: Jens Langhammer <jens@goauthentik.io> * field name consistency Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-09 14:26:38 +02:00
Jens L.	3265b4af01	Revert "web: bump vite-tsconfig-paths from 4.3.2 to 5.0.1 in /web" (#10837 ) Revert "web: bump vite-tsconfig-paths from 4.3.2 to 5.0.1 in /web (#10834)" This reverts commit `08dc0a764f`.	2024-08-09 12:06:26 +02:00
dependabot[bot]	82b467e4d4	core: bump goauthentik.io/api/v3 from 3.2024063.5 to 3.2024063.6 (#10833 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.5 to 3.2024063.6. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.5...v3.2024063.6) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-09 11:53:39 +02:00
dependabot[bot]	08dc0a764f	web: bump vite-tsconfig-paths from 4.3.2 to 5.0.1 in /web (#10834 ) Bumps [vite-tsconfig-paths](https://github.com/aleclarson/vite-tsconfig-paths) from 4.3.2 to 5.0.1. - [Release notes](https://github.com/aleclarson/vite-tsconfig-paths/releases) - [Commits](https://github.com/aleclarson/vite-tsconfig-paths/compare/v4.3.2...v5.0.1) --- updated-dependencies: - dependency-name: vite-tsconfig-paths dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-09 11:52:44 +02:00
dependabot[bot]	2a443d7058	core: bump ruff from 0.5.6 to 0.5.7 (#10836 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.6 to 0.5.7. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.6...0.5.7) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-09 11:51:04 +02:00
dependabot[bot]	cd878e73ae	core: bump goauthentik/fips-python from 3.12.3-slim-bookworm-fips-full to 3.12.5-slim-bookworm-fips-full (#10835 ) core: bump goauthentik/fips-python Bumps goauthentik/fips-python from 3.12.3-slim-bookworm-fips-full to 3.12.5-slim-bookworm-fips-full. --- updated-dependencies: - dependency-name: goauthentik/fips-python dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-09 11:46:36 +02:00
Ken Sternberg	261133aee3	web: move to wireit as the build runner language (#10440 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * root: fix migrations missing using db_alias Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * more Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * web: add wireit as a dependency and move SFE into an independent package * web: make `sfe` a legitimite subpackage and use `wireit` to control the build - Move sfe to a `packages` subfolder: this is a more standard format for subpackages - `Move sfe/index.ts` to `sfe/src/index.ts`: this is a more standard layout for a package - Adjusted paths is `package.json` and `sfe/rollup.config.js` accordingly. - Add prettier and safety linting to `sfe`. - fix a naming issues in `build-locales`, highlighted by eslint - fix some minor linting issues is `build-locales` - add comments to `build-locales`, to make it clear what it does - updated the README and LICENSE files - start using `wireit` heavily as the task-runner definition language Primarily, to look professional and pave the way for future enhancements. Aside from the standardization and so forth, the primary goal here is to move our task runner to wireit. Wireit offers a number of intriguing abilities with respect to caching, building, and testing, such as an ability to `watch` our folders and files and automatically re-run the build when the relevant code changes, without having to rebuild the copied content or sub-packages such as `sfe`. The ability to pass in environment variables without needed `cross-env` makes code that required it much easier to read. Commands that take a long time can be prefixed with the environment variable `${NODE_RUNNER} `, which then would allow you to default to using `node`, but by setting `NODE_RUNNER` in your shell you could specify `bun` (or `deno`, maybe, but I haven't tested it with `deno`). `bun` runs the `eslint` pass in about three-quarters the time `node` takes. This commit exists primarily to ensure that the build runs as expected under CI, and the result is as expected under CI. Wireit was produced by Google and is used by Adobe Spectrum Components, Patternfly Components, Material Web, Red Hat Design, and the Lit-Element teams, so I'm confident that it's robust and reliable as a build runner. * Merge failed to account for this. * web: fix bad reference to lint command * Adding sfe to workspaces means its install is run automatically. * sfe build is now orchestrated by the web build process * web: slowly tracking down the old ways. * Trying to fix lit-analyze pass. * Still struggling with the build. * Monorepo, please. * Still trying to solve swc binding issue. * Reformat package.json so that scripts and wireit are closer to one another. * Use the right formatter for packagefiles. * Retarget dockerfile to have the right paths to sfe during build. * Comment to explain gitignore update. * Add lint correcting to package.json as well as package-lock * Restored lost package-lock.json * Updating the authentik version. * Trying to force version consistency. --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-08 11:09:37 -07:00
Tana M Berry	911382f2c9	website/docs: add link from Install docs to Enterprise docs (#10827 ) * add link to new Upgrade docs * more links between Ent and Install --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-08-08 10:59:20 -05:00
Tana M Berry	8f69d0962a	website/docs: new upgrade page (#10742 ) * first draft * add to sidebar * made mdx * diff image add troubleshoting * Optimised images with calibre/image-actions * tweaks * edits from review * more review edits, tweaks * tab fights * still fighting tabs * add link from Rel Note template * more syntax fights * i give up * git hates me * no comment * formatting * styling stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * merge conflict * add Jens' edits * fighting my rebase * tweak * added note on Rel Note template about versions must match * git hates me even more today than yesterday * tweak --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-08 08:40:20 -05:00
Marc 'risson' Schmitt	0b6fb8ff5a	stages/authenticator: actually update last_used (#10813 )	2024-08-08 12:19:12 +00:00
Allen	fd0127ae2a	sources/ldap: Add enabled filter for ldap_password_validate signal (#10823 )	2024-08-08 14:03:39 +02:00
authentik-automation[bot]	8a27f1845c	web: bump API Client version (#10821 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-08 09:57:16 +00:00
Marc 'risson' Schmitt	68af5b0572	sources/plex: add property mappings (#10772 )	2024-08-08 11:36:24 +02:00
dependabot[bot]	82017fac8c	core: bump goauthentik.io/api/v3 from 3.2024063.2 to 3.2024063.5 (#10817 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.2 to 3.2024063.5. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.2...v3.2024063.5) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-08 11:30:44 +02:00
dependabot[bot]	b218a7d857	web: bump the wdio group across 2 directories with 4 updates (#10818 ) Bumps the wdio group with 3 updates in the /tests/wdio directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner) and [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework). Bumps the wdio group with 3 updates in the /web directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/browser-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-browser-runner). Updates `@wdio/cli` from 8.40.0 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-cli) Updates `@wdio/local-runner` from 8.40.1 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.40.0 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-mocha-framework) Updates `@wdio/cli` from 8.40.0 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-cli) Updates `@wdio/mocha-framework` from 8.40.0 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-mocha-framework) Updates `@wdio/browser-runner` from 8.40.1 to 8.40.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.2/packages/wdio-browser-runner) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/browser-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-08 11:30:34 +02:00
dependabot[bot]	0f5980ee7b	web: bump chromedriver from 127.0.1 to 127.0.2 in /tests/wdio (#10819 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 127.0.1 to 127.0.2. - [Commits](https://github.com/giggio/node-chromedriver/compare/127.0.1...127.0.2) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-08 11:30:25 +02:00
Ken Sternberg	79c01ca473	web: update to ESLint 9 (#10812 ) * web: update to ESLint 9 ESLint 9 has been out for awhile now, and all of the plug-ins that we use have caught up, so it is time to bite the bullet and upgrade. This commit: - upgrades to ESLint 9, and upgrades all associated plugins - Replaces the `.eslintrc` and `.eslintignore` files with the new, "flat" configuration file, "eslint.config.mjs". - Places the previous "precommit" and "nightmare" rules in `./scripts/eslint.precommit.mjs` and `./scripts/eslint.nightmare.mjs`, respectively - Replaces the scripted wrappers for eslint (`eslint`, `eslint-precommit`) with a single executable that takes the arguments `--precommit`, which applies a stricter set of rules, and `--nightmare`, which applies an even more terrifyingly strict set of rules. - Provides the scripted wrapper `./scripts/eslint.mjs` so that eslint can be run from `bun`, if one so chooses. - Fixes all of the lint `eslint.config.mjs` now finds, including removing all of the `eslint` styling rules and overrides because Eslint now proudly leaves that entirely up to Prettier. To shut Dependabot up about ESLint. * Added explanation for no-console removal. * web: did not need the old and unmaintained nightmare mode; it can be configured directly.	2024-08-07 15:04:18 -07:00
Marc 'risson' Schmitt	322ae4c4ed	website/docs: add source property mappings, rework provider property mappings (#10652 )	2024-08-07 19:30:29 +00:00
Marc 'risson' Schmitt	9343e3495a	web/admin: refactor property mappings forms (#10810 )	2024-08-07 21:05:56 +02:00
authentik-automation[bot]	bbc567e0aa	web: bump API Client version (#10811 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-07 20:02:03 +02:00
Nicolas	19c3f7dd80	sources/saml: Basic support for EncryptedAssertion element. (#10099 ) * source/saml: Updated backend for encrypted assertion support * source/saml: all lint-fix checks passed * source/saml: Used Optional type instead of union, on enc_key_descriptor type hint * source/saml: request_encrypted_assertion model field migration * source/saml: Added 'noqa' comment to type hint on encryption key descriptor * small fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add to UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some error handling Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sources/saml: Pivot to encryption_kp model field, instead of request_encryption bool * sources/saml: Typo fix * re-create migrations Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add to release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add improve error handling, add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * test metadata with encryption and remove WantAssertionsEncrypted since it's not in the schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated fix to radius path Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated fix...sigh Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-migrate Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-07 19:58:28 +02:00
authentik-automation[bot]	134caa9a47	web: bump API Client version (#10809 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-07 19:18:04 +02:00
Marc 'risson' Schmitt	83b02a17d5	sources: add property mappings for all oauth and saml sources (#8771 ) Co-authored-by: Jens L. <jens@goauthentik.io>	2024-08-07 19:14:22 +02:00
authentik-automation[bot]	78bae556d0	web: bump API Client version (#10808 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-07 12:32:30 +00:00
Marc 'risson' Schmitt	d8c3b8bad2	stages/authenticator: add created, last_updated and last_used metadata (#10636 ) * stages/authenticator: add created, last_updated and last_used metadata Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * also show for users Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * set allow_null Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-07 14:09:49 +02:00
Marc 'risson' Schmitt	340106594e	providers/proxy: avoid erroring on logout with session_id is None (#9119 ) * providers/proxy: avoid erroring on logout with session_id is None Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * check for session and session_key in signals Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-07 14:09:32 +02:00
dependabot[bot]	eb1b709145	core: bump google-api-python-client from 2.139.0 to 2.140.0 (#10802 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.139.0 to 2.140.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.139.0...v2.140.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 12:02:38 +02:00
dependabot[bot]	8f2203b651	core: bump pyyaml from 6.0.1 to 6.0.2 (#10803 ) Bumps [pyyaml](https://github.com/yaml/pyyaml) from 6.0.1 to 6.0.2. - [Release notes](https://github.com/yaml/pyyaml/releases) - [Changelog](https://github.com/yaml/pyyaml/blob/main/CHANGES) - [Commits](https://github.com/yaml/pyyaml/compare/6.0.1...6.0.2) --- updated-dependencies: - dependency-name: pyyaml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 12:02:28 +02:00
dependabot[bot]	36eae8d6df	core: bump django from 5.0.7 to 5.0.8 (#10804 ) Bumps [django](https://github.com/django/django) from 5.0.7 to 5.0.8. - [Commits](https://github.com/django/django/compare/5.0.7...5.0.8) --- updated-dependencies: - dependency-name: django dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 12:02:07 +02:00
dependabot[bot]	836a106277	core: bump goauthentik.io/api/v3 from 3.2024063.1 to 3.2024063.2 (#10805 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024063.1 to 3.2024063.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024063.1...v3.2024063.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 12:01:21 +02:00
dependabot[bot]	d43ab7b381	web: bump @sentry/browser from 8.23.0 to 8.24.0 in /web in the sentry group across 1 directory (#10806 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.23.0 to 8.24.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.23.0...8.24.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 12:00:56 +02:00
dependabot[bot]	6c1a7c178c	web: bump the wdio group across 2 directories with 2 updates (#10807 ) Bumps the wdio group with 1 update in the /tests/wdio directory: [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner). Bumps the wdio group with 1 update in the /web directory: [@wdio/browser-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-browser-runner). Updates `@wdio/local-runner` from 8.40.0 to 8.40.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.1/packages/wdio-local-runner) Updates `@wdio/browser-runner` from 8.40.0 to 8.40.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.1/packages/wdio-browser-runner) --- updated-dependencies: - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/browser-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-07 11:59:25 +02:00
Jens L.	02e852b192	blueprints: handle model referencing non-existent app/model (#10796 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-06 15:16:45 +02:00
Tana M Berry	34b01d9785	website/docs: add more content about flows (#10527 ) * first pass * reordered config options to match UI, added more * tweaks * add content for creating flows, add links to policies, update Style Guide * tweaks * procedurals, info about bindings * stages stub file * messy * reorg procedurals * tweak titles * tweaks * images * images, remove old images * tweak * tweaks and fixes * smaller image * tweak * had to rollback * starting over after VS Code branch war * fix links * more tweaks * Optimised images with calibre/image-actions * fighting build break * remove dupe image * replace image with diagram code * add image of UI, and reformat to look more like field names, not headings in the document * Optimised images with calibre/image-actions * new image * rest of Jens' edits * Optimised images with calibre/image-actions * fix order of stages in example * fixed arrows in image --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-08-06 12:56:23 +00:00
Jens L.	3d63143c38	brands: add OIDC webfinger support (#10400 ) * brands: add OIDC webfinger support for default application Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-06 14:00:01 +02:00
Jens L.	ae88ea3543	web/admin: fix selectable card colour in dark theme (#10794 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-06 13:40:36 +02:00
authentik-automation[bot]	8a536dc3b0	web: bump API Client version (#10793 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-06 10:58:23 +00:00
Simonyi Gergő	f7b16ed723	policies: add GeoIP policy (#10454 ) * add GeoIP policy * handle empty lists of ASNs and countries * handle missing GeoIP database or missing IP from the database The exceptions raised here are `PolicyException`s to let admins bypass an execution failure. * fix translations whoops * remove `GeoIPPolicyMode` Use the policy binding's `negate` option instead * fix `DataProvision` typing `ak-dual-select-provider` can handle unpaginated data * use `django-countries` instead of a static list of countries for ISO-3166 * simplify `GeoIPPolicyForm` * pass `GeoIPPolicy` on empty policy * add backend tests to `GeoIPPolicy` * revise translations * move `iso-3166/` to `policies/geoip_iso3166/` * add client-side caching to ISO3166 API call * fix `GeoIPPolicy` creation The automatically generated APIs can't seem to handle `CountryField`, so I'll have to do this by hand too. * add docs for GeoIP Policy * docs: stylize add review suggestions from @tanberry * refactor `GeoIPPolicy` API It is now as declarative as I could make it. * clean up `api.py` and `views.py`	2024-08-06 10:37:29 +00:00
dependabot[bot]	87858afaf3	core: bump debugpy from 1.8.3 to 1.8.5 (#10781 ) Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.8.3 to 1.8.5. - [Release notes](https://github.com/microsoft/debugpy/releases) - [Commits](https://github.com/microsoft/debugpy/commits/v1.8.5) --- updated-dependencies: - dependency-name: debugpy dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:52 +02:00
dependabot[bot]	77689bd01f	web: bump @sentry/browser from 8.22.0 to 8.23.0 in /web in the sentry group across 1 directory (#10782 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.22.0 to 8.23.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.22.0...8.23.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:42 +02:00
dependabot[bot]	cc7da3faff	website: bump postcss from 8.4.40 to 8.4.41 in /website (#10783 ) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.40 to 8.4.41. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.40...8.4.41) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:37 +02:00
dependabot[bot]	d30ad883b4	web: bump the wdio group across 2 directories with 4 updates (#10785 ) Bumps the wdio group with 3 updates in the /tests/wdio directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner) and [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework). Bumps the wdio group with 3 updates in the /web directory: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/browser-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-browser-runner). Updates `@wdio/cli` from 8.39.1 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-cli) Updates `@wdio/local-runner` from 8.39.1 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.39.0 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-mocha-framework) Updates `@wdio/cli` from 8.39.1 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-cli) Updates `@wdio/mocha-framework` from 8.39.0 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-mocha-framework) Updates `@wdio/browser-runner` from 8.39.1 to 8.40.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.40.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.40.0/packages/wdio-browser-runner) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/browser-runner" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:25 +02:00
dependabot[bot]	ca07a645b5	web: bump @lit/localize from 0.12.1 to 0.12.2 in /web (#10786 ) Bumps [@lit/localize](https://github.com/Lit/Lit/tree/HEAD/packages/localize) from 0.12.1 to 0.12.2. - [Release notes](https://github.com/Lit/Lit/releases) - [Changelog](https://github.com/lit/lit/blob/main/packages/localize/CHANGELOG.md) - [Commits](https://github.com/Lit/Lit/commits/@lit/localize@0.12.2/packages/localize) --- updated-dependencies: - dependency-name: "@lit/localize" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:17 +02:00
dependabot[bot]	794c0e404d	web: bump @floating-ui/dom from 1.6.8 to 1.6.9 in /web (#10787 ) Bumps [@floating-ui/dom](https://github.com/floating-ui/floating-ui/tree/HEAD/packages/dom) from 1.6.8 to 1.6.9. - [Release notes](https://github.com/floating-ui/floating-ui/releases) - [Changelog](https://github.com/floating-ui/floating-ui/blob/master/packages/dom/CHANGELOG.md) - [Commits](https://github.com/floating-ui/floating-ui/commits/@floating-ui/dom@1.6.9/packages/dom) --- updated-dependencies: - dependency-name: "@floating-ui/dom" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:08 +02:00
dependabot[bot]	945f4e90bc	web: bump @lit/localize-tools from 0.7.2 to 0.8.0 in /web (#10788 ) Bumps [@lit/localize-tools](https://github.com/lit/lit/tree/HEAD/packages/localize-tools) from 0.7.2 to 0.8.0. - [Release notes](https://github.com/lit/lit/releases) - [Changelog](https://github.com/lit/lit/blob/main/packages/localize-tools/CHANGELOG.md) - [Commits](https://github.com/lit/lit/commits/@lit/localize-tools@0.8.0/packages/localize-tools) --- updated-dependencies: - dependency-name: "@lit/localize-tools" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:23:01 +02:00
dependabot[bot]	569045bd1a	web: bump lit from 3.1.4 to 3.2.0 in /web (#10789 ) Bumps [lit](https://github.com/lit/lit/tree/HEAD/packages/lit) from 3.1.4 to 3.2.0. - [Release notes](https://github.com/lit/lit/releases) - [Changelog](https://github.com/lit/lit/blob/main/packages/lit/CHANGELOG.md) - [Commits](https://github.com/lit/lit/commits/lit@3.2.0/packages/lit) --- updated-dependencies: - dependency-name: lit dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:22:52 +02:00
dependabot[bot]	d3f1e38ef4	core: bump goauthentik.io/api/v3 from 3.2024062.2 to 3.2024063.1 (#10790 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024062.2 to 3.2024063.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024062.2...v3.2024063.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 12:22:36 +02:00
authentik-automation[bot]	386684759e	web: bump API Client version (#10779 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-06 00:37:07 +02:00
Jens Langhammer	4363c899ac	release: 2024.6.3	2024-08-05 20:08:28 +02:00
Jens L.	c8ca6721e2	website/docs: prepare 2024.6.3 release notes (#10775 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-05 17:03:23 +02:00
Tana M Berry	76b1d4d207	website/scripts: updated readme, added docsmg.env file (#10710 ) * add csv file for migration to new structure * this time in csv format jeez * edits to readme * freaking mess * tweaks * tweaks * trying * tweak * env file ot force only reading docs dir * update readme * tweak * remove old, too big file * tweak readme * make website again * more tweaks --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-08-05 09:49:14 -05:00
authentik-automation[bot]	e21ed7a532	web: bump API Client version (#10777 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-05 14:42:17 +00:00
Marc 'risson' Schmitt	3032792c6a	root: fix opencontainers ref (#10776 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-05 16:28:06 +02:00
Marc 'risson' Schmitt	b942ae7849	core: applications api: properly select provider (#10373 ) * core: applications api: properly select provider Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fixup get_launch_url Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * Reapply "core: applications api: add option to only list apps with launch url (#10336)" (#10370) This reverts commit `763a19b914`. * wip Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * more fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * make website Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * remove serializer change Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-05 16:23:00 +02:00
Jens L.	446a65d56d	root: remove warnings (#10774 ) * remove facebook sdk Signed-off-by: Jens Langhammer <jens@goauthentik.io> * switch to newer opencontainers fork Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-05 14:50:01 +02:00
Jens L.	0f9459a3f0	enterprise/rac: fix error when listing connection tokens as non-superuser (#10771 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-05 13:51:37 +02:00
dependabot[bot]	2a1eaea296	core: bump golang.org/x/oauth2 from 0.21.0 to 0.22.0 (#10754 ) Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.21.0 to 0.22.0. - [Commits](https://github.com/golang/oauth2/compare/v0.21.0...v0.22.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 13:07:20 +02:00
dependabot[bot]	a657cd9b1b	core: bump goauthentik.io/api/v3 from 3.2024062.1 to 3.2024062.2 (#10753 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024062.1 to 3.2024062.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024062.1...v3.2024062.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:46:13 +02:00
dependabot[bot]	1be9b8f66d	core: bump golang.org/x/sync from 0.7.0 to 0.8.0 (#10755 ) Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.7.0 to 0.8.0. - [Commits](https://github.com/golang/sync/compare/v0.7.0...v0.8.0) --- updated-dependencies: - dependency-name: golang.org/x/sync dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:46:02 +02:00
dependabot[bot]	89f156ca47	web: bump the rollup group across 1 directory with 3 updates (#10756 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.19.2 to 4.20.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.2...v4.20.0) Updates `@rollup/rollup-linux-arm64-gnu` from 4.19.2 to 4.20.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.2...v4.20.0) Updates `@rollup/rollup-linux-x64-gnu` from 4.19.2 to 4.20.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.2...v4.20.0) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:45:29 +02:00
dependabot[bot]	db6cb7f8f5	web: bump core-js from 3.37.1 to 3.38.0 in /web (#10757 ) Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) from 3.37.1 to 3.38.0. - [Release notes](https://github.com/zloirock/core-js/releases) - [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md) - [Commits](https://github.com/zloirock/core-js/commits/v3.38.0/packages/core-js) --- updated-dependencies: - dependency-name: core-js dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:45:20 +02:00
dependabot[bot]	2da5a470e4	web: bump @swc/core from 1.7.4 to 1.7.6 in /web/sfe (#10758 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.7.4 to 1.7.6. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.4...v1.7.6) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:45:05 +02:00
dependabot[bot]	2c4c1fcf37	web: bump rollup from 4.19.2 to 4.20.0 in /web/sfe (#10759 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.19.2 to 4.20.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.2...v4.20.0) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:44:53 +02:00
dependabot[bot]	e2ce57f65c	core: bump black from 24.4.2 to 24.8.0 (#10760 ) Bumps [black](https://github.com/psf/black) from 24.4.2 to 24.8.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/24.4.2...24.8.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:44:37 +02:00
dependabot[bot]	1db5816186	core: bump msgraph-sdk from 1.5.3 to 1.5.4 (#10761 ) Bumps [msgraph-sdk](https://github.com/microsoftgraph/msgraph-sdk-python) from 1.5.3 to 1.5.4. - [Release notes](https://github.com/microsoftgraph/msgraph-sdk-python/releases) - [Changelog](https://github.com/microsoftgraph/msgraph-sdk-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/microsoftgraph/msgraph-sdk-python/compare/v1.5.3...v1.5.4) --- updated-dependencies: - dependency-name: msgraph-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:44:27 +02:00
dependabot[bot]	d529af9c80	core: bump coverage from 7.6.0 to 7.6.1 (#10762 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.6.0 to 7.6.1. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.6.0...7.6.1) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:44:04 +02:00
dependabot[bot]	14acd8fb3f	core: bump ruff from 0.5.5 to 0.5.6 (#10763 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.5 to 0.5.6. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.5...0.5.6) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:43:41 +02:00
dependabot[bot]	788c07929c	core: bump django-filter from 24.2 to 24.3 (#10764 ) Bumps [django-filter](https://github.com/carltongibson/django-filter) from 24.2 to 24.3. - [Release notes](https://github.com/carltongibson/django-filter/releases) - [Changelog](https://github.com/carltongibson/django-filter/blob/main/CHANGES.rst) - [Commits](https://github.com/carltongibson/django-filter/compare/24.2...24.3) --- updated-dependencies: - dependency-name: django-filter dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:43:02 +02:00
dependabot[bot]	bc3dc728c0	core: bump uvicorn from 0.30.4 to 0.30.5 (#10765 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.30.4 to 0.30.5. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.30.4...0.30.5) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:42:55 +02:00
dependabot[bot]	9730808308	website: bump react-tooltip from 5.27.1 to 5.28.0 in /website (#10766 ) Bumps [react-tooltip](https://github.com/ReactTooltip/react-tooltip) from 5.27.1 to 5.28.0. - [Release notes](https://github.com/ReactTooltip/react-tooltip/releases) - [Changelog](https://github.com/ReactTooltip/react-tooltip/blob/master/CHANGELOG.md) - [Commits](https://github.com/ReactTooltip/react-tooltip/compare/v5.27.1...v5.28.0) --- updated-dependencies: - dependency-name: react-tooltip dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:42:45 +02:00
dependabot[bot]	4ff7c14773	core: bump debugpy from 1.8.2 to 1.8.3 (#10767 ) Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.8.2 to 1.8.3. - [Release notes](https://github.com/microsoft/debugpy/releases) - [Commits](https://github.com/microsoft/debugpy/compare/v1.8.2...v1.8.3) --- updated-dependencies: - dependency-name: debugpy dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:42:35 +02:00
Chasethechicken	2a2f1c3d3a	web: replace all occurences of the theme placeholder (#10749 ) Replace all occurences of the theme placeholder This allows the placeholder to occur multiple times in the theme url. Signed-off-by: Chasethechicken <neuringe1234@gmail.com>	2024-08-04 15:47:45 +02:00
4d62	b9bf01f693	website/docs: integrations: add what's up docker (#10690 ) * add sidebar Signed-off-by: 4d62 <github-user@sdko.org> * add documentation Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/whats-up-docker/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> --------- Signed-off-by: 4d62 <github-user@sdko.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-08-02 09:48:47 -05:00
authentik-automation[bot]	4b2b97fc4f	web: bump API Client version (#10739 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-02 16:37:16 +02:00
Jens L.	d24e2abe7f	rbac: rework API for terraform, add blueprint support (#10698 ) * rbac: rework API slightly to improve terraform compatibility Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sigh https://www.django-rest-framework.org/api-guide/filtering/#filtering-and-object-lookups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add permission support for users global permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add role support to blueprints Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix yaml tags Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add generated read-only role Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make permissions optional Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add object permission support to blueprints Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests kinda Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more tests and fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-02 16:34:30 +02:00
Jens L.	3541ec467c	sources/scim: fix duplicate service account users and changing token (#10735 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-02 11:50:14 +00:00
dependabot[bot]	81493c66b1	web: bump the sentry group across 1 directory with 2 updates (#10730 ) Bumps the sentry group with 2 updates in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript) and @spotlightjs/spotlight. Updates `@sentry/browser` from 8.21.0 to 8.22.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.21.0...8.22.0) Updates `@spotlightjs/spotlight` from 2.2.2 to 2.3.0 --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry - dependency-name: "@spotlightjs/spotlight" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:33:55 +02:00
dependabot[bot]	4965baeb7d	web: bump @hcaptcha/types from 1.0.3 to 1.0.4 in /web (#10733 ) Bumps @hcaptcha/types from 1.0.3 to 1.0.4. --- updated-dependencies: - dependency-name: "@hcaptcha/types" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:09:11 +02:00
dependabot[bot]	f8807d04d1	core: bump pyjwt from 2.8.0 to 2.9.0 (#10729 ) Bumps [pyjwt](https://github.com/jpadilla/pyjwt) from 2.8.0 to 2.9.0. - [Release notes](https://github.com/jpadilla/pyjwt/releases) - [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst) - [Commits](https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0) --- updated-dependencies: - dependency-name: pyjwt dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:09:05 +02:00
dependabot[bot]	67d77e99c7	web: bump the storybook group across 1 directory with 7 updates (#10731 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.6` \| `8.2.7` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.6` \| `8.2.7` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.6` \| `8.2.7` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.6` \| `8.2.7` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.6` \| `8.2.7` \| Updates `@storybook/addon-essentials` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/addons/links) Updates `@storybook/blocks` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/frameworks/web-components-vite) Updates `storybook` from 8.2.6 to 8.2.7 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.7/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:08:40 +02:00
dependabot[bot]	eb49c71816	web: bump the rollup group across 1 directory with 3 updates (#10732 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.19.1 to 4.19.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.1...v4.19.2) Updates `@rollup/rollup-linux-arm64-gnu` from 4.19.1 to 4.19.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.1...v4.19.2) Updates `@rollup/rollup-linux-x64-gnu` from 4.19.1 to 4.19.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.1...v4.19.2) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:08:33 +02:00
dependabot[bot]	8ace8c4edf	web: bump rollup from 4.19.1 to 4.19.2 in /web/sfe (#10734 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.19.1 to 4.19.2. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.1...v4.19.2) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-02 13:08:23 +02:00
Marc 'risson' Schmitt	50c76e86ac	ci: fix pr-comment for forks (#10727 )	2024-08-01 20:47:43 +02:00
Marc 'risson' Schmitt	cf9a4a3c00	core: add index on enabled field of sources (#10572 ) * core: add index on enabled field of sources Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * migrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * re migrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-01 20:01:41 +02:00
Jens L.	4f2ff6f065	root: insert daphne app in correct order (#10725 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-08-01 17:44:57 +00:00
Jens L.	9c1046be11	root: only load daphne django app in development (#10723 )	2024-08-01 14:32:14 +00:00
Jens L.	bd8d35bf3f	web: fix theme not applying to document correctly (#10721 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-08-01 15:08:09 +02:00
authentik-automation[bot]	63ff967d79	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10712 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-01 13:35:07 +02:00
dependabot[bot]	ad03050f34	core: bump sentry-sdk from 2.11.0 to 2.12.0 (#10713 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.11.0 to 2.12.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.11.0...2.12.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:34:45 +02:00
dependabot[bot]	be4412c9f1	core: bump uvicorn from 0.30.3 to 0.30.4 (#10714 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.30.3 to 0.30.4. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.30.3...0.30.4) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:34:35 +02:00
dependabot[bot]	a949f2d0da	web: bump @sentry/browser from 8.20.0 to 8.21.0 in /web in the sentry group across 1 directory (#10715 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.20.0 to 8.21.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.20.0...8.21.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:34:25 +02:00
dependabot[bot]	ffe5dc8ea9	web: bump @babel/preset-env from 7.25.2 to 7.25.3 in /web in the babel group across 1 directory (#10716 ) web: bump @babel/preset-env Bumps the babel group with 1 update in the /web directory: [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/preset-env` from 7.25.2 to 7.25.3 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.3/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:34:15 +02:00
dependabot[bot]	50ecadc801	core: bump goauthentik.io/api/v3 from 3.2024061.10 to 3.2024062.1 (#10717 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.10 to 3.2024062.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.10...v3.2024062.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:34:06 +02:00
dependabot[bot]	39dfa153f4	web: bump @swc/core from 1.7.3 to 1.7.4 in /web/sfe (#10719 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.7.3 to 1.7.4. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.3...v1.7.4) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-01 13:33:56 +02:00
authentik-automation[bot]	d54582c117	web: bump API Client version (#10711 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-08-01 01:43:13 +02:00
Jens Langhammer	e60c36b889	release: 2024.6.2	2024-08-01 01:13:29 +02:00
Jonas	445f99e410	website/docs: add 'Standalone' tap to Paperless-ngx config (#10657 ) * docs: Added 'Standalone' tap to Paperless-ngx Signed-off-by: Jonas <113011860+Goblinmine@users.noreply.github.com> * website/docs: added missing imports to paperless-ngx docs * website/docs: apply suggestions from code review Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: Jonas <113011860+Goblinmine@users.noreply.github.com> * website/docs: changed index.md to index.mdx and run prettier --------- Signed-off-by: Jonas <113011860+Goblinmine@users.noreply.github.com> Co-authored-by: 4d62 <github-user@sdko.org>	2024-07-31 16:43:20 -05:00
4d62	79b3442584	website/docs: integrations: add linkwarden integration (#10683 ) * add linkwarden integration to sidebar Signed-off-by: 4d62 <github-user@sdko.org> * start integration documentation Signed-off-by: 4d62 <github-user@sdko.org> * add linkwarden service configuration Signed-off-by: 4d62 <github-user@sdko.org> * authentik configuration Signed-off-by: 4d62 <github-user@sdko.org> * upd service end message Signed-off-by: 4d62 <github-user@sdko.org> * tweak install docs Signed-off-by: 4d62 <github-user@sdko.org> * make prettier happy Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/linkwarden/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/linkwarden/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/linkwarden/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * Update website/integrations/services/linkwarden/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <github-user@sdko.org> * ops Signed-off-by: 4d62 <github-user@sdko.org> --------- Signed-off-by: 4d62 <github-user@sdko.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-31 16:13:06 -05:00
Jens L.	bf546f8486	providers/saml: remove redundant ACSUrl in POST (#10707 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-31 21:54:15 +02:00
Jens L.	d2c96da5f2	providers/radius: fix custom attribute (#10704 ) * providers/radius: fix error when adding custom attribute Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix ldap source property mapping form Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-31 18:00:24 +02:00
Jens L.	122cf4f744	website/docs: prepare 2024.6.2 (#10697 ) * website/docs: prepare 2024.6.2 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-31 15:37:10 +02:00
Jens L.	9b595b2031	outposts: ensure minimum refresh interval (#10701 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-31 14:43:03 +02:00
dependabot[bot]	abfc48e00e	core: bump google-api-python-client from 2.138.0 to 2.139.0 (#10691 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.138.0 to 2.139.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.138.0...v2.139.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-31 12:19:53 +02:00
dependabot[bot]	bb568df2d2	web: bump @spotlightjs/spotlight from 2.2.0 to 2.2.2 in /web in the sentry group across 1 directory (#10692 ) web: bump @spotlightjs/spotlight Bumps the sentry group with 1 update in the /web directory: @spotlightjs/spotlight. Updates `@spotlightjs/spotlight` from 2.2.0 to 2.2.2 --- updated-dependencies: - dependency-name: "@spotlightjs/spotlight" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-31 12:19:40 +02:00
dependabot[bot]	dd95fd4c7e	web: bump chromedriver from 127.0.0 to 127.0.1 in /tests/wdio (#10693 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 127.0.0 to 127.0.1. - [Commits](https://github.com/giggio/node-chromedriver/compare/127.0.0...127.0.1) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-31 12:19:13 +02:00
Mike Fotinakis	3824815d50	website/docs: update nginx docs for embedded outposts (#10422 ) * Update nginx docs for embedded outposts. * Update _nginx_proxy_manager.md Signed-off-by: Mike Fotinakis <mike@fotinakis.com> --------- Signed-off-by: Mike Fotinakis <mike@fotinakis.com>	2024-07-30 16:24:39 +02:00
Jens L.	bce848596f	root: dependency maintenance (#10689 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-30 15:26:06 +02:00
djeclemen	03d156a2d9	website/integrations: fix Nextcloud scopes (#10688 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-30 11:57:58 +00:00
Mike Fotinakis	105ab0d2ff	website/docs: explain guarantees around blueprint ordering (#10595 ) * Load blueprints in deterministic order. * Update docs. * Remove doc update Signed-off-by: Mike Fotinakis <mike@fotinakis.com> * Update documentation only. --------- Signed-off-by: Mike Fotinakis <mike@fotinakis.com>	2024-07-30 13:24:58 +02:00
dependabot[bot]	0faaedba9e	core: bump goauthentik.io/api/v3 from 3.2024061.9 to 3.2024061.10 (#10684 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.9 to 3.2024061.10. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.9...v3.2024061.10) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-30 12:13:52 +02:00
dependabot[bot]	a7c112751f	web: bump @spotlightjs/spotlight from 2.1.1 to 2.2.0 in /web in the sentry group across 1 directory (#10685 ) web: bump @spotlightjs/spotlight Bumps the sentry group with 1 update in the /web directory: @spotlightjs/spotlight. Updates `@spotlightjs/spotlight` from 2.1.1 to 2.2.0 --- updated-dependencies: - dependency-name: "@spotlightjs/spotlight" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-30 12:13:43 +02:00
dependabot[bot]	4cca41d40e	web: bump the babel group across 1 directory with 2 updates (#10686 ) Bumps the babel group with 2 updates in the /web directory: [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) and [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/core` from 7.24.9 to 7.25.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.2/packages/babel-core) Updates `@babel/preset-env` from 7.25.0 to 7.25.2 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.2/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-30 12:13:33 +02:00
authentik-automation[bot]	3ab975016f	web: bump API Client version (#10681 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-29 20:53:59 +00:00
Marc 'risson' Schmitt	3b1c42776b	sources/scim: add property mappings (#10650 ) * sources/scim: add property mappings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix filterset Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix doc link Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-29 22:32:51 +02:00
Jens L.	1b285f85c0	outposts: implement general paginator for list API requests (#10619 ) * outposts: implement general paginator Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate LDAP Signed-off-by: Jens Langhammer <jens@goauthentik.io> * change main outpost refresh logic to use paginator everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add comments to understand anything Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually use paginator everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-29 22:14:18 +02:00
Bama	d79ac0e5bc	website/scripts/docsmg: switch docsmg from using .env to docsmg.env (#10680 ) * add docsmg tool * moved to the correct scripts directory * removed test files * added install script and readme draft to docsmg * fix install script * fixed issues * Revert "fixed issues" This reverts commit `a51192025f`. * Revert "Revert "fixed issues"" This reverts commit `ab68918fea`. * added dotenv and updated readme * fixed install script * update readme to ensure that new installers of rust have envs loaded * changed docsmg from using .env to docsmg.env	2024-07-29 15:12:37 -05:00
Jens L.	7f0c6ddb5b	web: fix dark theme and theme switch (#10667 ) * base locale off of ak-element Signed-off-by: Jens Langhammer <jens@goauthentik.io> * revert temp theme fixes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix theme switching Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add basic support for theme-different images Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sort outposts in card Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set default theme based on pre-hydrated brand settings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * activate global theme before root in shadow dom Signed-off-by: Jens Langhammer <jens@goauthentik.io> * logging Signed-off-by: Jens Langhammer <jens@goauthentik.io> * when using _applyTheme, check media matcher Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-29 20:00:25 +02:00
Bama	2a70b4aae2	website/scripts/docsmg: Updated README (#10678 ) * add docsmg tool * moved to the correct scripts directory * removed test files * added install script and readme draft to docsmg * fix install script * fixed issues * Revert "fixed issues" This reverts commit `a51192025f`. * Revert "Revert "fixed issues"" This reverts commit `ab68918fea`. * added dotenv and updated readme * fixed install script * update readme to ensure that new installers of rust have envs loaded	2024-07-29 12:53:11 -05:00
dependabot[bot]	81c3962df4	core: bump goauthentik.io/api/v3 from 3.2024061.8 to 3.2024061.9 (#10669 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.8 to 3.2024061.9. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.8...v3.2024061.9) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-29 13:32:39 +02:00
dependabot[bot]	201ad2cc2e	web: bump @babel/preset-env from 7.24.8 to 7.25.0 in /web in the babel group across 1 directory (#10670 ) web: bump @babel/preset-env Bumps the babel group with 1 update in the /web directory: [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/preset-env` from 7.24.8 to 7.25.0 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.25.0/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-29 13:32:27 +02:00
dependabot[bot]	4e8973db7a	web: bump the rollup group across 1 directory with 3 updates (#10672 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.19.0 to 4.19.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.0...v4.19.1) Updates `@rollup/rollup-linux-arm64-gnu` from 4.19.0 to 4.19.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.0...v4.19.1) Updates `@rollup/rollup-linux-x64-gnu` from 4.19.0 to 4.19.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.0...v4.19.1) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-29 13:32:17 +02:00
dependabot[bot]	af9febdfce	web: bump @swc/core from 1.7.2 to 1.7.3 in /web/sfe (#10673 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.7.2 to 1.7.3. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.2...v1.7.3) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-29 13:32:10 +02:00
dependabot[bot]	f3a65b9f02	web: bump rollup from 4.19.0 to 4.19.1 in /web/sfe (#10674 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.19.0 to 4.19.1. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.19.0...v4.19.1) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-29 13:32:02 +02:00
Bama	ca7705689d	website/scripts/docsmg: Bug fixes (#10668 ) * add docsmg tool * moved to the correct scripts directory * removed test files * added install script and readme draft to docsmg * fix install script * fixed issues * Revert "fixed issues" This reverts commit `a51192025f`. * Revert "Revert "fixed issues"" This reverts commit `ab68918fea`. * added dotenv and updated readme * fixed install script	2024-07-28 21:32:29 -05:00
NiceDevil	270c9661a1	website/integrations: add engomo (#10538 ) * First try on documentation for engomo :) Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update index.md Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * condensed scopes and redirect URIs ty @4d62 Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * testing added Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * added engomo Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * test with prettier? * Revert "test with prettier?" This reverts commit `44c2eb33cd`. * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * index.md aktualisieren Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * tanberry's descriptions added :) Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * engomo is always lower case Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * suggestions from @4d62 Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * bold headings Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/engomo/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * p --------- Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: 4d62 <github-user@sdko.org> Co-authored-by: root <root@dev.glaeser-it.local>	2024-07-28 15:40:50 -05:00
Jens Langhammer	35d478dc63	ci: fix expression for outpost GHA caching Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-28 17:09:01 +02:00
adrsham	eee06d527e	website/docs: fix typos in passwordless setup guide (#10661 ) * Update typos in passwordless setup guide Some key words used in the setup are incorrect and caused confusion for me trying to setup passwordless flow. User should pick Authentication from the "Designation" drop down when creating a flow. Then the stage created should be "Authenticator Validation Stage", not Authentication. Signed-off-by: adrsham <7330099+adrsham@users.noreply.github.com> * ci: fix docker push Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cache only when pushing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only attest when pushing image Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: adrsham <7330099+adrsham@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-28 17:00:40 +02:00
Jens L.	afbc79f274	website/docs: fix missing mermaid theme (#10665 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-28 16:05:13 +02:00
Bama	d05e3e60c3	website/scripts/docsmg: Add install script and readme draft (#10659 ) * add docsmg tool * moved to the correct scripts directory * removed test files * added install script and readme draft to docsmg	2024-07-26 16:52:10 -05:00
authentik-automation[bot]	97726b1cbe	web: bump API Client version (#10653 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-26 23:35:57 +02:00
Bama	59973d1f06	website/scripts: Add docsmg migration tool (#10658 ) * add docsmg tool * moved to the correct scripts directory * removed test files	2024-07-26 15:54:41 -05:00
Marc 'risson' Schmitt	45e464368e	core: add primitives for source property mappings (#10651 )	2024-07-26 19:14:27 +02:00
Jens L.	ecd6c0a4d8	root: make pyrad a standard dependency (#10649 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-26 14:33:14 +02:00
Jens L.	51bf45e0a7	core: remove deprecated sentry-sdk method usage (#10648 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-26 13:51:30 +02:00
dependabot[bot]	a89215bc22	web: bump @swc/core from 1.7.1 to 1.7.2 in /web/sfe (#10645 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.7.1 to 1.7.2. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.1...v1.7.2) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:31:24 +02:00
dependabot[bot]	f5ba3571c9	core: bump github.com/redis/go-redis/v9 from 9.6.0 to 9.6.1 (#10644 ) Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.6.0 to 9.6.1. - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/go-redis/compare/v9.6.0...v9.6.1) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:31:12 +02:00
dependabot[bot]	3b82a6ffb6	core: bump goauthentik.io/api/v3 from 3.2024061.5 to 3.2024061.8 (#10643 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.5 to 3.2024061.8. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.5...v3.2024061.8) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:31:02 +02:00
dependabot[bot]	1da3fe8d57	core: bump pytest from 8.3.1 to 8.3.2 (#10642 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.1 to 8.3.2. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.3.1...8.3.2) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:30:45 +02:00
dependabot[bot]	e63c77f092	core: bump google-api-python-client from 2.137.0 to 2.138.0 (#10641 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.137.0 to 2.138.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.137.0...v2.138.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:30:38 +02:00
Jens L.	c3d7f9808c	core: fix flaky tests (#10647 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-26 13:30:24 +02:00
dependabot[bot]	37c77279fe	core: bump ruff from 0.5.4 to 0.5.5 (#10640 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.4 to 0.5.5. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.4...0.5.5) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-26 13:21:39 +02:00
authentik-automation[bot]	af7d6de85b	web: bump API Client version (#10637 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-25 19:11:10 +02:00
Jens L.	61c6887e82	providers/radius: Add support for custom attributes (#10509 ) * unrelated: show logs for failed blueprints Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add dictionaries Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated: remove some unused api functions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add initial api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * placeholder backend Signed-off-by: Jens Langhammer <jens@goauthentik.io> * idk Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add proper mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-25 19:08:33 +02:00
authentik-automation[bot]	650370d94c	web: bump API Client version (#10634 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-25 16:17:20 +02:00
Marc 'risson' Schmitt	ced4533890	sources/ldap: rename ldappropertymapping to ldapsourcepropertymapping (#10606 )	2024-07-25 16:09:36 +02:00
authentik-automation[bot]	76fcdabae4	web: bump API Client version (#10633 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-25 12:40:05 +00:00
Marc 'risson' Schmitt	e65b905301	sources: refactor user connection api (#10607 )	2024-07-25 14:16:50 +02:00
dependabot[bot]	984d64630b	core: bump pdoc from 14.5.1 to 14.6.0 (#10621 ) Bumps [pdoc](https://github.com/mitmproxy/pdoc) from 14.5.1 to 14.6.0. - [Changelog](https://github.com/mitmproxy/pdoc/blob/main/CHANGELOG.md) - [Commits](https://github.com/mitmproxy/pdoc/compare/v14.5.1...v14.6.0) --- updated-dependencies: - dependency-name: pdoc dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:59 +02:00
dependabot[bot]	51d8a9d77e	core: bump selenium from 4.23.0 to 4.23.1 (#10622 ) Bumps [selenium](https://github.com/SeleniumHQ/Selenium) from 4.23.0 to 4.23.1. - [Release notes](https://github.com/SeleniumHQ/Selenium/releases) - [Commits](https://github.com/SeleniumHQ/Selenium/commits) --- updated-dependencies: - dependency-name: selenium dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:46 +02:00
dependabot[bot]	e7e095c7dd	core: bump importlib-metadata from 7.1.0 to 8.0.0 (#10623 ) Bumps [importlib-metadata](https://github.com/python/importlib_metadata) from 7.1.0 to 8.0.0. - [Release notes](https://github.com/python/importlib_metadata/releases) - [Changelog](https://github.com/python/importlib_metadata/blob/main/NEWS.rst) - [Commits](https://github.com/python/importlib_metadata/compare/v7.1.0...v8.0.0) --- updated-dependencies: - dependency-name: importlib-metadata dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:37 +02:00
dependabot[bot]	044a43d987	core: bump sentry-sdk from 2.10.0 to 2.11.0 (#10624 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.10.0 to 2.11.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.10.0...2.11.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:29 +02:00
dependabot[bot]	9624eef99c	website: bump postcss from 8.4.39 to 8.4.40 in /website (#10625 ) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.39 to 8.4.40. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.39...8.4.40) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:20 +02:00
dependabot[bot]	9f2b435b09	web: bump @sentry/browser from 8.19.0 to 8.20.0 in /web in the sentry group across 1 directory (#10626 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.19.0 to 8.20.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.19.0...8.20.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:12 +02:00
dependabot[bot]	14463aa3ce	web: bump the storybook group across 1 directory with 7 updates (#10627 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.5` \| `8.2.6` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.5` \| `8.2.6` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.5` \| `8.2.6` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.5` \| `8.2.6` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.5` \| `8.2.6` \| Updates `@storybook/addon-essentials` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/addons/links) Updates `@storybook/blocks` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/frameworks/web-components-vite) Updates `storybook` from 8.2.5 to 8.2.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.6/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:18:02 +02:00
dependabot[bot]	dcf07c55eb	web: bump chromedriver from 126.0.5 to 127.0.0 in /tests/wdio (#10628 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.5 to 127.0.0. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.5...127.0.0) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:17:52 +02:00
dependabot[bot]	580e5f71a1	web: bump yaml from 2.4.5 to 2.5.0 in /web (#10629 ) Bumps [yaml](https://github.com/eemeli/yaml) from 2.4.5 to 2.5.0. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](https://github.com/eemeli/yaml/compare/v2.4.5...v2.5.0) --- updated-dependencies: - dependency-name: yaml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:17:44 +02:00
dependabot[bot]	94bc10305f	web: bump @swc/core from 1.7.0 to 1.7.1 in /web/sfe (#10630 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.7.0 to 1.7.1. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.7.0...v1.7.1) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-25 13:17:11 +02:00
Jens L.	1d4bfc0674	web/admin: widen prompt form (#10615 ) * web/admin: make prompt form wider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unrelated vscode settings Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-24 21:13:40 +02:00
Jens L.	3cdf12fd6a	web/admin: fix missing SAML Provider ECDSA options (#10612 ) * web/admin: fix missing SAML Provider ECDSA options Signed-off-by: Jens Langhammer <jens@goauthentik.io> * deduplicate Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-24 20:42:42 +02:00
Jens L.	f0e24677a8	lifecycle: only create tenant media root if needed (#10616 )	2024-07-24 20:39:19 +02:00
Jens L.	8e4a2b750e	core: remove html language tag for pages that are translated (#10611 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-24 18:58:52 +02:00
Jens L.	49a2a3ba05	events: fix race condition (#10602 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-24 16:49:02 +02:00
Marc 'risson' Schmitt	4101168552	website/docs: merge next release notes into 2024.8 (#10605 )	2024-07-24 15:02:53 +02:00
Jens L.	c5313d6b7d	stages/prompt: fix prompt not editable with invalid expression (#10603 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-24 14:24:43 +02:00
dependabot[bot]	13119e2855	core: bump goauthentik.io/api/v3 from 3.2024061.4 to 3.2024061.5 (#10596 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.4 to 3.2024061.5. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.4...v3.2024061.5) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-24 11:39:02 +02:00
dependabot[bot]	32e5485adf	web: bump @spotlightjs/spotlight from 2.0.0 to 2.1.1 in /web in the sentry group across 1 directory (#10597 ) web: bump @spotlightjs/spotlight Bumps the sentry group with 1 update in the /web directory: @spotlightjs/spotlight. Updates `@spotlightjs/spotlight` from 2.0.0 to 2.1.1 --- updated-dependencies: - dependency-name: "@spotlightjs/spotlight" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-24 11:38:52 +02:00
dependabot[bot]	ad567f0ec0	web: bump typescript from 5.5.3 to 5.5.4 in /web (#10599 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.3 to 5.5.4. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.3...v5.5.4) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-24 11:37:45 +02:00
Jens L.	1df81eca86	web/flows: don't grab focus for password input on identification stage (#10593 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-23 17:58:32 +02:00
Jens L.	619707e485	lib/sync: handle SkipObject in direct triggered tasks (#10590 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-23 15:38:20 +02:00
dependabot[bot]	c077cf5c88	web: bump @typescript-eslint/eslint-plugin from 7.16.1 to 7.17.0 in /tests/wdio (#10583 ) * web: bump @typescript-eslint/eslint-plugin in /tests/wdio Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 7.16.1 to 7.17.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.17.0/packages/eslint-plugin) --- updated-dependencies: - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Revert "web: bump @spotlightjs/spotlight from 2.0.0 to 2.1.0 in /web in the sentry group across 1 directory (#10581)" This reverts commit `34decc93b2`. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-23 12:52:17 +02:00
dependabot[bot]	e475705212	core: bump goauthentik.io/api/v3 from 3.2024061.3 to 3.2024061.4 (#10579 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.3 to 3.2024061.4. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.3...v3.2024061.4) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 12:28:28 +02:00
dependabot[bot]	30d9df9d5a	website: bump typescript from 5.5.3 to 5.5.4 in /website (#10580 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.3 to 5.5.4. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.3...v5.5.4) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 12:28:10 +02:00
dependabot[bot]	34decc93b2	web: bump @spotlightjs/spotlight from 2.0.0 to 2.1.0 in /web in the sentry group across 1 directory (#10581 ) web: bump @spotlightjs/spotlight Bumps the sentry group with 1 update in the /web directory: @spotlightjs/spotlight. Updates `@spotlightjs/spotlight` from 2.0.0 to 2.1.0 --- updated-dependencies: - dependency-name: "@spotlightjs/spotlight" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 12:27:47 +02:00
dependabot[bot]	043c0cf927	web: bump typescript from 5.5.3 to 5.5.4 in /tests/wdio (#10584 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.3 to 5.5.4. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.3...v5.5.4) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 12:27:34 +02:00
Marc 'risson' Schmitt	f3640bd3c0	sources/scim: fix schema loading with pwd is not set properly (#10574 )	2024-07-23 12:18:32 +02:00
Jens L.	97822771b8	sources/ldap: fix migrations failing (#10588 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-23 12:17:53 +02:00
dependabot[bot]	c6bf33e5af	web: bump @typescript-eslint/parser from 7.16.1 to 7.17.0 in /tests/wdio (#10585 ) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 7.16.1 to 7.17.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.17.0/packages/parser) --- updated-dependencies: - dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 11:24:54 +02:00
dependabot[bot]	25f5432615	web: bump @floating-ui/dom from 1.6.7 to 1.6.8 in /web (#10586 ) Bumps [@floating-ui/dom](https://github.com/floating-ui/floating-ui/tree/HEAD/packages/dom) from 1.6.7 to 1.6.8. - [Release notes](https://github.com/floating-ui/floating-ui/releases) - [Changelog](https://github.com/floating-ui/floating-ui/blob/master/packages/dom/CHANGELOG.md) - [Commits](https://github.com/floating-ui/floating-ui/commits/@floating-ui/dom@1.6.8/packages/dom) --- updated-dependencies: - dependency-name: "@floating-ui/dom" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 11:24:27 +02:00
dependabot[bot]	c050caf33e	ci: bump docker/setup-qemu-action from 3.1.0 to 3.2.0 (#10578 ) Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3.1.0 to 3.2.0. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-23 11:23:45 +02:00
authentik-automation[bot]	441083887f	web: bump API Client version (#10587 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-23 11:13:39 +02:00
Jens L.	5a8d580c86	core: b2c improvements p1 (#9257 ) * add default app and restrict Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also pass raw email token for custom email templates Signed-off-by: Jens Langhammer <jens@goauthentik.io> * revoke access token when user logs out Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remigrate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add command to change user types Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * blankable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-23 11:10:38 +02:00
transifex-integration[bot]	3f30ccf910	translate: Updates for file web/xliff/en.xlf in fr (#10575 ) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-22 19:13:58 +02:00
authentik-automation[bot]	39c08eeaf8	web: bump API Client version (#10573 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-22 15:29:34 +02:00
Marc 'risson' Schmitt	1a6ac4740d	sources: introduce new property mappings per user and group (#8750 ) * sources: introduce new property mappings per-user and group Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * sources/ldap: migrate to new property mappings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint-fix and make gen Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * web changes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix tests Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * update tests Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * remove flatten for generic implem Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * rework migration Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint-fix Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * wip Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix migrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * re-add field migration to property mappings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix migrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * more migrations fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * easy fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * migrate to propertymappingmanager Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * ruff and small fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * move mapping things into a separate class Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * migrations: use using(db_alias) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * migrations: use built-in variable Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add docs Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add release notes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-22 15:26:22 +02:00
DriftDevil	919d5fce39	providers/proxy: fix Traefik label generation for v3 (#10411 ) Co-authored-by: Kenneth Huang <kthuang@hotmail.com>	2024-07-22 14:17:27 +02:00
dependabot[bot]	fdcf6a1f14	core: bump library/node from 22.4 to 22.5 (#10570 ) * core: bump library/node from 22.4 to 22.5 Bumps library/node from 22.4 to 22.5. --- updated-dependencies: - dependency-name: library/node dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * unlock node Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-22 13:33:45 +02:00
dependabot[bot]	93c3b9f70a	core: bump cryptography from 42.0.8 to 43.0.0 (#10561 ) * core: bump cryptography from 42.0.8 to 43.0.0 Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.8 to 43.0.0. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.8...43.0.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * limit cert common name Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-22 13:33:19 +02:00
dependabot[bot]	60b59c1216	web: bump @sentry/browser from 8.18.0 to 8.19.0 in /web in the sentry group across 1 directory (#10559 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.18.0 to 8.19.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.18.0...8.19.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 13:09:21 +02:00
dependabot[bot]	647019c087	core: bump scim2-filter-parser from 0.6.0 to 0.7.0 (#10560 ) Bumps [scim2-filter-parser](https://github.com/15five/scim2-filter-parser) from 0.6.0 to 0.7.0. - [Changelog](https://github.com/15five/scim2-filter-parser/blob/master/CHANGELOG.rst) - [Commits](https://github.com/15five/scim2-filter-parser/compare/0.6.0...0.7.0) --- updated-dependencies: - dependency-name: scim2-filter-parser dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:51:24 +02:00
dependabot[bot]	ea9002adec	core: bump selenium from 4.22.0 to 4.23.0 (#10562 ) Bumps [selenium](https://github.com/SeleniumHQ/Selenium) from 4.22.0 to 4.23.0. - [Release notes](https://github.com/SeleniumHQ/Selenium/releases) - [Commits](https://github.com/SeleniumHQ/Selenium/compare/selenium-4.22.0...selenium-4.23.0) --- updated-dependencies: - dependency-name: selenium dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:51:09 +02:00
dependabot[bot]	2a9ba6957f	web: bump the storybook group across 1 directory with 7 updates (#10563 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.4` \| `8.2.5` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.4` \| `8.2.5` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.4` \| `8.2.5` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.4` \| `8.2.5` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.4` \| `8.2.5` \| Updates `@storybook/addon-essentials` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/addons/links) Updates `@storybook/blocks` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/frameworks/web-components-vite) Updates `storybook` from 8.2.4 to 8.2.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.5/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:51:01 +02:00
dependabot[bot]	b834d2aabb	core: bump ruff from 0.5.3 to 0.5.4 (#10565 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.3 to 0.5.4. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.3...0.5.4) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:50:40 +02:00
dependabot[bot]	6ef5a9c094	web: bump the rollup group across 1 directory with 3 updates (#10566 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.18.1 to 4.19.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.1...v4.19.0) Updates `@rollup/rollup-linux-arm64-gnu` from 4.18.1 to 4.19.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.1...v4.19.0) Updates `@rollup/rollup-linux-x64-gnu` from 4.18.1 to 4.19.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.1...v4.19.0) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:50:33 +02:00
dependabot[bot]	f22bc0d9c1	core: bump pytest from 8.2.2 to 8.3.1 (#10567 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.2.2 to 8.3.1. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.2.2...8.3.1) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:50:24 +02:00
dependabot[bot]	3fc99e48e6	web: bump rollup from 4.18.1 to 4.19.0 in /web/sfe (#10569 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.18.1 to 4.19.0. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.1...v4.19.0) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:50:14 +02:00
dependabot[bot]	093fb52e7a	core: bump github.com/redis/go-redis/v9 from 9.5.4 to 9.6.0 (#10568 ) Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.5.4 to 9.6.0. - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/go-redis/commits/v9.6.0) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:49:14 +02:00
dependabot[bot]	213e845663	core: bump uvicorn from 0.30.1 to 0.30.3 (#10564 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.30.1 to 0.30.3. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.30.1...0.30.3) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-22 12:49:03 +02:00
Mike Fotinakis	fd1d252d44	root: Make health checks compatible with cloud platform load balancers (#10554 ) * Change health checks to return HTTP 200. * Fix web.go check. * Only update docs. * update docs and add changelog entry Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-20 21:15:29 +02:00
Tana M Berry	f24d508734	website/docs: update Docs about flow executors (#10485 )	2024-07-19 21:08:32 +02:00
Jens L.	6abbe1dd4b	web: fix mismatched button labels for boundpolicy and boundstage list (#10551 ) * remove wrong help text for multi select Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make labelling for create and and bind existing more consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix oobe missing label Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix application library empty state not shown Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing formatting for title on access denied stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-19 17:51:28 +02:00
Jens L.	ffb4d911af	root: temporarily lock node to 22.4 (#10553 )	2024-07-19 17:37:43 +02:00
Jens L.	f83838003b	core: improve error handling on ASGI level (#10547 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-19 17:17:42 +02:00
dependabot[bot]	6eb6e48cbc	core: bump ruff from 0.5.2 to 0.5.3 (#10549 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.2 to 0.5.3. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.2...0.5.3) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-19 17:13:09 +02:00
Jens L.	e3a46522f6	ci: add container image attestation (#10478 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-19 16:48:50 +02:00
perrze	5f00b23f78	website/docs: fix typo in flows docs (#10550 ) fix: the instead of to Signed-off-by: perrze <54007667+perrze@users.noreply.github.com>	2024-07-19 11:20:07 +00:00
Keyinator	f5e8c2891d	website/integrations: Improve discord role sync policies (#10219 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-18 14:15:48 -05:00
4d62	4583f636ef	website/docs: installation: ensures .env setup works consistently across GNU and BSD systems (#10540 ) Signed-off-by: 4d62 <github-user@sdko.org>	2024-07-18 18:04:12 +02:00
Simon Tamás	a845d8c7d2	website/integrations: add Observium documentation (#10460 ) * website/integrations: add Observium documentation * Reorganize docs and fix wording * Update website/integrations/services/observium/index.md Co-authored-by: 4d62 <github-user@sdko.org> Signed-off-by: Simon Tamás <44925919+Simi23@users.noreply.github.com> * Change Observium install guide link Signed-off-by: Simon Tamás <44925919+Simi23@users.noreply.github.com> --------- Signed-off-by: Simon Tamás <44925919+Simi23@users.noreply.github.com> Co-authored-by: 4d62 <github-user@sdko.org>	2024-07-18 10:05:50 -05:00
dependabot[bot]	5e458d4d0e	core: bump structlog from 24.2.0 to 24.4.0 (#10541 ) Bumps [structlog](https://github.com/hynek/structlog) from 24.2.0 to 24.4.0. - [Release notes](https://github.com/hynek/structlog/releases) - [Changelog](https://github.com/hynek/structlog/blob/main/CHANGELOG.md) - [Commits](https://github.com/hynek/structlog/compare/24.2.0...24.4.0) --- updated-dependencies: - dependency-name: structlog dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-18 12:52:44 +02:00
dependabot[bot]	444f93a7e8	core: bump msgraph-sdk from 1.5.2 to 1.5.3 (#10542 ) Bumps [msgraph-sdk](https://github.com/microsoftgraph/msgraph-sdk-python) from 1.5.2 to 1.5.3. - [Release notes](https://github.com/microsoftgraph/msgraph-sdk-python/releases) - [Changelog](https://github.com/microsoftgraph/msgraph-sdk-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/microsoftgraph/msgraph-sdk-python/compare/v1.5.2...v1.5.3) --- updated-dependencies: - dependency-name: msgraph-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-18 12:52:27 +02:00
dependabot[bot]	a10dc7208f	web: bump chromedriver from 126.0.4 to 126.0.5 in /tests/wdio (#10543 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.4 to 126.0.5. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.4...126.0.5) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-18 12:52:20 +02:00
dependabot[bot]	477ab66e84	web: bump @swc/core from 1.6.13 to 1.7.0 in /web/sfe (#10544 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.6.13 to 1.7.0. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.6.13...v1.7.0) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-18 12:52:11 +02:00
dependabot[bot]	a48e31b9f8	web: bump @typescript-eslint/parser from 7.14.1 to 7.16.1 in /web (#10530 ) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 7.14.1 to 7.16.1. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.1/packages/parser) --- updated-dependencies: - dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-17 13:38:39 +02:00
dependabot[bot]	cacdab5a0a	web: bump @sentry/browser from 8.17.0 to 8.18.0 in /web in the sentry group across 1 directory (#10529 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.17.0 to 8.18.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.17.0...8.18.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-17 13:33:24 +02:00
dependabot[bot]	5627771776	web: bump @floating-ui/dom from 1.6.6 to 1.6.7 in /web (#10531 ) Bumps [@floating-ui/dom](https://github.com/floating-ui/floating-ui/tree/HEAD/packages/dom) from 1.6.6 to 1.6.7. - [Release notes](https://github.com/floating-ui/floating-ui/releases) - [Changelog](https://github.com/floating-ui/floating-ui/blob/master/packages/dom/CHANGELOG.md) - [Commits](https://github.com/floating-ui/floating-ui/commits/@floating-ui/dom@1.6.7/packages/dom) --- updated-dependencies: - dependency-name: "@floating-ui/dom" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-17 13:33:14 +02:00
dependabot[bot]	d07f555d2f	web: bump @typescript-eslint/eslint-plugin from 7.14.1 to 7.16.1 in /web (#10532 ) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 7.14.1 to 7.16.1. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.1/packages/eslint-plugin) --- updated-dependencies: - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-17 13:33:04 +02:00
dependabot[bot]	7d83e57a64	web: bump @fortawesome/fontawesome-free from 6.5.2 to 6.6.0 in /web (#10533 ) Bumps [@fortawesome/fontawesome-free](https://github.com/FortAwesome/Font-Awesome) from 6.5.2 to 6.6.0. - [Release notes](https://github.com/FortAwesome/Font-Awesome/releases) - [Changelog](https://github.com/FortAwesome/Font-Awesome/blob/6.x/CHANGELOG.md) - [Commits](https://github.com/FortAwesome/Font-Awesome/compare/6.5.2...6.6.0) --- updated-dependencies: - dependency-name: "@fortawesome/fontawesome-free" dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-17 13:32:52 +02:00
Marc 'risson' Schmitt	409934196c	web: fix lint (#10524 )	2024-07-16 15:42:07 +00:00
dependabot[bot]	62c882cb0e	web: bump @typescript-eslint/parser from 7.16.0 to 7.16.1 in /tests/wdio (#10515 ) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 7.16.0 to 7.16.1. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.1/packages/parser) --- updated-dependencies: - dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:29:09 +02:00
dependabot[bot]	033b55ba51	web: bump @babel/core from 7.24.8 to 7.24.9 in /web in the babel group across 1 directory (#10513 ) web: bump @babel/core in /web in the babel group across 1 directory Bumps the babel group with 1 update in the /web directory: [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core). Updates `@babel/core` from 7.24.8 to 7.24.9 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.9/packages/babel-core) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:12:13 +02:00
dependabot[bot]	e5e14d3b5a	web: bump eslint-plugin-sonarjs from 0.25.1 to 1.0.3 in /web (#10518 ) Bumps [eslint-plugin-sonarjs](https://github.com/SonarSource/eslint-plugin-sonarjs) from 0.25.1 to 1.0.3. - [Release notes](https://github.com/SonarSource/eslint-plugin-sonarjs/releases) - [Commits](https://github.com/SonarSource/eslint-plugin-sonarjs/compare/0.25.1...1.0.3) --- updated-dependencies: - dependency-name: eslint-plugin-sonarjs dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:11:50 +02:00
dependabot[bot]	9475c1b0cf	web: bump prettier from 3.3.2 to 3.3.3 in /web (#10517 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.2 to 3.3.3. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.2...3.3.3) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:11:37 +02:00
dependabot[bot]	6875efcfdd	web: bump @typescript-eslint/eslint-plugin from 7.16.0 to 7.16.1 in /tests/wdio (#10516 ) web: bump @typescript-eslint/eslint-plugin in /tests/wdio Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 7.16.0 to 7.16.1. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.1/packages/eslint-plugin) --- updated-dependencies: - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:11:02 +02:00
dependabot[bot]	5cf4172a6f	web: bump the storybook group across 1 directory with 7 updates (#10514 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.2` \| `8.2.4` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.2` \| `8.2.4` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.2` \| `8.2.4` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.2` \| `8.2.4` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.2` \| `8.2.4` \| Updates `@storybook/addon-essentials` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/addons/links) Updates `@storybook/blocks` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/frameworks/web-components-vite) Updates `storybook` from 8.2.2 to 8.2.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.4/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 12:10:53 +02:00
dependabot[bot]	dbfa5f2fd1	core: bump goauthentik.io/api/v3 from 3.2024061.2 to 3.2024061.3 (#10512 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.2 to 3.2024061.3. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.2...v3.2024061.3) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 11:51:55 +02:00
authentik-automation[bot]	e44341d5e0	web: bump API Client version (#10511 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-16 11:51:48 +02:00
dependabot[bot]	f77ee77f7e	core: bump sentry-sdk from 2.9.0 to 2.10.0 (#10519 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.9.0 to 2.10.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.9.0...2.10.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-16 11:51:21 +02:00
Marc 'risson' Schmitt	d4b39b30cb	website: fix lint (#10520 )	2024-07-16 11:49:07 +02:00
Ken Sternberg	b0507d2063	web: provide 'show password' button (#10337 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: provide `show password` on login page Provide a `show password` icon, text, and button for the password field both in the IdentificationStage and the PasswordStage. Essentially the same code for both, although the id of the password field is unique to each. Requested by Cloudflare. Seems to be a common thing anyway. Should it be an administrative option that this facility is available? From where should I derive that information? I suspect the answer is "a site attribute," but I'd like to get confirmation. * web: comment doesn't need to be exposed. It's sufficient where it is . * web: fix button rendering issues During testing, the buttons did not change as expected. We are using pure DOM state to control the look of the button, and avoiding using `.requestUpdate()` to avoid losing customer input, so depending upon Lit to re-render just the button was an error. This commit goes old-school and updates the button's label and icon using standard DOM features, although we do lean into Lit-html`s `render()` function to create the DOM component for the icon. * web: provide `show password` on login page Provide a `show password` icon, text, and button for the password field both in the IdentificationStage and the PasswordStage. Essentially the same code for both, although the id of the password field is unique to each. Provide a configuration detail server-side to allow administrator to enable or disable the 'show password' feature. Off by default. Requested by Cloudflare. Seems to be a common thing anyway. Making it configurable wasn't in Cloudfare's request, but it seemed logical to add. * ensure the tests pass; quibbling over the wording of the admin field continues. * Removed some manually identified fluff. * web: break out `show password`-enabled input field into its own component Provides a `show password` field, but as a LightDOM-oriented web component. This form of input[type="password"] is for flows only, as it has a number of specializations for understanding a flow's validating round-trip, possible error messages within the challenge, and is left within the LightDOM both to support compatibility issues and to avoid using `elementInterals`, which is a DOM feature not supported by some older browsers. Avoids having to maintain two different instances of the same logic, both for permitting 'show password', and for handling it. * web: update PasswordStageForm according to lit-analyzer With lit-analyzer in the mix and functional, we're seeing new complaints about inconsistent typing in lit objects, and this was one of them. * Another lit-analyze error found.	2024-07-15 18:14:46 -07:00
Ken Sternberg	d0a459076b	web: enhance search select with portal, overflow, and keyboard controls (#9517 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: enhance search select Patternfly doesn't even have a setting for "selected but not hovered," so I had to invent one. I borrowed a trick from MUI and used the light blue "info" color, making it darker on "selected+hovered." This commit starts the revision process for search select. The goal is to have it broken down into four major components: The inline-DOM component, which just shows the current value (or placeholder, if none) and creates the portal for the floating component, then have a higher-level component for the SearchSelect behavior, and a sidecar to manage the keyboard interactivity. This is the portaled component: the actual list. * web: enhance search select. Break menu and Input items into separate handlers. * web: search select: added keyboard controller. * web: search select - the isolation continues This commit brings us to the position of having an independently rendered menu that listens for click events on its contents, records the value internally and sends it upstream as an event. This commit also includes a KeyboardController reactor that listens for keyboard events on a list of objects, moving the focus up and down and sending a both a "selected" event when the user presses Enter or Space, and a "close" event when the user presses Escape. A lot of this is just infrastructure. None of these do very much; they're just tools for making SearchSelect better. AkSearchSelectView is next: it's responsible for rendering the input and menu items, and then for forwarding the `value` component up to whoever cares. `ak-search-select` will ultimately be responsible for fetching the data and mapping the string tokens from AkSearchSelectView back into the objects that Authentik cares about. * web: search select - a functioning search select So search select is now separated into the following components: - SearchSelectView: Takes the renderables and the selected() Value and draws the Value in a box, then forwards the Options to a portaled drop-down component. - SearchSelectMenuPosition: A web component that renders the Menu into the <BODY> element and positions it with respect to an anchor provided by SearchSelectView. - SearchSelectMenu: Renders the Menu and listens for events indicating an Item has been selected. Sends events through a reference to the View. - SearchKeyboardController: A specialized listener that keeps an independent list of indices and tabstops, and listens for keyboard events to move the index forward or backward, as well as for Event or Space for "select" and Escape for "close". Doesn't actually _do_ these things; they're just semantics implied by the event names, it just sends an event up to the host, which can do what it wants with them. What's not done: - SearchSelect: The interface with the API. Maps to and from API values to renderable Options. One thing of note: of the 35 uses of SearchSelect in our product, 28 of them have `renderElement` annotations of a single field. Six of them use the same annotation (renderFlow), and only one (in EventMatcherPolicyForm) is at all complex. The 28 are: - 7: group.name; - 1: item.label; - 5: item.name; - 1: policy.name; - 1: role.name; - 1: source.name; - 3: stage.name; - 9: user.username; I propose to modify `.renderElement` to take a string of `keyof T`, where T is the type passed to the SearchSelect; it will simply look that up in the object passed in and use that as the Label. `.renderDescription` is more or less similar, except it has _no_ special cases: - 6: html`${flow.name}`; - 1: html`${source.verboseName}`; - 9: html`${user.name}`; - 2: html`${flow.slug}`; Given that, it makes sense to modify this as well to take a field key as a look up and render it, making all that function calling somewhat moot. Selected has a similar issue; passing it a value that is _not_ a function would be a signal to find this specific element in the corresponding 'pk'. Or we could pass a tuple of [keyof T] and value, so we didn't have to hard-code 'pk' into the thing. - 1 return item.pk === this.instance?.createUsersGroup; - 1 return item.pk === this.instance?.filterGroup; - 2 return item.pk === this.instance?.group; - 1 return item.pk === this.instance?.parent; - 1 return item.pk === this.instance?.searchGroup; - 1 return item.pk === this.instance?.syncParentGroup; - 1 return item.pk === this.instance?.policy; - 1 return item.pk === this.instance?.source; - 1 return item.pk === this.instance?.passwordStage; - 1 return item.pk === this.instance?.stage; - 1 return item.pk === this.instance?.user; - 2 return item.pk === this.previewUser?.pk; - 5 return item.pk === this.instance?.configureFlow; - 1 return item.pk === this.instance?.mapping; - 1 return item.pk === this.instance?.nameIdMapping; - 1 return item.pk === this.instance?.user; - 1 return item.pk === this.instance?.webhookMapping; - 1 return item.component === this.instance?.action; - 1 return item.path === this.instance?.path; - 1 return item.name === this.instance?.model; - 1 return item.name === this.instance?.app; - 1 return user.pk.toString() === this.request?.toString(); - 2 return this.request?.user.toString() === user.pk.toString(); And of course, `.value` kinda sorta has the same thing going on: - 6: flow?.pk; - 3: group ? group.pk : undefined; - 4: group?.pk; - 1: item?.component; - 2: item?.name; - 1: item?.path; - 4: item?.pk; - 1: policy?.pk; - 1: role?.pk; - 1: source?.pk; - 3: stage?.pk; - 8: user?.pk; - 1: user?.username; All in all, the _protocol_ for SearchSelect could be streamlined. A _lot_. And still retain the existing power. * Old take; not keeping. * Didn't need this either. * web: search select - a functioning search select with API interface So many edge cases! Because the propagation here is sometimes KeyboardEvent -> MenuEvent -> SearchSelectEvent, I had to rename some of the events to prevent them from creating infinite loops of event handling. This resulted in having to define separate events for Input, Close, and Select. I struggled like heck to get the `<input>` object to show the value after updating. Ultimately, I had to special case the `updated()` method to make sure it was showing the currently chosen display value. Looking through Stack Overflow, there's a lot of contention about the meaning of the `value` field on HTMLInputElements. The API layer distinguishes between a "search" event, which triggers the query to run, and the "select" event, which triggers the component to pick an object as _the_ `.value`. The API layer handles the conversion to GroupedItems and makes sure that the View receives either FlatSelect or GroupedSelect options collections (see ./types, but in practice users should never care too much about this.) * web: completed the search select update * web: search-select reveals a weakness in our plans While testing SearchSelect, I realized that the protocol for our "custom input elements" was neither specified nor documented. I have attempted to fix that, and am finding edge cases and buggy implementations that required addressing. I've described the protocol by creating a class that implements it: AkControlElement. It extends the constructor to always provide the "this is an data-ak-control element," and provides a `json()` method that throws an exception in the base class, so it must always be overriden and never called as super(). I've also fixed ak-dual-select so it carries its name properly into the Forms parser. * web: search select (and friends) This commit finalizes the search select quest! Headline: Search Select is now keyboard-friendly and CSS friendly; the styling needed for position is small enough to fit in a `styleMap`, and the styling for the menu itself can be safely locked into a web component. Primarily, I was forgetting to map the value to its displayValue whenever the value was changed from an external source. It should have been an easy catch, but I missed it the first dozen times through. * Not using this yet. ESLint-9 experiment that was loosely left here for some reason. * Added lots of comments. * Added new comments, fixed error message. * Removing a console.log * Fixed an incorrect comment. * Added comments about workaround. * web: focus fixes. Fixes several issues with the drop-down, including primarily how "loss of focus" does not result in the pop-up being banished. Also, the type definition for the attribute `hidden` is inconsistent between Typescript, the attribute, and the related property; I've chosen to route around that problem by using a custom attribute and setting `hidden` in the template, where `lit-analyze` has a workable definition and allows it to pass. Finally, on `open` the focus is passed to the current value, if any.	2024-07-15 17:54:06 -07:00
Tana M Berry	e20eaac56e	Create readme.md (#10507 ) Create for for docs migrations scripts (and others in future). Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-15 16:37:43 -05:00
Ken Sternberg	085ab3c2dd	web: all aboard the anti-if bus, according to tooling (#10220 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: all-aboard the anti-if bus, according to tooling This commit revises a number of bugs `eslint` has been complaining about for awhile now. This is the lesser of two PRs that will address this issue, and in this case the two biggest problems were inappropriate conditionals (using a `switch` for a single comparison), unnecessarily named returns, empty returns. This brings our use of conditions in-line with the coding standards we _say_ we want in eslintrc! * web: better names and logic for comparing the dates of Xliff vs generated files * Missed one. * Fixed a redirect issue that was creating an empty file in the ./web folder	2024-07-15 13:36:32 -07:00
Ken Sternberg	c0063c1749	web: fix bad name target that's breaking build (#10506 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * root: fix migrations missing using db_alias Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * more Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * web: have no idea how this snuck through but I should have caught it. --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-15 18:15:46 +00:00
Ken Sternberg	ee58cf0c1c	web: add HTMLTagNameElementMaps to everything to activate lit analyzer (#10217 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: add more linting * A reliable test for the extra code needed in analyzer, passing shellcheck * web: re-enable custom-element-manifest and enable component checking in Typescript This commit includes a monkeypatch to allow custom-element-manifest (CEM) to work correctly again despite our rich collection of mixins, reactive controllers, symbol-oriented event handlers, and the like. With that monkeypatch in place, we can now create the CEM manifest file and then exploit it so that IDEs and the Typescript compilation pass can tell when a component is being used incorrectly; when the wrong types are being passed to it, or when a required attribute is not initialized. * Added building the manifest to the build process, rather than storing it. It is not appreciably slow. * web: the most boring PR in the universe: Add HTMLTagNameElementMap to everyhing This commit adds HTMLTagNameElementMap entries to every web component in the front end. Activating and associating the HTMLTagNamElementMap with its class has enabled [LitAnalyzer](https://github.com/runem/lit-analyzer/tree/master/packages/lit-analyzer) to reveal a lot of basic problems within the UI, the most popular of which is "missing import." We usually get away with it because the object being imported was already registered with the browser elsewhere, but it still surprises me that we haven't gotten any complaints over things like: ``` ./src/flow/stages/base.ts Missing import for <ak-form-static> 96: <ak-form-static no-missing-import ``` Given how early and fundamental that seems to be in our code, I'd have expected to hear _something_ about it. I have not enabled most of the possible checks because, well, there are just a ton of warnings when I do. I'd like to get in and fix those. Aside from this, I have also _removed_ `customElement` declarations from anything declared as an `abstract class`. It makes no sense to try and instantiate something that cannot, by definition, be instantiated. If the class is capable of running on its own, it's not abstract, it just needs to be overridden in child classes. Before removing the declaration I did check to make sure no other piece of code was even trying to instantiate it, and so far I have detected no failures. Those elements were: - elements/forms/Form.ts - element-/wizard/WizardFormPage.ts The one that blows my mind, though, is this: ``` src/elements/forms/ProxyForm.ts 6-@customElement("ak-proxy-form") 7:export abstract class ProxyForm extends Form<unknown> { ``` Which, despite being `abstract`, is somehow instantiable? ``` src/admin/outposts/ServiceConnectionListPage.ts: <ak-proxy-form src/admin/providers/ProviderListPage.ts: <ak-proxy-form src/admin/sources/SourceWizard.ts: <ak-proxy-form src/admin/sources/SourceListPage.ts: <ak-proxy-form src/admin/providers/ProviderWizard.ts: <ak-proxy-form type=${type.component}></ak-proxy-form> src/admin/stages/StageListPage.ts: <ak-proxy-form ``` I've made a note to investigate. I've started a new folder where all of my one-off tools for how a certain PR was run. It has a README describing what it's for, and the first tool, `add-htmlelementtagnamemaps-to-everything`, is its first entry. That tool is also documented internally. ``` Gilbert & Sullivan I've got a little list, I've got a little list, Of all the code that would never be missed, The duplicate code of cute-and-paste, The weak abstractions that lead to waste, The embedded templates-- you get the gist, There ain't none of 'em that will ever be missed, And that's why I've got them on my list! ```	2024-07-15 10:54:22 -07:00
Ken Sternberg	1f2654f25f	web: replace handmade list in Admin Overview with generator, storybook generator, fix storybook, fix bug in list's parent component (#9726 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: provide a test framework As is typical of a system where a new build engine is involved, this thing is sadly fragile. Use the wrong import style in wdio.conf.js and it breaks; there are several notes in tsconfig.test.conf and wdio.conf.ts to tell eslint or tsc not to complain, it's just a different build with different criteria, the native criteria don't apply. On the other hand, writing tests is easy and predictable. We can test behaviors at the unit and component scale in a straightforward manner, and validate our expectations that things work the way we believe they should. * Rolling back a reversion. * web: update storybook, storybook a few things, fix a few things After examining how people like Adobe and Salesforce do things, I have updated the storybook configuration to provide run-time configuration of light/dark mode (although right now nothing happens), inject the correct styling into the page, and update the preview handling so that we can see the components better. We'll see how this pans out. I have provided stories for the AggregateCard, AggregatePromiseCard, and a new QuickActionsCard. I also fixed a bug in AggregatePromiseCard where it would fail to report a fetch error. It will only report that "the operation falied," but it will give the full error into the console. As an experiment, I have changed the interpreter for `lint:precommit` and `build:watch` to use [Bun](https://bun.sh/) instead of NodeJS. We have observed significant speed-ups and much better memory management with Bun for these two operations. Those are both developer-facing operations, the behavior of the system undur current CI/CD should not change. And finally, I've switched the QuickActionsCard view in Admin-Overview to use the new component. Looks the same. Reads way easier. :-) * Slight revision in exception logic. * Added a ton of documentation; made the failure message configurable. * A few documentation changes. * Adjusting paths to work with tests. * add ci to test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * linting shenanigans Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: patch spotlight on the fly to fix syntax issue that blocked storybook build This should be a temporary hack. I have an [open issue](https://github.com/getsentry/spotlight/issues/419) and [pull request](https://github.com/getsentry/spotlight/pull/420) with the Spotlight people already to fix the issue. * Somehow missed these in the merge. * Merge missed something. * Fix for incorrect path to patch file; fix for running patch multiple times. * Prettier is still havin' opinions. --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-15 10:54:09 -07:00
dependabot[bot]	1dec9bde3c	core: bump setuptools from 69.5.1 to 70.0.0 (#10503 ) Bumps [setuptools](https://github.com/pypa/setuptools) from 69.5.1 to 70.0.0. - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](https://github.com/pypa/setuptools/compare/v69.5.1...v70.0.0) --- updated-dependencies: - dependency-name: setuptools dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 18:52:23 +02:00
Ken Sternberg	259537ee34	web: replace multi-select with dual-select for all propertyMapping invocations (#9359 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: replace multi-select with dual-select for all propertyMapping invocations All of the uses of <select> to show propertyMappings have been replaced with an invocation to a variant of dual select that allows for dynamic production of the "selected" list. Instead of giving a "selected" list of elements, a "selector" function is passed that can, given the elements listed by the provider, generated the "selected" list dynamically. This feature is required for propertyMappings because many of the propertyMappings have an alternative "default selected" feature whereby an object with no property mappings is automatically granted some by the `.managed` field of the property mapping. The `DualSelectPair` type is now tragically mis-named, as it it's now a 4-tuple, the fourth being whatever object or field is necessary to figure out what the default value might be. For example, the Oauth2PropertyMappingsSelector looks like this: ``` export function makeOAuth2PropertyMappingsSelector(instanceMappings: string[] \| undefined) { const localMappings = instanceMappings ? new Set(instanceMappings) : undefined; return localMappings ? ([pk, _]: DualSelectPair) => localMappings.has(pk) : ([_0, _1, _2, scope]: DualSelectPair<ScopeMapping>) => scope?.managed?.startsWith("goauthentik.io/providers/oauth2/scope-") && scope?.managed !== "goauthentik.io/providers/oauth2/scope-offline_access"; } ``` If there are instanceMappings, we create a Set of them and just look up the pk for "is this selected" as we generate the component. If there is not, we look at the `scope` object itself (Oauth2PropertyMappings were called "scopes" in the original source) and perform a token analysis. It works well, is reasonably fast, and reasonably memory-friendly. In the case of RAC, OAuth2, and ProxyProviders, I've also provided external definitions of the MappingProvider and MappingSelector, so that they can be shared between the Provider and the ApplicationWizard. The algorithm for finding the "alternative (default) selections" was different between the two instances of both Oauth and Proxy. I'm not marking this as "ready" until Jens (@BeryJu) and I can go over why that might have been so, and decide if using a common implementation for both is the correct thing to do. Also, a lot of this is (still) cut-and-paste; the dual-select invocation, and the definitions of Providers and Selectors have a bit of boilerplate that it just didn't make sense to try and abstract away; the code is DAMP (Descriptive and Meaningful Phrases), and I can live with it. Unfortunately, that also points to the possibility of something being off; the wrong default token, or the wrong phrase to describe the "Available" and "Selected" columns. So this is not (yet) ready for a full pull review. On the other hand, if this passes muster and we're happy with it, there are 11 more places to put DualSelect, four of which are pure cut-and-paste lookups of the PaginatedOauthSourceList, plus a miscellany of Prompts, Sources, Stages, Roles, EventTransports and Policies. Despite the churn, the difference between the two implementations is 438 lines removed, 231 lines added, 121 lines new. 86 LOC deleted. Could be better. :-) * web: make the ...Selector semantics uniform across the definition set. * web: fix proxy property mapping default criteria * web: restoring dropped message to user. * Ensuring the neccessary components are imported. * web: fix problem with 'selector' overselecting The 'selector' feature was overselecting, preventing items from being removed from the "selected" list if they were part of the host object. This has the shortcoming that `default` items must be in the first page of options from the server, or they probably won't be registered. Fortunately, that's currently the case.	2024-07-15 09:49:03 -07:00
Ken Sternberg	303ba13791	web: enable custom-element-manifest and DOM/JS integration checking. (#10177 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: add more linting * A reliable test for the extra code needed in analyzer, passing shellcheck * web: re-enable custom-element-manifest and enable component checking in Typescript This commit includes a monkeypatch to allow custom-element-manifest (CEM) to work correctly again despite our rich collection of mixins, reactive controllers, symbol-oriented event handlers, and the like. With that monkeypatch in place, we can now create the CEM manifest file and then exploit it so that IDEs and the Typescript compilation pass can tell when a component is being used incorrectly; when the wrong types are being passed to it, or when a required attribute is not initialized. * Added building the manifest to the build process, rather than storing it. It is not appreciably slow.	2024-07-15 18:40:56 +02:00
N4v41	7a74baaf8e	website/docs: configuration: fix typo in kubectl command (#10492 )	2024-07-15 14:12:59 +00:00
Xinglin Qiang	e0a2bd2cd5	website/integrations: fix typo in minio instructions (#10500 )	2024-07-15 15:55:42 +02:00
dependabot[bot]	7d3dda171d	web: bump @typescript-eslint/eslint-plugin from 7.5.0 to 7.16.0 in /tests/wdio (#10496 ) web: bump @typescript-eslint/eslint-plugin in /tests/wdio Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 7.5.0 to 7.16.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.0/packages/eslint-plugin) --- updated-dependencies: - dependency-name: "@typescript-eslint/eslint-plugin" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:40:06 +02:00
dependabot[bot]	ad2c2eecb8	website: bump prettier from 3.3.2 to 3.3.3 in /website (#10493 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.2 to 3.3.3. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.2...3.3.3) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:18:11 +02:00
dependabot[bot]	df3de9218c	core: bump ruff from 0.5.1 to 0.5.2 (#10494 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.1 to 0.5.2. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.1...0.5.2) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:18:04 +02:00
dependabot[bot]	6f8460c4fe	web: bump @typescript-eslint/parser from 7.5.0 to 7.16.0 in /tests/wdio (#10495 ) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 7.5.0 to 7.16.0. - [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases) - [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md) - [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v7.16.0/packages/parser) --- updated-dependencies: - dependency-name: "@typescript-eslint/parser" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:17:54 +02:00
dependabot[bot]	68172c388f	web: bump eslint-plugin-sonarjs from 0.25.1 to 1.0.3 in /tests/wdio (#10498 ) Bumps [eslint-plugin-sonarjs](https://github.com/SonarSource/eslint-plugin-sonarjs) from 0.25.1 to 1.0.3. - [Release notes](https://github.com/SonarSource/eslint-plugin-sonarjs/releases) - [Commits](https://github.com/SonarSource/eslint-plugin-sonarjs/compare/0.25.1...1.0.3) --- updated-dependencies: - dependency-name: eslint-plugin-sonarjs dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:17:44 +02:00
dependabot[bot]	d4f0aba430	web: bump prettier from 3.3.2 to 3.3.3 in /tests/wdio (#10497 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.2 to 3.3.3. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.2...3.3.3) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:17:34 +02:00
dependabot[bot]	ef78ee3440	web: bump pseudolocale from 2.0.0 to 2.1.0 in /web (#10499 ) Bumps [pseudolocale](https://github.com/MartinCerny-awin/pseudolocale) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/MartinCerny-awin/pseudolocale/releases) - [Commits](https://github.com/MartinCerny-awin/pseudolocale/commits) --- updated-dependencies: - dependency-name: pseudolocale dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-15 11:17:12 +02:00
dependabot[bot]	1cf4ccdde5	core: bump goauthentik.io/api/v3 from 3.2024061.1 to 3.2024061.2 (#10491 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024061.1 to 3.2024061.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024061.1...v3.2024061.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-13 20:01:17 +02:00
authentik-automation[bot]	11d41a2ee4	web: bump API Client version (#10488 ) * web: bump API Client version Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * bump sfe Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-13 18:44:21 +02:00
Jens L	8db1d86c6b	flows: remove stage challenge type (#10476 ) * flows: remove stage challenge type Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve coverage Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-13 18:37:29 +02:00
dependabot[bot]	8f7fe8e744	core: bump github.com/redis/go-redis/v9 from 9.5.3 to 9.5.4 (#10469 ) Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.5.3 to 9.5.4. - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/go-redis/compare/v9.5.3...v9.5.4) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-12 13:06:47 +02:00
dependabot[bot]	e0dbd8c53f	core: bump goauthentik.io/api/v3 from 3.2024060.6 to 3.2024061.1 (#10470 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.6 to 3.2024061.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.6...v3.2024061.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-12 13:06:38 +02:00
dependabot[bot]	ba38fb6ff6	web: bump the babel group across 1 directory with 2 updates (#10471 ) Bumps the babel group with 2 updates in the /web directory: [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) and [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/core` from 7.24.7 to 7.24.8 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.8/packages/babel-core) Updates `@babel/preset-env` from 7.24.7 to 7.24.8 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.8/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-12 13:06:31 +02:00
dependabot[bot]	639f7d53c1	web: bump the storybook group across 1 directory with 7 updates (#10472 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.2.1` \| `8.2.2` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.2.1` \| `8.2.2` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.2.1` \| `8.2.2` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.2.1` \| `8.2.2` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.2.1` \| `8.2.2` \| Updates `@storybook/addon-essentials` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/addons/essentials) Updates `@storybook/addon-links` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/addons/links) Updates `@storybook/blocks` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/lib/blocks) Updates `@storybook/manager-api` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/lib/manager-api) Updates `@storybook/web-components` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/frameworks/web-components-vite) Updates `storybook` from 8.2.1 to 8.2.2 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.2/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-12 13:06:22 +02:00
dependabot[bot]	de9d8a40f6	core: bump coverage from 7.5.4 to 7.6.0 (#10473 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.5.4 to 7.6.0. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.4...7.6.0) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-12 13:06:09 +02:00
4d62	9e32c78c8c	website/docs: air gapped: clarify .env usage at the top for Kubernetes installations (#10447 ) docs/installation: Clarify .env usage at the top for Kubernetes installations Signed-off-by: 4d62 <github-user@sdko.org>	2024-07-11 17:21:29 -05:00
4d62	91cb2ef883	website/docs: air gapped: update "see configuration" wording (#10448 ) * docs/installation: air gapped: update "see configuration" wording Signed-off-by: 4d62 <github-user@sdko.org> * Update website/docs/installation/air-gapped.mdx Signed-off-by: 4d62 <github-user@sdko.org> --------- Signed-off-by: 4d62 <github-user@sdko.org>	2024-07-11 17:10:48 -05:00
Zapfmeister	ad5e447b3d	website/docs: Add Kubernetes Bootstrap Instructions (#9541 ) * Add Kubernetes Bootstrap Instructions Signed-off-by: Zapfmeister <zapfmeister@gmail.com> * Update website/docs/installation/automated-install.md Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Zapfmeister <zapfmeister@gmail.com> * Update website/docs/installation/automated-install.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Zapfmeister <zapfmeister@gmail.com> * Update website/docs/installation/automated-install.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Zapfmeister <zapfmeister@gmail.com> * Update website/docs/installation/automated-install.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Zapfmeister <zapfmeister@gmail.com> * Fix lint * Update website/docs/installation/automated-install.md Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Zapfmeister <zapfmeister@gmail.com> --------- Signed-off-by: Zapfmeister <zapfmeister@gmail.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-11 16:11:29 -05:00
authentik-automation[bot]	d5ce530179	web: bump API Client version (#10461 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-11 21:09:25 +00:00
Jens Langhammer	f6a9773930	release: 2024.6.1	2024-07-11 22:50:33 +02:00
Jens L	7721d4d0c2	website/docs: add 2024.6.1 release notes (#10456 ) * website/docs: add 2024.6.1 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix version requirement for sfe Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-11 19:10:16 +02:00
Jens L	a5e45ba78e	core: revert backchannel only filtering (#10455 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-11 16:57:19 +02:00
Tana M Berry	96f04d32ea	website/docs: add info about license:org relation (#10444 ) add info about license:org relation Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-07-11 07:35:00 -05:00
dependabot[bot]	d7bac37ba8	web: bump @sentry/browser from 8.15.0 to 8.17.0 in /web in the sentry group across 1 directory (#10449 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.15.0 to 8.17.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.15.0...8.17.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-11 11:28:55 +02:00
dependabot[bot]	c3509382de	web: bump the storybook group across 1 directory with 7 updates (#10451 ) Bumps the storybook group with 5 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.11` \| `8.2.1` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.11` \| `8.2.1` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.11` \| `8.2.1` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.11` \| `8.2.1` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.11` \| `8.2.1` \| Updates `@storybook/addon-essentials` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/addons/links) Updates `@storybook/blocks` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/lib/blocks) Updates `@storybook/manager-api` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/frameworks/web-components-vite) Updates `storybook` from 8.1.11 to 8.2.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.2.1/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-11 11:28:37 +02:00
dependabot[bot]	c09d36a1f7	core: bump msgraph-sdk from 1.4.0 to 1.5.2 (#10450 ) Bumps [msgraph-sdk](https://github.com/microsoftgraph/msgraph-sdk-python) from 1.4.0 to 1.5.2. - [Release notes](https://github.com/microsoftgraph/msgraph-sdk-python/releases) - [Changelog](https://github.com/microsoftgraph/msgraph-sdk-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/microsoftgraph/msgraph-sdk-python/compare/v1.4.0...v1.5.2) --- updated-dependencies: - dependency-name: msgraph-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-11 11:28:19 +02:00
dependabot[bot]	db2b5f035f	core: bump sentry-sdk from 2.8.0 to 2.9.0 (#10452 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.8.0 to 2.9.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.8.0...2.9.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-11 11:27:47 +02:00
Tana M Berry	2a74225775	website/docs: add info and link about supported versions (#10442 ) add info and link about supported versions Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-07-10 17:08:28 -05:00
Jens L	b8188708dc	core: fix source flow_manager not resuming flow when linking (#10436 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-10 14:57:02 +02:00
Jens L	2a5a76e369	ci: fix PR comment k8s snippet (#10433 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-10 14:18:00 +02:00
Jens L	4d3ec68494	web/admin: fix access token list calling wrong API (#10434 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-10 14:11:25 +02:00
Jens L	b8560f2a86	providers/proxy: bump go-oidc to v3 (#10432 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-10 12:54:45 +02:00
dependabot[bot]	f312250dc9	website: bump braces from 3.0.2 to 3.0.3 in /website (#10431 ) Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3. - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3) --- updated-dependencies: - dependency-name: braces dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-10 12:27:19 +02:00
dependabot[bot]	aef8b49f6b	core: bump zipp from 3.18.1 to 3.19.1 (#10425 ) Bumps [zipp](https://github.com/jaraco/zipp) from 3.18.1 to 3.19.1. - [Release notes](https://github.com/jaraco/zipp/releases) - [Changelog](https://github.com/jaraco/zipp/blob/main/NEWS.rst) - [Commits](https://github.com/jaraco/zipp/compare/v3.18.1...v3.19.1) --- updated-dependencies: - dependency-name: zipp dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-10 12:18:24 +02:00
dependabot[bot]	2ae08aa1c6	web: bump country-flag-icons from 1.5.12 to 1.5.13 in /web (#10427 ) Bumps [country-flag-icons](https://gitlab.com/catamphetamine/country-flag-icons) from 1.5.12 to 1.5.13. - [Changelog](https://gitlab.com/catamphetamine/country-flag-icons/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/catamphetamine/country-flag-icons/compare/v1.5.12...v1.5.13) --- updated-dependencies: - dependency-name: country-flag-icons dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-10 12:18:06 +02:00
dependabot[bot]	a8488ee35a	core: bump google-api-python-client from 2.136.0 to 2.137.0 (#10428 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.136.0 to 2.137.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.136.0...v2.137.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-10 12:17:54 +02:00
dependabot[bot]	a3e015f835	core: bump django from 5.0.6 to 5.0.7 (#10420 ) Bumps [django](https://github.com/django/django) from 5.0.6 to 5.0.7. - [Commits](https://github.com/django/django/compare/5.0.6...5.0.7) --- updated-dependencies: - dependency-name: django dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 18:04:15 +02:00
dependabot[bot]	0f36defbb9	web: bump rollup from 4.18.0 to 4.18.1 in /web/sfe (#10418 ) Bumps [rollup](https://github.com/rollup/rollup) from 4.18.0 to 4.18.1. - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.0...v4.18.1) --- updated-dependencies: - dependency-name: rollup dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:50:39 +02:00
dependabot[bot]	8de811a56f	web: bump glob from 10.4.3 to 11.0.0 in /web (#10417 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.3 to 11.0.0. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.4.3...v11.0.0) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:49:07 +02:00
dependabot[bot]	7328b8e3a6	core: bump django-storages from 1.14.3 to 1.14.4 (#10412 ) Bumps [django-storages](https://github.com/jschneier/django-storages) from 1.14.3 to 1.14.4. - [Changelog](https://github.com/jschneier/django-storages/blob/master/CHANGELOG.rst) - [Commits](https://github.com/jschneier/django-storages/compare/1.14.3...1.14.4) --- updated-dependencies: - dependency-name: django-storages dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:47:19 +02:00
dependabot[bot]	6312a20bcc	core: bump scim2-filter-parser from 0.5.1 to 0.6.0 (#10413 ) Bumps [scim2-filter-parser](https://github.com/15five/scim2-filter-parser) from 0.5.1 to 0.6.0. - [Changelog](https://github.com/15five/scim2-filter-parser/blob/master/CHANGELOG.rst) - [Commits](https://github.com/15five/scim2-filter-parser/commits) --- updated-dependencies: - dependency-name: scim2-filter-parser dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:47:09 +02:00
dependabot[bot]	631537851e	core: bump sentry-sdk from 2.7.1 to 2.8.0 (#10414 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.7.1 to 2.8.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.7.1...2.8.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:46:53 +02:00
dependabot[bot]	b93759f318	web: bump the rollup group across 1 directory with 3 updates (#10416 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.18.0 to 4.18.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.0...v4.18.1) Updates `@rollup/rollup-linux-arm64-gnu` from 4.18.0 to 4.18.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.0...v4.18.1) Updates `@rollup/rollup-linux-x64-gnu` from 4.18.0 to 4.18.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.18.0...v4.18.1) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 10:46:45 +02:00
Marc 'risson' Schmitt	9ca3ff9e49	core: fix migrations missing using db_alias (#10409 )	2024-07-08 21:23:55 +02:00
Peter Kuehne	6aefe2d143	website/integrations: add offline_access scope to DokuWiki (#10208 ) * Add offline_access scope to DokuWiki Since 2024.2, authentik requires the offline_access scope to be enabled and requested in order for DokuWiki to request a refresh token. Signed-off-by: Peter Kuehne <pkuehne@users.noreply.github.com> * Update index.md Signed-off-by: Peter Kuehne <pkuehne@users.noreply.github.com> --------- Signed-off-by: Peter Kuehne <pkuehne@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-08 11:29:40 -05:00
Marc 'risson' Schmitt	5c8a9abb33	api: use custom json renderer for speed (#9977 ) * api: use custom json renderer for speed Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * switch to drf-orjson-renderer Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-08 17:27:29 +02:00
dependabot[bot]	d6e7cb2cff	core: bump github.com/sethvargo/go-envconfig from 1.0.3 to 1.1.0 (#10405 ) Bumps [github.com/sethvargo/go-envconfig](https://github.com/sethvargo/go-envconfig) from 1.0.3 to 1.1.0. - [Release notes](https://github.com/sethvargo/go-envconfig/releases) - [Commits](https://github.com/sethvargo/go-envconfig/compare/v1.0.3...v1.1.0) --- updated-dependencies: - dependency-name: github.com/sethvargo/go-envconfig dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-08 12:01:10 +02:00
dependabot[bot]	50d66eda9e	core: bump goauthentik.io/api/v3 from 3.2024060.5 to 3.2024060.6 (#10404 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.5 to 3.2024060.6. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.5...v3.2024060.6) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-08 12:00:55 +02:00
dependabot[bot]	de37748f17	web: bump glob from 10.4.2 to 10.4.3 in /web (#10407 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.2 to 10.4.3. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.4.2...v10.4.3) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-08 12:00:43 +02:00
dependabot[bot]	c579b5c36c	web: bump @swc/core from 1.6.7 to 1.6.13 in /web/sfe (#10408 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.6.7 to 1.6.13. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.6.7...v1.6.13) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-08 12:00:32 +02:00
dependabot[bot]	07040bb344	core: bump ruff from 0.5.0 to 0.5.1 (#10390 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.5.0 to 0.5.1. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.5.0...0.5.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-06 00:32:13 +02:00
dependabot[bot]	59ffcdd34d	web: bump @swc/cli from 0.3.14 to 0.4.0 in /web/sfe (#10394 ) * web: bump @swc/cli from 0.3.14 to 0.4.0 in /web/sfe Bumps [@swc/cli](https://github.com/swc-project/pkgs) from 0.3.14 to 0.4.0. - [Commits](https://github.com/swc-project/pkgs/commits) --- updated-dependencies: - dependency-name: "@swc/cli" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Merging manually. * Updated package-lock.json to conform. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ken Sternberg <ken@goauthentik.io>	2024-07-06 00:32:06 +02:00
dependabot[bot]	d30b87a2bb	core: bump certifi from 2024.2.2 to 2024.7.4 (#10398 ) Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.2.2 to 2024.7.4. - [Commits](https://github.com/certifi/python-certifi/compare/2024.02.02...2024.07.04) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-06 00:31:59 +02:00
dependabot[bot]	f3d5e659eb	web: bump @swc/core from 1.6.6 to 1.6.7 in /web/sfe (#10395 ) Bumps [@swc/core](https://github.com/swc-project/swc) from 1.6.6 to 1.6.7. - [Release notes](https://github.com/swc-project/swc/releases) - [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md) - [Commits](https://github.com/swc-project/swc/compare/v1.6.6...v1.6.7) --- updated-dependencies: - dependency-name: "@swc/core" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-05 14:44:47 -07:00
dependabot[bot]	95463dd76a	web: bump @sentry/browser from 8.14.0 to 8.15.0 in /web in the sentry group across 1 directory (#10388 ) web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.14.0 to 8.15.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.14.0...8.15.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-05 14:24:32 -07:00
4d62	c702b0fd07	website/integrations: aws: cleanup (#10355 ) * website/integrations: aws: cleanup Signed-off-by: 4d62 <ext@4d62.me> * p * add info thing Signed-off-by: 4d62 <ext@4d62.me> * aaaaaaaaaaaaaaaaaaaaaaaaaaaaa * i think this will work copied ::::: from other page Signed-off-by: 4d62 <ext@4d62.me> * final lint * Update website/integrations/services/aws/index.md Co-authored-by: Jens L. <jens@beryju.org> Signed-off-by: 4d62 <ext@4d62.me> --------- Signed-off-by: 4d62 <ext@4d62.me> Co-authored-by: 4d62 <ext@4d62.me> Co-authored-by: Jens L. <jens@beryju.org>	2024-07-05 14:40:41 -05:00
authentik-automation[bot]	3d6e1f9d33	web: bump API Client version (#10389 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-05 20:42:06 +02:00
Jens L	bfc2fe7703	web/flows: Simplified flow executor (#10296 ) * initial sfe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * build sfe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * downgrade bootstrap Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix path Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make IE compatible Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix query string missing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add autosubmit stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add background image Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add code support Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support for combo ident/password Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix logo rendering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only use for edge 18 and before Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add webauthn support Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate to TS for some creature comforts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix ci Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dedupe dependabot Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use API client...kinda Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more polyfills yay Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * turn powered by into span prevent issues in restricted browsers where users might not be able to return Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow non-link footer entries Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tsc errors Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> * auto switch for macos Signed-off-by: Jens Langhammer <jens@goauthentik.io> * reword Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update website/docs/flow/executors/if-flow.md Signed-off-by: Jens L. <jens@beryju.org> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-05 19:24:37 +02:00
Marc 'risson' Schmitt	14e8d1d0f4	website/docs: sources: ldap: remove extra example (#10387 )	2024-07-05 16:06:50 +00:00
Tana M Berry	5103eebfad	website/docs: add new content from old PR #9524 (#10158 ) Co-authored-by: 4d62 <ext@4d62.me> Co-authored-by: "Brian, Chen" <wildfox@126.com> Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-07-05 17:49:40 +02:00
Jens L	210befd1ea	stages/authenticator_validate: fix friendly_name being required (#10382 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-05 15:48:57 +02:00
Jens L	37fe20e576	core: bump go api client (#10383 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-05 13:39:29 +02:00
authentik-automation[bot]	26732389a1	web: bump API Client version (#10381 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-05 13:16:58 +02:00
Marc 'risson' Schmitt	0fe751269e	outposts: make refresh interval configurable (#10138 ) * outposts: make refresh interval configurable Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * frontend Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * black again Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * switch to using config attribute Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-05 13:14:28 +02:00
authentik-automation[bot]	a824fda339	core, web: update translations (#10378 ) * core, web: update translations Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * give docusaurus more memory Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-05 11:56:44 +02:00
dependabot[bot]	d8fefb1c7b	web: bump @sentry/browser from 8.13.0 to 8.14.0 in /web in the sentry group (#10379 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.13.0 to 8.14.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.13.0...8.14.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-05 11:47:35 +02:00
dependabot[bot]	f4d8191dec	core: bump goauthentik.io/api/v3 from 3.2024060.3 to 3.2024060.4 (#10380 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.3 to 3.2024060.4. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.3...v3.2024060.4) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-05 11:46:46 +02:00
Jens L	3338a79ef0	sources/oauth: fix link not being saved (#10374 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-04 16:31:33 +02:00
4d62	9c9581a3de	website/docs: update postgres on docker: fix backtick (#10372 )	2024-07-04 15:57:23 +02:00
4d62	fbad6fb2a4	website/integrations: apache guacamole: cleanup doc page (#10354 ) * docs/integrations: apache guacamole: cleanup doc page Signed-off-by: 4d62 <ext@4d62.me> * p * lint fix * Update website/integrations/services/apache-guacamole/index.mdx Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: 4d62 <ext@4d62.me> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L <jens@beryju.org>	2024-07-04 13:44:44 +02:00
authentik-automation[bot]	24e74e0263	web: bump API Client version (#10371 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-04 13:32:32 +02:00
Marc 'risson' Schmitt	763a19b914	Revert "core: applications api: add option to only list apps with launch url (#10336 )" (#10370 )	2024-07-04 13:29:33 +02:00
dependabot[bot]	b8006068e9	web: bump @wdio/cli from 8.39.0 to 8.39.1 in /web (#10362 ) Bumps [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli) from 8.39.0 to 8.39.1. - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.1/packages/wdio-cli) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:03:20 +02:00
dependabot[bot]	16c7155268	core: bump goauthentik.io/api/v3 from 3.2024060.2 to 3.2024060.3 (#10356 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.2 to 3.2024060.3. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.2...v3.2024060.3) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:00:48 +02:00
dependabot[bot]	ef2fb6d5fc	website: bump react-tooltip from 5.27.0 to 5.27.1 in /website (#10357 ) Bumps [react-tooltip](https://github.com/ReactTooltip/react-tooltip) from 5.27.0 to 5.27.1. - [Release notes](https://github.com/ReactTooltip/react-tooltip/releases) - [Changelog](https://github.com/ReactTooltip/react-tooltip/blob/master/CHANGELOG.md) - [Commits](https://github.com/ReactTooltip/react-tooltip/compare/v5.27.0...v5.27.1) --- updated-dependencies: - dependency-name: react-tooltip dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:00:40 +02:00
dependabot[bot]	bac0237ce0	website: bump docusaurus-theme-openapi-docs from 3.0.0-beta.10 to 3.0.1 in /website (#10359 ) website: bump docusaurus-theme-openapi-docs in /website Bumps [docusaurus-theme-openapi-docs](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/tree/HEAD/packages/docusaurus-theme-openapi-docs) from 3.0.0-beta.10 to 3.0.1. - [Release notes](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/releases) - [Changelog](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/blob/main/CHANGELOG.md) - [Commits](https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/commits/v3.0.1/packages/docusaurus-theme-openapi-docs) --- updated-dependencies: - dependency-name: docusaurus-theme-openapi-docs dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:00:29 +02:00
dependabot[bot]	038170314d	ci: bump docker/setup-qemu-action from 3.0.0 to 3.1.0 (#10360 ) Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v3.0.0...v3.1.0) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:00:09 +02:00
dependabot[bot]	d198176ff9	web: bump the wdio group in /tests/wdio with 2 updates (#10361 ) Bumps the wdio group in /tests/wdio with 2 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli) and [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner). Updates `@wdio/cli` from 8.39.0 to 8.39.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.1/packages/wdio-cli) Updates `@wdio/local-runner` from 8.39.0 to 8.39.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.1/packages/wdio-local-runner) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 13:00:02 +02:00
dependabot[bot]	186d023c94	web: bump @wdio/browser-runner from 8.39.0 to 8.39.1 in /web (#10363 ) Bumps [@wdio/browser-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-browser-runner) from 8.39.0 to 8.39.1. - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.1/packages/wdio-browser-runner) --- updated-dependencies: - dependency-name: "@wdio/browser-runner" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 12:59:50 +02:00
dependabot[bot]	cc85806b39	core: bump pydantic from 2.8.0 to 2.8.2 (#10364 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.8.0 to 2.8.2. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v2.8.2/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.8.0...v2.8.2) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-04 12:59:42 +02:00
transifex-integration[bot]	c345a77c1a	translate: Updates for file web/xliff/en.xlf in zh_CN (#10366 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-04 12:59:31 +02:00
transifex-integration[bot]	11d0acf9dd	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10367 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-04 12:59:24 +02:00
Tim	2fc0c6e0ad	website/integrations: gitlab: add oidc guide (#9740 ) * docs: add gitlab oidc guide * docs: Formated gitlab integration guide * docs: simplify gitlab.rb reference https://github.com/goauthentik/authentik/pull/9740#discussion_r1601871402 Signed-off-by: Tim <bleimehl@gmail.com> * Update website/integrations/services/gitlab/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Tim <bleimehl@gmail.com> * Update website/integrations/services/gitlab/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Tim <bleimehl@gmail.com> * order chapter toc --------- Signed-off-by: Tim <bleimehl@gmail.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-03 16:41:37 -05:00
Connor Beard	6f31c802c2	website/integrations: add Gatus (#10074 ) * added Gatus docs * ran make website * changed order of configuration and added clarity * Update index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Connor Beard <beacon@beardit.net> --------- Signed-off-by: Connor Beard <beacon@beardit.net> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-03 16:31:45 -05:00
4d62	2de2189985	docs/troubleshooting: upgrade docker: prompt user to ensure pg_dump'd file has data (#10353 ) Signed-off-by: 4d62 <ext@4d62.me>	2024-07-03 22:26:55 +02:00
Tana M Berry	e4c8e30814	website/docs: add links and tweaks to existing docs on flow executors (#10340 ) * add link to frontend executor * add links, tweaks * fix link * trying to fix link * ken's edits * still fighting link * ken's edits * remove extension --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-07-03 14:18:06 -05:00
Jens L	8bd514e17d	sources/saml: fix pickle error, add saml auth tests (#10348 ) * test with persistent nameid Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix pickle Signed-off-by: Jens Langhammer <jens@goauthentik.io> * user_write: dont attempt to write to read only property Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test for enroll + auth Signed-off-by: Jens Langhammer <jens@goauthentik.io> * unwrap lazy user Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-03 18:28:31 +02:00
authentik-automation[bot]	d758e6065b	web: bump API Client version (#10351 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-03 16:14:28 +00:00
Marc 'risson' Schmitt	42e0ff6492	core: applications api: add option to only list apps with launch url (#10336 )	2024-07-03 17:56:08 +02:00
4d62	1789ed67e1	website/integrations: minio: configure openid on web (#9874 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-07-03 17:54:48 +02:00
4d62	56d02e94f1	website/docs: integrations: gitea: specify callback url (#10180 )	2024-07-03 17:54:20 +02:00
Jens L	7b64620615	providers/saml: fix metadata import error handling (#10349 )	2024-07-03 17:45:49 +02:00
authentik-automation[bot]	fc39323ea0	core, web: update translations (#10341 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-07-03 11:50:15 +02:00
dependabot[bot]	00427b20e8	core: bump twilio from 9.2.2 to 9.2.3 (#10343 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.2.2 to 9.2.3. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.2.2...9.2.3) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-03 11:50:03 +02:00
dependabot[bot]	18e3e7c875	core: bump google-api-python-client from 2.135.0 to 2.136.0 (#10344 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.135.0 to 2.136.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.135.0...v2.136.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-03 11:49:53 +02:00
transifex-integration[bot]	c7d8bbace0	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10339 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-02 22:09:00 +02:00
transifex-integration[bot]	07ad795972	translate: Updates for file web/xliff/en.xlf in zh_CN (#10338 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-02 22:08:45 +02:00
dependabot[bot]	77a83d75b7	web: bump the storybook group in /web with 7 updates (#10263 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.10` \| `8.1.11` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.10` \| `8.1.11` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.10` \| `8.1.11` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.10` \| `8.1.11` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.10` \| `8.1.11` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.10` \| `8.1.11` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.10` \| `8.1.11` \| Updates `@storybook/addon-essentials` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/addons/links) Updates `@storybook/blocks` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/frameworks/web-components-vite) Updates `storybook` from 8.1.10 to 8.1.11 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.11/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 18:15:03 +02:00
Ken Sternberg	c846c8089a	web: lintpicking (#10212 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: remove some minor lint While working on other projects, a few small lint issues came up: - Duplicate imports of a web component - A switch statement with a single condition - Empty returns All of these made eslint complain, so I have edited the code to meet our standards. They are all quite small. * web: move rbac under .../admin (#10213) * admin: system api: fix FIPS status schema (cherry-pick #10110) (#10112) admin: system api: fix FIPS status schema (#10110) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * web: bump API Client version (cherry-pick #10113) (#10114) * website/docs: update 2024.6 release notes with latest changes (cherry-pick #10109) (#10115) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * release: 2024.6.0-rc1 * policies/reputation: fix existing reputation update (cherry-pick #10124) (#10125) policies/reputation: fix existing reputation update (#10124) * add failing test case * fix reputation update * lint --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * core: include version in built JS files (cherry-pick #9558) (#10148) core: include version in built JS files (#9558) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * core: include version in built JS files * add fallback * include build hash * format * fix stuff why does this even work locally * idk man node * just not use import assertions * web: add no-console, use proper dirname path * web: retarget to use the base package.json file. * web: encode path to root package.json using git This is the most authoritative way of finding the root of the git project. * use full version to match frontend * add fallback for missing .git folder --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Ken Sternberg <ken@goauthentik.io> * web: fix needed because recent upgrade to task breaks spinner button (cherry-pick #10142) (#10150) web: fix needed because recent upgrade to task breaks spinner button (#10142) web: fix broken Task plug-in rebase and fix package json Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Ken Sternberg <133134217+kensternberg-authentik@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io> * root: use custom model serializer that saves m2m without bulk (cherry-pick #10139) (#10151) root: use custom model serializer that saves m2m without bulk (#10139) * use custom model serializer that saves m2m without bulk * sigh --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> * web: fix docker build for non-release versions (cherry-pick #10154) (#10155) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> fix docker build for non-release versions (#10154) * website/docs: update 2024.6 release notes with latest changes (cherry-pick #10167) (#10168) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * core: fix error when raising SkipObject in mapping (cherry-pick #10153) (#10173) core: fix error when raising SkipObject in mapping (#10153) * core: fix error when raising SkipObject in mapping * fix events not being saved thanks tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> * website/docs: 2024.6 release notes: add note about group names (cherry-pick #10170) (#10171) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> * website/docs: update 2024.6 release notes with latest changes (cherry-pick #10174) (#10175) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * release: 2024.6.0-rc2 (#10176) * website/docs: Remove hyphen in read replica in Release Notes (cherry-pick #10178) (#10188) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> * core: rework base for SkipObject exception to better support control flow exceptions (cherry-pick #10186) (#10187) core: rework base for SkipObject exception to better support control flow exceptions (#10186) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> * web/flows: update flow background (cherry-pick #10206) (#10207) web/flows: update flow background (#10206) * web/flows: update flow background * Optimised images with calibre/image-actions --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> * web: move rbac under .../admin The RBAC code segment, while it is an aspect and not a vertical, is entirely used within the Admin interface, and references other components within the Admin interface. It is not used by nor references Flows or Users. It's placement in the `elements` folder breaks the DAG of foundational versus client code, (`common -> elements -> interfaces`), and I'd like to keep that DAG clean to facilitate future development. All this PR does is move `elements/rbac` to `admin/rbac`, and adjusts all of the import statements accordingly. The entirety of this PR is two commands: ```shell $ cd web/src $ git mv elements/rbac admin $ cd admin $ perl -pi -e 's{goauthentik/elements/rbac/}{goauthentik/admin/rbac/}' $(rg -l 'goauthentik/elements/rbac') ``` * website/docs: fix #9552 openssl rand base64 line wrap (#10211) * website/integrations: fix typo in documentation for OIDC setup with Paperless-ngx (#10218) Update index.md Missing " cost me more time than I'd like to admit. Paying it forward. Signed-off-by: Russ Harvey <53157589+rwh85@users.noreply.github.com> * security: fix CVE-2024-38371 (#10229) * security: fix CVE-2024-38371 (cherry-pick #10229) (#10234) Co-authored-by: Jens L <jens@goauthentik.io> fix CVE-2024-38371 (#10229) * security: fix CVE-2024-37905 (#10230) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * core: bump debugpy from 1.8.1 to 1.8.2 (#10225) Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.8.1 to 1.8.2. - [Release notes](https://github.com/microsoft/debugpy/releases) - [Commits](https://github.com/microsoft/debugpy/compare/v1.8.1...v1.8.2) --- updated-dependencies: - dependency-name: debugpy dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump @sentry/browser from 8.11.0 to 8.12.0 in /web in the sentry group (#10226) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.11.0 to 8.12.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.11.0...8.12.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump webauthn from 2.1.0 to 2.2.0 (#10224) Bumps [webauthn](https://github.com/duo-labs/py_webauthn) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/duo-labs/py_webauthn/releases) - [Changelog](https://github.com/duo-labs/py_webauthn/blob/master/CHANGELOG.md) - [Commits](https://github.com/duo-labs/py_webauthn/compare/v2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: webauthn dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump chromedriver from 126.0.3 to 126.0.4 in /tests/wdio (#10223) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.3 to 126.0.4. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.3...126.0.4) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump pdoc from 14.5.0 to 14.5.1 (#10221) Bumps [pdoc](https://github.com/mitmproxy/pdoc) from 14.5.0 to 14.5.1. - [Changelog](https://github.com/mitmproxy/pdoc/blob/main/CHANGELOG.md) - [Commits](https://github.com/mitmproxy/pdoc/compare/v14.5.0...v14.5.1) --- updated-dependencies: - dependency-name: pdoc dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * security: fix CVE-2024-37905 (cherry-pick #10230) (#10237) Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> fix CVE-2024-37905 (#10230) * release: 2024.6.0 * website/docs: update 2024.6 release notes with latest changes (#10228) * website/docs: update 2024.2 release notes with security fixes (#10232) * website/docs: update 2024.4 release notes with latest changes (#10231) * website/docs: update 2024.6 release notes with latest changes (cherry-pick #10228) (#10243) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * website/docs: remove RC disclaimer from 2024.6 release notes (#10245) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * website/docs: remove RC disclaimer from 2024.6 release notes (cherry-pick #10245) (#10246) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * security: update supported versions (#10247) * security: update supported versions (cherry-pick #10247) (#10248) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * website/docs: update geoip and asn example to use the proper syntax (#10249) * website/docs: update the Welcome page (#10222) * update to mention Enterprise * moved sections * tweaks --------- Co-authored-by: Tana M Berry <tana@goauthentik.com> * website/docs: update geoip and asn example to use the proper syntax (cherry-pick #10249) (#10250) website/docs: update geoip and asn example to use the proper syntax (#10249) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * web: bump API Client version (#10252) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> * web/flows: remove continue button from AutoSubmit stage (#10253) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: disable reading dark mode out of the UI by default (#10256) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: disable reading dark mode out of the UI by default This patch disables "dark mode" as a browser preference. It still honors the user preference, but it will always default to Light mode and will not pay attention to the browser setting. Thank GNU that dark mode availablity is not a requirement to sell to governments: https://www.section508.gov/content/guide-accessible-web-design-development/# * Prettier had opinions. * Prettier having more opinions. * Preserve knowledge. * Updated eslint to stop warning us out about deprecated features. * web: provide better feedback on Application Library page about search results (#9386) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: improve state management of Fuze application search This commit rewrites a bit (just a bit, really!) of the relationship between `ak-library-application-impl` and `ak-library-application-search`. The "show only apps with launch URLs filter" has been moved up to the retrieval layer; there was no reason for the renderer to repeatedly call a required filter; just call it on the list of applications once and be done. The search component exchanges the two-state guesswork and custom events for a concrete three-state solution and private events. The search handler now sends the events "reset," "updated," and the new "updated and empty," which we could not previously track. By limiting the Impl layer to only those apps with launchUrls, we can now distinguish between "all apps," and "filtered apps," and understand that when "all apps" is empty we have no apps, and when "filtered apps" is empty the search has returned nothing. I also tried to add a lot more comments. In keeping with ES2020, I've put `.js` extensions on all the local imports. In keeping with a variety of [best practice recommendations](https://webcomponents.today/best-practices/), I've renamed web component files to match the custom element they deploy: ``` ak-library-application-search-empty.ts 19:@customElement("ak-library-application-search-empty") ak-library-impl.ts 44:@customElement("ak-library-impl") ak-library.ts 30:@customElement("ak-library") ak-library-application-list.ts 34:@customElement("ak-library-application-list") ak-library-application-empty-list.ts 22:@customElement("ak-library-application-empty-list") ak-library-application-search.ts 46:@customElement("ak-library-application-search") ``` The only effect(s) external to the changes in this vertical is that the Route() had to be updated, and I have done that. * web: updated the improved search to Google's Lit standards for events. * website/docs: update geoip and asn documentation following field changes (#10265) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> * core, web: update translations (#10259) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> * core: bump goauthentik.io/api/v3 from 3.2024042.13 to 3.2024060.1 (#10260) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10268) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> * core: bump drf-jsonschema-serializer from 2.0.0 to 3.0.0 (#10262) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * translate: Updates for file web/xliff/en.xlf in zh_CN (#10271) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> * translate: Updates for file web/xliff/en.xlf in zh-Hans (#10272) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> * web: provide a test framework (#9681) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: provide a test framework As is typical of a system where a new build engine is involved, this thing is sadly fragile. Use the wrong import style in wdio.conf.js and it breaks; there are several notes in tsconfig.test.conf and wdio.conf.ts to tell eslint or tsc not to complain, it's just a different build with different criteria, the native criteria don't apply. On the other hand, writing tests is easy and predictable. We can test behaviors at the unit and component scale in a straightforward manner, and validate our expectations that things work the way we believe they should. * Rolling back a reversion. * Adjusting paths to work with tests. * add ci to test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: patch spotlight on the fly to fix syntax issue that blocked storybook build This should be a temporary hack. I have an [open issue](https://github.com/getsentry/spotlight/issues/419) and [pull request](https://github.com/getsentry/spotlight/pull/420) with the Spotlight people already to fix the issue. * Somehow missed these in the merge. * Merge missed something. * Fixed an issue where npm install and npm ci had different shell script behaviors. * Removed debugging messages. --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io> * web: lint package-lock.json file (#10157) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: replace ad-hoc test for package-lock.json file with a tool Testing to see if a package-lock entry has a `resolved` field hasn't been a reliable test of that entry's validity for several years now. The best options we have now are to ensure that every download occurs over https, and that every download only happens from fully vetted sources such as NPM and Github. [Liran Tal's Lockfile-Lint tool](https://snyk.io/blog/why-npm-lockfiles-can-be-a-security-blindspot-for-injecting-malicious-modules/) does this for package-lock.json files made with NPM or Yarn. * web: update CI workflows to use `lockfile-lint` for validity checking * Still getting familiar with the workflows thing. * ci: refactor ci-web linting Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * ci fix Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * try again Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * and again Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * rework ci-website Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * events: associate login_failed events to a user if possible (#10270) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * core: adjust styling to meet our standards (#10277) * core: adjust styling to meet our standards * Fix version correspondence bug in website (#10278) web: update lockfile to correspond to package.json, enabling npm-ci Looks like someone updated `package.json` to have the latest version of Typescript, but failed to update `package-lock.json` to get that version into the cache. `npm ci` won't work if the versions in the two files don't correspond, as that means, well, exactly that: no one has checked that the versioning is correct. The actual diff to `package-lock.json` is small enough it can be verified by eye, and it's fine. * web: bump @sentry/browser from 8.12.0 to 8.13.0 in /web in the sentry group (#10286) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.12.0 to 8.13.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.12.0...8.13.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump ruff from 0.4.10 to 0.5.0 (#10285) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.10 to 0.5.0. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.10...0.5.0) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump swagger-spec-validator from 3.0.3 to 3.0.4 (#10284) Bumps [swagger-spec-validator](https://github.com/Yelp/swagger_spec_validator) from 3.0.3 to 3.0.4. - [Changelog](https://github.com/Yelp/swagger_spec_validator/blob/master/CHANGELOG.rst) - [Commits](https://github.com/Yelp/swagger_spec_validator/compare/v3.0.3...v3.0.4) --- updated-dependencies: - dependency-name: swagger-spec-validator dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump twilio from 9.2.1 to 9.2.2 (#10283) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.2.1 to 9.2.2. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.2.1...9.2.2) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump google-api-python-client from 2.134.0 to 2.135.0 (#10281) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.134.0 to 2.135.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.134.0...v2.135.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump sentry-sdk from 2.5.1 to 2.7.1 (#10282) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.5.1 to 2.7.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.5.1...2.7.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core, web: update translations (#10279) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> * root: allow extra sentry settings (#10269) * core: fix URLValidator regex to allow single digit port (#10280) * root: fix web docker build (#10287) * tests/e2e: fix ldap tests following #10270 (#10288) * web/admin: show matching user reputation scores in user details (#10276) Co-authored-by: Jens Langhammer <jens@goauthentik.io> * web: bump API Client version (#10290) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> * web: restore hasLaunchUrl to client-side criteria for filtering apps (#10291) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: restore `hasLaunchUrl` to the The `filteredApps` criteria I misunderstood where this information was coming from. Sorry about that. * Use the most efficient operator here. * core: applications api: prefetch related policies (#10273) * stages/user_login: fix ?next parameter not carried through broken session binding (#10301) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * core: bump psycopg from 3.1.19 to 3.2.1 (#10313) Bumps [psycopg](https://github.com/psycopg/psycopg) from 3.1.19 to 3.2.1. - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](https://github.com/psycopg/psycopg/compare/3.1.19...3.2.1) --- updated-dependencies: - dependency-name: psycopg dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump goauthentik.io/api/v3 from 3.2024060.1 to 3.2024060.2 (#10311) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.1 to 3.2024060.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.1...v3.2024060.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * website: bump postcss from 8.4.38 to 8.4.39 in /website (#10310) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.38 to 8.4.39. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.38...8.4.39) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump esbuild from 0.21.5 to 0.22.0 in /web (#10309) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.5 to 0.22.0. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump the esbuild group in /web with 2 updates (#10308) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.5 to 0.22.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) Updates `@esbuild/linux-arm64` from 0.21.5 to 0.22.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10306) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> * core, web: update translations (#10294) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> * web: fix package lock out of sync (#10314) * translate: Updates for file web/xliff/en.xlf in zh_CN (#10315) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> * web/flows: remove background image link (#10318) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * core: remove transitionary old JS urls (#10317) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: set noopener and noreferrer on all external links (#10304) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: bump typescript from 5.5.2 to 5.5.3 in /web (#10332) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump the esbuild group in /web with 2 updates (#10330) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.22.0 to 0.23.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) Updates `@esbuild/linux-arm64` from 0.22.0 to 0.23.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * web: bump typescript from 5.5.2 to 5.5.3 in /tests/wdio (#10327) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core: bump pydantic from 2.7.4 to 2.8.0 (#10325) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.4 to 2.8.0. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.7.4...v2.8.0) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * website: bump typescript from 5.5.2 to 5.5.3 in /website (#10326) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * core, web: update translations (#10324) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> * web: fixed missed internationalized strings (#10323) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: you have no missed messages This commit uncovers a few places where a human-readable string was not property cast into the internationalized form and internationalizes them in order to conform to our policy of keeping the product viable outside of the English-speaking world. * Restored SAML spacing manually. Not sure why that was necessary. * Restored WS spacing manually. Not sure why that was necessary. * Restored RouteMatch spacing manually. Not sure why that was necessary. * Restored RAC spacing manually. Not sure why that was necessary. * web: bump esbuild from 0.22.0 to 0.23.0 in /web (#10331) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.22.0 to 0.23.0. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * translate: Updates for file web/xliff/en.xlf in zh-Hans (#10293) Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * translate: Updates for file web/xliff/en.xlf in fr (#10334) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> * provider/scim: Fix exception handling for missing ServiceProviderConfig (#10322) * web: provide default endpoint api configuration (#10319) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * Intermediate; prepping for remove that may fail. * web: provide a default table endpoint configuration This commit finds 19 places where the exact same configuration is used to describe a table's API endpoint, and replaces that configuration with a provided default from a parent class. While examining the logs for our build, I noted that this particular sequence is duplicated multiple times throughout our code base, accounting for a bloat of 169 lines or so of the estimated 5552 lines of bloat. By providing a default endpoint configuration and substituting it (mechanically) wherever the default is required, we reduce our code duplication issue from 9.26% of the codesabe to 8.99%. ... which is a start. * Didn't need the duplication. * remove page argument while we're at it Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually use it everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: fix inconsistent method signature for LogViewer Removed the `_page` parameter from LogViewer's apiEndpoint() method. The `page: number` parameter is no longer a part of this method's signature. * web: restore reduced page size to Overview:Recent Events card --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Russ Harvey <53157589+rwh85@users.noreply.github.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: gcp-cherry-pick-bot[bot] <98988430+gcp-cherry-pick-bot[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jonathan Joewono <30559735+jogerj@users.noreply.github.com> Co-authored-by: Russ Harvey <53157589+rwh85@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: ztelliot <1141480995@qq.com> Co-authored-by: Michael Poutre <m1kep.my.mail@gmail.com> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Russ Harvey <53157589+rwh85@users.noreply.github.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: gcp-cherry-pick-bot[bot] <98988430+gcp-cherry-pick-bot[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jonathan Joewono <30559735+jogerj@users.noreply.github.com> Co-authored-by: Russ Harvey <53157589+rwh85@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com> Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: ztelliot <1141480995@qq.com> Co-authored-by: Michael Poutre <m1kep.my.mail@gmail.com>	2024-07-02 17:44:48 +02:00
Ken Sternberg	453f7b8641	web: provide default endpoint api configuration (#10319 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * Intermediate; prepping for remove that may fail. * web: provide a default table endpoint configuration This commit finds 19 places where the exact same configuration is used to describe a table's API endpoint, and replaces that configuration with a provided default from a parent class. While examining the logs for our build, I noted that this particular sequence is duplicated multiple times throughout our code base, accounting for a bloat of 169 lines or so of the estimated 5552 lines of bloat. By providing a default endpoint configuration and substituting it (mechanically) wherever the default is required, we reduce our code duplication issue from 9.26% of the codesabe to 8.99%. ... which is a start. * Didn't need the duplication. * remove page argument while we're at it Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually use it everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: fix inconsistent method signature for LogViewer Removed the `_page` parameter from LogViewer's apiEndpoint() method. The `page: number` parameter is no longer a part of this method's signature. * web: restore reduced page size to Overview:Recent Events card --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-07-02 14:55:29 +02:00
Michael Poutre	cb7b44e751	provider/scim: Fix exception handling for missing ServiceProviderConfig (#10322 )	2024-07-02 13:00:07 +02:00
transifex-integration[bot]	e9c79df56b	translate: Updates for file web/xliff/en.xlf in fr (#10334 ) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-02 10:53:39 +00:00
transifex-integration[bot]	82bf113b5e	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10293 ) Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-07-02 12:35:31 +02:00
dependabot[bot]	e5c41fc928	web: bump esbuild from 0.22.0 to 0.23.0 in /web (#10331 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.22.0 to 0.23.0. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:15:57 +02:00
Ken Sternberg	d30defc6fa	web: fixed missed internationalized strings (#10323 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: you have no missed messages This commit uncovers a few places where a human-readable string was not property cast into the internationalized form and internationalizes them in order to conform to our policy of keeping the product viable outside of the English-speaking world. * Restored SAML spacing manually. Not sure why that was necessary. * Restored WS spacing manually. Not sure why that was necessary. * Restored RouteMatch spacing manually. Not sure why that was necessary. * Restored RAC spacing manually. Not sure why that was necessary.	2024-07-02 12:15:31 +02:00
authentik-automation[bot]	c76313a5aa	core, web: update translations (#10324 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-07-02 12:14:11 +02:00
dependabot[bot]	31b62f6b3b	website: bump typescript from 5.5.2 to 5.5.3 in /website (#10326 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:14:03 +02:00
dependabot[bot]	7e78fe5802	core: bump pydantic from 2.7.4 to 2.8.0 (#10325 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.4 to 2.8.0. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.7.4...v2.8.0) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:13:32 +02:00
dependabot[bot]	bde509a5b9	web: bump typescript from 5.5.2 to 5.5.3 in /tests/wdio (#10327 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:13:20 +02:00
dependabot[bot]	0510200d8c	web: bump the esbuild group in /web with 2 updates (#10330 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.22.0 to 0.23.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) Updates `@esbuild/linux-arm64` from 0.22.0 to 0.23.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.22.0...v0.23.0) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:10:56 +02:00
dependabot[bot]	6c96bc7dfe	web: bump typescript from 5.5.2 to 5.5.3 in /web (#10332 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.5.2 to 5.5.3. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-02 12:10:45 +02:00
Jens L	29f3e2789d	web: set noopener and noreferrer on all external links (#10304 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-02 00:29:32 +02:00
Jens L	f4ef8f5739	core: remove transitionary old JS urls (#10317 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-01 20:39:42 +02:00
Jens L	b94db1d10d	web/flows: remove background image link (#10318 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-07-01 20:25:20 +02:00
transifex-integration[bot]	dc93a941fb	translate: Updates for file web/xliff/en.xlf in zh_CN (#10315 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-07-01 18:36:39 +02:00
Marc 'risson' Schmitt	e6012fe2d4	web: fix package lock out of sync (#10314 )	2024-07-01 13:39:10 +00:00
authentik-automation[bot]	90fb64006d	core, web: update translations (#10294 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-07-01 11:15:11 +02:00
authentik-automation[bot]	b50cdd674f	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10306 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-07-01 11:15:02 +02:00
dependabot[bot]	24910d1b4d	web: bump the esbuild group in /web with 2 updates (#10308 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.5 to 0.22.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) Updates `@esbuild/linux-arm64` from 0.21.5 to 0.22.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-01 11:13:49 +02:00
dependabot[bot]	8f26708bde	web: bump esbuild from 0.21.5 to 0.22.0 in /web (#10309 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.5 to 0.22.0. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.22.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-01 11:13:40 +02:00
dependabot[bot]	dca3391554	website: bump postcss from 8.4.38 to 8.4.39 in /website (#10310 ) Bumps [postcss](https://github.com/postcss/postcss) from 8.4.38 to 8.4.39. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.4.38...8.4.39) --- updated-dependencies: - dependency-name: postcss dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-01 11:13:34 +02:00
dependabot[bot]	7392065e35	core: bump goauthentik.io/api/v3 from 3.2024060.1 to 3.2024060.2 (#10311 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024060.1 to 3.2024060.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024060.1...v3.2024060.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-01 11:13:26 +02:00
dependabot[bot]	52388dadf5	core: bump psycopg from 3.1.19 to 3.2.1 (#10313 ) Bumps [psycopg](https://github.com/psycopg/psycopg) from 3.1.19 to 3.2.1. - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](https://github.com/psycopg/psycopg/compare/3.1.19...3.2.1) --- updated-dependencies: - dependency-name: psycopg dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-01 11:13:10 +02:00
Jens L	c517d4690a	stages/user_login: fix ?next parameter not carried through broken session binding (#10301 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-29 23:13:40 +02:00
Marc 'risson' Schmitt	136b7dea54	core: applications api: prefetch related policies (#10273 )	2024-06-28 08:40:27 -07:00
Ken Sternberg	cb178f7f2d	web: restore hasLaunchUrl to client-side criteria for filtering apps (#10291 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: restore `hasLaunchUrl` to the The `filteredApps` criteria I misunderstood where this information was coming from. Sorry about that. * Use the most efficient operator here.	2024-06-28 15:12:50 +00:00
authentik-automation[bot]	2d565f1943	web: bump API Client version (#10290 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-28 14:51:28 +02:00
Marc 'risson' Schmitt	98c8402f11	web/admin: show matching user reputation scores in user details (#10276 ) Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-28 12:18:38 +00:00
Marc 'risson' Schmitt	8915904cc7	tests/e2e: fix ldap tests following #10270 (#10288 )	2024-06-28 11:02:14 +00:00
Marc 'risson' Schmitt	ca960f3286	root: fix web docker build (#10287 )	2024-06-28 13:00:54 +02:00
ztelliot	7c5314eb66	core: fix URLValidator regex to allow single digit port (#10280 )	2024-06-28 10:45:45 +00:00
Marc 'risson' Schmitt	97a8d8ba60	root: allow extra sentry settings (#10269 )	2024-06-28 12:29:29 +02:00
authentik-automation[bot]	4f06ecbee6	core, web: update translations (#10279 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-28 12:28:45 +02:00
dependabot[bot]	1b19b3dd11	core: bump sentry-sdk from 2.5.1 to 2.7.1 (#10282 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.5.1 to 2.7.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.5.1...2.7.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:54:00 +02:00
dependabot[bot]	9458c486c5	core: bump google-api-python-client from 2.134.0 to 2.135.0 (#10281 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.134.0 to 2.135.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.134.0...v2.135.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:53:32 +02:00
dependabot[bot]	1fe0f474bd	core: bump twilio from 9.2.1 to 9.2.2 (#10283 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.2.1 to 9.2.2. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.2.1...9.2.2) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:53:03 +02:00
dependabot[bot]	326b89fe88	core: bump swagger-spec-validator from 3.0.3 to 3.0.4 (#10284 ) Bumps [swagger-spec-validator](https://github.com/Yelp/swagger_spec_validator) from 3.0.3 to 3.0.4. - [Changelog](https://github.com/Yelp/swagger_spec_validator/blob/master/CHANGELOG.rst) - [Commits](https://github.com/Yelp/swagger_spec_validator/compare/v3.0.3...v3.0.4) --- updated-dependencies: - dependency-name: swagger-spec-validator dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:52:47 +02:00
dependabot[bot]	755851d774	core: bump ruff from 0.4.10 to 0.5.0 (#10285 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.10 to 0.5.0. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.10...0.5.0) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:52:23 +02:00
dependabot[bot]	17a58a1095	web: bump @sentry/browser from 8.12.0 to 8.13.0 in /web in the sentry group (#10286 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.12.0 to 8.13.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.12.0...8.13.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-28 11:51:48 +02:00
Ken Sternberg	361765cd8d	core: adjust styling to meet our standards (#10277 ) * core: adjust styling to meet our standards * Fix version correspondence bug in website (#10278) web: update lockfile to correspond to package.json, enabling npm-ci Looks like someone updated `package.json` to have the latest version of Typescript, but failed to update `package-lock.json` to get that version into the cache. `npm ci` won't work if the versions in the two files don't correspond, as that means, well, exactly that: no one has checked that the versioning is correct. The actual diff to `package-lock.json` is small enough it can be verified by eye, and it's fine.	2024-06-27 15:19:43 -07:00
Marc 'risson' Schmitt	8adbba606c	events: associate login_failed events to a user if possible (#10270 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-27 17:01:53 -04:00
Ken Sternberg	cb4bc5bd87	web: lint package-lock.json file (#10157 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: replace ad-hoc test for package-lock.json file with a tool Testing to see if a package-lock entry has a `resolved` field hasn't been a reliable test of that entry's validity for several years now. The best options we have now are to ensure that every download occurs over https, and that every download only happens from fully vetted sources such as NPM and Github. [Liran Tal's Lockfile-Lint tool](https://snyk.io/blog/why-npm-lockfiles-can-be-a-security-blindspot-for-injecting-malicious-modules/) does this for package-lock.json files made with NPM or Yarn. * web: update CI workflows to use `lockfile-lint` for validity checking * Still getting familiar with the workflows thing. * ci: refactor ci-web linting Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * ci fix Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * try again Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * and again Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * rework ci-website Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-27 10:42:59 -07:00
Ken Sternberg	861992f576	web: provide a test framework (#9681 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: provide a test framework As is typical of a system where a new build engine is involved, this thing is sadly fragile. Use the wrong import style in wdio.conf.js and it breaks; there are several notes in tsconfig.test.conf and wdio.conf.ts to tell eslint or tsc not to complain, it's just a different build with different criteria, the native criteria don't apply. On the other hand, writing tests is easy and predictable. We can test behaviors at the unit and component scale in a straightforward manner, and validate our expectations that things work the way we believe they should. * Rolling back a reversion. * Adjusting paths to work with tests. * add ci to test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: patch spotlight on the fly to fix syntax issue that blocked storybook build This should be a temporary hack. I have an [open issue](https://github.com/getsentry/spotlight/issues/419) and [pull request](https://github.com/getsentry/spotlight/pull/420) with the Spotlight people already to fix the issue. * Somehow missed these in the merge. * Merge missed something. * Fixed an issue where npm install and npm ci had different shell script behaviors. * Removed debugging messages. --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-27 10:17:06 -07:00
transifex-integration[bot]	f827c269da	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10272 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-27 16:51:48 +00:00
transifex-integration[bot]	80072f3781	translate: Updates for file web/xliff/en.xlf in zh_CN (#10271 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-27 18:51:36 +02:00
dependabot[bot]	e0ac3dedf4	core: bump drf-jsonschema-serializer from 2.0.0 to 3.0.0 (#10262 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-27 16:17:06 +02:00
transifex-integration[bot]	f220060ea2	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10268 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-27 16:15:45 +02:00
dependabot[bot]	7c22e9cfa9	core: bump goauthentik.io/api/v3 from 3.2024042.13 to 3.2024060.1 (#10260 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-27 15:11:02 +02:00
authentik-automation[bot]	e7241927e5	core, web: update translations (#10259 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-27 15:10:28 +02:00
Marc 'risson' Schmitt	059f81735e	website/docs: update geoip and asn documentation following field changes (#10265 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-06-27 15:09:23 +02:00
Ken Sternberg	eff85e489c	web: provide better feedback on Application Library page about search results (#9386 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: improve state management of Fuze application search This commit rewrites a bit (just a bit, really!) of the relationship between `ak-library-application-impl` and `ak-library-application-search`. The "show only apps with launch URLs filter" has been moved up to the retrieval layer; there was no reason for the renderer to repeatedly call a required filter; just call it on the list of applications once and be done. The search component exchanges the two-state guesswork and custom events for a concrete three-state solution and private events. The search handler now sends the events "reset," "updated," and the new "updated and empty," which we could not previously track. By limiting the Impl layer to only those apps with launchUrls, we can now distinguish between "all apps," and "filtered apps," and understand that when "all apps" is empty we have no apps, and when "filtered apps" is empty the search has returned nothing. I also tried to add a lot more comments. In keeping with ES2020, I've put `.js` extensions on all the local imports. In keeping with a variety of [best practice recommendations](https://webcomponents.today/best-practices/), I've renamed web component files to match the custom element they deploy: ``` ak-library-application-search-empty.ts 19:@customElement("ak-library-application-search-empty") ak-library-impl.ts 44:@customElement("ak-library-impl") ak-library.ts 30:@customElement("ak-library") ak-library-application-list.ts 34:@customElement("ak-library-application-list") ak-library-application-empty-list.ts 22:@customElement("ak-library-application-empty-list") ak-library-application-search.ts 46:@customElement("ak-library-application-search") ``` The only effect(s) external to the changes in this vertical is that the Route() had to be updated, and I have done that. * web: updated the improved search to Google's Lit standards for events.	2024-06-26 15:11:49 -07:00
Ken Sternberg	0caa8cf0fa	web: disable reading dark mode out of the UI by default (#10256 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: disable reading dark mode out of the UI by default This patch disables "dark mode" as a browser preference. It still honors the user preference, but it will always default to Light mode and will not pay attention to the browser setting. Thank GNU that dark mode availablity is not a requirement to sell to governments: https://www.section508.gov/content/guide-accessible-web-design-development/# * Prettier had opinions. * Prettier having more opinions. * Preserve knowledge. * Updated eslint to stop warning us out about deprecated features.	2024-06-26 13:55:00 -04:00
Jens L	778bd9ba63	web/flows: remove continue button from AutoSubmit stage (#10253 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-26 09:14:39 -07:00
authentik-automation[bot]	632f098a34	web: bump API Client version (#10252 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-26 13:32:28 +00:00
Jens Langhammer	40b15ded2a	Merge branch 'version-2024.6' Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # package.json	2024-06-26 22:13:55 +09:00
gcp-cherry-pick-bot[bot]	17acc9457d	website/docs: update geoip and asn example to use the proper syntax (cherry-pick #10249 ) (#10250 ) website/docs: update geoip and asn example to use the proper syntax (#10249) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 22:07:25 +09:00
Tana M Berry	843431cfed	website/docs: update the Welcome page (#10222 ) * update to mention Enterprise * moved sections * tweaks --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-26 07:55:07 -05:00
Marc 'risson' Schmitt	7cadcbfa06	website/docs: update geoip and asn example to use the proper syntax (#10249 )	2024-06-26 08:40:41 -04:00
gcp-cherry-pick-bot[bot]	2996f20b74	security: update supported versions (cherry-pick #10247 ) (#10248 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 11:58:46 +00:00
Marc 'risson' Schmitt	d575eb8dcc	security: update supported versions (#10247 )	2024-06-26 11:42:31 +00:00
gcp-cherry-pick-bot[bot]	dd86a90225	website/docs: remove RC disclaimer from 2024.6 release notes (cherry-pick #10245 ) (#10246 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 11:39:59 +00:00
Marc 'risson' Schmitt	db5168480c	website/docs: remove RC disclaimer from 2024.6 release notes (#10245 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 13:23:25 +02:00
gcp-cherry-pick-bot[bot]	3b1034b9a2	website/docs: update 2024.6 release notes with latest changes (cherry-pick #10228 ) (#10243 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 10:56:28 +00:00
Marc 'risson' Schmitt	3086d15f08	website/docs: update 2024.4 release notes with latest changes (#10231 )	2024-06-26 10:55:43 +00:00
Marc 'risson' Schmitt	a1153d3393	website/docs: update 2024.2 release notes with security fixes (#10232 )	2024-06-26 10:40:01 +00:00
Marc 'risson' Schmitt	f40feaf95f	website/docs: update 2024.6 release notes with latest changes (#10228 )	2024-06-26 10:38:25 +00:00
Jens Langhammer	ba87fd8714	release: 2024.6.0	2024-06-26 19:37:29 +09:00
gcp-cherry-pick-bot[bot]	ccebe355aa	security: fix CVE-2024-37905 (cherry-pick #10230 ) (#10237 ) Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> fix CVE-2024-37905 (#10230)	2024-06-26 10:25:29 +00:00
dependabot[bot]	94de772a3d	core: bump pdoc from 14.5.0 to 14.5.1 (#10221 ) Bumps [pdoc](https://github.com/mitmproxy/pdoc) from 14.5.0 to 14.5.1. - [Changelog](https://github.com/mitmproxy/pdoc/blob/main/CHANGELOG.md) - [Commits](https://github.com/mitmproxy/pdoc/compare/v14.5.0...v14.5.1) --- updated-dependencies: - dependency-name: pdoc dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-26 19:23:18 +09:00
dependabot[bot]	5f4e49f586	web: bump chromedriver from 126.0.3 to 126.0.4 in /tests/wdio (#10223 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.3 to 126.0.4. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.3...126.0.4) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-26 19:23:09 +09:00
dependabot[bot]	6bd1b9fa32	core: bump webauthn from 2.1.0 to 2.2.0 (#10224 ) Bumps [webauthn](https://github.com/duo-labs/py_webauthn) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/duo-labs/py_webauthn/releases) - [Changelog](https://github.com/duo-labs/py_webauthn/blob/master/CHANGELOG.md) - [Commits](https://github.com/duo-labs/py_webauthn/compare/v2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: webauthn dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-26 19:22:56 +09:00
dependabot[bot]	22215bc887	web: bump @sentry/browser from 8.11.0 to 8.12.0 in /web in the sentry group (#10226 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.11.0 to 8.12.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.11.0...8.12.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-26 19:22:42 +09:00
dependabot[bot]	9b618ca54b	core: bump debugpy from 1.8.1 to 1.8.2 (#10225 ) Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.8.1 to 1.8.2. - [Release notes](https://github.com/microsoft/debugpy/releases) - [Commits](https://github.com/microsoft/debugpy/compare/v1.8.1...v1.8.2) --- updated-dependencies: - dependency-name: debugpy dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-26 19:22:32 +09:00
Jens L	cc18f352aa	security: fix CVE-2024-37905 (#10230 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-26 12:07:44 +02:00
gcp-cherry-pick-bot[bot]	49fe670932	security: fix CVE-2024-38371 (cherry-pick #10229 ) (#10234 ) Co-authored-by: Jens L <jens@goauthentik.io> fix CVE-2024-38371 (#10229)	2024-06-26 09:41:38 +00:00
Jens L	422eb0890c	security: fix CVE-2024-38371 (#10229 )	2024-06-26 11:24:05 +02:00
Russ Harvey	8626d7a7aa	website/integrations: fix typo in documentation for OIDC setup with Paperless-ngx (#10218 ) Update index.md Missing " cost me more time than I'd like to admit. Paying it forward. Signed-off-by: Russ Harvey <53157589+rwh85@users.noreply.github.com>	2024-06-26 07:27:15 +00:00
Jonathan Joewono	53a44435f8	website/docs: fix #9552 openssl rand base64 line wrap (#10211 )	2024-06-24 21:19:47 +00:00
gcp-cherry-pick-bot[bot]	f1d173f94e	web/flows: update flow background (cherry-pick #10206 ) (#10207 ) web/flows: update flow background (#10206) * web/flows: update flow background * Optimised images with calibre/image-actions --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-24 20:57:46 +09:00
Jens L	e25ceb5041	web/flows: update flow background (#10206 ) * web/flows: update flow background Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-24 20:52:59 +09:00
dependabot[bot]	72a6f369ef	core: bump coverage from 7.5.3 to 7.5.4 (#10201 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.5.3 to 7.5.4. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.3...7.5.4) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-24 16:37:40 +09:00
dependabot[bot]	ef16328005	core: bump twilio from 9.2.0 to 9.2.1 (#10202 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.2.0 to 9.2.1. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.2.0...9.2.1) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-24 16:37:22 +09:00
dependabot[bot]	89fafbd6ad	web: bump chromedriver from 126.0.2 to 126.0.3 in /tests/wdio (#10203 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.2 to 126.0.3. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.2...126.0.3) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-24 16:37:01 +09:00
dependabot[bot]	d8a855e16d	web: bump @sentry/browser from 8.10.0 to 8.11.0 in /web in the sentry group (#10204 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.10.0 to 8.11.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.10.0...8.11.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-24 16:36:49 +09:00
dependabot[bot]	f9cd3b9b34	website: bump typescript from 5.4.5 to 5.5.2 in /website (#10190 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.4.5 to 5.5.2. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.4.5...v5.5.2) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-21 15:54:11 +09:00
dependabot[bot]	909c227894	web: bump typescript from 5.4.5 to 5.5.2 in /web (#10191 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.4.5 to 5.5.2. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.4.5...v5.5.2) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-21 15:53:48 +09:00
dependabot[bot]	0690dffa58	web: bump typescript from 5.4.5 to 5.5.2 in /tests/wdio (#10192 ) Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.4.5 to 5.5.2. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml) - [Commits](https://github.com/Microsoft/TypeScript/compare/v5.4.5...v5.5.2) --- updated-dependencies: - dependency-name: typescript dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-21 15:53:38 +09:00
dependabot[bot]	48ff62d502	core: bump ruff from 0.4.9 to 0.4.10 (#10193 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.9 to 0.4.10. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.9...v0.4.10) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-21 15:53:30 +09:00
dependabot[bot]	988131fb57	core: bump selenium from 4.21.0 to 4.22.0 (#10194 ) Bumps [selenium](https://github.com/SeleniumHQ/Selenium) from 4.21.0 to 4.22.0. - [Release notes](https://github.com/SeleniumHQ/Selenium/releases) - [Commits](https://github.com/SeleniumHQ/Selenium/compare/selenium-4.21.0...selenium-4.22.0) --- updated-dependencies: - dependency-name: selenium dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-21 15:53:20 +09:00
gcp-cherry-pick-bot[bot]	19e0a282c6	core: rework base for SkipObject exception to better support control flow exceptions (cherry-pick #10186 ) (#10187 ) core: rework base for SkipObject exception to better support control flow exceptions (#10186) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2024-06-20 22:36:16 +09:00
gcp-cherry-pick-bot[bot]	234f06a362	website/docs: Remove hyphen in read replica in Release Notes (cherry-pick #10178 ) (#10188 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-20 08:01:37 +00:00
Mike Fotinakis	b3340507a2	website/docs: Fix nginx proxy_pass directive documentation (#10181 )	2024-06-20 09:36:04 +02:00
Tana M Berry	94482daa97	website/docs: Remove hyphen in read replica in Release Notes (#10178 ) Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-20 09:34:48 +02:00
Jens L	942019d31f	core: rework base for SkipObject exception to better support control flow exceptions (#10186 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-20 16:16:24 +09:00
dependabot[bot]	54743e8187	web: bump glob from 10.4.1 to 10.4.2 in /web (#10163 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.1 to 10.4.2. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.4.1...v10.4.2) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-20 14:50:04 +09:00
dependabot[bot]	833d20349e	core: bump google-api-python-client from 2.133.0 to 2.134.0 (#10183 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.133.0 to 2.134.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.133.0...v2.134.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-20 14:09:44 +09:00
dependabot[bot]	1b2816eb14	web: bump @sentry/browser from 8.9.2 to 8.10.0 in /web in the sentry group (#10185 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.9.2 to 8.10.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.9.2...8.10.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-20 14:09:33 +09:00
Emmanuel Ferdman	e6fd7cc1fc	website/docs: update template reference (#10166 ) docs: update template reference Signed-off-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>	2024-06-19 16:52:15 -05:00
Marc 'risson' Schmitt	0bbbc7def2	release: 2024.6.0-rc2 (#10176 )	2024-06-19 16:53:45 +00:00
gcp-cherry-pick-bot[bot]	43fd3eecda	website/docs: update 2024.6 release notes with latest changes (cherry-pick #10174 ) (#10175 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-19 16:16:08 +00:00
gcp-cherry-pick-bot[bot]	631b120e4f	website/docs: 2024.6 release notes: add note about group names (cherry-pick #10170 ) (#10171 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-06-19 15:42:39 +00:00
Marc 'risson' Schmitt	c7c7e28cef	website/docs: update 2024.6 release notes with latest changes (#10174 )	2024-06-19 15:31:44 +00:00
gcp-cherry-pick-bot[bot]	9ea517d606	core: fix error when raising SkipObject in mapping (cherry-pick #10153 ) (#10173 ) core: fix error when raising SkipObject in mapping (#10153) * core: fix error when raising SkipObject in mapping * fix events not being saved thanks tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2024-06-19 23:45:06 +09:00
Jens L	5201a37214	core: fix error when raising SkipObject in mapping (#10153 ) * core: fix error when raising SkipObject in mapping Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix events not being saved thanks tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-19 23:44:42 +09:00
Marc 'risson' Schmitt	a448107feb	website/docs: 2024.6 release notes: add note about group names (#10170 ) * website/docs: 2024.6 release notes: add note about group names Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * Update website/docs/releases/2024/v2024.6.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-06-19 14:00:08 +00:00
gcp-cherry-pick-bot[bot]	7b7a7e3073	website/docs: update 2024.6 release notes with latest changes (cherry-pick #10167 ) (#10168 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-19 13:20:28 +00:00
Marc 'risson' Schmitt	1eb103994d	website/docs: update 2024.6 release notes with latest changes (#10167 )	2024-06-19 14:54:08 +02:00
dependabot[bot]	ae97eac780	core: bump twilio from 9.1.1 to 9.2.0 (#10162 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.1.1 to 9.2.0. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.1.1...9.2.0) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-19 14:04:21 +09:00
dependabot[bot]	3c7abaef01	web: bump chromedriver from 126.0.1 to 126.0.2 in /tests/wdio (#10161 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.1 to 126.0.2. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.1...126.0.2) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-19 14:04:06 +09:00
dependabot[bot]	2def291773	web: bump the wdio group in /tests/wdio with 4 updates (#10160 ) Bumps the wdio group in /tests/wdio with 4 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Updates `@wdio/cli` from 8.38.2 to 8.39.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.0/packages/wdio-cli) Updates `@wdio/local-runner` from 8.38.2 to 8.39.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.0/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.38.2 to 8.39.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.0/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.38.2 to 8.39.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.39.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.39.0/packages/wdio-spec-reporter) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-19 14:03:55 +09:00
Connor Beard	7f17c5f212	website/integrations: jellyfin: add OIDC configuration (#9538 ) * Jellyfin OIDC Configuration Added * Formating * Added code review suggestions * Forgot some review changes * More Changes * Updated documentation * updated config order	2024-06-18 14:10:55 -05:00
m1212e	2bd7b80579	website/docs: Describe where to apply the auto setup env vars (#9863 ) Update automated-install.md Took me a good half an hour to find out why my env setup vars are not working: Set the on the server, not the worker container! Signed-off-by: m1212e <14091540+m1212e@users.noreply.github.com>	2024-06-18 13:24:35 -05:00
4d62	340c3241e6	website/integrations: gitlab: better service description (#9923 ) Signed-off-by: 4d62 <ext@4d62.me>	2024-06-18 13:05:52 -05:00
gcp-cherry-pick-bot[bot]	ca3cdc3fd2	web: fix docker build for non-release versions (cherry-pick #10154 ) (#10155 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> fix docker build for non-release versions (#10154)	2024-06-18 17:27:49 +00:00
Marc 'risson' Schmitt	c23ee42d9a	web: fix docker build for non-release versions (#10154 )	2024-06-18 19:01:04 +02:00
Marc 'risson' Schmitt	0cc853e272	root: makefile: add codespell to make-website (#10116 )	2024-06-18 09:44:27 -07:00
gcp-cherry-pick-bot[bot]	6e12277903	root: use custom model serializer that saves m2m without bulk (cherry-pick #10139 ) (#10151 ) root: use custom model serializer that saves m2m without bulk (#10139) * use custom model serializer that saves m2m without bulk * sigh --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2024-06-18 23:40:53 +09:00
Jens L	2c781ae423	root: use custom model serializer that saves m2m without bulk (#10139 ) * use custom model serializer that saves m2m without bulk Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sigh Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-18 22:48:05 +09:00
dependabot[bot]	81540fdae5	core: bump urllib3 from 2.2.1 to 2.2.2 (#10143 ) Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.2.1 to 2.2.2. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.2.1...2.2.2) --- updated-dependencies: - dependency-name: urllib3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 18:41:33 +09:00
dependabot[bot]	22a6acf56c	ci: bump docker/build-push-action from 5 to 6 (#10144 ) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v5...v6) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 18:41:20 +09:00
dependabot[bot]	29c0d1d5f4	web: bump the storybook group in /web with 7 updates (#10147 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.9` \| `8.1.10` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.9` \| `8.1.10` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.9` \| `8.1.10` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.9` \| `8.1.10` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.9` \| `8.1.10` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.9` \| `8.1.10` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.9` \| `8.1.10` \| Updates `@storybook/addon-essentials` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/addons/links) Updates `@storybook/blocks` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/frameworks/web-components-vite) Updates `storybook` from 8.1.9 to 8.1.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.10/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 18:41:10 +09:00
dependabot[bot]	2b17947b64	web: bump ws from 8.16.0 to 8.17.1 in /web (#10149 ) Bumps [ws](https://github.com/websockets/ws) from 8.16.0 to 8.17.1. - [Release notes](https://github.com/websockets/ws/releases) - [Commits](https://github.com/websockets/ws/compare/8.16.0...8.17.1) --- updated-dependencies: - dependency-name: ws dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 17:39:25 +09:00
gcp-cherry-pick-bot[bot]	2f42144b33	web: fix needed because recent upgrade to task breaks spinner button (cherry-pick #10142 ) (#10150 ) web: fix needed because recent upgrade to task breaks spinner button (#10142) web: fix broken Task plug-in rebase and fix package json Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Ken Sternberg <133134217+kensternberg-authentik@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-18 17:39:13 +09:00
gcp-cherry-pick-bot[bot]	eef02f2892	core: include version in built JS files (cherry-pick #9558 ) (#10148 ) core: include version in built JS files (#9558) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * core: include version in built JS files * add fallback * include build hash * format * fix stuff why does this even work locally * idk man node * just not use import assertions * web: add no-console, use proper dirname path * web: retarget to use the base package.json file. * web: encode path to root package.json using git This is the most authoritative way of finding the root of the git project. * use full version to match frontend * add fallback for missing .git folder --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Ken Sternberg <ken@goauthentik.io>	2024-06-18 17:39:04 +09:00
Ken Sternberg	7c3eb96525	web: fix needed because recent upgrade to task breaks spinner button (#10142 ) web: fix broken Task plug-in rebase and fix package json Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-18 17:09:48 +09:00
Jens L	ff06214b0e	core: include version in built JS files (#9558 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * core: include version in built JS files Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add fallback Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include build hash Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix stuff why does this even work locally Signed-off-by: Jens Langhammer <jens@goauthentik.io> * idk man node Signed-off-by: Jens Langhammer <jens@goauthentik.io> * just not use import assertions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * web: add no-console, use proper dirname path * web: retarget to use the base package.json file. * web: encode path to root package.json using git This is the most authoritative way of finding the root of the git project. * use full version to match frontend Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add fallback for missing .git folder Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Ken Sternberg <ken@goauthentik.io>	2024-06-18 17:05:28 +09:00
Tana M Berry	bdde6775bc	website/integations/services: Slack integration docs (#9933 ) * draft and sidebar * added rest of config steps * formatting * typo * tweaks * contributors edit * fixed support badge * fix formatting * marc edit * 4d62 edit * tech edits * fix prettier error * add link from Jens --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-17 15:20:46 -05:00
Ken Sternberg	57399c2907	web: fix early modal stack depletion (#10068 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: fix early modal stack depletion While working on something else, I discovered this mutation inside the modal stack handler; I've changed it to make a copy of the original stack, modify that copy, and then write the changed stack back to the original. While unlikely, it is possible that the stack could get out-of-sync and be depleted before all stacked modals have been closed. This fixes that issue. * make eslint shut up Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-17 08:25:03 -07:00
dependabot[bot]	4df1b50542	website: bump react-tooltip from 5.26.4 to 5.27.0 in /website (#10129 ) Bumps [react-tooltip](https://github.com/ReactTooltip/react-tooltip) from 5.26.4 to 5.27.0. - [Release notes](https://github.com/ReactTooltip/react-tooltip/releases) - [Changelog](https://github.com/ReactTooltip/react-tooltip/blob/master/CHANGELOG.md) - [Commits](https://github.com/ReactTooltip/react-tooltip/compare/v5.26.4...v5.27.0) --- updated-dependencies: - dependency-name: react-tooltip dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 19:41:19 +09:00
dependabot[bot]	c5e0e5e09d	web: bump @patternfly/elements from 3.0.1 to 3.0.2 in /web (#10132 ) Bumps [@patternfly/elements](https://github.com/patternfly/patternfly-elements/tree/HEAD/elements) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/patternfly/patternfly-elements/releases) - [Changelog](https://github.com/patternfly/patternfly-elements/blob/main/elements/CHANGELOG.md) - [Commits](https://github.com/patternfly/patternfly-elements/commits/@patternfly/elements@3.0.2/elements) --- updated-dependencies: - dependency-name: "@patternfly/elements" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 19:41:03 +09:00
dependabot[bot]	8d7305caec	core: bump github.com/gorilla/sessions from 1.2.2 to 1.3.0 (#10135 ) Bumps [github.com/gorilla/sessions](https://github.com/gorilla/sessions) from 1.2.2 to 1.3.0. - [Release notes](https://github.com/gorilla/sessions/releases) - [Commits](https://github.com/gorilla/sessions/compare/v1.2.2...v1.3.0) --- updated-dependencies: - dependency-name: github.com/gorilla/sessions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 19:40:54 +09:00
dependabot[bot]	9448d06301	web: bump chromedriver from 126.0.0 to 126.0.1 in /tests/wdio (#10136 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 126.0.0 to 126.0.1. - [Commits](https://github.com/giggio/node-chromedriver/compare/126.0.0...126.0.1) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 19:40:45 +09:00
dependabot[bot]	e8a1929993	core: bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#10133 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 07:26:41 +00:00
authentik-automation[bot]	9edece404c	core, web: update translations (#10127 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-17 09:06:07 +02:00
dependabot[bot]	a636df2863	core: bump ruff from 0.4.8 to 0.4.9 (#10128 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 09:05:53 +02:00
dependabot[bot]	5ee24bd28b	core: bump goauthentik.io/api/v3 from 3.2024042.11 to 3.2024042.13 (#10134 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 09:05:44 +02:00
authentik-automation[bot]	8e7ae07f13	core, web: update translations (#10118 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-16 22:09:36 +02:00
transifex-integration[bot]	40c1934ed9	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10121 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-16 22:09:03 +02:00
transifex-integration[bot]	d7e9c86672	translate: Updates for file web/xliff/en.xlf in zh_CN (#10120 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-16 22:08:58 +02:00
authentik-automation[bot]	016299dd41	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10119 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-16 22:08:49 +02:00
gcp-cherry-pick-bot[bot]	b6157ecaf1	policies/reputation: fix existing reputation update (cherry-pick #10124 ) (#10125 ) policies/reputation: fix existing reputation update (#10124) * add failing test case * fix reputation update * lint --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-16 19:52:04 +02:00
Marc 'risson' Schmitt	49e7c5b873	policies/reputation: fix existing reputation update (#10124 ) * add failing test case Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix reputation update Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-16 18:45:07 +02:00
Tana M Berry	6a79b3a4af	website/docs: add more info about multiple replicas (#10117 ) * add info * tweak * removed same as --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-14 15:03:27 -05:00
Marc 'risson' Schmitt	35cd126406	release: 2024.6.0-rc1	2024-06-14 18:42:26 +02:00
gcp-cherry-pick-bot[bot]	f89a4fc276	website/docs: update 2024.6 release notes with latest changes (cherry-pick #10109 ) (#10115 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-14 18:33:26 +02:00
Marc 'risson' Schmitt	ea76295976	website/docs: update 2024.6 release notes with latest changes (#10109 )	2024-06-14 09:08:43 -07:00
gcp-cherry-pick-bot[bot]	4d7f380b2d	web: bump API Client version (cherry-pick #10113 ) (#10114 )	2024-06-15 00:33:28 +09:00
authentik-automation[bot]	6e98c9a6a9	web: bump API Client version (#10113 )	2024-06-15 00:33:08 +09:00
gcp-cherry-pick-bot[bot]	cb8379031a	admin: system api: fix FIPS status schema (cherry-pick #10110 ) (#10112 ) admin: system api: fix FIPS status schema (#10110) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-15 00:27:33 +09:00
Jannick Fahlbusch	45bc16286c	website/docs: Specify Synology DSM Account type to use (#10111 )	2024-06-14 15:27:19 +00:00
Marc 'risson' Schmitt	c0521762bc	admin: system api: fix FIPS status schema (#10110 )	2024-06-14 15:24:35 +00:00
Jens L	0c604ceba4	website/docs: release notes for 2024.6 (#9812 ) Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-14 15:38:21 +02:00
Marc 'risson' Schmitt	30e39c75ff	policies/reputation: save to database directly (#10059 ) * policies/reputation: save to database directly Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * makemigrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix settings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * also update expiry Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint? Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-14 22:34:43 +09:00
Jens L	6d7bebbcc3	providers/enterprise: import user/group data when manually linking objects (#10089 ) * providers/enterprise: import user/group data when manually linking objects Signed-off-by: Jens Langhammer <jens@goauthentik.io> * select immutable ID Signed-off-by: Jens Langhammer <jens@goauthentik.io> * generalize and implement for all Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-14 22:34:33 +09:00
authentik-automation[bot]	dc332ec7b0	core, web: update translations (#10108 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-14 12:11:55 +00:00
Ken Sternberg	31e94a2814	web: Add enterprise / FIPS notification to the AdminOverviewPage (#10090 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-14 11:38:48 +00:00
dependabot[bot]	eb08214f0e	core: bump github.com/getsentry/sentry-go from 0.28.0 to 0.28.1 (#10095 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-14 13:21:57 +02:00
authentik-automation[bot]	a5ab8a618e	web: bump API Client version (#10107 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-14 11:15:08 +00:00
Marc 'risson' Schmitt	b8cbdcae22	admin: system api: do not show FIPS status if no valid license (#10091 ) * admin: system api: do not show FIPS status if no valid license Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * also for outposts Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * black Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-14 12:52:24 +02:00
Marc 'risson' Schmitt	ae86184511	root: add configuration option to enable fips (#10088 )	2024-06-14 10:04:00 +00:00
dependabot[bot]	b704388c2f	web: bump the sentry group across 1 directory with 2 updates (#10101 )	2024-06-14 15:52:07 +09:00
dependabot[bot]	a35f9fdd7b	web: bump ts-pattern from 5.1.2 to 5.2.0 in /web (#10098 ) Bumps [ts-pattern](https://github.com/gvergnaud/ts-pattern) from 5.1.2 to 5.2.0. - [Release notes](https://github.com/gvergnaud/ts-pattern/releases) - [Commits](https://github.com/gvergnaud/ts-pattern/compare/v5.1.2...v5.2.0) --- updated-dependencies: - dependency-name: ts-pattern dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-14 15:31:30 +09:00
dependabot[bot]	d95220be0e	web: bump the storybook group across 1 directory with 7 updates (#10102 ) Bumps the storybook group with 6 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.6` \| `8.1.9` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.6` \| `8.1.9` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.6` \| `8.1.9` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.6` \| `8.1.9` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.6` \| `8.1.9` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.6` \| `8.1.9` \| Updates `@storybook/addon-essentials` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/addons/links) Updates `@storybook/blocks` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/frameworks/web-components-vite) Updates `storybook` from 8.1.6 to 8.1.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.9/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-14 15:31:16 +09:00
dependabot[bot]	ba1b86efa1	core: bump github.com/gorilla/websocket from 1.5.2 to 1.5.3 (#10103 ) Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.2 to 1.5.3. - [Release notes](https://github.com/gorilla/websocket/releases) - [Commits](https://github.com/gorilla/websocket/compare/v1.5.2...v1.5.3) --- updated-dependencies: - dependency-name: github.com/gorilla/websocket dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-14 15:31:05 +09:00
dependabot[bot]	cd93de1141	core: bump pydantic from 2.7.3 to 2.7.4 (#10093 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-13 15:47:13 +00:00
dependabot[bot]	cc148bd552	core: bump bandit from 1.7.8 to 1.7.9 (#10094 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-13 17:27:09 +02:00
Tana M Berry	8f82dac84e	website/developer-docs: add a baby Style Guide (#9900 ) * draft style guide * broken links * rename partial file * added content to style guide, more links * sidebar and link * polish * typo * forgot to save * kens formatting trick * typo * Jens' edits * tweak * simplify formatting for variables * edits from 4d62 * fixed link * more edits * tweak re formatting command * tweak re formatting command --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-06-13 09:10:59 -05:00
4d62	89c08f2588	website/integrations: gitlab: update certificate key pair location and specify sha (#9925 ) * website/integrations: gitlab: update certificate key pair location and specify sha Signed-off-by: 4d62 <ext@4d62.me> * i prefer the previous wording Signed-off-by: 4d62 <ext@4d62.me> * suggest Co-authored-by: Jens L. <jens@beryju.org> Signed-off-by: 4d62 <ext@4d62.me> * Update website/integrations/services/gitlab/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * p --------- Signed-off-by: 4d62 <ext@4d62.me> Co-authored-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-06-12 16:37:45 -05:00
Jens L	113d6cc45f	root: handle asgi exception (#10085 )	2024-06-12 16:56:18 +09:00
dependabot[bot]	05cfbca5f2	website: bump prettier from 3.3.1 to 3.3.2 in /website (#10082 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.1 to 3.3.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.1...3.3.2) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 15:40:28 +09:00
dependabot[bot]	385f9bcbac	web: bump prettier from 3.3.1 to 3.3.2 in /web (#10081 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.1 to 3.3.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.1...3.3.2) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 15:40:07 +09:00
dependabot[bot]	86bc5b4cdb	core: bump google-api-python-client from 2.132.0 to 2.133.0 (#10083 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.132.0 to 2.133.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.132.0...v2.133.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 15:39:44 +09:00
dependabot[bot]	8d5d9f35ef	web: bump prettier from 3.3.1 to 3.3.2 in /tests/wdio (#10079 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.1 to 3.3.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.1...3.3.2) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:33:25 +09:00
dependabot[bot]	439169d5e7	web: bump chromedriver from 125.0.3 to 126.0.0 in /tests/wdio (#10078 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 125.0.3 to 126.0.0. - [Commits](https://github.com/giggio/node-chromedriver/compare/125.0.3...126.0.0) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:33:15 +09:00
dependabot[bot]	e405b33f9f	web: bump @sentry/browser from 8.8.0 to 8.9.1 in /web in the sentry group (#10080 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.8.0 to 8.9.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.8.0...8.9.1) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:33:00 +09:00
dependabot[bot]	a9c13d4d10	web: bump braces from 3.0.2 to 3.0.3 in /web (#10077 ) Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3. - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3) --- updated-dependencies: - dependency-name: braces dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:30:03 +09:00
dependabot[bot]	12b16b17a2	website: bump braces from 3.0.2 to 3.0.3 in /website (#10076 ) Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3. - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3) --- updated-dependencies: - dependency-name: braces dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:29:46 +09:00
dependabot[bot]	3473abee32	web: bump braces from 3.0.2 to 3.0.3 in /tests/wdio (#10075 ) Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3. - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3) --- updated-dependencies: - dependency-name: braces dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 13:29:35 +09:00
dependabot[bot]	b5a0b3a521	core: bump azure-identity from 1.16.0 to 1.16.1 (#10071 ) Bumps [azure-identity](https://github.com/Azure/azure-sdk-for-python) from 1.16.0 to 1.16.1. - [Release notes](https://github.com/Azure/azure-sdk-for-python/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md) - [Commits](https://github.com/Azure/azure-sdk-for-python/compare/azure-identity_1.16.0...azure-identity_1.16.1) --- updated-dependencies: - dependency-name: azure-identity dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-12 12:54:59 +09:00
Marc 'risson' Schmitt	837a0325ca	rbac: filters: fix missing attribute for unauthenticated requests (#10061 )	2024-06-11 14:36:09 +00:00
4d62	b1050e8825	tests/e2e: docker-compose.yml: remove version element forgotten last time (#10067 )	2024-06-11 16:16:24 +02:00
Jens L	7bb90b1661	providers/microsoft_entra: fix error when updating connection attributes (#10039 ) * providers/microsoft_entra: fix error when updating connection attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include URL to field references Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only set gws user password when creating by default Signed-off-by: Jens Langhammer <jens@goauthentik.io> * merge instead of replace connection attributes an update might not return all attributes so we don't want to fully replace the attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-11 16:03:23 +09:00
4d62	8f755785ea	website/integrations: aws: fix about service link (#10062 ) Signed-off-by: 4d62 <ext@4d62.me>	2024-06-11 14:33:57 +09:00
transifex-integration[bot]	adc0ec8ee4	translate: Updates for file locale/en/LC_MESSAGES/django.po in it (#10060 ) Translate locale/en/LC_MESSAGES/django.po in it 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'it'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-10 13:31:22 +00:00
dependabot[bot]	9379b3d178	core: bump github.com/redis/go-redis/v9 from 9.5.2 to 9.5.3 (#10046 ) Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.5.2 to 9.5.3. - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/go-redis/compare/v9.5.2...v9.5.3) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:32:11 +09:00
dependabot[bot]	18eef8ae05	core: bump github.com/gorilla/websocket from 1.5.1 to 1.5.2 (#10047 ) Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.1 to 1.5.2. - [Release notes](https://github.com/gorilla/websocket/releases) - [Commits](https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.2) --- updated-dependencies: - dependency-name: github.com/gorilla/websocket dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:31:55 +09:00
transifex-integration[bot]	f0e22fd08b	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10058 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-10 20:31:18 +09:00
dependabot[bot]	ce5297a6cd	core: bump sentry-sdk from 2.5.0 to 2.5.1 (#10048 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.5.0 to 2.5.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.5.0...2.5.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:30:54 +09:00
dependabot[bot]	74c8df8782	core: bump django-cte from 1.3.2 to 1.3.3 (#10049 ) Bumps [django-cte](https://github.com/dimagi/django-cte) from 1.3.2 to 1.3.3. - [Changelog](https://github.com/dimagi/django-cte/blob/master/CHANGELOG.md) - [Commits](https://github.com/dimagi/django-cte/commits) --- updated-dependencies: - dependency-name: django-cte dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:30:36 +09:00
dependabot[bot]	2d897fac48	core: bump packaging from 24.0 to 24.1 (#10050 ) Bumps [packaging](https://github.com/pypa/packaging) from 24.0 to 24.1. - [Release notes](https://github.com/pypa/packaging/releases) - [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pypa/packaging/compare/24.0...24.1) --- updated-dependencies: - dependency-name: packaging dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:25:14 +09:00
dependabot[bot]	2eb47c9efa	web: bump yaml from 2.4.3 to 2.4.5 in /web (#10054 ) Bumps [yaml](https://github.com/eemeli/yaml) from 2.4.3 to 2.4.5. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](https://github.com/eemeli/yaml/compare/v2.4.3...v2.4.5) --- updated-dependencies: - dependency-name: yaml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:24:59 +09:00
dependabot[bot]	9852041f38	web: bump @sentry/browser from 8.7.0 to 8.8.0 in /web in the sentry group (#10051 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.7.0 to 8.8.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.7.0...8.8.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:24:28 +09:00
dependabot[bot]	7f74936212	web: bump esbuild from 0.21.4 to 0.21.5 in /web (#10053 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.4 to 0.21.5. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.4...v0.21.5) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-10 20:20:53 +09:00
Tim Northover	4f40b1e27c	crypto: update fingerprint at same time as certificate (#10036 ) Previously the fingerprint was only set when initially adding a key, if it changed for any reason (like a renewed certificate) then every execution of `Get` would lead to a full update. The certificate itself got cached, but the fingerprint remained stale for next time. This increased the chance of a fatal race during the cache update. closes #9907	2024-06-10 20:16:35 +09:00
transifex-integration[bot]	041e407153	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10056 ) * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-10 12:24:02 +02:00
Islam Heggy	31b891428e	website/integrations: gitea: fix helm values (#10043 )	2024-06-10 09:29:17 +00:00
authentik-automation[bot]	4ab8247847	core, web: update translations (#10038 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-10 11:23:00 +02:00
transifex-integration[bot]	af24edf8c1	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#10040 ) * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-10 11:22:51 +02:00
4d62	f8bfd12e31	docs/troubleshooting: upgrade docker: erroneous command (#10044 )	2024-06-10 11:06:41 +02:00
dependabot[bot]	993fc4b77b	core: bump tornado from 6.4 to 6.4.1 (#10014 ) Bumps [tornado](https://github.com/tornadoweb/tornado) from 6.4 to 6.4.1. - [Changelog](https://github.com/tornadoweb/tornado/blob/master/docs/releases.rst) - [Commits](https://github.com/tornadoweb/tornado/compare/v6.4.0...v6.4.1) --- updated-dependencies: - dependency-name: tornado dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-08 21:45:10 +09:00
dependabot[bot]	3ee2be09bf	core: bump twilio from 9.1.0 to 9.1.1 (#10016 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.1.0 to 9.1.1. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.1.0...9.1.1) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-08 21:44:42 +09:00
dependabot[bot]	b3e3948f44	core: bump sentry-sdk from 2.4.0 to 2.5.0 (#10017 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.4.0 to 2.5.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.4.0...2.5.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-08 21:44:31 +09:00
dependabot[bot]	117a5cd88d	core: bump kubernetes from 29.0.0 to 30.1.0 (#10018 ) Bumps [kubernetes](https://github.com/kubernetes-client/python) from 29.0.0 to 30.1.0. - [Release notes](https://github.com/kubernetes-client/python/releases) - [Changelog](https://github.com/kubernetes-client/python/blob/master/CHANGELOG.md) - [Commits](https://github.com/kubernetes-client/python/compare/v29.0.0...v30.1.0) --- updated-dependencies: - dependency-name: kubernetes dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-08 21:44:05 +09:00
transifex-integration[bot]	342a40212e	translate: Updates for file locale/en/LC_MESSAGES/django.po in pl (#10029 ) Translate locale/en/LC_MESSAGES/django.po in pl 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'pl'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-08 21:37:46 +09:00
transifex-integration[bot]	15ae11d9d5	translate: Updates for file web/xliff/en.xlf in pl (#10030 ) Translate web/xliff/en.xlf in pl 100% translated source file: 'web/xliff/en.xlf' on 'pl'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-08 21:37:30 +09:00
authentik-automation[bot]	e11df56f21	core, web: update translations (#10031 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-08 21:37:06 +09:00
transifex-integration[bot]	3771af5282	translate: Updates for file web/xliff/en.xlf in zh_CN (#10032 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-08 21:36:53 +09:00
transifex-integration[bot]	0718053c56	translate: Updates for file web/xliff/en.xlf in zh-Hans (#10033 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-08 21:36:40 +09:00
Marc 'risson' Schmitt	3e5014bfea	web/admin: fix scim provider user list (#10028 )	2024-06-07 19:48:11 +00:00
transifex-integration[bot]	78f49ddc04	translate: Updates for file web/xliff/en.xlf in fr (#10024 ) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-07 18:20:51 +02:00
authentik-automation[bot]	744bc54231	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#10025 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-07 18:20:20 +02:00
transifex-integration[bot]	44ba30ad75	translate: Updates for file locale/en/LC_MESSAGES/django.po in fr (#10022 ) Translate locale/en/LC_MESSAGES/django.po in fr 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-07 14:52:38 +02:00
authentik-automation[bot]	63b991f137	core, web: update translations (#10015 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-07 13:15:03 +02:00
transifex-integration[bot]	7f9acb8a2b	translate: Updates for file locale/en/LC_MESSAGES/django.po in pl (#10019 ) * Translate locale/en/LC_MESSAGES/django.po in pl 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'pl'. * Translate locale/en/LC_MESSAGES/django.po in pl 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'pl'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-07 13:14:44 +02:00
transifex-integration[bot]	ce3ba32044	translate: Updates for file locale/en/LC_MESSAGES/django.po in pl (#10011 ) Translate locale/en/LC_MESSAGES/django.po in pl 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'pl'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-06 20:49:42 +09:00
Jens L	25e6a69331	providers/sync: update attributes on update (#10012 ) * unrelated Signed-off-by: Jens Langhammer <jens@goauthentik.io> * providers/sync: update attributes in connection updates after updating remote object Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-06 20:49:33 +09:00
dependabot[bot]	78d07cc355	website: bump prettier from 3.3.0 to 3.3.1 in /website (#10005 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.0...3.3.1) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:17:22 +09:00
dependabot[bot]	3c4df47fe3	web: bump the babel group in /web with 7 updates (#10006 ) Bumps the babel group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) \| `7.24.6` \| `7.24.7` \| \| [@babel/plugin-proposal-decorators](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-decorators) \| `7.24.6` \| `7.24.7` \| \| [@babel/plugin-transform-private-methods](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-methods) \| `7.24.6` \| `7.24.7` \| \| [@babel/plugin-transform-private-property-in-object](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-property-in-object) \| `7.24.6` \| `7.24.7` \| \| [@babel/plugin-transform-runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-runtime) \| `7.24.6` \| `7.24.7` \| \| [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) \| `7.24.6` \| `7.24.7` \| \| [@babel/preset-typescript](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-typescript) \| `7.24.6` \| `7.24.7` \| Updates `@babel/core` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-core) Updates `@babel/plugin-proposal-decorators` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-plugin-proposal-decorators) Updates `@babel/plugin-transform-private-methods` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-plugin-transform-private-methods) Updates `@babel/plugin-transform-private-property-in-object` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-plugin-transform-private-property-in-object) Updates `@babel/plugin-transform-runtime` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-plugin-transform-runtime) Updates `@babel/preset-env` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-preset-env) Updates `@babel/preset-typescript` from 7.24.6 to 7.24.7 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.7/packages/babel-preset-typescript) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-proposal-decorators" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-private-methods" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-private-property-in-object" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-runtime" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-typescript" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:17:13 +09:00
dependabot[bot]	8ed1805cb8	web: bump prettier from 3.3.0 to 3.3.1 in /tests/wdio (#10003 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.0...3.3.1) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:17:02 +09:00
dependabot[bot]	4d23db73ca	web: bump the storybook group in /web with 7 updates (#10007 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.5` \| `8.1.6` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.5` \| `8.1.6` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.5` \| `8.1.6` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.5` \| `8.1.6` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.5` \| `8.1.6` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.5` \| `8.1.6` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.5` \| `8.1.6` \| Updates `@storybook/addon-essentials` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/addons/links) Updates `@storybook/blocks` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/frameworks/web-components-vite) Updates `storybook` from 8.1.5 to 8.1.6 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.6/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:16:52 +09:00
dependabot[bot]	72783953fb	web: bump @rollup/plugin-replace from 5.0.6 to 5.0.7 in /web in the rollup group (#10008 ) web: bump @rollup/plugin-replace in /web in the rollup group Bumps the rollup group in /web with 1 update: [@rollup/plugin-replace](https://github.com/rollup/plugins/tree/HEAD/packages/replace). Updates `@rollup/plugin-replace` from 5.0.6 to 5.0.7 - [Changelog](https://github.com/rollup/plugins/blob/master/packages/replace/CHANGELOG.md) - [Commits](https://github.com/rollup/plugins/commits/replace-v5.0.7/packages/replace) --- updated-dependencies: - dependency-name: "@rollup/plugin-replace" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:16:42 +09:00
dependabot[bot]	3b0fdb3dbd	web: bump prettier from 3.3.0 to 3.3.1 in /web (#10009 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.3.0...3.3.1) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 14:16:32 +09:00
dependabot[bot]	23161eed12	core: bump goauthentik.io/api/v3 from 3.2024042.10 to 3.2024042.11 (#10001 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.10 to 3.2024042.11. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.10...v3.2024042.11) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 13:22:19 +09:00
dependabot[bot]	8918427588	core: bump ruff from 0.4.7 to 0.4.8 (#10002 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.7 to 0.4.8. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.7...v0.4.8) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-06 13:22:05 +09:00
Jens L	5d858020f6	stages/email: fix sanitization of email addresses (#9999 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-06 13:20:26 +09:00
authentik-automation[bot]	198e8b98a8	web: bump API Client version (#10000 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-06 04:10:13 +00:00
Jens L	88e9c9b669	providers/sync: improve v3 (#9966 ) * make external id field externally visible Signed-off-by: Jens Langhammer <jens@goauthentik.io> * catch up scim provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add missing views to scim provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make neither user nor group required for mapping testing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve SkipObject handling Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow deletion of connection objects Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make entra logs less noisy Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make event_matcher less noisy Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-06 12:47:48 +09:00
Marc 'risson' Schmitt	0c652a210d	core: groups api: always prefetch users (#9974 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-06 12:47:33 +09:00
authentik-automation[bot]	105a90d2e7	core, web: update translations (#9998 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-06 00:30:01 +00:00
transifex-integration[bot]	68f5abe318	translate: Updates for file web/xliff/en.xlf in zh_CN (#9992 ) Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-05 13:06:30 +02:00
transifex-integration[bot]	59d4c18636	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9991 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-05 13:06:16 +02:00
transifex-integration[bot]	b67e2a1144	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9993 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-05 13:06:09 +02:00
transifex-integration[bot]	fc025651ce	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9994 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-05 13:06:01 +02:00
dependabot[bot]	7cedc840b0	core: bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 (#9986 ) Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.20.0 to 0.21.0. - [Commits](https://github.com/golang/oauth2/compare/v0.20.0...v0.21.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:13:18 +09:00
authentik-automation[bot]	5ba731e48b	core, web: update translations (#9979 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-05 14:09:09 +09:00
dependabot[bot]	c792534a50	web: bump @lit/context from 1.1.1 to 1.1.2 in /web (#9981 ) Bumps [@lit/context](https://github.com/lit/lit/tree/HEAD/packages/context) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/lit/lit/releases) - [Changelog](https://github.com/lit/lit/blob/main/packages/context/CHANGELOG.md) - [Commits](https://github.com/lit/lit/commits/@lit/context@1.1.2/packages/context) --- updated-dependencies: - dependency-name: "@lit/context" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:08:17 +09:00
dependabot[bot]	a136fd8b54	core: bump sentry-sdk from 2.3.1 to 2.4.0 (#9985 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.3.1 to 2.4.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.3.1...2.4.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:07:41 +09:00
dependabot[bot]	fb63c1f3e9	core: bump goauthentik.io/api/v3 from 3.2024042.9 to 3.2024042.10 (#9987 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.9 to 3.2024042.10. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.9...v3.2024042.10) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:07:09 +09:00
dependabot[bot]	0b15ab3f27	core: bump google-api-python-client from 2.131.0 to 2.132.0 (#9988 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.131.0 to 2.132.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.131.0...v2.132.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:06:58 +09:00
dependabot[bot]	f9fd67c2b8	core: bump pytest from 8.2.1 to 8.2.2 (#9989 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.2.1 to 8.2.2. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.2.1...8.2.2) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:06:26 +09:00
dependabot[bot]	4ac19f9d44	core: bump cryptography from 42.0.7 to 42.0.8 (#9990 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.7 to 42.0.8. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.7...42.0.8) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:05:17 +09:00
dependabot[bot]	74d3e92bac	web: bump tslib from 2.6.2 to 2.6.3 in /web (#9984 ) Bumps [tslib](https://github.com/Microsoft/tslib) from 2.6.2 to 2.6.3. - [Release notes](https://github.com/Microsoft/tslib/releases) - [Commits](https://github.com/Microsoft/tslib/compare/v2.6.2...v2.6.3) --- updated-dependencies: - dependency-name: tslib dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 14:04:49 +09:00
dependabot[bot]	207fa13405	web: bump country-flag-icons from 1.5.11 to 1.5.12 in /web (#9983 ) Bumps [country-flag-icons](https://gitlab.com/catamphetamine/country-flag-icons) from 1.5.11 to 1.5.12. - [Changelog](https://gitlab.com/catamphetamine/country-flag-icons/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/catamphetamine/country-flag-icons/compare/v1.5.11...v1.5.12) --- updated-dependencies: - dependency-name: country-flag-icons dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 13:32:49 +09:00
dependabot[bot]	208e4a8bed	web: bump @rollup/plugin-replace from 5.0.5 to 5.0.6 in /web in the rollup group (#9980 ) web: bump @rollup/plugin-replace in /web in the rollup group Bumps the rollup group in /web with 1 update: [@rollup/plugin-replace](https://github.com/rollup/plugins/tree/HEAD/packages/replace). Updates `@rollup/plugin-replace` from 5.0.5 to 5.0.6 - [Changelog](https://github.com/rollup/plugins/blob/master/packages/replace/CHANGELOG.md) - [Commits](https://github.com/rollup/plugins/commits/replace-v5.0.6/packages/replace) --- updated-dependencies: - dependency-name: "@rollup/plugin-replace" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 13:32:31 +09:00
dependabot[bot]	ee245ab390	web: bump lit from 3.1.3 to 3.1.4 in /web (#9982 ) Bumps [lit](https://github.com/lit/lit/tree/HEAD/packages/lit) from 3.1.3 to 3.1.4. - [Release notes](https://github.com/lit/lit/releases) - [Changelog](https://github.com/lit/lit/blob/main/packages/lit/CHANGELOG.md) - [Commits](https://github.com/lit/lit/commits/lit@3.1.4/packages/lit) --- updated-dependencies: - dependency-name: lit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-05 13:32:15 +09:00
authentik-automation[bot]	60c8837082	web: bump API Client version (#9967 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-04 18:31:21 +09:00
Jens L	6cf418a37e	stages/captcha: rework (#9959 ) * stages/captcha: rework Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update form with continue option Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs, add notes for scores Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also only raise error from success if needed Signed-off-by: Jens Langhammer <jens@goauthentik.io> * return full data Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-04 18:25:38 +09:00
Kenneth Foster	254761e930	website/docs: fixed broken links to helm repo (#9960 ) fixed broken links to helm repo the links to the helm repos were broken, the changes in `b93bc6bb8e` changed the name of the files. Signed-off-by: Kenneth Foster <42386206+kefoster951@users.noreply.github.com>	2024-06-04 18:04:15 +09:00
dependabot[bot]	d85f8758fe	core: bump pydantic from 2.7.2 to 2.7.3 (#9962 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.2 to 2.7.3. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.7.2...v2.7.3) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-04 15:50:17 +09:00
dependabot[bot]	84bfb37b60	web: bump the wdio group in /tests/wdio with 4 updates (#9963 ) Bumps the wdio group in /tests/wdio with 4 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Updates `@wdio/cli` from 8.38.1 to 8.38.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.2/packages/wdio-cli) Updates `@wdio/local-runner` from 8.38.0 to 8.38.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.2/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.38.0 to 8.38.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.2/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.38.0 to 8.38.2 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.2/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.2/packages/wdio-spec-reporter) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-04 15:50:00 +09:00
transifex-integration[bot]	578ff13868	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9943 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-03 23:37:20 +09:00
transifex-integration[bot]	d12acb5bcd	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9944 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-03 23:37:06 +09:00
transifex-integration[bot]	0e8b9a6409	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9942 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-06-03 23:36:52 +09:00
Marc 'risson' Schmitt	6171443e61	stages/authenticator_webauthn: migrate device type import to systemtask and schedule (#9958 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-03 23:36:27 +09:00
dependabot[bot]	5fedd616d9	website: bump prettier from 3.2.5 to 3.3.0 in /website (#9951 ) * website: bump prettier from 3.2.5 to 3.3.0 in /website Bumps [prettier](https://github.com/prettier/prettier) from 3.2.5 to 3.3.0. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.2.5...3.3.0) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-06-03 23:35:07 +09:00
dependabot[bot]	5dd6498694	web: bump yaml from 2.4.2 to 2.4.3 in /web (#9945 ) Bumps [yaml](https://github.com/eemeli/yaml) from 2.4.2 to 2.4.3. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](https://github.com/eemeli/yaml/compare/v2.4.2...v2.4.3) --- updated-dependencies: - dependency-name: yaml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:13:13 +09:00
dependabot[bot]	cf5102ed20	web: bump prettier from 3.2.5 to 3.3.0 in /web (#9946 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.2.5 to 3.3.0. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.2.5...3.3.0) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:13:03 +09:00
dependabot[bot]	d3b2032c33	core: bump uvicorn from 0.30.0 to 0.30.1 (#9948 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.30.0 to 0.30.1. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.30.0...0.30.1) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:12:47 +09:00
dependabot[bot]	1e5df1c405	core: bump ruff from 0.4.6 to 0.4.7 (#9949 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.6 to 0.4.7. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.6...v0.4.7) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:12:34 +09:00
dependabot[bot]	96eabe269c	website: bump the docusaurus group in /website with 9 updates (#9950 ) Bumps the docusaurus group in /website with 9 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@docusaurus/core](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/plugin-client-redirects](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-plugin-client-redirects) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/plugin-content-docs](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-plugin-content-docs) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/preset-classic](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-preset-classic) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/theme-common](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-theme-common) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/theme-mermaid](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-theme-mermaid) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/module-type-aliases](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-module-type-aliases) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/tsconfig](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-tsconfig) \| `3.3.2` \| `3.4.0` \| \| [@docusaurus/types](https://github.com/facebook/docusaurus/tree/HEAD/packages/docusaurus-types) \| `3.3.2` \| `3.4.0` \| Updates `@docusaurus/core` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus) Updates `@docusaurus/plugin-client-redirects` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-plugin-client-redirects) Updates `@docusaurus/plugin-content-docs` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-plugin-content-docs) Updates `@docusaurus/preset-classic` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-preset-classic) Updates `@docusaurus/theme-common` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-theme-common) Updates `@docusaurus/theme-mermaid` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-theme-mermaid) Updates `@docusaurus/module-type-aliases` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-module-type-aliases) Updates `@docusaurus/tsconfig` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-tsconfig) Updates `@docusaurus/types` from 3.3.2 to 3.4.0 - [Release notes](https://github.com/facebook/docusaurus/releases) - [Changelog](https://github.com/facebook/docusaurus/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/docusaurus/commits/v3.4.0/packages/docusaurus-types) --- updated-dependencies: - dependency-name: "@docusaurus/core" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/plugin-client-redirects" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/plugin-content-docs" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/preset-classic" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/theme-common" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/theme-mermaid" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/module-type-aliases" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/tsconfig" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus - dependency-name: "@docusaurus/types" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: docusaurus ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:12:25 +09:00
dependabot[bot]	3e869a0ec7	web: bump prettier from 3.2.5 to 3.3.0 in /tests/wdio (#9952 ) Bumps [prettier](https://github.com/prettier/prettier) from 3.2.5 to 3.3.0. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.2.5...3.3.0) --- updated-dependencies: - dependency-name: prettier dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:12:15 +09:00
dependabot[bot]	7276a416f6	web: bump chromedriver from 125.0.2 to 125.0.3 in /tests/wdio (#9953 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 125.0.2 to 125.0.3. - [Commits](https://github.com/giggio/node-chromedriver/compare/125.0.2...125.0.3) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-03 23:12:06 +09:00
Marc 'risson' Schmitt	a989390533	core: groups: optimize recursive children query (#9931 )	2024-06-03 11:49:31 +00:00
authentik-automation[bot]	562c52a48b	core, web: update translations (#9938 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-06-03 09:53:18 +09:00
Marc 'risson' Schmitt	c3cb9bc778	stages/authenticator_webauthn: optimize device types creation (#9932 ) * stages/authenticator_webauthn: optimize device types creation Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * same for aaguid_import task Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-06-01 11:16:55 +02:00
authentik-automation[bot]	5f65a7c6cc	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9936 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-06-01 17:17:29 +09:00
Jens L	95d26563e7	providers/oauth2: don't handle api scope as special scope (#9910 ) * providers/oauth2: don't handle api scope as special scope Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make default scope selection less magic Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ensure missing folder exists Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix duplicate name Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-06-01 17:16:56 +09:00
dependabot[bot]	1cac1492d7	core: bump goauthentik.io/api/v3 from 3.2024042.8 to 3.2024042.9 (#9915 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.8 to 3.2024042.9. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.8...v3.2024042.9) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-31 18:40:02 +09:00
dependabot[bot]	6c1ac48bd9	web: bump the storybook group in /web with 7 updates (#9917 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.4` \| `8.1.5` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.4` \| `8.1.5` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.4` \| `8.1.5` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.4` \| `8.1.5` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.4` \| `8.1.5` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.4` \| `8.1.5` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.4` \| `8.1.5` \| Updates `@storybook/addon-essentials` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/addons/links) Updates `@storybook/blocks` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/frameworks/web-components-vite) Updates `storybook` from 8.1.4 to 8.1.5 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.5/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-31 18:39:39 +09:00
4d62	97f11f7aa8	website/integrations: firezone: remove question mark typo and remove promotional sentence (#9927 ) Signed-off-by: 4d62 <ext@4d62.me>	2024-05-31 18:32:06 +09:00
dependabot[bot]	6db763f7dc	web: bump @sentry/browser from 8.5.0 to 8.7.0 in /web in the sentry group (#9916 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.5.0 to 8.7.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.5.0...8.7.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-31 18:30:34 +09:00
dependabot[bot]	16b5f692ee	core: bump github.com/redis/go-redis/v9 from 9.5.1 to 9.5.2 (#9929 ) Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.5.1 to 9.5.2. - [Release notes](https://github.com/redis/go-redis/releases) - [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md) - [Commits](https://github.com/redis/go-redis/compare/v9.5.1...v9.5.2) --- updated-dependencies: - dependency-name: github.com/redis/go-redis/v9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-31 18:29:21 +09:00
dependabot[bot]	80c1bd690c	core: bump importlib-metadata from 7.0.0 to 7.1.0 (#9928 ) Bumps [importlib-metadata](https://github.com/python/importlib_metadata) from 7.0.0 to 7.1.0. - [Release notes](https://github.com/python/importlib_metadata/releases) - [Changelog](https://github.com/python/importlib_metadata/blob/main/NEWS.rst) - [Commits](https://github.com/python/importlib_metadata/compare/v7.0.0...v7.1.0) --- updated-dependencies: - dependency-name: importlib-metadata dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-31 18:29:11 +09:00
Dylan Kauling	040dcaa9d6	website/docs: Update ArgoCD integration docs. (#9684 ) Co-authored-by: Dylan Kauling <dkauling@armstrongfluidtechnology.com>	2024-05-30 22:34:05 +02:00
4d62	66a16752e4	website/integrations: add cloudflare access (#9713 ) * init * rough draft * main docs * upd placeholder * Rebase pull request rough draft main docs upd placeholder * add to sidebar * lint * oops Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * apply suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <ext@4d62.me> * upd Signed-off-by: 4d62 <ext@4d62.me> --------- Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> Signed-off-by: 4d62 <ext@4d62.me> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-05-30 11:45:10 -05:00
authentik-automation[bot]	70c0e1be99	web: bump API Client version (#9913 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-30 02:02:54 +00:00
Jens L	5beea4624f	web/admin: use chips to display permissions/scopes (#9912 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-30 10:43:38 +09:00
Jens L	50fffa72cc	lib/providers/sync: improve outgoing sync (#9835 ) * make connection objects not updatable but allow creating with provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * save data returned from google/entra and show it in UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * pass connection object Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set immutable id on user automatically Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better define transient error codes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix entra Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-30 10:40:10 +09:00
Jens L	dae4bf0d6b	stages/authenticator_validate: fix priority of auth_method being set to auth_webauthn_pwl (#9909 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-30 09:41:21 +09:00
dependabot[bot]	823851652e	web: bump esbuild from 0.21.3 to 0.21.4 in /web (#9880 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.3 to 0.21.4. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.3...v0.21.4) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:28:12 +09:00
dependabot[bot]	ae7f7c9930	web: bump @wdio/cli from 8.38.0 to 8.38.1 in /tests/wdio in the wdio group (#9902 ) web: bump @wdio/cli in /tests/wdio in the wdio group Bumps the wdio group in /tests/wdio with 1 update: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli). Updates `@wdio/cli` from 8.38.0 to 8.38.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.1/packages/wdio-cli) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:28:03 +09:00
dependabot[bot]	5ce4ed4dd3	core: bump structlog from 24.1.0 to 24.2.0 (#9891 ) Bumps [structlog](https://github.com/hynek/structlog) from 24.1.0 to 24.2.0. - [Release notes](https://github.com/hynek/structlog/releases) - [Changelog](https://github.com/hynek/structlog/blob/main/CHANGELOG.md) - [Commits](https://github.com/hynek/structlog/compare/24.1.0...24.2.0) --- updated-dependencies: - dependency-name: structlog dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:23:25 +09:00
dependabot[bot]	5582cc7745	web: bump @sentry/browser from 8.4.0 to 8.5.0 in /web in the sentry group (#9893 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.4.0 to 8.5.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.4.0...8.5.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:20:29 +09:00
dependabot[bot]	c384ed5f52	web: bump the storybook group in /web with 7 updates (#9894 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.3` \| `8.1.4` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.3` \| `8.1.4` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.3` \| `8.1.4` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.3` \| `8.1.4` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.3` \| `8.1.4` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.3` \| `8.1.4` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.3` \| `8.1.4` \| Updates `@storybook/addon-essentials` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/addons/links) Updates `@storybook/blocks` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/frameworks/web-components-vite) Updates `storybook` from 8.1.3 to 8.1.4 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.4/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:19:48 +09:00
dependabot[bot]	02e2ba8971	core: bump github.com/getsentry/sentry-go from 0.27.0 to 0.28.0 (#9890 ) Bumps [github.com/getsentry/sentry-go](https://github.com/getsentry/sentry-go) from 0.27.0 to 0.28.0. - [Release notes](https://github.com/getsentry/sentry-go/releases) - [Changelog](https://github.com/getsentry/sentry-go/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-go/compare/v0.27.0...v0.28.0) --- updated-dependencies: - dependency-name: github.com/getsentry/sentry-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:18:38 +09:00
dependabot[bot]	925d5c80df	core: bump pydantic from 2.7.1 to 2.7.2 (#9903 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.1 to 2.7.2. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.7.1...v2.7.2) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:18:06 +09:00
dependabot[bot]	1de69a7bd6	core: bump ruff from 0.4.5 to 0.4.6 (#9904 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.5 to 0.4.6. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.5...v0.4.6) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:12:23 +09:00
dependabot[bot]	c6979a48e0	core: bump uvicorn from 0.29.0 to 0.30.0 (#9905 ) Bumps [uvicorn](https://github.com/encode/uvicorn) from 0.29.0 to 0.30.0. - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/CHANGELOG.md) - [Commits](https://github.com/encode/uvicorn/compare/0.29.0...0.30.0) --- updated-dependencies: - dependency-name: uvicorn dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:06:31 +09:00
dependabot[bot]	6e73d60305	core: bump google-api-python-client from 2.130.0 to 2.131.0 (#9906 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.130.0 to 2.131.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.130.0...v2.131.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-30 06:06:22 +09:00
4d62	f388cac07c	website/docs: next release notes: add upgrade instructions for postgres to 16 (#9727 ) * init Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * start * db pass upd * more * oops * simplify setting up v16 service * cut off pg * finish * release breaking changes * 2024.next * i need to be less distracted * rework upgrade instructions Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * ci: remove postgres 12 tests Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * spelling Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * try? * fix release notes * iirc theres a danger thing * typo * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * suggestion Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> * Update website/docs/troubleshooting/postgres/upgrade_docker.md Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * prettier Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add to sidebar Signed-off-by: 4d62 <ext@4d62.me> * 🙊 Signed-off-by: 4d62 <ext@4d62.me> * make website Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: 4d62 <157558804+4d62ext@users.noreply.github.com> Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: 4d62 <ext@4d62.me> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-05-29 15:31:21 +02:00
dependabot[bot]	cf593e5cb9	core: bump coverage from 7.5.2 to 7.5.3 (#9901 ) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-29 12:08:01 +00:00
transifex-integration[bot]	c3a98e5d5f	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9861 ) * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. * Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-29 13:50:05 +02:00
authentik-automation[bot]	1048729599	core, web: update translations (#9864 ) Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-29 13:49:31 +02:00
Nick	72442b37e5	website/integrations: capitalize P in WordPress (#9897 )	2024-05-29 10:47:07 +00:00
Tana M Berry	211cdb3a21	website/docs: add docs for configuring Facebook as a source (#9884 ) * FB draft * tweak * more tweaks * formatting * more formatting * marc edit --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-05-28 09:41:26 -05:00
dependabot[bot]	4cca16750e	web: bump the esbuild group in /web with 2 updates (#9879 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.3 to 0.21.4 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.3...v0.21.4) Updates `@esbuild/linux-arm64` from 0.21.3 to 0.21.4 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.3...v0.21.4) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:56:35 +09:00
dependabot[bot]	b2d261dd1c	core: bump twilio from 9.0.5 to 9.1.0 (#9875 ) Bumps [twilio](https://github.com/twilio/twilio-python) from 9.0.5 to 9.1.0. - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](https://github.com/twilio/twilio-python/compare/9.0.5...9.1.0) --- updated-dependencies: - dependency-name: twilio dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:56:17 +09:00
dependabot[bot]	0663100429	core: bump coverage from 7.5.1 to 7.5.2 (#9876 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.5.1 to 7.5.2. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.1...7.5.2) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:55:47 +09:00
dependabot[bot]	66c3261eeb	core: bump goauthentik.io/api/v3 from 3.2024042.7 to 3.2024042.8 (#9877 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.7 to 3.2024042.8. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.7...v3.2024042.8) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:55:35 +09:00
dependabot[bot]	bf7570bc36	web: bump the babel group in /web with 7 updates (#9878 ) Bumps the babel group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) \| `7.24.5` \| `7.24.6` \| \| [@babel/plugin-proposal-decorators](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-proposal-decorators) \| `7.24.1` \| `7.24.6` \| \| [@babel/plugin-transform-private-methods](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-methods) \| `7.24.1` \| `7.24.6` \| \| [@babel/plugin-transform-private-property-in-object](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-property-in-object) \| `7.24.5` \| `7.24.6` \| \| [@babel/plugin-transform-runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-runtime) \| `7.24.3` \| `7.24.6` \| \| [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) \| `7.24.5` \| `7.24.6` \| \| [@babel/preset-typescript](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-typescript) \| `7.24.1` \| `7.24.6` \| Updates `@babel/core` from 7.24.5 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-core) Updates `@babel/plugin-proposal-decorators` from 7.24.1 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-plugin-proposal-decorators) Updates `@babel/plugin-transform-private-methods` from 7.24.1 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-plugin-transform-private-methods) Updates `@babel/plugin-transform-private-property-in-object` from 7.24.5 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-plugin-transform-private-property-in-object) Updates `@babel/plugin-transform-runtime` from 7.24.3 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-plugin-transform-runtime) Updates `@babel/preset-env` from 7.24.5 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-preset-env) Updates `@babel/preset-typescript` from 7.24.1 to 7.24.6 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.6/packages/babel-preset-typescript) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-proposal-decorators" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-private-methods" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-private-property-in-object" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-runtime" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-typescript" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:55:16 +09:00
dependabot[bot]	20b52d0dbd	web: bump glob from 10.4.0 to 10.4.1 in /web (#9881 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.4.0 to 10.4.1. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.4.0...v10.4.1) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:55:06 +09:00
dependabot[bot]	a1f5e284c4	web: bump the wdio group in /tests/wdio with 4 updates (#9882 ) Bumps the wdio group in /tests/wdio with 4 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Updates `@wdio/cli` from 8.37.0 to 8.38.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.0/packages/wdio-cli) Updates `@wdio/local-runner` from 8.37.0 to 8.38.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.0/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.37.0 to 8.38.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.0/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.37.0 to 8.38.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.38.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.38.0/packages/wdio-spec-reporter) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-28 10:54:56 +09:00
Marc 'risson' Schmitt	0e4737d38f	events: fix geoip enrich context not converting to json-seriazable data (#9885 )	2024-05-27 17:16:35 +00:00
Marc 'risson' Schmitt	609b10f7f8	stages/user_login: fix non-json-serializable being used (#9886 )	2024-05-27 17:15:45 +00:00
Jens L	2cff3d15e7	website/docs: improve read replica docs (#9828 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 18:26:41 +02:00
transifex-integration[bot]	4f1d49417c	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9859 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-24 18:07:31 +02:00
authentik-automation[bot]	0766a47b4f	web: bump API Client version (#9857 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-24 13:54:16 +02:00
Marc 'risson' Schmitt	bd1ddfebd6	lib/sync/outgoing, sources/ldap: fix sync status endpoint (#9855 )	2024-05-24 11:49:22 +00:00
Marc 'risson' Schmitt	a841743c74	lifecycle/migrate: only acquire lock once (#9856 )	2024-05-24 11:36:00 +00:00
Jens L	0974456ac8	core: add option to select group for property mapping testing (#9834 ) * make naming consistent, p1 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * p2 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * core: add option to select group for property mapping testing Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 13:32:19 +02:00
Jens L	d44d5a44a1	policies: fix ak_call_policy failing when used in testing (#9853 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 13:29:54 +02:00
4d62	edf5c8686a	website/integrations: gitlab: make placeholder clearer (#9838 )	2024-05-24 13:16:07 +02:00
dependabot[bot]	70ace8b209	core: bump requests from 2.31.0 to 2.32.2 (#9852 ) Bumps [requests](https://github.com/psf/requests) from 2.31.0 to 2.32.2. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.31.0...v2.32.2) --- updated-dependencies: - dependency-name: requests dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:53:16 +02:00
dependabot[bot]	c3509e63af	core: bump codespell from 2.2.6 to 2.3.0 (#9842 ) * core: bump codespell from 2.2.6 to 2.3.0 Bumps [codespell](https://github.com/codespell-project/codespell) from 2.2.6 to 2.3.0. - [Release notes](https://github.com/codespell-project/codespell/releases) - [Commits](https://github.com/codespell-project/codespell/compare/v2.2.6...v2.3.0) --- updated-dependencies: - dependency-name: codespell dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-24 12:53:05 +02:00
dependabot[bot]	89b8206176	core: bump docker from 7.0.0 to 7.1.0 (#9843 ) Bumps [docker](https://github.com/docker/docker-py) from 7.0.0 to 7.1.0. - [Release notes](https://github.com/docker/docker-py/releases) - [Commits](https://github.com/docker/docker-py/compare/7.0.0...7.1.0) --- updated-dependencies: - dependency-name: docker dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:27:24 +02:00
transifex-integration[bot]	908d87c142	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9839 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-24 12:24:39 +02:00
transifex-integration[bot]	4ab4e81fb0	translate: Updates for file web/xliff/en.xlf in zh_CN (#9840 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-24 12:24:24 +02:00
dependabot[bot]	6dae1a4fe7	core: bump watchdog from 4.0.0 to 4.0.1 (#9845 ) Bumps [watchdog](https://github.com/gorakhargosh/watchdog) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/gorakhargosh/watchdog/releases) - [Changelog](https://github.com/gorakhargosh/watchdog/blob/master/changelog.rst) - [Commits](https://github.com/gorakhargosh/watchdog/compare/v4.0.0...v4.0.1) --- updated-dependencies: - dependency-name: watchdog dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:23:50 +02:00
dependabot[bot]	d11de73e95	website: bump @types/react from 18.3.2 to 18.3.3 in /website (#9841 ) Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.3.2 to 18.3.3. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: "@types/react" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:23:39 +02:00
dependabot[bot]	b08fb5fdf1	core: bump sentry-sdk from 2.2.1 to 2.3.1 (#9844 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.2.1 to 2.3.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.2.1...2.3.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:23:18 +02:00
dependabot[bot]	3c9e8c7287	core: bump goauthentik.io/api/v3 from 3.2024042.4 to 3.2024042.7 (#9846 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.4 to 3.2024042.7. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.4...v3.2024042.7) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:23:07 +02:00
dependabot[bot]	691d0be41e	web: bump chromedriver from 125.0.1 to 125.0.2 in /tests/wdio (#9847 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 125.0.1 to 125.0.2. - [Commits](https://github.com/giggio/node-chromedriver/compare/125.0.1...125.0.2) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:22:56 +02:00
dependabot[bot]	dfbaccbab6	web: bump @sentry/browser from 8.3.0 to 8.4.0 in /web in the sentry group (#9848 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.3.0 to 8.4.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.3.0...8.4.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:22:48 +02:00
dependabot[bot]	f3bdb189f6	web: bump the storybook group in /web with 7 updates (#9849 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.1.2` \| `8.1.3` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.1.2` \| `8.1.3` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.1.2` \| `8.1.3` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.1.2` \| `8.1.3` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.1.2` \| `8.1.3` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.1.2` \| `8.1.3` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.1.2` \| `8.1.3` \| Updates `@storybook/addon-essentials` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/addons/essentials) Updates `@storybook/addon-links` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/addons/links) Updates `@storybook/blocks` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/ui/blocks) Updates `@storybook/manager-api` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/lib/manager-api) Updates `@storybook/web-components` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/frameworks/web-components-vite) Updates `storybook` from 8.1.2 to 8.1.3 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.3/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:22:40 +02:00
dependabot[bot]	85b3523639	web: bump ts-pattern from 5.1.1 to 5.1.2 in /web (#9850 ) Bumps [ts-pattern](https://github.com/gvergnaud/ts-pattern) from 5.1.1 to 5.1.2. - [Release notes](https://github.com/gvergnaud/ts-pattern/releases) - [Commits](https://github.com/gvergnaud/ts-pattern/compare/v5.1.1...v5.1.2) --- updated-dependencies: - dependency-name: ts-pattern dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:22:28 +02:00
dependabot[bot]	9ff61a7120	web: bump glob from 10.3.16 to 10.4.0 in /web (#9851 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.3.16 to 10.4.0. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.3.16...v10.4.0) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-24 12:22:18 +02:00
authentik-automation[bot]	f742b986a7	core, web: update translations (#9837 )	2024-05-24 02:42:44 +02:00
authentik-automation[bot]	177bdfa689	web: bump API Client version (#9833 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-23 17:58:18 +00:00
Jens L	c3445374c2	core: FIPS (#9683 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-23 17:34:52 +00:00
transifex-integration[bot]	c2da6822dc	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9831 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-23 18:38:49 +02:00
transifex-integration[bot]	493294ef9f	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9829 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-23 18:38:34 +02:00
transifex-integration[bot]	17f807e8b0	translate: Updates for file web/xliff/en.xlf in zh_CN (#9830 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-23 18:38:20 +02:00
transifex-integration[bot]	96eb98500c	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9832 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-23 18:38:07 +02:00
Jens L	ddd75f6d09	lib/sync: fix json error (#9827 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-23 17:37:39 +02:00
Marc 'risson' Schmitt	fbad02fac1	providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks (#9511 ) * providers/scim, sources/ldap: switch to using postgres advisory locks instead of redis locks Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * website/integrations: discord: fix typo Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix timeout logic Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * remove redis locks completely Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * Apply suggestions from code review Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L <jens@goauthentik.io>	2024-05-23 13:41:42 +02:00
dependabot[bot]	fbab822db1	core: bump ruff from 0.4.4 to 0.4.5 (#9819 ) * core: bump ruff from 0.4.4 to 0.4.5 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.4 to 0.4.5. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.4...v0.4.5) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-23 13:12:52 +02:00
authentik-automation[bot]	d8316eea9b	website/integrations: compress images (#9826 ) [create-pull-request] automated change Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-23 13:12:42 +02:00
dependabot[bot]	8182c9f7c2	web: bump @sentry/browser from 8.2.1 to 8.3.0 in /web in the sentry group (#9821 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 8.2.1 to 8.3.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/8.2.1...8.3.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-23 12:48:48 +02:00
4d62	5d94b97e97	sources/oauth: modernizes discord icon (#9817 ) * sources: modernize discord icon * rm size specification	2024-05-23 12:48:09 +02:00
4d62	35ddbb6d75	website/integrations: update portainer screenshot (#9818 )	2024-05-23 12:43:49 +02:00
authentik-automation[bot]	2b8bc38fc3	core, web: update translations (#9816 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-23 12:28:38 +02:00
dependabot[bot]	9b0b504531	core: bump google-api-python-client from 2.129.0 to 2.130.0 (#9820 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.129.0 to 2.130.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.129.0...v2.130.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-23 12:26:51 +02:00
dependabot[bot]	c312430007	web: bump chromedriver from 125.0.0 to 125.0.1 in /tests/wdio (#9823 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 125.0.0 to 125.0.1. - [Commits](https://github.com/giggio/node-chromedriver/compare/125.0.0...125.0.1) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-23 12:26:39 +02:00
dependabot[bot]	4e65c205e3	web: bump the rollup group in /web with 3 updates (#9824 ) Bumps the rollup group in /web with 3 updates: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.17.2 to 4.18.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.2...v4.18.0) Updates `@rollup/rollup-linux-arm64-gnu` from 4.17.2 to 4.18.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.2...v4.18.0) Updates `@rollup/rollup-linux-x64-gnu` from 4.17.2 to 4.18.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.2...v4.18.0) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-23 12:26:11 +02:00
dependabot[bot]	372a66c876	web: bump the wdio group in /tests/wdio with 4 updates (#9822 ) Bumps the wdio group in /tests/wdio with 4 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Updates `@wdio/cli` from 8.36.1 to 8.37.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.37.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.37.0/packages/wdio-cli) Updates `@wdio/local-runner` from 8.36.1 to 8.37.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.37.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.37.0/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.36.1 to 8.37.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.37.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.37.0/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.36.1 to 8.37.0 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.37.0/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.37.0/packages/wdio-spec-reporter) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-23 12:25:58 +02:00
Jens L	3630349388	web/admin: add link to enterprise docs on license page (#9811 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-22 22:34:03 +02:00
Jens L	347746cbcd	enterprise/stages/source: fix error when creating source stage from blueprint (#9810 ) * enterprise/stages/source: fix error when creating source stage from blueprint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix error for pretend user Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated frontend bug Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-22 18:12:31 +02:00
Marc 'risson' Schmitt	ef2e1ad27b	ci: use container registry for container build cache (#9809 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-22 13:03:08 +02:00
dependabot[bot]	8a6b34eb5c	core: bump lxml from 5.2.1 to 5.2.2 (#9717 ) Bumps [lxml](https://github.com/lxml/lxml) from 5.2.1 to 5.2.2. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.2.1...lxml-5.2.2) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:40:36 +02:00
dependabot[bot]	26f72bcac4	web: bump mermaid from 10.9.0 to 10.9.1 in /web (#9734 ) Bumps [mermaid](https://github.com/mermaid-js/mermaid) from 10.9.0 to 10.9.1. - [Release notes](https://github.com/mermaid-js/mermaid/releases) - [Changelog](https://github.com/mermaid-js/mermaid/blob/develop/CHANGELOG.md) - [Commits](https://github.com/mermaid-js/mermaid/compare/v10.9.0...v10.9.1) --- updated-dependencies: - dependency-name: mermaid dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:40:25 +02:00
dependabot[bot]	f04466b3be	core: bump scim2-filter-parser from 0.5.0 to 0.5.1 (#9730 ) Bumps [scim2-filter-parser](https://github.com/15five/scim2-filter-parser) from 0.5.0 to 0.5.1. - [Changelog](https://github.com/15five/scim2-filter-parser/blob/master/CHANGELOG.rst) - [Commits](https://github.com/15five/scim2-filter-parser/commits) --- updated-dependencies: - dependency-name: scim2-filter-parser dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:38:57 +02:00
dependabot[bot]	4ba53d2f08	web: bump core-js from 3.37.0 to 3.37.1 in /web (#9733 ) Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) from 3.37.0 to 3.37.1. - [Release notes](https://github.com/zloirock/core-js/releases) - [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md) - [Commits](https://github.com/zloirock/core-js/commits/v3.37.1/packages/core-js) --- updated-dependencies: - dependency-name: core-js dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:38:46 +02:00
authentik-automation[bot]	7a13046a27	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9729 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-22 11:38:35 +02:00
transifex-integration[bot]	939e2c1edd	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9802 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-22 11:25:45 +02:00
transifex-integration[bot]	cf06b4177a	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9803 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-22 11:25:29 +02:00
dependabot[bot]	f8079d63fa	core: bump sentry-sdk from 2.2.0 to 2.2.1 (#9807 ) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:24:59 +02:00
dependabot[bot]	576a56c562	web: bump the storybook group in /web with 7 updates (#9804 ) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:24:42 +02:00
dependabot[bot]	cf9b14213e	web: bump glob from 10.3.15 to 10.3.16 in /web (#9805 ) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-22 11:24:34 +02:00
4d62	73cbdb77ed	root: docker-compose: remove version top level element (#9631 ) .	2024-05-22 11:24:16 +02:00
authentik-automation[bot]	fd66be9fa2	core, web: update translations (#9790 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-22 02:49:11 +02:00
authentik-automation[bot]	96bf9ee898	web: bump API Client version (#9801 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-22 02:49:00 +02:00
Jens L	6c4c535d57	web/admin: rework initial wizard pages and add grid layout (#9668 ) * remove @goauthentik/authentik as TS path Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial implementation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * oh yeah Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format earlier changes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * support plain alert Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial attempt at dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make it a base class Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate all wizards Signed-off-by: Jens Langhammer <jens@goauthentik.io> * create type create mixin to dedupe more, add icon to source create Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ldap icon Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions * match inverting we should probably replace all icons with coloured ones so we don't need to invert them...I guess Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make everything more explicit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add icons to provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add remaining provider icons Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework to not use inheritance Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated typo Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make app wizard use grid layout Signed-off-by: Jens Langhammer <jens@goauthentik.io> * keep wizard height consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-22 02:41:33 +02:00
Marc 'risson' Schmitt	0ed4bba5a5	website/integrations: discord: fix typo (#9800 ) Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-22 01:51:24 +02:00
Antoine THYS	6e31e5b889	website/integration/netbox: fix group custom pipeline example (#9738 ) website/integration/netbox fix group custom pipeline example Signed-off-by: ThysTips <contact@antoinethys.com>	2024-05-21 20:19:14 +02:00
Jens L	a5467c6e19	root: add primary-replica db router (#9479 ) * root: add primary-replica db router Signed-off-by: Jens Langhammer <jens@goauthentik.io> * copy all settings for database replicas Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * refresh read replicas config, switch to using a dict instead of a list for easier refresh Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add test for get_keys Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix getting override Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * lint Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * nosec Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * small fixes Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix replica settings Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * generate config: add a dummy read replica Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add doc Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add healthchecks for replicas Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * add note about hot reloading Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-21 20:15:49 +02:00
Keyinator	09832355e3	website/integrations: add three more policy-expressions to discord-docs (#5760 ) * - Add two policy-examples for syncing discord roles to authentik groups during enrollment or authentication - Add policy to store oauth-info and create an authentik-avatar-attribute during enrollment or authentication * Fix issues and lint - Fixed issue with wrong return during provider-check - Lint using black Signed-off-by: Keyinator <k3yinator@gmail.com> * Fix capitalization and punctuation Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Keyinator <k3yinator@gmail.com> * Fix documentation link and add explanation to MAPPED_ROLES attribute --------- Signed-off-by: Keyinator <k3yinator@gmail.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-05-21 13:10:16 -05:00
Allan Eising	6ffef878f0	website/integrations: netbox: add missing scope configuration (#9491 )	2024-05-21 10:42:08 +00:00
jsiegel-supplyframe	644090dc58	website/docs: remove marketing from skyhigh (#9666 ) * Update index.md removing advertising copy from documentation Signed-off-by: jsiegel-supplyframe <120349776+jsiegel-supplyframe@users.noreply.github.com> * fix formatting Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: jsiegel-supplyframe <120349776+jsiegel-supplyframe@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-21 01:08:06 +02:00
Mark Percival	d07508b9a4	Fix: Application Search text color should be light in dark mode (#9788 ) Fixes #8707	2024-05-20 16:55:16 -05:00
Jens L	44d7e81a93	providers/scim: optimize PropertyMapping fetching and execution (#9689 ) * add helper to mass-compile and re-use mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement for scim Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually make it even simpler Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate google Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate microsoft too Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove sleeps in tests with freezegun Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate ldap to propertymapping helper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move mapper to generic sync Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * apparently that doesn't work Signed-off-by: Jens Langhammer <jens@goauthentik.io> * forgot a sleep Signed-off-by: Jens Langhammer <jens@goauthentik.io> * backport fixes from #9783 Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 15:37:22 +02:00
authentik-automation[bot]	2e91b9d035	web: bump API Client version (#9785 ) * web: bump API Client version Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * don't include users in group calls Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 13:13:45 +00:00
Jens L	964c6a1050	core: fix auth_method and auth_method_args being overwritten by password stage (#9782 ) the assumption used to be that the password stage would always be first, but that doesn't have to be the case Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 15:03:25 +02:00
Jens L	90a1c5ab85	core: add include_users flag to single group retrieval (#9721 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 14:47:00 +02:00
Jens L	8162c1ec86	enterprise/providers/google_workspace: ensure no group is created when no property mappings are set (#9783 ) * enterprise/providers/google_workspace: ensure no group is created when no property mappings are set Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for that to all sync providers Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 14:16:34 +02:00
dependabot[bot]	ab46610d9b	core: bump tenant-schemas-celery from 2.2.0 to 3.0.0 (#9773 ) Bumps [tenant-schemas-celery](https://github.com/maciej-gol/tenant-schemas-celery) from 2.2.0 to 3.0.0. - [Release notes](https://github.com/maciej-gol/tenant-schemas-celery/releases) - [Commits](https://github.com/maciej-gol/tenant-schemas-celery/compare/2.2.0...3.0.0) --- updated-dependencies: - dependency-name: tenant-schemas-celery dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:02:07 +02:00
dependabot[bot]	6909b58279	core: bump pdoc from 14.4.0 to 14.5.0 (#9772 ) Bumps [pdoc](https://github.com/mitmproxy/pdoc) from 14.4.0 to 14.5.0. - [Changelog](https://github.com/mitmproxy/pdoc/blob/main/CHANGELOG.md) - [Commits](https://github.com/mitmproxy/pdoc/compare/v14.4.0...v14.5.0) --- updated-dependencies: - dependency-name: pdoc dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:01:11 +02:00
dependabot[bot]	6d7a06227f	core: bump pytest from 8.2.0 to 8.2.1 (#9774 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.2.0 to 8.2.1. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.2.0...8.2.1) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:01:00 +02:00
dependabot[bot]	1459a13991	web: bump chart.js from 4.4.2 to 4.4.3 in /web (#9776 ) Bumps [chart.js](https://github.com/chartjs/Chart.js) from 4.4.2 to 4.4.3. - [Release notes](https://github.com/chartjs/Chart.js/releases) - [Commits](https://github.com/chartjs/Chart.js/compare/v4.4.2...v4.4.3) --- updated-dependencies: - dependency-name: chart.js dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:00:43 +02:00
dependabot[bot]	1921ce39f6	web: bump @formatjs/intl-listformat from 7.5.5 to 7.5.7 in /web (#9777 ) Bumps [@formatjs/intl-listformat](https://github.com/formatjs/formatjs) from 7.5.5 to 7.5.7. - [Release notes](https://github.com/formatjs/formatjs/releases) - [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-listformat@7.5.5...@formatjs/intl-listformat@7.5.7) --- updated-dependencies: - dependency-name: "@formatjs/intl-listformat" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:00:34 +02:00
dependabot[bot]	263cff6393	core: bump github.com/sethvargo/go-envconfig from 1.0.2 to 1.0.3 (#9778 ) Bumps [github.com/sethvargo/go-envconfig](https://github.com/sethvargo/go-envconfig) from 1.0.2 to 1.0.3. - [Release notes](https://github.com/sethvargo/go-envconfig/releases) - [Commits](https://github.com/sethvargo/go-envconfig/compare/v1.0.2...v1.0.3) --- updated-dependencies: - dependency-name: github.com/sethvargo/go-envconfig dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-20 13:00:26 +02:00
Jens L	5a61688472	rbac: fix some rough edges and inconsistencies (#9771 ) rbac: fix some rough edges Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-20 12:52:27 +02:00
Jens L	919b56c466	web/admin: fix entra provider mapping form (#9767 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-18 14:57:16 +02:00
Manuel Rais	db7bc8b7ad	Change custom pipeline since netbox 4.0.0 (#9743 ) Due to a Django 5.0 regression, group.user_set does not exist anymore. https://github.com/netbox-community/netbox/discussions/16098 https://github.com/netbox-community/netbox/discussions/16000 Signed-off-by: Manuel Rais <manuel.rais@nousvoir.com>	2024-05-17 17:04:41 -05:00
dependabot[bot]	5768cb5858	web: bump @sentry/browser from 7.114.0 to 8.2.1 in /web in the sentry group across 1 directory (#9757 ) * web: bump @sentry/browser in /web in the sentry group across 1 directory Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 7.114.0 to 8.2.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/7.114.0...8.2.1) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-major dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> * fix sentry beforeSend Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-17 12:43:33 +02:00
authentik-automation[bot]	5b77bc33c7	core, web: update translations (#9714 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-17 12:32:05 +02:00
dependabot[bot]	93650e925a	core: bump sentry-sdk from 2.1.1 to 2.2.0 (#9753 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.1.1 to 2.2.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.1.1...2.2.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-17 12:19:49 +02:00
dependabot[bot]	83823068fe	core: bump selenium from 4.20.0 to 4.21.0 (#9754 ) Bumps [selenium](https://github.com/SeleniumHQ/Selenium) from 4.20.0 to 4.21.0. - [Release notes](https://github.com/SeleniumHQ/Selenium/releases) - [Commits](https://github.com/SeleniumHQ/Selenium/compare/selenium-4.20.0...selenium-4.21.0) --- updated-dependencies: - dependency-name: selenium dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-17 12:18:22 +02:00
dependabot[bot]	d922f41438	core: bump msgraph-sdk from 1.2.0 to 1.4.0 (#9755 ) Bumps [msgraph-sdk](https://github.com/microsoftgraph/msgraph-sdk-python) from 1.2.0 to 1.4.0. - [Release notes](https://github.com/microsoftgraph/msgraph-sdk-python/releases) - [Changelog](https://github.com/microsoftgraph/msgraph-sdk-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/microsoftgraph/msgraph-sdk-python/compare/v1.2.0...v1.4.0) --- updated-dependencies: - dependency-name: msgraph-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-17 12:18:11 +02:00
dependabot[bot]	ef3d545d7a	core: bump github.com/sethvargo/go-envconfig from 1.0.1 to 1.0.2 (#9756 ) Bumps [github.com/sethvargo/go-envconfig](https://github.com/sethvargo/go-envconfig) from 1.0.1 to 1.0.2. - [Release notes](https://github.com/sethvargo/go-envconfig/releases) - [Commits](https://github.com/sethvargo/go-envconfig/compare/v1.0.1...v1.0.2) --- updated-dependencies: - dependency-name: github.com/sethvargo/go-envconfig dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-17 12:17:55 +02:00
dependabot[bot]	e9efbb2161	web: bump chromedriver from 124.0.3 to 125.0.0 in /tests/wdio (#9758 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 124.0.3 to 125.0.0. - [Commits](https://github.com/giggio/node-chromedriver/compare/124.0.3...125.0.0) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-17 12:17:37 +02:00
Tana M Berry	a3634ab21d	website/docs: new PR for the Entra provider docs (ignore old one) (#9741 ) * new PR * ken edits * tweaks --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-05-16 17:00:03 -05:00
Jens L	f28209548b	root: include task_id in events and logs (#9749 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-16 13:33:00 +02:00
dependabot[bot]	9589e04072	web: bump the esbuild group in /web with 2 updates (#9745 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.2 to 0.21.3 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.2...v0.21.3) Updates `@esbuild/linux-arm64` from 0.21.2 to 0.21.3 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.2...v0.21.3) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-16 12:23:20 +02:00
dependabot[bot]	6490703ba3	web: bump esbuild from 0.21.2 to 0.21.3 in /web (#9746 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.2 to 0.21.3. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.2...v0.21.3) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-16 12:23:06 +02:00
dependabot[bot]	ca2fce05f5	web: bump the storybook group across 1 directory with 7 updates (#9747 ) Bumps the storybook group with 6 updates in the /web directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.0.10` \| `8.1.1` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.0.10` \| `8.1.1` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.0.10` \| `8.1.1` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.0.10` \| `8.1.1` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.0.10` \| `8.1.1` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.0.10` \| `8.1.1` \| Updates `@storybook/addon-essentials` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/addons/essentials) Updates `@storybook/addon-links` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/addons/links) Updates `@storybook/blocks` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/ui/blocks) Updates `@storybook/manager-api` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/lib/manager-api) Updates `@storybook/web-components` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/frameworks/web-components-vite) Updates `storybook` from 8.0.10 to 8.1.1 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.1.1/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-minor dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-16 12:22:54 +02:00
4d62	9dc813d9ab	website/docs: update traefik to latest version in proxy provider (#9707 )	2024-05-13 20:00:37 +00:00
Jens L	833c66a9dd	sources/saml: fix FlowPlanner error due to pickle (#9708 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-13 20:33:34 +02:00
Tana M Berry	5d54f696d4	website/docs: add docs about Google Workspace (#9669 ) * stub files * tweaks * add to sidebar * tweaks * steps to set up gws * first drafts * link * unsaved * formatting * typos * add Ent badge * backchannel and otehr edits * tweaks * tweaks * rewrite stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * em one word Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-05-13 20:33:06 +02:00
transifex-integration[bot]	0746652995	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9702 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-13 19:36:53 +02:00
transifex-integration[bot]	a1a55c644a	translate: Updates for file web/xliff/en.xlf in zh_CN (#9703 ) * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-13 19:36:38 +02:00
transifex-integration[bot]	fce57d258e	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9705 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-13 19:36:14 +02:00
transifex-integration[bot]	17e30b7adc	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9706 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-13 19:35:58 +02:00
dependabot[bot]	c5b3f8a578	web: bump esbuild from 0.21.1 to 0.21.2 in /web (#9696 )	2024-05-13 13:41:46 +02:00
dependabot[bot]	3a3619fa18	web: bump chromedriver from 124.0.2 to 124.0.3 in /tests/wdio (#9692 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 124.0.2 to 124.0.3. - [Commits](https://github.com/giggio/node-chromedriver/compare/124.0.2...124.0.3) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:41:12 +02:00
dependabot[bot]	21b933efff	website: bump @types/react from 18.3.1 to 18.3.2 in /website (#9691 ) Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.3.1 to 18.3.2. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: "@types/react" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:40:38 +02:00
authentik-automation[bot]	97fc2cba69	core, web: update translations (#9672 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-13 11:40:14 +02:00
dependabot[bot]	7ef627d476	core: bump psycopg from 3.1.18 to 3.1.19 (#9698 ) Bumps [psycopg](https://github.com/psycopg/psycopg) from 3.1.18 to 3.1.19. - [Changelog](https://github.com/psycopg/psycopg/blob/master/docs/news.rst) - [Commits](https://github.com/psycopg/psycopg/compare/3.1.18...3.1.19) --- updated-dependencies: - dependency-name: psycopg dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:36:47 +02:00
dependabot[bot]	d16c603499	core: bump google-api-python-client from 2.128.0 to 2.129.0 (#9694 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.128.0 to 2.129.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Changelog](https://github.com/googleapis/google-api-python-client/blob/main/CHANGELOG.md) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.128.0...v2.129.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:35:37 +02:00
dependabot[bot]	99a69bb52f	web: bump the esbuild group in /web with 2 updates (#9695 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.1 to 0.21.2 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.1...v0.21.2) Updates `@esbuild/linux-arm64` from 0.21.1 to 0.21.2 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.1...v0.21.2) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:35:10 +02:00
dependabot[bot]	ac8192d660	web: bump glob from 10.3.14 to 10.3.15 in /web (#9697 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.3.14 to 10.3.15. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.3.14...v10.3.15) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:34:50 +02:00
dependabot[bot]	cdf3449230	core: bump freezegun from 1.5.0 to 1.5.1 (#9693 ) Bumps [freezegun](https://github.com/spulec/freezegun) from 1.5.0 to 1.5.1. - [Release notes](https://github.com/spulec/freezegun/releases) - [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG) - [Commits](https://github.com/spulec/freezegun/compare/1.5.0...1.5.1) --- updated-dependencies: - dependency-name: freezegun dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-13 11:33:24 +02:00
Ken Sternberg	ef2a40ed7d	web: fix value handling inside controlled components (#9648 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: fix value handling inside controlled components This is one of those stupid bugs that drive web developers crazy. The basics are straightforward: when you cause a higher-level component to have a "big enough re-render," for some unknown definition of "big enough," it will re-render the sub-components. In traditional web interaction, those components should never be re-rendered while the user is interacting with the form, but in frameworks where there's dynamic re-arrangement, part or all of the form could get re-rendered at any mmoment. Since neither the form nor any of its intermediaries is tracking the values as they're changed, it's up to the components themselves to keep the user's input-- and to be hardened against property changes coming from the outside world. So static memoization of the initial value passed in, and aggressively walling off the values the customer generates from that field, are needed to protect the user's work from any framework's dynamic DOM management. I remember struggling with this in React; I had hoped Lit was better, but in this case, not better enough. The protocol for "is it an ak-data-control" is "it has a `json()` method that returns the data ready to be sent to the authentik server." I missed that in one place, so that's on me. * Eslint had opinions. * Added comments to explain something.	2024-05-10 09:50:07 -07:00
Fletcher Heisler	09cacbd76b	website/docs: add hardening advice and link directly to Cure53 results (#9670 ) docs: add hardening advice and link directly to Cure53 results Signed-off-by: Fletcher Heisler <fheisler@users.noreply.github.com>	2024-05-10 09:07:19 -04:00
dependabot[bot]	cb33f0d1e2	core: bump goauthentik.io/api/v3 from 3.2024042.2 to 3.2024042.4 (#9674 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024042.2 to 3.2024042.4. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024042.2...v3.2024042.4) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-10 12:13:36 +02:00
dependabot[bot]	90af4b29a6	core: bump ruff from 0.4.3 to 0.4.4 (#9677 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.3 to 0.4.4. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.3...v0.4.4) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-10 12:13:26 +02:00
dependabot[bot]	6b9158591e	core: bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 (#9675 ) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.0 to 1.19.1. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-10 12:13:16 +02:00
dependabot[bot]	9c15cda191	web: bump glob from 10.3.12 to 10.3.14 in /web (#9676 ) Bumps [glob](https://github.com/isaacs/node-glob) from 10.3.12 to 10.3.14. - [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md) - [Commits](https://github.com/isaacs/node-glob/compare/v10.3.12...v10.3.14) --- updated-dependencies: - dependency-name: glob dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-10 12:13:05 +02:00
Jens L	046b8d5cbf	lib/providers/sync: multiple minor fixes (#9667 ) * don't propagate from signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve retry Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 22:02:13 +02:00
Jens L	8b74b83983	core: fix source flow_manager not always appending save stage (#9659 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 19:04:32 +02:00
authentik-automation[bot]	8de038b387	web: bump API Client version (#9660 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-09 16:33:56 +00:00
Jens L	2edc651582	web/admin: only show non-backchannel providers in application provider select (#9658 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 18:10:07 +02:00
Tana M Berry	85594a119c	website/docs: add new doc about extra steps for hardening authentik (#9649 ) * add to sidebar * tweaks * tweaks * add derek edit * ken edit * Update website/docs/security/security-hardening.md Co-authored-by: Jens L. <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> * tweaks --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: Jens L. <jens@goauthentik.io>	2024-05-09 10:02:51 -05:00
authentik-automation[bot]	1a97ccea03	web: bump API Client version (#9656 )	2024-05-09 15:46:01 +02:00
Jens L	99ad492951	enterprise/providers/microsoft_entra: initial account sync to microsoft entra (#9632 ) * initial Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add entra mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make API endpoints more consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement more things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix most group tests + fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more group tests, fix bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing __init__ Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui for provisioned users Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add `creating` to property mapping env Signed-off-by: Jens Langhammer <jens@goauthentik.io> * always sync group members Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix group membership Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some types Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group member add test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * create sync status component to dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix discovery tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * get rid of more code and fix more issues Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add error handling for auth and transient Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sure autoretry is on Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * wait for task in signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add squashed google migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-09 15:41:23 +02:00
dependabot[bot]	ff4ec6f9b4	web: bump chromedriver from 124.0.1 to 124.0.2 in /tests/wdio (#9652 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 124.0.1 to 124.0.2. - [Commits](https://github.com/giggio/node-chromedriver/compare/124.0.1...124.0.2) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-09 13:10:02 +02:00
dependabot[bot]	0c49de67b8	web: bump @sentry/browser from 7.113.0 to 7.114.0 in /web in the sentry group (#9653 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 7.113.0 to 7.114.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/7.114.0/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/7.113.0...7.114.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-09 13:09:52 +02:00
authentik-automation[bot]	0d73528ec7	core, web: update translations (#9650 )	2024-05-09 02:48:01 +02:00
transifex-integration[bot]	80ca4e5722	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9644 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-08 23:28:02 +02:00
transifex-integration[bot]	1ebe200a46	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9646 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-08 23:27:55 +02:00
transifex-integration[bot]	5683c81f27	translate: Updates for file web/xliff/en.xlf in zh_CN (#9645 ) * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. * Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-08 23:27:24 +02:00
transifex-integration[bot]	f0477309d5	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9647 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-08 23:27:12 +02:00
authentik-automation[bot]	04d613d213	core, web: update translations (#9633 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-08 15:12:14 +02:00
dependabot[bot]	b5928c2f7f	core: bump google-api-python-client from 2.127.0 to 2.128.0 (#9641 ) Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.127.0 to 2.128.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Changelog](https://github.com/googleapis/google-api-python-client/blob/main/CHANGELOG.md) - [Commits](https://github.com/googleapis/google-api-python-client/compare/v2.127.0...v2.128.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:58:09 +02:00
dependabot[bot]	c8e7247d2c	core: bump goauthentik.io/api/v3 from 3.2024041.3 to 3.2024042.2 (#9635 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024041.3 to 3.2024042.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024041.3...v3.2024042.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:57:39 +02:00
dependabot[bot]	ac6266a23a	core: bump golang from 1.22.2-bookworm to 1.22.3-bookworm (#9636 ) Bumps golang from 1.22.2-bookworm to 1.22.3-bookworm. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:57:16 +02:00
dependabot[bot]	88213f67ee	web: bump the esbuild group in /web with 2 updates (#9637 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.21.0 to 0.21.1 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.0...v0.21.1) Updates `@esbuild/linux-arm64` from 0.21.0 to 0.21.1 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.0...v0.21.1) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:57:06 +02:00
dependabot[bot]	f8fd17f77e	web: bump esbuild from 0.21.0 to 0.21.1 in /web (#9639 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.21.0 to 0.21.1. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.21.0...v0.21.1) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:56:54 +02:00
dependabot[bot]	7f127ee515	core: bump django from 5.0.5 to 5.0.6 (#9640 ) Bumps [django](https://github.com/django/django) from 5.0.5 to 5.0.6. - [Commits](https://github.com/django/django/compare/5.0.5...5.0.6) --- updated-dependencies: - dependency-name: django dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-08 11:56:42 +02:00
authentik-automation[bot]	ed214b4ac8	web: bump API Client version (#9630 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-07 18:12:43 +00:00
Jens L	aeb1b450eb	enterprise/providers/google: initial account sync to google workspace (#9384 ) * providers/google: initial account sync to google workspace Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start separating scim sync client Signed-off-by: Jens Langhammer <jens@goauthentik.io> * generalize more...ish Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set dispatch_uid Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start generalizing task Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fully separate tasks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix signals...? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start google dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * drawing the rest of the owl Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * juse use a whole lot less magic Signed-off-by: Jens Langhammer <jens@goauthentik.io> * member sync, better implement conflict/retry-able exceptions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * max wizards taller Signed-off-by: Jens Langhammer <jens@goauthentik.io> * gen api, basic UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch more bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * generalize sync status API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework sync chart Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add slugify to evaluator Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test property mappings Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename to google workspace Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle existing objects Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix credential render Signed-off-by: Jens Langhammer <jens@goauthentik.io> * verify email has correct domain before syncing user Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing docstring Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lock not being used Signed-off-by: Jens Langhammer <jens@goauthentik.io> * abstract more common stuff away Signed-off-by: Jens Langhammer <jens@goauthentik.io> * backport time limit fix https://github.com/goauthentik/authentik/pull/9546 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start discovery Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement discover for google Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent same issue as with https://github.com/goauthentik/authentik/pull/9557 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix sync status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make group name unique in API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix reference to old wrapper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding tests man this api client is awful Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add SkipObject Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dont use weak ref Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user and group delete options Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set user agent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * if the api's testing tools are awful, let's just make our own Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more tests and already fix some more bugs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add discover Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add preview banner Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add group import test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only import users/groups in the correct parent group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix conflicting args Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing schedule Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add default_group_email_domain Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-07 19:52:20 +02:00
Jens L	18b4b2d7b2	web/flows: fix error when using consecutive webauthn validator stages (#9629 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-07 19:50:57 +02:00
authentik-automation[bot]	a140bad8fb	web: bump API Client version (#9626 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-07 17:05:03 +00:00
Tana M Berry	bb1b8ab7bb	website/docs: refine intro page for sources (#9625 )	2024-05-07 18:59:25 +02:00
Marc 'risson' Schmitt	6802614fbf	release: 2024.4.2	2024-05-07 18:45:37 +02:00
Jens L	619113e810	website/docs: prepare 2024.4.2 release notes (#9555 ) Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2024-05-07 16:22:24 +02:00
dependabot[bot]	a8697bf1ad	web: bump the esbuild group in /web with 2 updates (#9616 ) Bumps the esbuild group in /web with 2 updates: [@esbuild/darwin-arm64](https://github.com/evanw/esbuild) and [@esbuild/linux-arm64](https://github.com/evanw/esbuild). Updates `@esbuild/darwin-arm64` from 0.20.2 to 0.21.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.20.2...v0.21.0) Updates `@esbuild/linux-arm64` from 0.20.2 to 0.21.0 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.20.2...v0.21.0) --- updated-dependencies: - dependency-name: "@esbuild/darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild - dependency-name: "@esbuild/linux-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: esbuild ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:27:32 +02:00
transifex-integration[bot]	f52dec4b7e	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9611 ) * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. * Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-07 12:21:07 +02:00
transifex-integration[bot]	6560bf18a4	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh_CN (#9560 ) Translate locale/en/LC_MESSAGES/django.po in zh_CN 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-07 12:20:51 +02:00
transifex-integration[bot]	315cd40e6a	translate: Updates for file locale/en/LC_MESSAGES/django.po in zh-Hans (#9563 ) Translate django.po in zh-Hans 100% translated source file: 'django.po' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-07 12:20:40 +02:00
dependabot[bot]	a7a62b5005	ci: bump golangci/golangci-lint-action from 5 to 6 (#9615 ) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5 to 6. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](https://github.com/golangci/golangci-lint-action/compare/v5...v6) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:18:41 +02:00
dependabot[bot]	37e3998211	web: bump esbuild from 0.20.2 to 0.21.0 in /web (#9617 ) Bumps [esbuild](https://github.com/evanw/esbuild) from 0.20.2 to 0.21.0. - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.20.2...v0.21.0) --- updated-dependencies: - dependency-name: esbuild dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:18:31 +02:00
dependabot[bot]	31be26ebbd	core: bump cryptography from 42.0.6 to 42.0.7 (#9618 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.6 to 42.0.7. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.6...42.0.7) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:17:39 +02:00
dependabot[bot]	42b1cb06fb	core: bump sentry-sdk from 2.0.1 to 2.1.1 (#9619 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.0.1 to 2.1.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.0.1...2.1.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:17:26 +02:00
dependabot[bot]	066ec35adf	core: bump django from 5.0.4 to 5.0.5 (#9620 ) Bumps [django](https://github.com/django/django) from 5.0.4 to 5.0.5. - [Commits](https://github.com/django/django/compare/5.0.4...5.0.5) --- updated-dependencies: - dependency-name: django dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-07 12:17:06 +02:00
authentik-automation[bot]	87a808a747	core, web: update translations (#9613 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-07 02:11:50 +02:00
Tana M Berry	d8b1cd757e	website/docs: move Sources from Integrations into Docs (#9515 ) * moved Sources form Integrations to Docs * files moved * fixed setting options * fixed broken links and added redirects * try single-sourcing Sources docs * tweaks * fighting links * still fighting links * fightng sidebar * fighting with sidebar * add logos and tweak * image tweaks * Optimised images with calibre/image-actions * added remaining UI definitions * kens edits --------- Co-authored-by: Tana M Berry <tana@goauthentik.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-06 17:49:17 -05:00
Tana M Berry	b1b9c8e0e5	website/docs: add procedurals to flow inspector docs (#9556 ) * clarify access process * add image * link to permissions and explain query parm * typos * changed image * edits --------- Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-05-06 14:59:01 -05:00
dependabot[bot]	a0a617055b	core: bump jinja2 from 3.1.3 to 3.1.4 (#9610 ) Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/3.1.3...3.1.4) --- updated-dependencies: - dependency-name: jinja2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 18:22:52 +02:00
Ken Sternberg	9ec6f548a6	web: clean up the options rendering in PromptForm (#9564 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: clean up a bit inside the promptform Just something I did while researching Github Issue 5197.	2024-05-06 08:55:43 -07:00
transifex-integration[bot]	46980db582	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9608 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 17:03:09 +02:00
tedstriker	d8fd1ddec6	website/docs: add instructions for deploying radius manually with docker compose (#9605 )	2024-05-06 15:38:48 +02:00
Jens L	74d29e2374	sources/scim: fix duplicate groups and invalid schema (#9466 ) * sources/scim: fix duplicate groups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing schema in response Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix members missing in returned group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * optimise queries Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 14:55:10 +02:00
Marc 'risson' Schmitt	801a28ef65	core: fix condition in task clean_expiring_models (#9603 )	2024-05-06 12:29:04 +00:00
transifex-integration[bot]	3fff090612	translate: Updates for file web/xliff/en.xlf in fr (#9600 ) Translate web/xliff/en.xlf in fr 100% translated source file: 'web/xliff/en.xlf' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 12:14:22 +00:00
transifex-integration[bot]	b071d55b4d	translate: Updates for file locale/en/LC_MESSAGES/django.po in fr (#9599 ) Translate locale/en/LC_MESSAGES/django.po in fr 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'fr'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 12:12:57 +00:00
Marc 'risson' Schmitt	244cbc5b6d	core: fix task clean_expiring_models removing valid sessions with using database storage (#9598 )	2024-05-06 12:02:03 +00:00
transifex-integration[bot]	74da359dd5	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9587 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 12:40:07 +02:00
transifex-integration[bot]	56b73e3bd5	translate: Updates for file web/xliff/en.xlf in zh_CN (#9588 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 12:39:51 +02:00
dependabot[bot]	59e3c85568	core: bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 (#9590 ) Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.19.0 to 0.20.0. - [Commits](https://github.com/golang/oauth2/compare/v0.19.0...v0.20.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:38:22 +02:00
dependabot[bot]	746c933e63	core: bump goauthentik.io/api/v3 from 3.2024041.2 to 3.2024041.3 (#9589 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024041.2 to 3.2024041.3. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024041.2...v3.2024041.3) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:38:15 +02:00
dependabot[bot]	f165bbca5d	web: bump the storybook group in /web with 7 updates (#9591 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.0.9` \| `8.0.10` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.0.9` \| `8.0.10` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.0.9` \| `8.0.10` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.0.9` \| `8.0.10` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.0.9` \| `8.0.10` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.0.9` \| `8.0.10` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.0.9` \| `8.0.10` \| Updates `@storybook/addon-essentials` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/addons/essentials) Updates `@storybook/addon-links` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/addons/links) Updates `@storybook/blocks` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/ui/blocks) Updates `@storybook/manager-api` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/lib/manager-api) Updates `@storybook/web-components` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/frameworks/web-components-vite) Updates `storybook` from 8.0.9 to 8.0.10 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.10/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:38:06 +02:00
dependabot[bot]	f335b08ec2	core: bump coverage from 7.5.0 to 7.5.1 (#9594 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.5.0 to 7.5.1. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.0...7.5.1) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:36:03 +02:00
dependabot[bot]	6e831a4253	core: bump django-storages from 1.14.2 to 1.14.3 (#9595 ) Bumps [django-storages](https://github.com/jschneier/django-storages) from 1.14.2 to 1.14.3. - [Changelog](https://github.com/jschneier/django-storages/blob/master/CHANGELOG.rst) - [Commits](https://github.com/jschneier/django-storages/compare/1.14.2...1.14.3) --- updated-dependencies: - dependency-name: django-storages dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:35:36 +02:00
dependabot[bot]	6c1687c569	core: bump cryptography from 42.0.5 to 42.0.6 (#9596 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.5 to 42.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.5...42.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:33:26 +02:00
dependabot[bot]	09c64e2354	core: bump ruff from 0.4.2 to 0.4.3 (#9597 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.2 to 0.4.3. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.2...v0.4.3) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-06 12:33:13 +02:00
Jens L	0a312821ee	website/docs: fix api browser references (#9577 ) * website/docs: fix api browser references Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't attempt to correct generated docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix? Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 12:30:43 +02:00
Jens L	06d1062423	tenants: fix scheduled tasks not running on default tenant (#9583 ) * tenants: fix scheduled tasks not running on default tenant Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add some extra time to keep system task around Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sure we actually send it to all tenants Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 03:16:30 +02:00
authentik-automation[bot]	dcfa3dc88a	web: bump API Client version (#9585 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-06 03:10:39 +02:00
Jens L	c45bb8e985	providers/proxy: rework redirect mechanism (#8594 ) * providers/proxy: rework redirect mechanism Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add session id, don't tie to state in session Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle state failing to parse Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * save session after creating state Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove debug Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include task expiry in status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix redirect URL detection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-06 03:07:08 +02:00
transifex-integration[bot]	3e4fea875a	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9562 ) * Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. * Removing web/xliff/en.xlf in zh-Hans 99% of minimum 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. --------- Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 02:54:38 +02:00
transifex-integration[bot]	c7670d271a	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9580 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-05-06 02:23:21 +02:00
authentik-automation[bot]	570f3a4d42	core, web: update translations (#9582 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-06 02:23:06 +02:00
Jens L	3c54e94c6e	providers/scim: fix SCIM ID incorrectly used as primary key (#9557 ) * providers/scim: fix SCIM ID incorrectly used as primary key Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unique together Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add check for empty scim ID Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-05 17:32:19 +02:00
Jens L	26daaeb57d	core: fix source_flow_manager saving user-source connection too early (#9559 ) * core: fix source_flow_manager saving user-source connection too early Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ci: fix branch name Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-05 16:15:21 +02:00
Jens L	a60442fc2c	enterprise/audit: fix audit logging with m2m relations (#9571 )	2024-05-05 02:33:38 +02:00
Jens L	8790f7059a	website/docs: switch API browser renderer to PAN (#9570 ) * website/docs: switch API browser renderer to PAN https://github.com/PaloAltoNetworks/docusaurus-openapi-docs/ Signed-off-by: Jens Langhammer <jens@goauthentik.io> * hey we can actually directly link to API endpoints now Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set as sub category Signed-off-by: Jens Langhammer <jens@goauthentik.io> * revert sidebars back to JS for tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-04 23:49:33 +02:00
Jens L	49cf10e9bd	website/docs: fix openssl rand commands (#9554 ) * website/docs: fix openssl rand commands Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update website/integrations/sources/freeipa/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-05-03 14:24:04 +02:00
dependabot[bot]	13da6f5151	web: bump @sentry/browser from 7.112.2 to 7.113.0 in /web in the sentry group (#9549 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 7.112.2 to 7.113.0 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/7.113.0/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/7.112.2...7.113.0) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-03 13:22:21 +02:00
authentik-automation[bot]	a1e0564f8f	core, web: update translations (#9548 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-05-03 13:22:10 +02:00
dependabot[bot]	55f3664063	core: bump goauthentik.io/api/v3 from 3.2024041.1 to 3.2024041.2 (#9551 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024041.1 to 3.2024041.2. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024041.1...v3.2024041.2) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-03 13:20:24 +02:00
dependabot[bot]	baabd8614f	core: bump django-model-utils from 4.5.0 to 4.5.1 (#9550 ) Bumps [django-model-utils](https://github.com/jazzband/django-model-utils) from 4.5.0 to 4.5.1. - [Release notes](https://github.com/jazzband/django-model-utils/releases) - [Changelog](https://github.com/jazzband/django-model-utils/blob/4.5.1/CHANGES.rst) - [Commits](https://github.com/jazzband/django-model-utils/compare/4.5.0...4.5.1) --- updated-dependencies: - dependency-name: django-model-utils dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-03 13:20:14 +02:00
Jens L	79df24f4eb	providers/scim: fix time_limit not set correctly (#9546 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-03 11:48:34 +02:00
Jens L	f1afc4d263	web/flows: fix error when enrolling multiple WebAuthn devices consecutively (#9545 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-02 19:54:21 +02:00
dependabot[bot]	643a256f01	web: bump ejs from 3.1.9 to 3.1.10 in /tests/wdio (#9542 ) Bumps [ejs](https://github.com/mde/ejs) from 3.1.9 to 3.1.10. - [Release notes](https://github.com/mde/ejs/releases) - [Commits](https://github.com/mde/ejs/compare/v3.1.9...v3.1.10) --- updated-dependencies: - dependency-name: ejs dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-05-02 15:41:04 +02:00
authentik-automation[bot]	b7f92ef0ea	web: bump API Client version (#9543 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-02 13:37:44 +00:00
Jens L	e33ca93f05	providers/saml: fix ecdsa support (#9537 ) * crypto: add option to select which alg to use to generate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing ecdsa options for XML signing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump xml libraries and remove disclaimer Signed-off-by: Jens Langhammer <jens@goauthentik.io> * lock djangoframework Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-05-02 15:18:14 +02:00
Pierrick Guillaume	79af8b8638	website/integrations: nextcloud: connect to existing user (#9155 ) * doc: integration: nextcloud: connect to existing user Add instruction on how to link an existing Nextcloud user to the authentik user. Signed-off-by: Pierrick Guillaume <34305318+Fymyte@users.noreply.github.com> * Apply suggested changes Signed-off-by: Pierrick Guillaume <pierguill@gmail.com> * Fix missing letter Signed-off-by: Pierrick Guillaume <pierguill@gmail.com> * Run prettier * Remove tip * fix federated cloud id tip and indentation --------- Signed-off-by: Pierrick Guillaume <34305318+Fymyte@users.noreply.github.com> Signed-off-by: Pierrick Guillaume <pierguill@gmail.com> Co-authored-by: Pierrick Guillaume <pguillaume@sequans.com>	2024-05-02 07:23:07 -05:00
authentik-automation[bot]	d2b8bd3635	stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs (#9535 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-05-01 12:38:06 +02:00
dependabot[bot]	02e01559f4	web: bump the rollup group across 1 directory with 3 updates (#9532 ) Bumps the rollup group with 3 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.17.0 to 4.17.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.0...v4.17.2) Updates `@rollup/rollup-linux-arm64-gnu` from 4.17.0 to 4.17.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.0...v4.17.2) Updates `@rollup/rollup-linux-x64-gnu` from 4.17.0 to 4.17.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.17.0...v4.17.2) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-30 22:14:40 +02:00
Nils Mittler	b0c39e4843	website/developer-docs: Add note for custom YAML tags in an IDE (#9528 ) Add note for custom tags in an IDE Custom tags are not provided via the schema file, but must be defined in the IDE. If this is not done, the IDE displays syntax errors when using the custom tags. Signed-off-by: Nils Mittler <70568139+mittler-works@users.noreply.github.com>	2024-04-30 15:08:30 -05:00
Jens L	039570a140	lifecycle: close database connection after migrating (#9516 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-30 21:04:30 +02:00
dependabot[bot]	fdc7dedc58	web: bump the babel group in /web with 3 updates (#9520 ) Bumps the babel group in /web with 3 updates: [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core), [@babel/plugin-transform-private-property-in-object](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-private-property-in-object) and [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env). Updates `@babel/core` from 7.24.4 to 7.24.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.5/packages/babel-core) Updates `@babel/plugin-transform-private-property-in-object` from 7.24.1 to 7.24.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.5/packages/babel-plugin-transform-private-property-in-object) Updates `@babel/preset-env` from 7.24.4 to 7.24.5 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.5/packages/babel-preset-env) --- updated-dependencies: - dependency-name: "@babel/core" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/plugin-transform-private-property-in-object" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel - dependency-name: "@babel/preset-env" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: babel ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-30 21:04:05 +02:00
dependabot[bot]	098fcdeaf2	core: bump node from 21 to 22 (#9521 ) Bumps node from 21 to 22. --- updated-dependencies: - dependency-name: node dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-30 21:03:57 +02:00
dependabot[bot]	3cf9278bea	web: bump @codemirror/lang-python from 6.1.5 to 6.1.6 in /web (#9523 ) Bumps [@codemirror/lang-python](https://github.com/codemirror/lang-python) from 6.1.5 to 6.1.6. - [Changelog](https://github.com/codemirror/lang-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/codemirror/lang-python/compare/6.1.5...6.1.6) --- updated-dependencies: - dependency-name: "@codemirror/lang-python" dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-30 21:03:46 +02:00
Jens L	13ccb352d7	providers/rac: bump guacd to 1.5.5 (#9514 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-29 19:49:03 +02:00
Jens L	c5b099856d	core: only prefetch related objects when required (#9476 ) * core: only prefetch related objects when required Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests to assert query count Signed-off-by: Jens Langhammer <jens@goauthentik.io> * "optimize" another query away Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prefetch parent and roles Signed-off-by: Jens Langhammer <jens@goauthentik.io> * whops that needs to be pre-fetched Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-29 12:59:59 +02:00
Tana M Berry	6d912be7f6	website/integrations: move Fortimanager to Networking (#9505 ) move Fortimanager to Networking Co-authored-by: Tana M Berry <tana@goauthentik.com>	2024-04-29 05:20:54 -05:00
dependabot[bot]	0c54d266d3	website: bump react-tooltip from 5.26.3 to 5.26.4 in /website (#9494 ) Bumps [react-tooltip](https://github.com/ReactTooltip/react-tooltip) from 5.26.3 to 5.26.4. - [Release notes](https://github.com/ReactTooltip/react-tooltip/releases) - [Changelog](https://github.com/ReactTooltip/react-tooltip/blob/master/CHANGELOG.md) - [Commits](https://github.com/ReactTooltip/react-tooltip/compare/v5.26.3...v5.26.4) --- updated-dependencies: - dependency-name: react-tooltip dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:37:31 +02:00
dependabot[bot]	c4784cf383	web: bump the rollup group in /web with 3 updates (#9497 ) Bumps the rollup group in /web with 3 updates: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.16.4 to 4.17.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.4...v4.17.0) Updates `@rollup/rollup-linux-arm64-gnu` from 4.16.4 to 4.17.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.4...v4.17.0) Updates `@rollup/rollup-linux-x64-gnu` from 4.16.4 to 4.17.0 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.4...v4.17.0) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:19:08 +02:00
dependabot[bot]	44ccbe2fdf	web: bump yaml from 2.4.1 to 2.4.2 in /web (#9499 ) Bumps [yaml](https://github.com/eemeli/yaml) from 2.4.1 to 2.4.2. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](https://github.com/eemeli/yaml/compare/v2.4.1...v2.4.2) --- updated-dependencies: - dependency-name: yaml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:18:57 +02:00
dependabot[bot]	d2615f0d6a	core: bump goauthentik.io/api/v3 from 3.2024040.1 to 3.2024041.1 (#9503 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024040.1 to 3.2024041.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024040.1...v3.2024041.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:18:39 +02:00
dependabot[bot]	5ab3cf4952	core: bump pytest from 8.1.1 to 8.2.0 (#9501 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.1.1 to 8.2.0. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.1.1...8.2.0) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:18:30 +02:00
dependabot[bot]	1926a472cd	website: bump react-dom from 18.3.0 to 18.3.1 in /website (#9495 ) Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 18.3.0 to 18.3.1. - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v18.3.1/packages/react-dom) --- updated-dependencies: - dependency-name: react-dom dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:18:18 +02:00
dependabot[bot]	d220ca6bab	website: bump react and @types/react in /website (#9496 ) Bumps [react](https://github.com/facebook/react/tree/HEAD/packages/react) and [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react). These dependencies needed to be updated together. Updates `react` from 18.3.0 to 18.3.1 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v18.3.1/packages/react) Updates `@types/react` from 18.3.0 to 18.3.1 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: react dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: "@types/react" dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:18:01 +02:00
dependabot[bot]	759ea731bf	web: bump react-dom from 18.3.0 to 18.3.1 in /web (#9498 ) Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 18.3.0 to 18.3.1. - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v18.3.1/packages/react-dom) --- updated-dependencies: - dependency-name: react-dom dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:17:43 +02:00
dependabot[bot]	e01fd5eb1a	core: bump sentry-sdk from 2.0.0 to 2.0.1 (#9502 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.0.0 to 2.0.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/2.0.0...2.0.1) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-29 11:17:28 +02:00
Jens L	e716e24ec6	web/flows: fix missing fallback for flow logo (#9487 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-28 16:35:19 +02:00
Jens L	e9c84b8bfb	events: ensure all models' __str__ can be called without any further lookups (#9480 ) * events: ensure all models' __str__ can be called without any further lookups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow for additional queries for models using default_token_key Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-27 22:19:33 +02:00
authentik-automation[bot]	130adf9d26	core, web: update translations (#9482 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-04-27 22:19:20 +02:00
Jens L	6aab505cd7	flows: fix execute API endpoint (#9478 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-27 01:56:59 +02:00
Jens L	a9c597bc08	sources/oauth: fix OAuth Client sending token request incorrectly (#9474 ) closes #9289 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 20:35:36 +02:00
authentik-automation[bot]	853239dff9	web: bump API Client version (#9473 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-04-26 18:46:41 +02:00
Jens Langhammer	8f8c3e4944	release: 2024.4.1	2024-04-26 18:43:33 +02:00
Jens L	dde9960b9c	website/docs: update release notes for 2024.4.1 again (#9471 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 17:38:42 +02:00
Jens L	b1e48a6c1a	sources/scim: fix service account user path (#9463 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 17:08:46 +02:00
Jens L	b704e9031e	web/admin: fix disabled button color with dark theme (#9465 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 16:53:57 +02:00
Jens L	15ef5dc792	web/admin: show user internal service account as disabled (#9464 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 16:50:25 +02:00
Jens L	6c4a1850b0	website/docs: prepare 2024.4.1 (#9459 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 14:38:35 +02:00
dependabot[bot]	183d036f3c	core: bump ruff from 0.4.1 to 0.4.2 (#9448 ) * core: bump ruff from 0.4.1 to 0.4.2 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.1 to 0.4.2. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.1...v0.4.2) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix formatting Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 13:24:46 +02:00
Jens L	b324dc0ce2	lifecycle: always try custom redis URL (#9441 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-26 13:24:36 +02:00
authentik-automation[bot]	6ad7be65ec	core, web: update translations (#9443 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-04-26 12:08:48 +02:00
dependabot[bot]	8bf335a2a5	web: bump chromedriver from 123.0.4 to 124.0.1 in /tests/wdio (#9444 ) Bumps [chromedriver](https://github.com/giggio/node-chromedriver) from 123.0.4 to 124.0.1. - [Commits](https://github.com/giggio/node-chromedriver/compare/123.0.4...124.0.1) --- updated-dependencies: - dependency-name: chromedriver dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:08:30 +02:00
dependabot[bot]	45709770f4	web: bump react-dom from 18.2.0 to 18.3.0 in /web (#9446 ) Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 18.2.0 to 18.3.0. - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/HEAD/packages/react-dom) --- updated-dependencies: - dependency-name: react-dom dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:08:14 +02:00
dependabot[bot]	6158dd80ca	core: bump sentry-sdk from 1.45.0 to 2.0.0 (#9447 ) Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 1.45.0 to 2.0.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-python/compare/1.45.0...2.0.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:08:06 +02:00
dependabot[bot]	468d26c587	core: bump black from 24.4.1 to 24.4.2 (#9449 ) Bumps [black](https://github.com/psf/black) from 24.4.1 to 24.4.2. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/24.4.1...24.4.2) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:07:53 +02:00
dependabot[bot]	c39a97ca58	website: bump react-dom from 18.2.0 to 18.3.0 in /website (#9450 ) Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 18.2.0 to 18.3.0. - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/HEAD/packages/react-dom) --- updated-dependencies: - dependency-name: react-dom dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:07:39 +02:00
dependabot[bot]	8f0810ebb3	website: bump react and @types/react in /website (#9451 ) Bumps [react](https://github.com/facebook/react/tree/HEAD/packages/react) and [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react). These dependencies needed to be updated together. Updates `react` from 18.2.0 to 18.3.0 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/HEAD/packages/react) Updates `@types/react` from 18.2.79 to 18.3.0 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react) --- updated-dependencies: - dependency-name: react dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: "@types/react" dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-26 12:07:17 +02:00
asc6	98e0f12d17	website/integrations: added documentation for globalprotect integration (#9368 ) * website/integrations: added documentation for globalprotect integration * Apply suggestions from code review Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: asc6 <chessmasterandy@cox.net> --------- Signed-off-by: asc6 <chessmasterandy@cox.net> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-04-26 03:49:53 -05:00
Jens L	8d37e83df7	web/common: fix locale detection for user-set locale (#9436 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-25 22:36:45 +02:00
NiceDevil	a306bb8384	website/integrations: add FortiGate SSL VPN and Admin Login (#9105 ) * PR for SSLVPN of Fortigate Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * PR for Admin Login of Fortigate Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * format and add to sidebar Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-ssl/index.md thank you! Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> * Update website/integrations/services/fortigate-admin/index.md Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> * Update website/integrations/services/fortigate-ssl/index.md Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> --------- Signed-off-by: NiceDevil <17103076+nicedevil007@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>	2024-04-25 19:08:30 +00:00
Ken Sternberg	c80116475b	web: clean up some repetitive types (#9241 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: clean up some repetitive types This commit centralizes two types that were defined multiple times throughout our code, and casts in stone those definitions, applying the correct definitions where needed. I had two types that were used repeatedly to define the interfaces for providers and context consumers. Because they were both one-liners, I had done what I usually curse in others: copied them. Worse, I hand-wrote them because they're so simple I had them memorized.	2024-04-25 08:28:05 -07:00
Jens L	2997382df2	core: fix logic for token expiration (#9426 ) * core: fix logic for token expiration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump default token expiration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix frontend Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-25 15:42:58 +02:00
Jens L	65e48907d3	ci: fix ci pipeline (#9427 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-25 15:42:39 +02:00
transifex-integration[bot]	1c4848ed8f	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9424 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-25 15:31:26 +02:00
Jan van Brügge	64f7fa62dd	web: Add resolved and integrity fields back to package-lock.json (#9419 ) * web: Fix missing resolved and integrity fields in package-lock.json * web,website: Add lockfile lint to CI	2024-04-25 12:28:54 +02:00
transifex-integration[bot]	16abaa8016	translate: Updates for file locale/en/LC_MESSAGES/django.po in ru (#9407 ) Translate locale/en/LC_MESSAGES/django.po in ru 100% translated source file: 'locale/en/LC_MESSAGES/django.po' on 'ru'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-25 11:59:18 +02:00
PythonCoderAS	4cc4a3e4b8	stages/identification: don't check source component (#9410 ) * Do not include the built-in source in this check Signed-off-by: PythonCoderAS <13932583+PythonCoderAS@users.noreply.github.com> * Update authentik/stages/identification/stage.py Signed-off-by: Jens L. <jens@beryju.org> --------- Signed-off-by: PythonCoderAS <13932583+PythonCoderAS@users.noreply.github.com> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L <jens@beryju.org>	2024-04-25 11:55:31 +02:00
dependabot[bot]	8abe1f61ea	core: bump selenium from 4.19.0 to 4.20.0 (#9411 ) Bumps [selenium](https://github.com/SeleniumHQ/Selenium) from 4.19.0 to 4.20.0. - [Release notes](https://github.com/SeleniumHQ/Selenium/releases) - [Commits](https://github.com/SeleniumHQ/Selenium/compare/selenium-4.19.0...selenium-4.20.0) --- updated-dependencies: - dependency-name: selenium dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-25 11:52:07 +02:00
dependabot[bot]	6712095d7e	core: bump black from 24.4.0 to 24.4.1 (#9412 ) Bumps [black](https://github.com/psf/black) from 24.4.0 to 24.4.1. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/24.4.0...24.4.1) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-25 11:52:00 +02:00
dependabot[bot]	5ab308bfd7	ci: bump golangci/golangci-lint-action from 4 to 5 (#9413 ) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 5. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](https://github.com/golangci/golangci-lint-action/compare/v4...v5) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-25 11:51:44 +02:00
dependabot[bot]	8b93fbcc69	core: bump goauthentik.io/api/v3 from 3.2024023.2 to 3.2024040.1 (#9414 ) Bumps [goauthentik.io/api/v3](https://github.com/goauthentik/client-go) from 3.2024023.2 to 3.2024040.1. - [Release notes](https://github.com/goauthentik/client-go/releases) - [Commits](https://github.com/goauthentik/client-go/compare/v3.2024023.2...v3.2024040.1) --- updated-dependencies: - dependency-name: goauthentik.io/api/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-25 11:51:35 +02:00
dependabot[bot]	f641670139	web: bump @sentry/browser from 7.112.1 to 7.112.2 in /web in the sentry group (#9416 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 7.112.1 to 7.112.2 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/7.112.2/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/7.112.1...7.112.2) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-25 11:51:27 +02:00
Jens L	80af26ef50	sources/oauth: ensure all UI sources return a valid source (#9401 ) * web/admin: prevent selection of inbuilt source in identification stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix apple source Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also fix plex challenge Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-24 22:55:19 +02:00
Ken Sternberg	64ce170882	web: markdown: display markdown even when frontmatter is missing (#9404 ) * web: fix esbuild issue with style sheets Getting ESBuild, Lit, and Storybook to all agree on how to read and parse stylesheets is a serious pain. This fix better identifies the value types (instances) being passed from various sources in the repo to the three different kinds of style processors we're using (the native one, the polyfill one, and whatever the heck Storybook does internally). Falling back to using older CSS instantiating techniques one era at a time seems to do the trick. It's ugly, but in the face of the aggressive styling we use to avoid Flashes of Unstyled Content (FLoUC), it's the logic with which we're left. In standard mode, the following warning appears on the console when running a Flow: ``` Autofocus processing was blocked because a document already has a focused element. ``` In compatibility mode, the following error appears on the console when running a Flow: ``` crawler-inject.js:1106 Uncaught TypeError: Failed to execute 'observe' on 'MutationObserver': parameter 1 is not of type 'Node'. at initDomMutationObservers (crawler-inject.js:1106:18) at crawler-inject.js:1114:24 at Array.forEach (<anonymous>) at initDomMutationObservers (crawler-inject.js:1114:10) at crawler-inject.js:1549:1 initDomMutationObservers @ crawler-inject.js:1106 (anonymous) @ crawler-inject.js:1114 initDomMutationObservers @ crawler-inject.js:1114 (anonymous) @ crawler-inject.js:1549 ``` Despite this error, nothing seems to be broken and flows work as anticipated. * web: markdown: display markdown even when frontmatter is missing Make the check for the document title comprehensive across the entire demeter. If there is no front matter, `data` will be missing, not just `data.title`.	2024-04-24 22:53:18 +02:00
authentik-automation[bot]	b6171aa1a4	web: bump API Client version (#9400 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2024-04-24 19:34:56 +02:00
Jens Langhammer	087582abbd	release: 2024.4.0	2024-04-24 19:12:50 +02:00
Jens Langhammer	6b6d88b81b	release: 2024.4.0-rc1	2024-04-24 19:12:47 +02:00
Jens Langhammer	55e5d36df5	root: bump blueprint schema version Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-24 19:11:54 +02:00
Jens Langhammer	fc43e841c9	lifecycle: fix ak test-all command Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-24 19:11:53 +02:00
Jens L	895ed6fbdc	website/docs: finalize 2024.4 release notes (#9396 ) * website/docs: finalize 2024.4 release notes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * escape curly braces manually Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-24 17:40:35 +02:00
dependabot[bot]	f3965261c5	web: bump @sentry/browser from 7.111.0 to 7.112.1 in /web in the sentry group (#9387 ) web: bump @sentry/browser in /web in the sentry group Bumps the sentry group in /web with 1 update: [@sentry/browser](https://github.com/getsentry/sentry-javascript). Updates `@sentry/browser` from 7.111.0 to 7.112.1 - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/7.112.1/CHANGELOG.md) - [Commits](https://github.com/getsentry/sentry-javascript/compare/7.111.0...7.112.1) --- updated-dependencies: - dependency-name: "@sentry/browser" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: sentry ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 13:44:32 +02:00
dependabot[bot]	34ee6dc2b7	web: bump the rollup group in /web with 3 updates (#9388 ) Bumps the rollup group in /web with 3 updates: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.16.2 to 4.16.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.2...v4.16.4) Updates `@rollup/rollup-linux-arm64-gnu` from 4.16.2 to 4.16.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.2...v4.16.4) Updates `@rollup/rollup-linux-x64-gnu` from 4.16.2 to 4.16.4 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.2...v4.16.4) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:58 +02:00
dependabot[bot]	55fe4b0bc0	ci: bump helm/kind-action from 1.9.0 to 1.10.0 (#9389 ) Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.9.0 to 1.10.0. - [Release notes](https://github.com/helm/kind-action/releases) - [Commits](https://github.com/helm/kind-action/compare/v1.9.0...v1.10.0) --- updated-dependencies: - dependency-name: helm/kind-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:51 +02:00
dependabot[bot]	8d745609f9	website: bump clsx from 2.1.0 to 2.1.1 in /website (#9390 ) Bumps [clsx](https://github.com/lukeed/clsx) from 2.1.0 to 2.1.1. - [Release notes](https://github.com/lukeed/clsx/releases) - [Commits](https://github.com/lukeed/clsx/compare/v2.1.0...v2.1.1) --- updated-dependencies: - dependency-name: clsx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:41 +02:00
dependabot[bot]	55edb10da0	core: bump pydantic from 2.7.0 to 2.7.1 (#9391 ) Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.0 to 2.7.1. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v2.7.0...v2.7.1) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:32 +02:00
dependabot[bot]	66e4b3af36	core: bump freezegun from 1.4.0 to 1.5.0 (#9393 ) Bumps [freezegun](https://github.com/spulec/freezegun) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/spulec/freezegun/releases) - [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG) - [Commits](https://github.com/spulec/freezegun/compare/1.4.0...1.5.0) --- updated-dependencies: - dependency-name: freezegun dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:11 +02:00
dependabot[bot]	d44fc7790e	core: bump coverage from 7.4.4 to 7.5.0 (#9392 ) Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.4.4 to 7.5.0. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.4.4...7.5.0) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-24 11:08:01 +02:00
dependabot[bot]	291972628a	web: bump the storybook group in /web with 7 updates (#9380 ) Bumps the storybook group in /web with 7 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) \| `8.0.8` \| `8.0.9` \| \| [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links) \| `8.0.8` \| `8.0.9` \| \| [@storybook/blocks](https://github.com/storybookjs/storybook/tree/HEAD/code/ui/blocks) \| `8.0.8` \| `8.0.9` \| \| [@storybook/manager-api](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/manager-api) \| `8.0.8` \| `8.0.9` \| \| [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components) \| `8.0.8` \| `8.0.9` \| \| [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite) \| `8.0.8` \| `8.0.9` \| \| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) \| `8.0.8` \| `8.0.9` \| Updates `@storybook/addon-essentials` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/addons/essentials) Updates `@storybook/addon-links` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/addons/links) Updates `@storybook/blocks` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/ui/blocks) Updates `@storybook/manager-api` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/lib/manager-api) Updates `@storybook/web-components` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/renderers/web-components) Updates `@storybook/web-components-vite` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/frameworks/web-components-vite) Updates `storybook` from 8.0.8 to 8.0.9 - [Release notes](https://github.com/storybookjs/storybook/releases) - [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md) - [Commits](https://github.com/storybookjs/storybook/commits/v8.0.9/code/lib/cli) --- updated-dependencies: - dependency-name: "@storybook/addon-essentials" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/addon-links" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/blocks" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/manager-api" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: "@storybook/web-components-vite" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook - dependency-name: storybook dependency-type: direct:development update-type: version-update:semver-patch dependency-group: storybook ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-23 11:51:52 +02:00
dependabot[bot]	019221c433	web: bump the rollup group in /web with 3 updates (#9381 ) Bumps the rollup group in /web with 3 updates: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.16.1 to 4.16.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.1...v4.16.2) Updates `@rollup/rollup-linux-arm64-gnu` from 4.16.1 to 4.16.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.1...v4.16.2) Updates `@rollup/rollup-linux-x64-gnu` from 4.16.1 to 4.16.2 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.16.1...v4.16.2) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-23 11:30:37 +02:00
dependabot[bot]	b99fa9f8f8	web: bump the wdio group in /tests/wdio with 4 updates (#9374 ) Bumps the wdio group in /tests/wdio with 4 updates: [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/mocha-framework](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-mocha-framework) and [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter). Updates `@wdio/cli` from 8.36.0 to 8.36.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.36.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.36.1/packages/wdio-cli) Updates `@wdio/local-runner` from 8.36.0 to 8.36.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.36.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.36.1/packages/wdio-local-runner) Updates `@wdio/mocha-framework` from 8.36.0 to 8.36.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.36.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.36.1/packages/wdio-mocha-framework) Updates `@wdio/spec-reporter` from 8.36.0 to 8.36.1 - [Release notes](https://github.com/webdriverio/webdriverio/releases) - [Changelog](https://github.com/webdriverio/webdriverio/blob/v8.36.1/CHANGELOG.md) - [Commits](https://github.com/webdriverio/webdriverio/commits/v8.36.1/packages/wdio-spec-reporter) --- updated-dependencies: - dependency-name: "@wdio/cli" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/local-runner" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/mocha-framework" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio - dependency-name: "@wdio/spec-reporter" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: wdio ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-22 12:06:54 +02:00
dependabot[bot]	5bde2772c3	web: bump the rollup group in /web with 3 updates (#9371 ) Bumps the rollup group in /web with 3 updates: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup). Updates `@rollup/rollup-darwin-arm64` from 4.14.3 to 4.16.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.14.3...v4.16.1) Updates `@rollup/rollup-linux-arm64-gnu` from 4.14.3 to 4.16.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.14.3...v4.16.1) Updates `@rollup/rollup-linux-x64-gnu` from 4.14.3 to 4.16.1 - [Release notes](https://github.com/rollup/rollup/releases) - [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md) - [Commits](https://github.com/rollup/rollup/compare/v4.14.3...v4.16.1) --- updated-dependencies: - dependency-name: "@rollup/rollup-darwin-arm64" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-arm64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup - dependency-name: "@rollup/rollup-linux-x64-gnu" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rollup ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-22 12:06:11 +02:00
dependabot[bot]	10884a7770	core: bump ruff from 0.4.0 to 0.4.1 (#9372 ) Bumps [ruff](https://github.com/astral-sh/ruff) from 0.4.0 to 0.4.1. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.0...v0.4.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-22 12:05:52 +02:00
authentik-automation[bot]	e858d09d28	core, web: update translations (#9366 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-04-21 14:29:30 +02:00
Jens L	856717395e	web/admin: fix document title for admin interface (#9362 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2024-04-20 22:55:41 +02:00
transifex-integration[bot]	b7793200de	translate: Updates for file web/xliff/en.xlf in zh_CN (#9363 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-20 22:55:30 +02:00
transifex-integration[bot]	bcc0323523	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9364 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-20 22:55:16 +02:00
authentik-automation[bot]	643c1f5bbf	core, web: update translations (#9360 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: rissson <18313093+rissson@users.noreply.github.com>	2024-04-20 15:31:49 +02:00
Marc 'risson' Schmitt	1fca246839	website/docs: release notes 2024.4: add performance improvements values (#9356 )	2024-04-19 16:36:47 +00:00
transifex-integration[bot]	b73e68a94c	translate: Updates for file web/xliff/en.xlf in zh_CN (#9317 ) Translate web/xliff/en.xlf in zh_CN 100% translated source file: 'web/xliff/en.xlf' on 'zh_CN'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-19 17:18:30 +02:00
transifex-integration[bot]	f9d3c4c9a7	translate: Updates for file web/xliff/en.xlf in zh-Hans (#9318 ) Translate web/xliff/en.xlf in zh-Hans 100% translated source file: 'web/xliff/en.xlf' on 'zh-Hans'. Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>	2024-04-19 17:18:08 +02:00

1389 changed files with 124748 additions and 28790 deletions

									
										6

.bumpversion.cfg
									
												View File
												
					@ -1,5 +1,5 @@

					[bumpversion]

					[bumpversion]

					current_version = 2024.2.3

					current_version = 2024.8.4

					tag = True

					tag = True

					commit = True

					commit = True

					parse = (?P<major>\d+)\.(?P<minor>\d+)\.(?P<patch>\d+)(?:-(?P<rc_t>[a-zA-Z-]+)(?P<rc_n>[1-9]\\d*))?

					parse = (?P<major>\d+)\.(?P<minor>\d+)\.(?P<patch>\d+)(?:-(?P<rc_t>[a-zA-Z-]+)(?P<rc_n>[1-9]\\d*))?

					@ -17,10 +17,14 @@ optional_value = final

					[bumpversion:file:pyproject.toml]

					[bumpversion:file:pyproject.toml]

					[bumpversion:file:package.json]

					[bumpversion:file:docker-compose.yml]

					[bumpversion:file:docker-compose.yml]

					[bumpversion:file:schema.yml]

					[bumpversion:file:schema.yml]

					[bumpversion:file:blueprints/schema.json]

					[bumpversion:file:authentik/__init__.py]

					[bumpversion:file:authentik/__init__.py]

					[bumpversion:file:internal/constants/constants.go]

					[bumpversion:file:internal/constants/constants.go]

									
										14

.github/actions/comment-pr-instructions/action.yml
									
										vendored
									
												View File
												
					@ -54,9 +54,10 @@ runs:

					            authentik:

					            authentik:

					                outposts:

					                outposts:

					                    container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

					                    container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

					            image:

					            global:

					                repository: ghcr.io/goauthentik/dev-server

					                image:

					                tag: ${{ inputs.tag }}

					                    repository: ghcr.io/goauthentik/dev-server

					                    tag: ${{ inputs.tag }}

					            ```

					            ```

					            For arm64, use these values:

					            For arm64, use these values:

					@ -65,9 +66,10 @@ runs:

					            authentik:

					            authentik:

					                outposts:

					                outposts:

					                    container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

					                    container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

					            image:

					            global:

					                repository: ghcr.io/goauthentik/dev-server

					                image:

					                tag: ${{ inputs.tag }}-arm64

					                    repository: ghcr.io/goauthentik/dev-server

					                    tag: ${{ inputs.tag }}-arm64

					            ```

					            ```

					            Afterwards, run the upgrade commands from the latest release notes.

					            Afterwards, run the upgrade commands from the latest release notes.

									
										6

.github/actions/docker-push-variables/action.yml
									
										vendored
									
												View File
												
					@ -29,9 +29,15 @@ outputs:

					  imageTags:

					  imageTags:

					    description: "Docker image tags"

					    description: "Docker image tags"

					    value: ${{ steps.ev.outputs.imageTags }}

					    value: ${{ steps.ev.outputs.imageTags }}

					  attestImageNames:

					    description: "Docker image names used for attestation"

					    value: ${{ steps.ev.outputs.attestImageNames }}

					  imageMainTag:

					  imageMainTag:

					    description: "Docker image main tag"

					    description: "Docker image main tag"

					    value: ${{ steps.ev.outputs.imageMainTag }}

					    value: ${{ steps.ev.outputs.imageMainTag }}

					  imageMainName:

					    description: "Docker image main name"

					    value: ${{ steps.ev.outputs.imageMainName }}

					runs:

					runs:

					  using: "composite"

					  using: "composite"

									
										32

.github/actions/docker-push-variables/push_vars.py
									
										vendored
									
												View File
												
					@ -7,12 +7,12 @@ from time import time

					parser = configparser.ConfigParser()

					parser = configparser.ConfigParser()

					parser.read(".bumpversion.cfg")

					parser.read(".bumpversion.cfg")

					should_build = str(os.environ.get("DOCKER_USERNAME", None) is not None).lower()

					should_build = str(len(os.environ.get("DOCKER_USERNAME", "")) > 0).lower()

					branch_name = os.environ["GITHUB_REF"]

					branch_name = os.environ["GITHUB_REF"]

					if os.environ.get("GITHUB_HEAD_REF", "") != "":

					if os.environ.get("GITHUB_HEAD_REF", "") != "":

					    branch_name = os.environ["GITHUB_HEAD_REF"]

					    branch_name = os.environ["GITHUB_HEAD_REF"]

					safe_branch_name = branch_name.replace("refs/heads/", "").replace("/", "-")

					safe_branch_name = branch_name.replace("refs/heads/", "").replace("/", "-").replace("'", "-")

					image_names = os.getenv("IMAGE_NAME").split(",")

					image_names = os.getenv("IMAGE_NAME").split(",")

					image_arch = os.getenv("IMAGE_ARCH") or None

					image_arch = os.getenv("IMAGE_ARCH") or None

					@ -50,13 +50,25 @@ else:

					            f"{name}:gh-{safe_branch_name}-{int(time())}-{sha[:7]}{suffix}",  # Use by FluxCD

					            f"{name}:gh-{safe_branch_name}-{int(time())}-{sha[:7]}{suffix}",  # Use by FluxCD

					        ]

					        ]

					image_main_tag = image_tags[0]

					image_main_tag = image_tags[0].split(":")[-1]

					image_tags_rendered = ",".join(image_tags)

					def get_attest_image_names(image_with_tags: list[str]):

					    """Attestation only for GHCR"""

					    image_tags = []

					    for image_name in set(name.split(":")[0] for name in image_with_tags):

					        if not image_name.startswith("ghcr.io"):

					            continue

					        image_tags.append(image_name)

					    return ",".join(set(image_tags))

					with open(os.environ["GITHUB_OUTPUT"], "a+", encoding="utf-8") as _output:

					with open(os.environ["GITHUB_OUTPUT"], "a+", encoding="utf-8") as _output:

					    print("shouldBuild=%s" % should_build, file=_output)

					    print(f"shouldBuild={should_build}", file=_output)

					    print("sha=%s" % sha, file=_output)

					    print(f"sha={sha}", file=_output)

					    print("version=%s" % version, file=_output)

					    print(f"version={version}", file=_output)

					    print("prerelease=%s" % prerelease, file=_output)

					    print(f"prerelease={prerelease}", file=_output)

					    print("imageTags=%s" % image_tags_rendered, file=_output)

					    print(f"imageTags={','.join(image_tags)}", file=_output)

					    print("imageMainTag=%s" % image_main_tag, file=_output)

					    print(f"attestImageNames={get_attest_image_names(image_tags)}", file=_output)

					    print(f"imageMainTag={image_main_tag}", file=_output)

					    print(f"imageMainName={image_tags[0]}", file=_output)

									
										2

.github/actions/setup/docker-compose.yml
									
										vendored
									
												View File
												
					@ -1,5 +1,3 @@

					version: "3.7"

					services:

					services:

					  postgresql:

					  postgresql:

					    image: docker.io/library/postgres:${PSQL_TAG:-16}

					    image: docker.io/library/postgres:${PSQL_TAG:-16}

1

.github/codespell-words.txt vendored

View File

 warmup
 ontext
 singed
+assertIn

									
										40

.github/dependabot.yml
									
										vendored
									
												View File
												
					@ -21,7 +21,10 @@ updates:

					    labels:

					    labels:

					      - dependencies

					      - dependencies

					  - package-ecosystem: npm

					  - package-ecosystem: npm

					    directory: "/web"

					    directories:

					      - "/web"

					      - "/tests/wdio"

					      - "/web/sfe"

					    schedule:

					    schedule:

					      interval: daily

					      interval: daily

					      time: "04:00"

					      time: "04:00"

					@ -30,7 +33,6 @@ updates:

					    open-pull-requests-limit: 10

					    open-pull-requests-limit: 10

					    commit-message:

					    commit-message:

					      prefix: "web:"

					      prefix: "web:"

					    # TODO: deduplicate these groups

					    groups:

					    groups:

					      sentry:

					      sentry:

					        patterns:

					        patterns:

					@ -56,38 +58,10 @@ updates:

					        patterns:

					        patterns:

					          - "@rollup/*"

					          - "@rollup/*"

					          - "rollup-*"

					          - "rollup-*"

					  - package-ecosystem: npm

					      swc:

					    directory: "/tests/wdio"

					    schedule:

					      interval: daily

					      time: "04:00"

					    labels:

					      - dependencies

					    open-pull-requests-limit: 10

					    commit-message:

					      prefix: "web:"

					    # TODO: deduplicate these groups

					    groups:

					      sentry:

					        patterns:

					        patterns:

					          - "@sentry/*"

					          - "@swc/*"

					          - "@spotlightjs/*"

					          - "swc-*"

					      babel:

					        patterns:

					          - "@babel/*"

					          - "babel-*"

					      eslint:

					        patterns:

					          - "@typescript-eslint/*"

					          - "eslint"

					          - "eslint-*"

					      storybook:

					        patterns:

					          - "@storybook/*"

					          - "*storybook*"

					      esbuild:

					        patterns:

					          - "@esbuild/*"

					      wdio:

					      wdio:

					        patterns:

					        patterns:

					          - "@wdio/*"

					          - "@wdio/*"

									
										7

.github/workflows/api-ts-publish.yml
									
										vendored
									
												View File
												
					@ -31,7 +31,12 @@ jobs:

					        env:

					        env:

					          NODE_AUTH_TOKEN: ${{ secrets.NPM_PUBLISH_TOKEN }}

					          NODE_AUTH_TOKEN: ${{ secrets.NPM_PUBLISH_TOKEN }}

					      - name: Upgrade /web

					      - name: Upgrade /web

					        working-directory: web/

					        working-directory: web

					        run: |

					          export VERSION=`node -e 'console.log(require("../gen-ts-api/package.json").version)'`

					          npm i @goauthentik/api@$VERSION

					      - name: Upgrade /web/packages/sfe

					        working-directory: web/packages/sfe

					        run: |

					        run: |

					          export VERSION=`node -e 'console.log(require("../gen-ts-api/package.json").version)'`

					          export VERSION=`node -e 'console.log(require("../gen-ts-api/package.json").version)'`

					          npm i @goauthentik/api@$VERSION

					          npm i @goauthentik/api@$VERSION

									
										26

.github/workflows/ci-main.yml
									
										vendored
									
												View File
												
					@ -50,7 +50,6 @@ jobs:

					      fail-fast: false

					      fail-fast: false

					      matrix:

					      matrix:

					        psql:

					        psql:

					          - 12-alpine

					          - 15-alpine

					          - 15-alpine

					          - 16-alpine

					          - 16-alpine

					    steps:

					    steps:

					@ -104,7 +103,6 @@ jobs:

					      fail-fast: false

					      fail-fast: false

					      matrix:

					      matrix:

					        psql:

					        psql:

					          - 12-alpine

					          - 15-alpine

					          - 15-alpine

					          - 16-alpine

					          - 16-alpine

					    steps:

					    steps:

					@ -130,7 +128,7 @@ jobs:

					      - name: Setup authentik env

					      - name: Setup authentik env

					        uses: ./.github/actions/setup

					        uses: ./.github/actions/setup

					      - name: Create k8s Kind Cluster

					      - name: Create k8s Kind Cluster

					        uses: helm/kind-action@v1.9.0

					        uses: helm/kind-action@v1.10.0

					      - name: run integration

					      - name: run integration

					        run: |

					        run: |

					          poetry run coverage run manage.py test tests/integration

					          poetry run coverage run manage.py test tests/integration

					@ -215,13 +213,16 @@ jobs:

					    permissions:

					    permissions:

					      # Needed to upload contianer images to ghcr.io

					      # Needed to upload contianer images to ghcr.io

					      packages: write

					      packages: write

					      # Needed for attestation

					      id-token: write

					      attestations: write

					    timeout-minutes: 120

					    timeout-minutes: 120

					    steps:

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					        with:

					        with:

					          ref: ${{ github.event.pull_request.head.sha }}

					          ref: ${{ github.event.pull_request.head.sha }}

					      - name: Set up QEMU

					      - name: Set up QEMU

					        uses: docker/setup-qemu-action@v3.0.0

					        uses: docker/setup-qemu-action@v3.2.0

					      - name: Set up Docker Buildx

					      - name: Set up Docker Buildx

					        uses: docker/setup-buildx-action@v3

					        uses: docker/setup-buildx-action@v3

					      - name: prepare variables

					      - name: prepare variables

					@ -242,7 +243,8 @@ jobs:

					      - name: generate ts client

					      - name: generate ts client

					        run: make gen-client-ts

					        run: make gen-client-ts

					      - name: Build Docker Image

					      - name: Build Docker Image

					        uses: docker/build-push-action@v5

					        uses: docker/build-push-action@v6

					        id: push

					        with:

					        with:

					          context: .

					          context: .

					          secrets: |

					          secrets: |

					@ -252,9 +254,16 @@ jobs:

					          push: ${{ steps.ev.outputs.shouldBuild == 'true' }}

					          push: ${{ steps.ev.outputs.shouldBuild == 'true' }}

					          build-args: |

					          build-args: |

					            GIT_BUILD_HASH=${{ steps.ev.outputs.sha }}

					            GIT_BUILD_HASH=${{ steps.ev.outputs.sha }}

					          cache-from: type=gha

					          cache-from: type=registry,ref=ghcr.io/goauthentik/dev-server:buildcache

					          cache-to: type=gha,mode=max

					          cache-to: ${{ steps.ev.outputs.shouldBuild == 'true' && 'type=registry,ref=ghcr.io/goauthentik/dev-server:buildcache,mode=max' || '' }}

					          platforms: linux/${{ matrix.arch }}

					          platforms: linux/${{ matrix.arch }}

					      - uses: actions/attest-build-provenance@v1

					        id: attest

					        if: ${{ steps.ev.outputs.shouldBuild == 'true' }}

					        with:

					          subject-name: ${{ steps.ev.outputs.attestImageNames }}

					          subject-digest: ${{ steps.push.outputs.digest }}

					          push-to-registry: true

					  pr-comment:

					  pr-comment:

					    needs:

					    needs:

					      - build

					      - build

					@ -276,6 +285,7 @@ jobs:

					        with:

					        with:

					          image-name: ghcr.io/goauthentik/dev-server

					          image-name: ghcr.io/goauthentik/dev-server

					      - name: Comment on PR

					      - name: Comment on PR

					        if: ${{ steps.ev.outputs.shouldBuild == 'true' }}

					        uses: ./.github/actions/comment-pr-instructions

					        uses: ./.github/actions/comment-pr-instructions

					        with:

					        with:

					          tag: gh-${{ steps.ev.outputs.imageMainTag }}

					          tag: ${{ steps.ev.outputs.imageMainTag }}

									
										23

.github/workflows/ci-outpost.yml
									
										vendored
									
												View File
												
					@ -29,9 +29,9 @@ jobs:

					      - name: Generate API

					      - name: Generate API

					        run: make gen-client-go

					        run: make gen-client-go

					      - name: golangci-lint

					      - name: golangci-lint

					        uses: golangci/golangci-lint-action@v4

					        uses: golangci/golangci-lint-action@v6

					        with:

					        with:

					          version: v1.54.2

					          version: latest

					          args: --timeout 5000s --verbose

					          args: --timeout 5000s --verbose

					          skip-cache: true

					          skip-cache: true

					  test-unittest:

					  test-unittest:

					@ -71,12 +71,15 @@ jobs:

					    permissions:

					    permissions:

					      # Needed to upload contianer images to ghcr.io

					      # Needed to upload contianer images to ghcr.io

					      packages: write

					      packages: write

					      # Needed for attestation

					      id-token: write

					      attestations: write

					    steps:

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					        with:

					        with:

					          ref: ${{ github.event.pull_request.head.sha }}

					          ref: ${{ github.event.pull_request.head.sha }}

					      - name: Set up QEMU

					      - name: Set up QEMU

					        uses: docker/setup-qemu-action@v3.0.0

					        uses: docker/setup-qemu-action@v3.2.0

					      - name: Set up Docker Buildx

					      - name: Set up Docker Buildx

					        uses: docker/setup-buildx-action@v3

					        uses: docker/setup-buildx-action@v3

					      - name: prepare variables

					      - name: prepare variables

					@ -96,7 +99,8 @@ jobs:

					      - name: Generate API

					      - name: Generate API

					        run: make gen-client-go

					        run: make gen-client-go

					      - name: Build Docker Image

					      - name: Build Docker Image

					        uses: docker/build-push-action@v5

					        id: push

					        uses: docker/build-push-action@v6

					        with:

					        with:

					          tags: ${{ steps.ev.outputs.imageTags }}

					          tags: ${{ steps.ev.outputs.imageTags }}

					          file: ${{ matrix.type }}.Dockerfile

					          file: ${{ matrix.type }}.Dockerfile

					@ -105,8 +109,15 @@ jobs:

					            GIT_BUILD_HASH=${{ steps.ev.outputs.sha }}

					            GIT_BUILD_HASH=${{ steps.ev.outputs.sha }}

					          platforms: linux/amd64,linux/arm64

					          platforms: linux/amd64,linux/arm64

					          context: .

					          context: .

					          cache-from: type=gha

					          cache-from: type=registry,ref=ghcr.io/goauthentik/dev-${{ matrix.type }}:buildcache

					          cache-to: type=gha,mode=max

					          cache-to: ${{ steps.ev.outputs.shouldBuild == 'true' && format('type=registry,ref=ghcr.io/goauthentik/dev-{0}:buildcache,mode=max', matrix.type) || '' }}

					      - uses: actions/attest-build-provenance@v1

					        id: attest

					        if: ${{ steps.ev.outputs.shouldBuild == 'true' }}

					        with:

					          subject-name: ${{ steps.ev.outputs.attestImageNames }}

					          subject-digest: ${{ steps.push.outputs.digest }}

					          push-to-registry: true

					  build-binary:

					  build-binary:

					    timeout-minutes: 120

					    timeout-minutes: 120

					    needs:

					    needs:

									
										105

.github/workflows/ci-web.yml
									
										vendored
									
												View File
												
					@ -12,14 +12,29 @@ on:

					      - version-*

					      - version-*

					jobs:

					jobs:

					  lint-eslint:

					  lint:

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					    strategy:

					    strategy:

					      fail-fast: false

					      fail-fast: false

					      matrix:

					      matrix:

					        command:

					          - lint

					          - lint:lockfile

					          - tsc

					          - prettier-check

					        project:

					        project:

					          - web

					          - web

					          - tests/wdio

					          - tests/wdio

					        include:

					          - command: tsc

					            project: web

					          - command: lit-analyse

					            project: web

					        exclude:

					          - command: lint:lockfile

					            project: tests/wdio

					          - command: tsc

					            project: tests/wdio

					    steps:

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					      - uses: actions/setup-node@v4

					@ -28,77 +43,17 @@ jobs:

					          cache: "npm"

					          cache: "npm"

					          cache-dependency-path: ${{ matrix.project }}/package-lock.json

					          cache-dependency-path: ${{ matrix.project }}/package-lock.json

					      - working-directory: ${{ matrix.project }}/

					      - working-directory: ${{ matrix.project }}/

					        run: npm ci

					      - name: Generate API

					        run: make gen-client-ts

					      - name: Eslint

					        working-directory: ${{ matrix.project }}/

					        run: npm run lint

					  lint-build:

					    runs-on: ubuntu-latest

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					        with:

					          node-version-file: web/package.json

					          cache: "npm"

					          cache-dependency-path: web/package-lock.json

					      - working-directory: web/

					        run: npm ci

					      - name: Generate API

					        run: make gen-client-ts

					      - name: TSC

					        working-directory: web/

					        run: npm run tsc

					  lint-prettier:

					    runs-on: ubuntu-latest

					    strategy:

					      fail-fast: false

					      matrix:

					        project:

					          - web

					          - tests/wdio

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					        with:

					          node-version-file: ${{ matrix.project }}/package.json

					          cache: "npm"

					          cache-dependency-path: ${{ matrix.project }}/package-lock.json

					      - working-directory: ${{ matrix.project }}/

					        run: npm ci

					      - name: Generate API

					        run: make gen-client-ts

					      - name: prettier

					        working-directory: ${{ matrix.project }}/

					        run: npm run prettier-check

					  lint-lit-analyse:

					    runs-on: ubuntu-latest

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					        with:

					          node-version-file: web/package.json

					          cache: "npm"

					          cache-dependency-path: web/package-lock.json

					      - working-directory: web/

					        run: |

					        run: |

					          npm ci

					          npm ci

					          # lit-analyse doesn't understand path rewrites, so make it

					          ${{ matrix.extra_setup }}

					          # belive it's an actual module

					          cd node_modules/@goauthentik

					          ln -s ../../src/ web

					      - name: Generate API

					      - name: Generate API

					        run: make gen-client-ts

					        run: make gen-client-ts

					      - name: lit-analyse

					      - name: Lint

					        working-directory: web/

					        working-directory: ${{ matrix.project }}/

					        run: npm run lit-analyse

					        run: npm run ${{ matrix.command }}

					  ci-web-mark:

					  ci-web-mark:

					    needs:

					    needs:

					      - lint-eslint

					      - lint

					      - lint-prettier

					      - lint-lit-analyse

					      - lint-build

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					    steps:

					    steps:

					      - run: echo mark

					      - run: echo mark

					@ -120,3 +75,21 @@ jobs:

					      - name: build

					      - name: build

					        working-directory: web/

					        working-directory: web/

					        run: npm run build

					        run: npm run build

					  test:

					    needs:

					      - ci-web-mark

					    runs-on: ubuntu-latest

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					        with:

					          node-version-file: web/package.json

					          cache: "npm"

					          cache-dependency-path: web/package-lock.json

					      - working-directory: web/

					        run: npm ci

					      - name: Generate API

					        run: make gen-client-ts

					      - name: test

					        working-directory: web/

					        run: npm run test || exit 0

									
										19

.github/workflows/ci-website.yml
									
										vendored
									
												View File
												
					@ -12,20 +12,21 @@ on:

					      - version-*

					      - version-*

					jobs:

					jobs:

					  lint-prettier:

					  lint:

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					    strategy:

					      fail-fast: false

					      matrix:

					        command:

					          - lint:lockfile

					          - prettier-check

					    steps:

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					      - uses: actions/setup-node@v4

					        with:

					          node-version-file: website/package.json

					          cache: "npm"

					          cache-dependency-path: website/package-lock.json

					      - working-directory: website/

					      - working-directory: website/

					        run: npm ci

					        run: npm ci

					      - name: prettier

					      - name: Lint

					        working-directory: website/

					        working-directory: website/

					        run: npm run prettier-check

					        run: npm run ${{ matrix.command }}

					  test:

					  test:

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					    steps:

					    steps:

					@ -62,7 +63,7 @@ jobs:

					        run: npm run ${{ matrix.job }}

					        run: npm run ${{ matrix.job }}

					  ci-website-mark:

					  ci-website-mark:

					    needs:

					    needs:

					      - lint-prettier

					      - lint

					      - test

					      - test

					      - build

					      - build

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

									
										40

.github/workflows/release-publish.yml
									
										vendored
									
												View File
												
					@ -11,10 +11,13 @@ jobs:

					    permissions:

					    permissions:

					      # Needed to upload contianer images to ghcr.io

					      # Needed to upload contianer images to ghcr.io

					      packages: write

					      packages: write

					      # Needed for attestation

					      id-token: write

					      attestations: write

					    steps:

					    steps:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					      - name: Set up QEMU

					      - name: Set up QEMU

					        uses: docker/setup-qemu-action@v3.0.0

					        uses: docker/setup-qemu-action@v3.2.0

					      - name: Set up Docker Buildx

					      - name: Set up Docker Buildx

					        uses: docker/setup-buildx-action@v3

					        uses: docker/setup-buildx-action@v3

					      - name: prepare variables

					      - name: prepare variables

					@ -40,20 +43,32 @@ jobs:

					          mkdir -p ./gen-ts-api

					          mkdir -p ./gen-ts-api

					          mkdir -p ./gen-go-api

					          mkdir -p ./gen-go-api

					      - name: Build Docker Image

					      - name: Build Docker Image

					        uses: docker/build-push-action@v5

					        uses: docker/build-push-action@v6

					        id: push

					        with:

					        with:

					          context: .

					          context: .

					          push: true

					          push: true

					          secrets: |

					          secrets: |

					            GEOIPUPDATE_ACCOUNT_ID=${{ secrets.GEOIPUPDATE_ACCOUNT_ID }}

					            GEOIPUPDATE_ACCOUNT_ID=${{ secrets.GEOIPUPDATE_ACCOUNT_ID }}

					            GEOIPUPDATE_LICENSE_KEY=${{ secrets.GEOIPUPDATE_LICENSE_KEY }}

					            GEOIPUPDATE_LICENSE_KEY=${{ secrets.GEOIPUPDATE_LICENSE_KEY }}

					          build-args: |

					            VERSION=${{ github.ref }}

					          tags: ${{ steps.ev.outputs.imageTags }}

					          tags: ${{ steps.ev.outputs.imageTags }}

					          platforms: linux/amd64,linux/arm64

					          platforms: linux/amd64,linux/arm64

					      - uses: actions/attest-build-provenance@v1

					        id: attest

					        with:

					          subject-name: ${{ steps.ev.outputs.attestImageNames }}

					          subject-digest: ${{ steps.push.outputs.digest }}

					          push-to-registry: true

					  build-outpost:

					  build-outpost:

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					    permissions:

					    permissions:

					      # Needed to upload contianer images to ghcr.io

					      # Needed to upload contianer images to ghcr.io

					      packages: write

					      packages: write

					      # Needed for attestation

					      id-token: write

					      attestations: write

					    strategy:

					    strategy:

					      fail-fast: false

					      fail-fast: false

					      matrix:

					      matrix:

					@ -68,7 +83,7 @@ jobs:

					        with:

					        with:

					          go-version-file: "go.mod"

					          go-version-file: "go.mod"

					      - name: Set up QEMU

					      - name: Set up QEMU

					        uses: docker/setup-qemu-action@v3.0.0

					        uses: docker/setup-qemu-action@v3.2.0

					      - name: Set up Docker Buildx

					      - name: Set up Docker Buildx

					        uses: docker/setup-buildx-action@v3

					        uses: docker/setup-buildx-action@v3

					      - name: prepare variables

					      - name: prepare variables

					@ -94,13 +109,22 @@ jobs:

					          username: ${{ github.repository_owner }}

					          username: ${{ github.repository_owner }}

					          password: ${{ secrets.GITHUB_TOKEN }}

					          password: ${{ secrets.GITHUB_TOKEN }}

					      - name: Build Docker Image

					      - name: Build Docker Image

					        uses: docker/build-push-action@v5

					        uses: docker/build-push-action@v6

					        id: push

					        with:

					        with:

					          push: true

					          push: true

					          build-args: |

					            VERSION=${{ github.ref }}

					          tags: ${{ steps.ev.outputs.imageTags }}

					          tags: ${{ steps.ev.outputs.imageTags }}

					          file: ${{ matrix.type }}.Dockerfile

					          file: ${{ matrix.type }}.Dockerfile

					          platforms: linux/amd64,linux/arm64

					          platforms: linux/amd64,linux/arm64

					          context: .

					          context: .

					      - uses: actions/attest-build-provenance@v1

					        id: attest

					        with:

					          subject-name: ${{ steps.ev.outputs.attestImageNames }}

					          subject-digest: ${{ steps.push.outputs.digest }}

					          push-to-registry: true

					  build-outpost-binary:

					  build-outpost-binary:

					    timeout-minutes: 120

					    timeout-minutes: 120

					    runs-on: ubuntu-latest

					    runs-on: ubuntu-latest

					@ -155,8 +179,8 @@ jobs:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					      - name: Run test suite in final docker images

					      - name: Run test suite in final docker images

					        run: |

					        run: |

					          echo "PG_PASS=$(openssl rand -base64 32)" >> .env

					          echo "PG_PASS=$(openssl rand 32 | base64 -w 0)" >> .env

					          echo "AUTHENTIK_SECRET_KEY=$(openssl rand -base64 32)" >> .env

					          echo "AUTHENTIK_SECRET_KEY=$(openssl rand 32 | base64 -w 0)" >> .env

					          docker compose pull -q

					          docker compose pull -q

					          docker compose up --no-start

					          docker compose up --no-start

					          docker compose start postgresql redis

					          docker compose start postgresql redis

					@ -178,8 +202,8 @@ jobs:

					          image-name: ghcr.io/goauthentik/server

					          image-name: ghcr.io/goauthentik/server

					      - name: Get static files from docker image

					      - name: Get static files from docker image

					        run: |

					        run: |

					          docker pull ${{ steps.ev.outputs.imageMainTag }}

					          docker pull ${{ steps.ev.outputs.imageMainName }}

					          container=$(docker container create ${{ steps.ev.outputs.imageMainTag }})

					          container=$(docker container create ${{ steps.ev.outputs.imageMainName }})

					          docker cp ${container}:web/ .

					          docker cp ${container}:web/ .

					      - name: Create a Sentry.io release

					      - name: Create a Sentry.io release

					        uses: getsentry/action-release@v1

					        uses: getsentry/action-release@v1

									
										4

.github/workflows/release-tag.yml
									
										vendored
									
												View File
												
					@ -14,8 +14,8 @@ jobs:

					      - uses: actions/checkout@v4

					      - uses: actions/checkout@v4

					      - name: Pre-release test

					      - name: Pre-release test

					        run: |

					        run: |

					          echo "PG_PASS=$(openssl rand -base64 32)" >> .env

					          echo "PG_PASS=$(openssl rand 32 | base64 -w 0)" >> .env

					          echo "AUTHENTIK_SECRET_KEY=$(openssl rand -base64 32)" >> .env

					          echo "AUTHENTIK_SECRET_KEY=$(openssl rand 32 | base64 -w 0)" >> .env

					          docker buildx install

					          docker buildx install

					          mkdir -p ./gen-ts-api

					          mkdir -p ./gen-ts-api

					          docker build -t testing:latest .

					          docker build -t testing:latest .

									
										2

.vscode/extensions.json
									
										vendored
									
												View File
												
					@ -16,6 +16,6 @@

					        "ms-python.black-formatter",

					        "ms-python.black-formatter",

					        "redhat.vscode-yaml",

					        "redhat.vscode-yaml",

					        "Tobermory.es6-string-html",

					        "Tobermory.es6-string-html",

					        "unifiedjs.vscode-mdx",

					        "unifiedjs.vscode-mdx"

					    ]

					    ]

					}

					}

									
										2

.vscode/launch.json
									
										vendored
									
												View File
												
					@ -22,6 +22,6 @@

					            },

					            },

					            "justMyCode": true,

					            "justMyCode": true,

					            "django": true

					            "django": true

					        },

					        }

					    ]

					    ]

					}

					}

									
										34

.vscode/settings.json
									
										vendored
									
												View File
												
					@ -4,33 +4,35 @@

					        "asgi",

					        "asgi",

					        "authentik",

					        "authentik",

					        "authn",

					        "authn",

					        "entra",

					        "goauthentik",

					        "goauthentik",

					        "jwks",

					        "jwks",

					        "kubernetes",

					        "oidc",

					        "oidc",

					        "openid",

					        "openid",

					        "passwordless",

					        "plex",

					        "plex",

					        "saml",

					        "saml",

					        "totp",

					        "webauthn",

					        "traefik",

					        "passwordless",

					        "kubernetes",

					        "sso",

					        "slo",

					        "scim",

					        "scim",

					        "slo",

					        "sso",

					        "totp",

					        "traefik",

					        "webauthn"

					    ],

					    ],

					    "todo-tree.tree.showCountsInTree": true,

					    "todo-tree.tree.showCountsInTree": true,

					    "todo-tree.tree.showBadges": true,

					    "todo-tree.tree.showBadges": true,

					    "yaml.customTags": [

					    "yaml.customTags": [

					        "!Find sequence",

					        "!KeyOf scalar",

					        "!Context scalar",

					        "!Context sequence",

					        "!Format sequence",

					        "!Condition sequence",

					        "!Condition sequence",

					        "!Env sequence",

					        "!Context scalar",

					        "!Enumerate sequence",

					        "!Env scalar",

					        "!Env scalar",

					        "!If sequence"

					        "!Find sequence",

					        "!Format sequence",

					        "!If sequence",

					        "!Index scalar",

					        "!KeyOf scalar",

					        "!Value scalar"

					    ],

					    ],

					    "typescript.preferences.importModuleSpecifier": "non-relative",

					    "typescript.preferences.importModuleSpecifier": "non-relative",

					    "typescript.preferences.importModuleSpecifierEnding": "index",

					    "typescript.preferences.importModuleSpecifierEnding": "index",

					@ -47,9 +49,7 @@

					            "ignoreCase": false

					            "ignoreCase": false

					        }

					        }

					    ],

					    ],

					    "go.testFlags": [

					    "go.testFlags": ["-count=1"],

					        "-count=1"

					    ],

					    "github-actions.workflows.pinned.workflows": [

					    "github-actions.workflows.pinned.workflows": [

					        ".github/workflows/ci-main.yml"

					        ".github/workflows/ci-main.yml"

					    ]

					    ]

									
										62

.vscode/tasks.json
									
										vendored
									
												View File
												
					@ -2,85 +2,67 @@

					    "version": "2.0.0",

					    "version": "2.0.0",

					    "tasks": [

					    "tasks": [

					        {

					        {

					            "label": "authentik[core]: format & test",

					            "label": "authentik/core: make",

					            "command": "poetry",

					            "command": "poetry",

					            "args": [

					            "args": ["run", "make", "lint-fix", "lint"],

					                "run",

					            "presentation": {

					                "make"

					                "panel": "new"

					            ],

					            },

					            "group": "build",

					            "group": "test"

					        },

					        },

					        {

					        {

					            "label": "authentik[core]: run",

					            "label": "authentik/core: run",

					            "command": "poetry",

					            "command": "poetry",

					            "args": [

					            "args": ["run", "ak", "server"],

					                "run",

					                "make",

					                "run",

					            ],

					            "group": "build",

					            "group": "build",

					            "presentation": {

					            "presentation": {

					                "panel": "dedicated",

					                "panel": "dedicated",

					                "group": "running"

					                "group": "running"

					            },

					            }

					        },

					        },

					        {

					        {

					            "label": "authentik[web]: format",

					            "label": "authentik/web: make",

					            "command": "make",

					            "command": "make",

					            "args": ["web"],

					            "args": ["web"],

					            "group": "build",

					            "group": "build"

					        },

					        },

					        {

					        {

					            "label": "authentik[web]: watch",

					            "label": "authentik/web: watch",

					            "command": "make",

					            "command": "make",

					            "args": ["web-watch"],

					            "args": ["web-watch"],

					            "group": "build",

					            "group": "build",

					            "presentation": {

					            "presentation": {

					                "panel": "dedicated",

					                "panel": "dedicated",

					                "group": "running"

					                "group": "running"

					            },

					            }

					        },

					        },

					        {

					        {

					            "label": "authentik: install",

					            "label": "authentik: install",

					            "command": "make",

					            "command": "make",

					            "args": ["install"],

					            "args": ["install", "-j4"],

					            "group": "build",

					            "group": "build"

					        },

					        },

					        {

					        {

					            "label": "authentik: i18n-extract",

					            "label": "authentik/website: make",

					            "command": "poetry",

					            "args": [

					                "run",

					                "make",

					                "i18n-extract"

					            ],

					            "group": "build",

					        },

					        {

					            "label": "authentik[website]: format",

					            "command": "make",

					            "command": "make",

					            "args": ["website"],

					            "args": ["website"],

					            "group": "build",

					            "group": "build"

					        },

					        },

					        {

					        {

					            "label": "authentik[website]: watch",

					            "label": "authentik/website: watch",

					            "command": "make",

					            "command": "make",

					            "args": ["website-watch"],

					            "args": ["website-watch"],

					            "group": "build",

					            "group": "build",

					            "presentation": {

					            "presentation": {

					                "panel": "dedicated",

					                "panel": "dedicated",

					                "group": "running"

					                "group": "running"

					            },

					            }

					        },

					        },

					        {

					        {

					            "label": "authentik[api]: generate",

					            "label": "authentik/api: generate",

					            "command": "poetry",

					            "command": "poetry",

					            "args": [

					            "args": ["run", "make", "gen"],

					                "run",

					                "make",

					                "gen"

					            ],

					            "group": "build"

					            "group": "build"

					        },

					        }

					    ]

					    ]

					}

					}

									
										56

Dockerfile
									
												View File
												
					@ -1,7 +1,7 @@

					# syntax=docker/dockerfile:1

					# syntax=docker/dockerfile:1

					# Stage 1: Build website

					# Stage 1: Build website

					FROM --platform=${BUILDPLATFORM} docker.io/node:21 as website-builder

					FROM --platform=${BUILDPLATFORM} docker.io/library/node:22 AS website-builder

					ENV NODE_ENV=production

					ENV NODE_ENV=production

					@ -20,17 +20,22 @@ COPY ./SECURITY.md /work/

					RUN npm run build-bundled

					RUN npm run build-bundled

					# Stage 2: Build webui

					# Stage 2: Build webui

					FROM --platform=${BUILDPLATFORM} docker.io/node:21 as web-builder

					FROM --platform=${BUILDPLATFORM} docker.io/library/node:22 AS web-builder

					ARG GIT_BUILD_HASH

					ENV GIT_BUILD_HASH=$GIT_BUILD_HASH

					ENV NODE_ENV=production

					ENV NODE_ENV=production

					WORKDIR /work/web

					WORKDIR /work/web

					RUN --mount=type=bind,target=/work/web/package.json,src=./web/package.json \

					RUN --mount=type=bind,target=/work/web/package.json,src=./web/package.json \

					    --mount=type=bind,target=/work/web/package-lock.json,src=./web/package-lock.json \

					    --mount=type=bind,target=/work/web/package-lock.json,src=./web/package-lock.json \

					    --mount=type=bind,target=/work/web/packages/sfe/package.json,src=./web/packages/sfe/package.json \

					    --mount=type=bind,target=/work/web/scripts,src=./web/scripts \

					    --mount=type=cache,id=npm-web,sharing=shared,target=/root/.npm \

					    --mount=type=cache,id=npm-web,sharing=shared,target=/root/.npm \

					    npm ci --include=dev

					    npm ci --include=dev

					COPY ./package.json /work

					COPY ./web /work/web/

					COPY ./web /work/web/

					COPY ./website /work/website/

					COPY ./website /work/website/

					COPY ./gen-ts-api /work/web/node_modules/@goauthentik/api

					COPY ./gen-ts-api /work/web/node_modules/@goauthentik/api

					@ -38,7 +43,7 @@ COPY ./gen-ts-api /work/web/node_modules/@goauthentik/api

					RUN npm run build

					RUN npm run build

					# Stage 3: Build go proxy

					# Stage 3: Build go proxy

					FROM --platform=${BUILDPLATFORM} docker.io/golang:1.22.2-bookworm AS go-builder

					FROM --platform=${BUILDPLATFORM} mcr.microsoft.com/oss/go/microsoft/golang:1.23-fips-bookworm AS go-builder

					ARG TARGETOS

					ARG TARGETOS

					ARG TARGETARCH

					ARG TARGETARCH

					@ -49,6 +54,11 @@ ARG GOARCH=$TARGETARCH

					WORKDIR /go/src/goauthentik.io

					WORKDIR /go/src/goauthentik.io

					RUN --mount=type=cache,id=apt-$TARGETARCH$TARGETVARIANT,sharing=locked,target=/var/cache/apt \

					    dpkg --add-architecture arm64 && \

					    apt-get update && \

					    apt-get install -y --no-install-recommends crossbuild-essential-arm64 gcc-aarch64-linux-gnu

					RUN --mount=type=bind,target=/go/src/goauthentik.io/go.mod,src=./go.mod \

					RUN --mount=type=bind,target=/go/src/goauthentik.io/go.mod,src=./go.mod \

					    --mount=type=bind,target=/go/src/goauthentik.io/go.sum,src=./go.sum \

					    --mount=type=bind,target=/go/src/goauthentik.io/go.sum,src=./go.sum \

					    --mount=type=cache,target=/go/pkg/mod \

					    --mount=type=cache,target=/go/pkg/mod \

					@ -63,14 +73,14 @@ COPY ./internal /go/src/goauthentik.io/internal

					COPY ./go.mod /go/src/goauthentik.io/go.mod

					COPY ./go.mod /go/src/goauthentik.io/go.mod

					COPY ./go.sum /go/src/goauthentik.io/go.sum

					COPY ./go.sum /go/src/goauthentik.io/go.sum

					ENV CGO_ENABLED=0

					RUN --mount=type=cache,sharing=locked,target=/go/pkg/mod \

					RUN --mount=type=cache,sharing=locked,target=/go/pkg/mod \

					    --mount=type=cache,id=go-build-$TARGETARCH$TARGETVARIANT,sharing=locked,target=/root/.cache/go-build \

					    --mount=type=cache,id=go-build-$TARGETARCH$TARGETVARIANT,sharing=locked,target=/root/.cache/go-build \

					    GOARM="${TARGETVARIANT#v}" go build -o /go/authentik ./cmd/server

					    if [ "$TARGETARCH" = "arm64" ]; then export CC=aarch64-linux-gnu-gcc && export CC_FOR_TARGET=gcc-aarch64-linux-gnu; fi && \

					    CGO_ENABLED=1 GOEXPERIMENT="systemcrypto" GOFLAGS="-tags=requirefips" GOARM="${TARGETVARIANT#v}" \

					    go build -o /go/authentik ./cmd/server

					# Stage 4: MaxMind GeoIP

					# Stage 4: MaxMind GeoIP

					FROM --platform=${BUILDPLATFORM} ghcr.io/maxmind/geoipupdate:v7.0.1 as geoip

					FROM --platform=${BUILDPLATFORM} ghcr.io/maxmind/geoipupdate:v7.0.1 AS geoip

					ENV GEOIPUPDATE_EDITION_IDS="GeoLite2-City GeoLite2-ASN"

					ENV GEOIPUPDATE_EDITION_IDS="GeoLite2-City GeoLite2-ASN"

					ENV GEOIPUPDATE_VERBOSE="1"

					ENV GEOIPUPDATE_VERBOSE="1"

					@ -84,7 +94,10 @@ RUN --mount=type=secret,id=GEOIPUPDATE_ACCOUNT_ID \

					    /bin/sh -c "/usr/bin/entry.sh || echo 'Failed to get GeoIP database, disabling'; exit 0"

					    /bin/sh -c "/usr/bin/entry.sh || echo 'Failed to get GeoIP database, disabling'; exit 0"

					# Stage 5: Python dependencies

					# Stage 5: Python dependencies

					FROM docker.io/python:3.12.3-slim-bookworm AS python-deps

					FROM ghcr.io/goauthentik/fips-python:3.12.5-slim-bookworm-fips-full AS python-deps

					ARG TARGETARCH

					ARG TARGETVARIANT

					WORKDIR /ak-root/poetry

					WORKDIR /ak-root/poetry

					@ -97,7 +110,7 @@ RUN rm -f /etc/apt/apt.conf.d/docker-clean; echo 'Binary::apt::APT::Keep-Downloa

					RUN --mount=type=cache,id=apt-$TARGETARCH$TARGETVARIANT,sharing=locked,target=/var/cache/apt \

					RUN --mount=type=cache,id=apt-$TARGETARCH$TARGETVARIANT,sharing=locked,target=/var/cache/apt \

					    apt-get update && \

					    apt-get update && \

					    # Required for installing pip packages

					    # Required for installing pip packages

					    apt-get install -y --no-install-recommends build-essential pkg-config libxmlsec1-dev zlib1g-dev libpq-dev

					    apt-get install -y --no-install-recommends build-essential pkg-config libpq-dev

					RUN --mount=type=bind,target=./pyproject.toml,src=./pyproject.toml \

					RUN --mount=type=bind,target=./pyproject.toml,src=./pyproject.toml \

					    --mount=type=bind,target=./poetry.lock,src=./poetry.lock \

					    --mount=type=bind,target=./poetry.lock,src=./poetry.lock \

					@ -105,29 +118,30 @@ RUN --mount=type=bind,target=./pyproject.toml,src=./pyproject.toml \

					    --mount=type=cache,target=/root/.cache/pypoetry \

					    --mount=type=cache,target=/root/.cache/pypoetry \

					    python -m venv /ak-root/venv/ && \

					    python -m venv /ak-root/venv/ && \

					    bash -c "source ${VENV_PATH}/bin/activate && \

					    bash -c "source ${VENV_PATH}/bin/activate && \

					        pip3 install --upgrade pip && \

					    pip3 install --upgrade pip && \

					        pip3 install poetry && \

					    pip3 install poetry && \

					        poetry install --only=main --no-ansi --no-interaction --no-root"

					    poetry install --only=main --no-ansi --no-interaction --no-root && \

					    pip install --force-reinstall /wheels/*"

					# Stage 6: Run

					# Stage 6: Run

					FROM docker.io/python:3.12.3-slim-bookworm AS final-image

					FROM ghcr.io/goauthentik/fips-python:3.12.5-slim-bookworm-fips-full AS final-image

					ARG GIT_BUILD_HASH

					ARG VERSION

					ARG VERSION

					ARG GIT_BUILD_HASH

					ENV GIT_BUILD_HASH=$GIT_BUILD_HASH

					ENV GIT_BUILD_HASH=$GIT_BUILD_HASH

					LABEL org.opencontainers.image.url https://goauthentik.io

					LABEL org.opencontainers.image.url=https://goauthentik.io

					LABEL org.opencontainers.image.description goauthentik.io Main server image, see https://goauthentik.io for more info.

					LABEL org.opencontainers.image.description="goauthentik.io Main server image, see https://goauthentik.io for more info."

					LABEL org.opencontainers.image.source https://github.com/goauthentik/authentik

					LABEL org.opencontainers.image.source=https://github.com/goauthentik/authentik

					LABEL org.opencontainers.image.version ${VERSION}

					LABEL org.opencontainers.image.version=${VERSION}

					LABEL org.opencontainers.image.revision ${GIT_BUILD_HASH}

					LABEL org.opencontainers.image.revision=${GIT_BUILD_HASH}

					WORKDIR /

					WORKDIR /

					# We cannot cache this layer otherwise we'll end up with a bigger image

					# We cannot cache this layer otherwise we'll end up with a bigger image

					RUN apt-get update && \

					RUN apt-get update && \

					    # Required for runtime

					    # Required for runtime

					    apt-get install -y --no-install-recommends libpq5 openssl libxmlsec1-openssl libmaxminddb0 ca-certificates && \

					    apt-get install -y --no-install-recommends libpq5 libmaxminddb0 ca-certificates && \

					    # Required for bootstrap & healtcheck

					    # Required for bootstrap & healtcheck

					    apt-get install -y --no-install-recommends runit && \

					    apt-get install -y --no-install-recommends runit && \

					    apt-get clean && \

					    apt-get clean && \

					@ -163,6 +177,8 @@ ENV TMPDIR=/dev/shm/ \

					    VENV_PATH="/ak-root/venv" \

					    VENV_PATH="/ak-root/venv" \

					    POETRY_VIRTUALENVS_CREATE=false

					    POETRY_VIRTUALENVS_CREATE=false

					ENV GOFIPS=1

					HEALTHCHECK --interval=30s --timeout=30s --start-period=60s --retries=3 CMD [ "ak", "healthcheck" ]

					HEALTHCHECK --interval=30s --timeout=30s --start-period=60s --retries=3 CMD [ "ak", "healthcheck" ]

					ENTRYPOINT [ "dumb-init", "--", "ak" ]

					ENTRYPOINT [ "dumb-init", "--", "ak" ]

									
										17

Makefile
									
												View File
												
					@ -19,6 +19,7 @@ pg_name := $(shell python -m authentik.lib.config postgresql.name 2>/dev/null)

					CODESPELL_ARGS = -D - -D .github/codespell-dictionary.txt \

					CODESPELL_ARGS = -D - -D .github/codespell-dictionary.txt \

							-I .github/codespell-words.txt \

							-I .github/codespell-words.txt \

							-S 'web/src/locales/**' \

							-S 'web/src/locales/**' \

							-S 'website/developer-docs/api/reference/**' \

							authentik \

							authentik \

							internal \

							internal \

							cmd \

							cmd \

					@ -42,12 +43,12 @@ help:  ## Show this help

							sort

							sort

						@echo ""

						@echo ""

					test-go:

					go-test:

						go test -timeout 0 -v -race -cover ./...

						go test -timeout 0 -v -race -cover ./...

					test-docker:  ## Run all tests in a docker-compose

					test-docker:  ## Run all tests in a docker-compose

						echo "PG_PASS=$(openssl rand -base64 32)" >> .env

						echo "PG_PASS=$(shell openssl rand 32 | base64 -w 0)" >> .env

						echo "AUTHENTIK_SECRET_KEY=$(openssl rand -base64 32)" >> .env

						echo "AUTHENTIK_SECRET_KEY=$(shell openssl rand 32 | base64 -w 0)" >> .env

						docker compose pull -q

						docker compose pull -q

						docker compose up --no-start

						docker compose up --no-start

						docker compose start postgresql redis

						docker compose start postgresql redis

					@ -59,9 +60,11 @@ test: ## Run the server tests and produce a coverage report (locally)

						coverage html

						coverage html

						coverage report

						coverage report

					lint-fix:  ## Lint and automatically fix errors in the python source code. Reports spelling errors.

					lint-fix: lint-codespell  ## Lint and automatically fix errors in the python source code. Reports spelling errors.

						black $(PY_SOURCES)

						black $(PY_SOURCES)

						ruff check --fix $(PY_SOURCES)

						ruff check --fix $(PY_SOURCES)

					lint-codespell:  ## Reports spelling errors.

						codespell -w $(CODESPELL_ARGS)

						codespell -w $(CODESPELL_ARGS)

					lint: ## Lint the python and golang sources

					lint: ## Lint the python and golang sources

					@ -207,6 +210,9 @@ web: web-lint-fix web-lint web-check-compile  ## Automatically fix formatting is

					web-install:  ## Install the necessary libraries to build the Authentik UI

					web-install:  ## Install the necessary libraries to build the Authentik UI

						cd web && npm ci

						cd web && npm ci

					web-test: ## Run tests for the Authentik UI

						cd web && npm run test

					web-watch:  ## Build and watch the Authentik UI for changes, updating automatically

					web-watch:  ## Build and watch the Authentik UI for changes, updating automatically

						rm -rf web/dist/

						rm -rf web/dist/

						mkdir web/dist/

						mkdir web/dist/

					@ -238,7 +244,7 @@ website: website-lint-fix website-build  ## Automatically fix formatting issues

					website-install:

					website-install:

						cd website && npm ci

						cd website && npm ci

					website-lint-fix:

					website-lint-fix: lint-codespell

						cd website && npm run prettier

						cd website && npm run prettier

					website-build:

					website-build:

					@ -252,6 +258,7 @@ website-watch:  ## Build and watch the documentation website, updating automatic

					#########################

					#########################

					docker:  ## Build a docker image of the current source tree

					docker:  ## Build a docker image of the current source tree

						mkdir -p ${GEN_API_TS}

						DOCKER_BUILDKIT=1 docker build . --progress plain --tag ${DOCKER_IMAGE}

						DOCKER_BUILDKIT=1 docker build . --progress plain --tag ${DOCKER_IMAGE}

					#########################

					#########################

									
										4

README.md
									
												View File
												
					@ -15,7 +15,9 @@

					## What is authentik?

					## What is authentik?

					authentik is an open-source Identity Provider that emphasizes flexibility and versatility. It can be seamlessly integrated into existing environments to support new protocols. authentik is also a great solution for implementing sign-up, recovery, and other similar features in your application, saving you the hassle of dealing with them.

					authentik is an open-source Identity Provider that emphasizes flexibility and versatility, with support for a wide set of protocols.

					Our [enterprise offer](https://goauthentik.io/pricing) can also be used as a self-hosted replacement for large-scale deployments of Okta/Auth0, Entra ID, Ping Identity, or other legacy IdPs for employees and B2B2C use.

					## Installation

					## Installation

									
										8

SECURITY.md
									
												View File
												
					@ -18,10 +18,10 @@ Even if the issue is not a CVE, we still greatly appreciate your help in hardeni

					(.x being the latest patch release for each version)

					(.x being the latest patch release for each version)

					| Version   | Supported |

					| Version  | Supported |

					| --------- | --------- |

					| -------- | --------- |

					| 2023.10.x | ✅        |

					| 2024.4.x | ✅        |

					| 2024.2.x  | ✅        |

					| 2024.6.x | ✅        |

					## Reporting a Vulnerability

					## Reporting a Vulnerability

									
										2

authentik/__init__.py
									
												View File
												
					@ -2,7 +2,7 @@

					from os import environ

					from os import environ

					__version__ = "2024.2.3"

					__version__ = "2024.8.4"

					ENV_GIT_HASH_KEY = "GIT_BUILD_HASH"

					ENV_GIT_HASH_KEY = "GIT_BUILD_HASH"

									
										19

authentik/admin/api/system.py
									
												View File
												
					@ -2,18 +2,21 @@

					import platform

					import platform

					from datetime import datetime

					from datetime import datetime

					from ssl import OPENSSL_VERSION

					from sys import version as python_version

					from sys import version as python_version

					from typing import TypedDict

					from typing import TypedDict

					from cryptography.hazmat.backends.openssl.backend import backend

					from django.utils.timezone import now

					from django.utils.timezone import now

					from drf_spectacular.utils import extend_schema

					from drf_spectacular.utils import extend_schema

					from gunicorn import version_info as gunicorn_version

					from rest_framework.fields import SerializerMethodField

					from rest_framework.fields import SerializerMethodField

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.views import APIView

					from rest_framework.views import APIView

					from authentik import get_full_version

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import PassiveSerializer

					from authentik.enterprise.license import LicenseKey

					from authentik.lib.config import CONFIG

					from authentik.lib.config import CONFIG

					from authentik.lib.utils.reflection import get_env

					from authentik.lib.utils.reflection import get_env

					from authentik.outposts.apps import MANAGED_OUTPOST

					from authentik.outposts.apps import MANAGED_OUTPOST

					@ -25,11 +28,13 @@ class RuntimeDict(TypedDict):

					    """Runtime information"""

					    """Runtime information"""

					    python_version: str

					    python_version: str

					    gunicorn_version: str

					    environment: str

					    environment: str

					    architecture: str

					    architecture: str

					    platform: str

					    platform: str

					    uname: str

					    uname: str

					    openssl_version: str

					    openssl_fips_enabled: bool | None

					    authentik_version: str

					class SystemInfoSerializer(PassiveSerializer):

					class SystemInfoSerializer(PassiveSerializer):

					@ -64,11 +69,15 @@ class SystemInfoSerializer(PassiveSerializer):

					    def get_runtime(self, request: Request) -> RuntimeDict:

					    def get_runtime(self, request: Request) -> RuntimeDict:

					        """Get versions"""

					        """Get versions"""

					        return {

					        return {

					            "python_version": python_version,

					            "gunicorn_version": ".".join(str(x) for x in gunicorn_version),

					            "environment": get_env(),

					            "architecture": platform.machine(),

					            "architecture": platform.machine(),

					            "authentik_version": get_full_version(),

					            "environment": get_env(),

					            "openssl_fips_enabled": (

					                backend._fips_enabled if LicenseKey.get_total().status().is_valid else None

					            ),

					            "openssl_version": OPENSSL_VERSION,

					            "platform": platform.platform(),

					            "platform": platform.platform(),

					            "python_version": python_version,

					            "uname": " ".join(platform.uname()),

					            "uname": " ".join(platform.uname()),

					        }

					        }

									
										11

authentik/admin/api/version.py
									
												View File
												
					@ -12,6 +12,7 @@ from rest_framework.views import APIView

					from authentik import __version__, get_build_hash

					from authentik import __version__, get_build_hash

					from authentik.admin.tasks import VERSION_CACHE_KEY, VERSION_NULL, update_latest_version

					from authentik.admin.tasks import VERSION_CACHE_KEY, VERSION_NULL, update_latest_version

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import PassiveSerializer

					from authentik.outposts.models import Outpost

					class VersionSerializer(PassiveSerializer):

					class VersionSerializer(PassiveSerializer):

					@ -22,6 +23,7 @@ class VersionSerializer(PassiveSerializer):

					    version_latest_valid = SerializerMethodField()

					    version_latest_valid = SerializerMethodField()

					    build_hash = SerializerMethodField()

					    build_hash = SerializerMethodField()

					    outdated = SerializerMethodField()

					    outdated = SerializerMethodField()

					    outpost_outdated = SerializerMethodField()

					    def get_build_hash(self, _) -> str:

					    def get_build_hash(self, _) -> str:

					        """Get build hash, if version is not latest or released"""

					        """Get build hash, if version is not latest or released"""

					@ -47,6 +49,15 @@ class VersionSerializer(PassiveSerializer):

					        """Check if we're running the latest version"""

					        """Check if we're running the latest version"""

					        return parse(self.get_version_current(instance)) < parse(self.get_version_latest(instance))

					        return parse(self.get_version_current(instance)) < parse(self.get_version_latest(instance))

					    def get_outpost_outdated(self, _) -> bool:

					        """Check if any outpost is outdated/has a version mismatch"""

					        any_outdated = False

					        for outpost in Outpost.objects.all():

					            for state in outpost.state:

					                if state.version_outdated:

					                    any_outdated = True

					        return any_outdated

					class VersionView(APIView):

					class VersionView(APIView):

					    """Get running and latest version."""

					    """Get running and latest version."""

									
										4

authentik/api/templates/api/browser.html
									
												View File
												
					@ -1,13 +1,13 @@

					{% extends "base/skeleton.html" %}

					{% extends "base/skeleton.html" %}

					{% load static %}

					{% load authentik_core %}

					{% block title %}

					{% block title %}

					API Browser - {{ brand.branding_title }}

					API Browser - {{ brand.branding_title }}

					{% endblock %}

					{% endblock %}

					{% block head %}

					{% block head %}

					<script src="{% static 'dist/standalone/api-browser/index.js' %}?version={{ version }}" type="module"></script>

					{% versioned_script "dist/standalone/api-browser/index-%v.js" %}

					<meta name="theme-color" content="#151515" media="(prefers-color-scheme: light)">

					<meta name="theme-color" content="#151515" media="(prefers-color-scheme: light)">

					<meta name="theme-color" content="#151515" media="(prefers-color-scheme: dark)">

					<meta name="theme-color" content="#151515" media="(prefers-color-scheme: dark)">

					{% endblock %}

					{% endblock %}

									
										6

authentik/blueprints/api.py
									
												View File
												
					@ -51,9 +51,11 @@ class BlueprintInstanceSerializer(ModelSerializer):

					        context = self.instance.context if self.instance else {}

					        context = self.instance.context if self.instance else {}

					        valid, logs = Importer.from_string(content, context).validate()

					        valid, logs = Importer.from_string(content, context).validate()

					        if not valid:

					        if not valid:

					            text_logs = "\n".join([x["event"] for x in logs])

					            raise ValidationError(

					            raise ValidationError(

					                _("Failed to validate blueprint: {logs}".format_map({"logs": text_logs}))

					                [

					                    _("Failed to validate blueprint"),

					                    *[f"- {x.event}" for x in logs],

					                ]

					            )

					            )

					        return content

					        return content

									
										6

authentik/blueprints/management/commands/apply_blueprint.py
									
												View File
												
					@ -23,9 +23,11 @@ class Command(BaseCommand):

					                for blueprint_path in options.get("blueprints", []):

					                for blueprint_path in options.get("blueprints", []):

					                    content = BlueprintInstance(path=blueprint_path).retrieve()

					                    content = BlueprintInstance(path=blueprint_path).retrieve()

					                    importer = Importer.from_string(content)

					                    importer = Importer.from_string(content)

					                    valid, _ = importer.validate()

					                    valid, logs = importer.validate()

					                    if not valid:

					                    if not valid:

					                        self.stderr.write("blueprint invalid")

					                        self.stderr.write("Blueprint invalid")

					                        for log in logs:

					                            self.stderr.write(f"\t{log.logger}: {log.event}: {log.attributes}")

					                        sys_exit(1)

					                        sys_exit(1)

					                    importer.apply()

					                    importer.apply()

									
										25

authentik/blueprints/management/commands/make_blueprint_schema.py
									
												View File
												
					@ -113,16 +113,19 @@ class Command(BaseCommand):

					            )

					            )

					            model_path = f"{model._meta.app_label}.{model._meta.model_name}"

					            model_path = f"{model._meta.app_label}.{model._meta.model_name}"

					            self.schema["properties"]["entries"]["items"]["oneOf"].append(

					            self.schema["properties"]["entries"]["items"]["oneOf"].append(

					                self.template_entry(model_path, serializer)

					                self.template_entry(model_path, model, serializer)

					            )

					            )

					    def template_entry(self, model_path: str, serializer: Serializer) -> dict:

					    def template_entry(self, model_path: str, model: type[Model], serializer: Serializer) -> dict:

					        """Template entry for a single model"""

					        """Template entry for a single model"""

					        model_schema = self.to_jsonschema(serializer)

					        model_schema = self.to_jsonschema(serializer)

					        model_schema["required"] = []

					        model_schema["required"] = []

					        def_name = f"model_{model_path}"

					        def_name = f"model_{model_path}"

					        def_path = f"#/$defs/{def_name}"

					        def_path = f"#/$defs/{def_name}"

					        self.schema["$defs"][def_name] = model_schema

					        self.schema["$defs"][def_name] = model_schema

					        def_name_perm = f"model_{model_path}_permissions"

					        def_path_perm = f"#/$defs/{def_name_perm}"

					        self.schema["$defs"][def_name_perm] = self.model_permissions(model)

					        return {

					        return {

					            "type": "object",

					            "type": "object",

					            "required": ["model", "identifiers"],

					            "required": ["model", "identifiers"],

					@ -135,6 +138,7 @@ class Command(BaseCommand):

					                    "default": "present",

					                    "default": "present",

					                },

					                },

					                "conditions": {"type": "array", "items": {"type": "boolean"}},

					                "conditions": {"type": "array", "items": {"type": "boolean"}},

					                "permissions": {"$ref": def_path_perm},

					                "attrs": {"$ref": def_path},

					                "attrs": {"$ref": def_path},

					                "identifiers": {"$ref": def_path},

					                "identifiers": {"$ref": def_path},

					            },

					            },

					@ -185,3 +189,20 @@ class Command(BaseCommand):

					        if required:

					        if required:

					            result["required"] = required

					            result["required"] = required

					        return result

					        return result

					    def model_permissions(self, model: type[Model]) -> dict:

					        perms = [x[0] for x in model._meta.permissions]

					        for action in model._meta.default_permissions:

					            perms.append(f"{action}_{model._meta.model_name}")

					        return {

					            "type": "array",

					            "items": {

					                "type": "object",

					                "required": ["permission"],

					                "properties": {

					                    "permission": {"type": "string", "enum": perms},

					                    "user": {"type": "integer"},

					                    "role": {"type": "string"},

					                },

					            },

					        }

									
										24

authentik/blueprints/tests/fixtures/rbac_object.yaml
									
										vendored
									
										Normal file
									
												View File
												
					@ -0,0 +1,24 @@

					version: 1

					entries:

					  - model: authentik_core.user

					    id: user

					    identifiers:

					      username: "%(id)s"

					    attrs:

					      name: "%(id)s"

					  - model: authentik_rbac.role

					    id: role

					    identifiers:

					      name: "%(id)s"

					  - model: authentik_flows.flow

					    identifiers:

					      slug: "%(id)s"

					    attrs:

					      designation: authentication

					      name: foo

					      title: foo

					    permissions:

					      - permission: view_flow

					        user: !KeyOf user

					      - permission: view_flow

					        role: !KeyOf role

									
										8

authentik/blueprints/tests/fixtures/rbac_role.yaml
									
										vendored
									
										Normal file
									
												View File
												
					@ -0,0 +1,8 @@

					version: 1

					entries:

					  - model: authentik_rbac.role

					    identifiers:

					      name: "%(id)s"

					    attrs:

					      permissions:

					        - authentik_blueprints.view_blueprintinstance

									
										9

authentik/blueprints/tests/fixtures/rbac_user.yaml
									
										vendored
									
										Normal file
									
												View File
												
					@ -0,0 +1,9 @@

					version: 1

					entries:

					  - model: authentik_core.user

					    identifiers:

					      username: "%(id)s"

					    attrs:

					      name: "%(id)s"

					      permissions:

					        - authentik_blueprints.view_blueprintinstance

									
										2

authentik/blueprints/tests/test_v1_api.py
									
												View File
												
					@ -78,5 +78,5 @@ class TestBlueprintsV1API(APITestCase):

					        self.assertEqual(res.status_code, 400)

					        self.assertEqual(res.status_code, 400)

					        self.assertJSONEqual(

					        self.assertJSONEqual(

					            res.content.decode(),

					            res.content.decode(),

					            {"content": ["Failed to validate blueprint: Invalid blueprint version"]},

					            {"content": ["Failed to validate blueprint", "- Invalid blueprint version"]},

					        )

					        )

									
										57

authentik/blueprints/tests/test_v1_rbac.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,57 @@

					"""Test blueprints v1"""

					from django.test import TransactionTestCase

					from guardian.shortcuts import get_perms

					from authentik.blueprints.v1.importer import Importer

					from authentik.core.models import User

					from authentik.flows.models import Flow

					from authentik.lib.generators import generate_id

					from authentik.lib.tests.utils import load_fixture

					from authentik.rbac.models import Role

					class TestBlueprintsV1RBAC(TransactionTestCase):

					    """Test Blueprints rbac attribute"""

					    def test_user_permission(self):

					        """Test permissions"""

					        uid = generate_id()

					        import_yaml = load_fixture("fixtures/rbac_user.yaml", id=uid)

					        importer = Importer.from_string(import_yaml)

					        self.assertTrue(importer.validate()[0])

					        self.assertTrue(importer.apply())

					        user = User.objects.filter(username=uid).first()

					        self.assertIsNotNone(user)

					        self.assertTrue(user.has_perms(["authentik_blueprints.view_blueprintinstance"]))

					    def test_role_permission(self):

					        """Test permissions"""

					        uid = generate_id()

					        import_yaml = load_fixture("fixtures/rbac_role.yaml", id=uid)

					        importer = Importer.from_string(import_yaml)

					        self.assertTrue(importer.validate()[0])

					        self.assertTrue(importer.apply())

					        role = Role.objects.filter(name=uid).first()

					        self.assertIsNotNone(role)

					        self.assertEqual(

					            list(role.group.permissions.all().values_list("codename", flat=True)),

					            ["view_blueprintinstance"],

					        )

					    def test_object_permission(self):

					        """Test permissions"""

					        uid = generate_id()

					        import_yaml = load_fixture("fixtures/rbac_object.yaml", id=uid)

					        importer = Importer.from_string(import_yaml)

					        self.assertTrue(importer.validate()[0])

					        self.assertTrue(importer.apply())

					        flow = Flow.objects.filter(slug=uid).first()

					        user = User.objects.filter(username=uid).first()

					        role = Role.objects.filter(name=uid).first()

					        self.assertIsNotNone(flow)

					        self.assertEqual(get_perms(user, flow), ["view_flow"])

					        self.assertEqual(get_perms(role.group, flow), ["view_flow"])

									
										30

authentik/blueprints/v1/common.py
									
												View File
												
					@ -1,7 +1,7 @@

					"""transfer common classes"""

					"""transfer common classes"""

					from collections import OrderedDict

					from collections import OrderedDict

					from collections.abc import Iterable, Mapping

					from collections.abc import Generator, Iterable, Mapping

					from copy import copy

					from copy import copy

					from dataclasses import asdict, dataclass, field, is_dataclass

					from dataclasses import asdict, dataclass, field, is_dataclass

					from enum import Enum

					from enum import Enum

					@ -58,6 +58,15 @@ class BlueprintEntryDesiredState(Enum):

					    MUST_CREATED = "must_created"

					    MUST_CREATED = "must_created"

					@dataclass

					class BlueprintEntryPermission:

					    """Describe object-level permissions"""

					    permission: Union[str, "YAMLTag"]

					    user: Union[int, "YAMLTag", None] = field(default=None)

					    role: Union[str, "YAMLTag", None] = field(default=None)

					@dataclass

					@dataclass

					class BlueprintEntry:

					class BlueprintEntry:

					    """Single entry of a blueprint"""

					    """Single entry of a blueprint"""

					@ -69,13 +78,14 @@ class BlueprintEntry:

					    conditions: list[Any] = field(default_factory=list)

					    conditions: list[Any] = field(default_factory=list)

					    identifiers: dict[str, Any] = field(default_factory=dict)

					    identifiers: dict[str, Any] = field(default_factory=dict)

					    attrs: dict[str, Any] | None = field(default_factory=dict)

					    attrs: dict[str, Any] | None = field(default_factory=dict)

					    permissions: list[BlueprintEntryPermission] = field(default_factory=list)

					    id: str | None = None

					    id: str | None = None

					    _state: BlueprintEntryState = field(default_factory=BlueprintEntryState)

					    _state: BlueprintEntryState = field(default_factory=BlueprintEntryState)

					    def __post_init__(self, *args, **kwargs) -> None:

					    def __post_init__(self, *args, **kwargs) -> None:

					        self.__tag_contexts: list["YAMLTagContext"] = []

					        self.__tag_contexts: list[YAMLTagContext] = []

					    @staticmethod

					    @staticmethod

					    def from_model(model: SerializerModel, *extra_identifier_names: str) -> "BlueprintEntry":

					    def from_model(model: SerializerModel, *extra_identifier_names: str) -> "BlueprintEntry":

					@ -150,6 +160,17 @@ class BlueprintEntry:

					        """Get the blueprint model, with yaml tags resolved if present"""

					        """Get the blueprint model, with yaml tags resolved if present"""

					        return str(self.tag_resolver(self.model, blueprint))

					        return str(self.tag_resolver(self.model, blueprint))

					    def get_permissions(

					        self, blueprint: "Blueprint"

					    ) -> Generator[BlueprintEntryPermission, None, None]:

					        """Get permissions of this entry, with all yaml tags resolved"""

					        for perm in self.permissions:

					            yield BlueprintEntryPermission(

					                permission=self.tag_resolver(perm.permission, blueprint),

					                user=self.tag_resolver(perm.user, blueprint),

					                role=self.tag_resolver(perm.role, blueprint),

					            )

					    def check_all_conditions_match(self, blueprint: "Blueprint") -> bool:

					    def check_all_conditions_match(self, blueprint: "Blueprint") -> bool:

					        """Check all conditions of this entry match (evaluate to True)"""

					        """Check all conditions of this entry match (evaluate to True)"""

					        return all(self.tag_resolver(self.conditions, blueprint))

					        return all(self.tag_resolver(self.conditions, blueprint))

					@ -307,7 +328,10 @@ class Find(YAMLTag):

					        else:

					        else:

					            model_name = self.model_name

					            model_name = self.model_name

					        model_class = apps.get_model(*model_name.split("."))

					        try:

					            model_class = apps.get_model(*model_name.split("."))

					        except LookupError as exc:

					            raise EntryInvalidError.from_entry(exc, entry) from exc

					        query = Q()

					        query = Q()

					        for cond in self.conditions:

					        for cond in self.conditions:

									
										64

authentik/blueprints/v1/importer.py
									
												View File
												
					@ -16,6 +16,7 @@ from django.db.models.query_utils import Q

					from django.db.transaction import atomic

					from django.db.transaction import atomic

					from django.db.utils import IntegrityError

					from django.db.utils import IntegrityError

					from guardian.models import UserObjectPermission

					from guardian.models import UserObjectPermission

					from guardian.shortcuts import assign_perm

					from rest_framework.exceptions import ValidationError

					from rest_framework.exceptions import ValidationError

					from rest_framework.serializers import BaseSerializer, Serializer

					from rest_framework.serializers import BaseSerializer, Serializer

					from structlog.stdlib import BoundLogger, get_logger

					from structlog.stdlib import BoundLogger, get_logger

					@ -32,13 +33,23 @@ from authentik.blueprints.v1.common import (

					from authentik.blueprints.v1.meta.registry import BaseMetaModel, registry

					from authentik.blueprints.v1.meta.registry import BaseMetaModel, registry

					from authentik.core.models import (

					from authentik.core.models import (

					    AuthenticatedSession,

					    AuthenticatedSession,

					    GroupSourceConnection,

					    PropertyMapping,

					    PropertyMapping,

					    Provider,

					    Provider,

					    Source,

					    Source,

					    User,

					    UserSourceConnection,

					    UserSourceConnection,

					)

					)

					from authentik.enterprise.license import LicenseKey

					from authentik.enterprise.license import LicenseKey

					from authentik.enterprise.models import LicenseUsage

					from authentik.enterprise.models import LicenseUsage

					from authentik.enterprise.providers.google_workspace.models import (

					    GoogleWorkspaceProviderGroup,

					    GoogleWorkspaceProviderUser,

					)

					from authentik.enterprise.providers.microsoft_entra.models import (

					    MicrosoftEntraProviderGroup,

					    MicrosoftEntraProviderUser,

					)

					from authentik.enterprise.providers.rac.models import ConnectionToken

					from authentik.enterprise.providers.rac.models import ConnectionToken

					from authentik.events.logs import LogEvent, capture_logs

					from authentik.events.logs import LogEvent, capture_logs

					from authentik.events.models import SystemTask

					from authentik.events.models import SystemTask

					@ -46,11 +57,13 @@ from authentik.events.utils import cleanse_dict

					from authentik.flows.models import FlowToken, Stage

					from authentik.flows.models import FlowToken, Stage

					from authentik.lib.models import SerializerModel

					from authentik.lib.models import SerializerModel

					from authentik.lib.sentry import SentryIgnoredException

					from authentik.lib.sentry import SentryIgnoredException

					from authentik.lib.utils.reflection import get_apps

					from authentik.outposts.models import OutpostServiceConnection

					from authentik.outposts.models import OutpostServiceConnection

					from authentik.policies.models import Policy, PolicyBindingModel

					from authentik.policies.models import Policy, PolicyBindingModel

					from authentik.policies.reputation.models import Reputation

					from authentik.policies.reputation.models import Reputation

					from authentik.providers.oauth2.models import AccessToken, AuthorizationCode, RefreshToken

					from authentik.providers.oauth2.models import AccessToken, AuthorizationCode, RefreshToken

					from authentik.providers.scim.models import SCIMGroup, SCIMUser

					from authentik.providers.scim.models import SCIMProviderGroup, SCIMProviderUser

					from authentik.rbac.models import Role

					from authentik.sources.scim.models import SCIMSourceGroup, SCIMSourceUser

					from authentik.sources.scim.models import SCIMSourceGroup, SCIMSourceUser

					from authentik.stages.authenticator_webauthn.models import WebAuthnDeviceType

					from authentik.stages.authenticator_webauthn.models import WebAuthnDeviceType

					from authentik.tenants.models import Tenant

					from authentik.tenants.models import Tenant

					@ -79,6 +92,7 @@ def excluded_models() -> list[type[Model]]:

					        Source,

					        Source,

					        PropertyMapping,

					        PropertyMapping,

					        UserSourceConnection,

					        UserSourceConnection,

					        GroupSourceConnection,

					        Stage,

					        Stage,

					        OutpostServiceConnection,

					        OutpostServiceConnection,

					        Policy,

					        Policy,

					@ -86,10 +100,11 @@ def excluded_models() -> list[type[Model]]:

					        # Classes that have other dependencies

					        # Classes that have other dependencies

					        AuthenticatedSession,

					        AuthenticatedSession,

					        # Classes which are only internally managed

					        # Classes which are only internally managed

					        # FIXME: these shouldn't need to be explicitly listed, but rather based off of a mixin

					        FlowToken,

					        FlowToken,

					        LicenseUsage,

					        LicenseUsage,

					        SCIMGroup,

					        SCIMProviderGroup,

					        SCIMUser,

					        SCIMProviderUser,

					        Tenant,

					        Tenant,

					        SystemTask,

					        SystemTask,

					        ConnectionToken,

					        ConnectionToken,

					@ -100,6 +115,10 @@ def excluded_models() -> list[type[Model]]:

					        WebAuthnDeviceType,

					        WebAuthnDeviceType,

					        SCIMSourceUser,

					        SCIMSourceUser,

					        SCIMSourceGroup,

					        SCIMSourceGroup,

					        GoogleWorkspaceProviderUser,

					        GoogleWorkspaceProviderGroup,

					        MicrosoftEntraProviderUser,

					        MicrosoftEntraProviderGroup,

					    )

					    )

					@ -123,6 +142,16 @@ def transaction_rollback():

					        pass

					        pass

					def rbac_models() -> dict:

					    models = {}

					    for app in get_apps():

					        for model in app.get_models():

					            if not is_model_allowed(model):

					                continue

					            models[model._meta.model_name] = app.label

					    return models

					class Importer:

					class Importer:

					    """Import Blueprint from raw dict or YAML/JSON"""

					    """Import Blueprint from raw dict or YAML/JSON"""

					@ -141,7 +170,10 @@ class Importer:

					    def default_context(self):

					    def default_context(self):

					        """Default context"""

					        """Default context"""

					        return {"goauthentik.io/enterprise/licensed": LicenseKey.get_total().is_valid()}

					        return {

					            "goauthentik.io/enterprise/licensed": LicenseKey.get_total().status().is_valid,

					            "goauthentik.io/rbac/models": rbac_models(),

					        }

					    @staticmethod

					    @staticmethod

					    def from_string(yaml_input: str, context: dict | None = None) -> "Importer":

					    def from_string(yaml_input: str, context: dict | None = None) -> "Importer":

					@ -201,14 +233,17 @@ class Importer:

					        return main_query | sub_query

					        return main_query | sub_query

					    def _validate_single(self, entry: BlueprintEntry) -> BaseSerializer | None:

					    def _validate_single(self, entry: BlueprintEntry) -> BaseSerializer | None:  # noqa: PLR0915

					        """Validate a single entry"""

					        """Validate a single entry"""

					        if not entry.check_all_conditions_match(self._import):

					        if not entry.check_all_conditions_match(self._import):

					            self.logger.debug("One or more conditions of this entry are not fulfilled, skipping")

					            self.logger.debug("One or more conditions of this entry are not fulfilled, skipping")

					            return None

					            return None

					        model_app_label, model_name = entry.get_model(self._import).split(".")

					        model_app_label, model_name = entry.get_model(self._import).split(".")

					        model: type[SerializerModel] = registry.get_model(model_app_label, model_name)

					        try:

					            model: type[SerializerModel] = registry.get_model(model_app_label, model_name)

					        except LookupError as exc:

					            raise EntryInvalidError.from_entry(exc, entry) from exc

					        # Don't use isinstance since we don't want to check for inheritance

					        # Don't use isinstance since we don't want to check for inheritance

					        if not is_model_allowed(model):

					        if not is_model_allowed(model):

					            raise EntryInvalidError.from_entry(f"Model {model} not allowed", entry)

					            raise EntryInvalidError.from_entry(f"Model {model} not allowed", entry)

					@ -283,10 +318,7 @@ class Importer:

					        try:

					        try:

					            full_data = self.__update_pks_for_attrs(entry.get_attrs(self._import))

					            full_data = self.__update_pks_for_attrs(entry.get_attrs(self._import))

					        except ValueError as exc:

					        except ValueError as exc:

					            raise EntryInvalidError.from_entry(

					            raise EntryInvalidError.from_entry(exc, entry) from exc

					                exc,

					                entry,

					            ) from exc

					        always_merger.merge(full_data, updated_identifiers)

					        always_merger.merge(full_data, updated_identifiers)

					        serializer_kwargs["data"] = full_data

					        serializer_kwargs["data"] = full_data

					@ -307,6 +339,15 @@ class Importer:

					            ) from exc

					            ) from exc

					        return serializer

					        return serializer

					    def _apply_permissions(self, instance: Model, entry: BlueprintEntry):

					        """Apply object-level permissions for an entry"""

					        for perm in entry.get_permissions(self._import):

					            if perm.user is not None:

					                assign_perm(perm.permission, User.objects.get(pk=perm.user), instance)

					            if perm.role is not None:

					                role = Role.objects.get(pk=perm.role)

					                role.assign_permission(perm.permission, obj=instance)

					    def apply(self) -> bool:

					    def apply(self) -> bool:

					        """Apply (create/update) models yaml, in database transaction"""

					        """Apply (create/update) models yaml, in database transaction"""

					        try:

					        try:

					@ -371,6 +412,7 @@ class Importer:

					                if "pk" in entry.identifiers:

					                if "pk" in entry.identifiers:

					                    self.__pk_map[entry.identifiers["pk"]] = instance.pk

					                    self.__pk_map[entry.identifiers["pk"]] = instance.pk

					                entry._state = BlueprintEntryState(instance)

					                entry._state = BlueprintEntryState(instance)

					                self._apply_permissions(instance, entry)

					            elif state == BlueprintEntryDesiredState.ABSENT:

					            elif state == BlueprintEntryDesiredState.ABSENT:

					                instance: Model | None = serializer.instance

					                instance: Model | None = serializer.instance

					                if instance.pk:

					                if instance.pk:

					@ -387,7 +429,7 @@ class Importer:

					        orig_import = deepcopy(self._import)

					        orig_import = deepcopy(self._import)

					        if self._import.version != 1:

					        if self._import.version != 1:

					            self.logger.warning("Invalid blueprint version")

					            self.logger.warning("Invalid blueprint version")

					            return False, [{"event": "Invalid blueprint version"}]

					            return False, [LogEvent("Invalid blueprint version", log_level="warning", logger=None)]

					        with (

					        with (

					            transaction_rollback(),

					            transaction_rollback(),

					            capture_logs() as logs,

					            capture_logs() as logs,

									
										6

authentik/brands/api.py
									
												View File
												
					@ -11,21 +11,20 @@ from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.permissions import AllowAny

					from rest_framework.permissions import AllowAny

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer

					from rest_framework.validators import UniqueValidator

					from rest_framework.validators import UniqueValidator

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					from authentik.api.authorization import SecretKeyFilter

					from authentik.api.authorization import SecretKeyFilter

					from authentik.brands.models import Brand

					from authentik.brands.models import Brand

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import ModelSerializer, PassiveSerializer

					from authentik.tenants.utils import get_current_tenant

					from authentik.tenants.utils import get_current_tenant

					class FooterLinkSerializer(PassiveSerializer):

					class FooterLinkSerializer(PassiveSerializer):

					    """Links returned in Config API"""

					    """Links returned in Config API"""

					    href = CharField(read_only=True)

					    href = CharField(read_only=True, allow_null=True)

					    name = CharField(read_only=True)

					    name = CharField(read_only=True)

					@ -56,6 +55,7 @@ class BrandSerializer(ModelSerializer):

					            "flow_unenrollment",

					            "flow_unenrollment",

					            "flow_user_settings",

					            "flow_user_settings",

					            "flow_device_code",

					            "flow_device_code",

					            "default_application",

					            "web_certificate",

					            "web_certificate",

					            "attributes",

					            "attributes",

					        ]

					        ]

									
										3

authentik/brands/apps.py
									
												View File
												
					@ -9,3 +9,6 @@ class AuthentikBrandsConfig(AppConfig):

					    name = "authentik.brands"

					    name = "authentik.brands"

					    label = "authentik_brands"

					    label = "authentik_brands"

					    verbose_name = "authentik Brands"

					    verbose_name = "authentik Brands"

					    mountpoints = {

					        "authentik.brands.urls_root": "",

					    }

									
										26

authentik/brands/migrations/0007_brand_default_application.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,26 @@

					# Generated by Django 5.0.6 on 2024-07-04 20:32

					import django.db.models.deletion

					from django.db import migrations, models

					class Migration(migrations.Migration):

					    dependencies = [

					        ("authentik_brands", "0006_brand_authentik_b_domain_b9b24a_idx_and_more"),

					        ("authentik_core", "0035_alter_group_options_and_more"),

					    ]

					    operations = [

					        migrations.AddField(

					            model_name="brand",

					            name="default_application",

					            field=models.ForeignKey(

					                default=None,

					                help_text="When set, external users will be redirected to this application after authenticating.",

					                null=True,

					                on_delete=django.db.models.deletion.SET_DEFAULT,

					                to="authentik_core.application",

					            ),

					        ),

					    ]

									
										21

authentik/brands/models.py
									
												View File
												
					@ -3,6 +3,7 @@

					from uuid import uuid4

					from uuid import uuid4

					from django.db import models

					from django.db import models

					from django.http import HttpRequest

					from django.utils.translation import gettext_lazy as _

					from django.utils.translation import gettext_lazy as _

					from rest_framework.serializers import Serializer

					from rest_framework.serializers import Serializer

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					@ -51,6 +52,16 @@ class Brand(SerializerModel):

					        Flow, null=True, on_delete=models.SET_NULL, related_name="brand_device_code"

					        Flow, null=True, on_delete=models.SET_NULL, related_name="brand_device_code"

					    )

					    )

					    default_application = models.ForeignKey(

					        "authentik_core.Application",

					        null=True,

					        default=None,

					        on_delete=models.SET_DEFAULT,

					        help_text=_(

					            "When set, external users will be redirected to this application after authenticating."

					        ),

					    )

					    web_certificate = models.ForeignKey(

					    web_certificate = models.ForeignKey(

					        CertificateKeyPair,

					        CertificateKeyPair,

					        null=True,

					        null=True,

					@ -88,3 +99,13 @@ class Brand(SerializerModel):

					            models.Index(fields=["domain"]),

					            models.Index(fields=["domain"]),

					            models.Index(fields=["default"]),

					            models.Index(fields=["default"]),

					        ]

					        ]

					class WebfingerProvider(models.Model):

					    """Provider which supports webfinger discovery"""

					    class Meta:

					        abstract = True

					    def webfinger(self, resource: str, request: HttpRequest) -> dict:

					        raise NotImplementedError()

									
										46

authentik/brands/tests.py
									
												View File
												
					@ -5,7 +5,11 @@ from rest_framework.test import APITestCase

					from authentik.brands.api import Themes

					from authentik.brands.api import Themes

					from authentik.brands.models import Brand

					from authentik.brands.models import Brand

					from authentik.core.models import Application

					from authentik.core.tests.utils import create_test_admin_user, create_test_brand

					from authentik.core.tests.utils import create_test_admin_user, create_test_brand

					from authentik.lib.generators import generate_id

					from authentik.providers.oauth2.models import OAuth2Provider

					from authentik.providers.saml.models import SAMLProvider

					class TestBrands(APITestCase):

					class TestBrands(APITestCase):

					@ -75,3 +79,45 @@ class TestBrands(APITestCase):

					            reverse("authentik_api:brand-list"), data={"domain": "bar", "default": True}

					            reverse("authentik_api:brand-list"), data={"domain": "bar", "default": True}

					        )

					        )

					        self.assertEqual(response.status_code, 400)

					        self.assertEqual(response.status_code, 400)

					    def test_webfinger_no_app(self):

					        """Test Webfinger"""

					        create_test_brand()

					        self.assertJSONEqual(

					            self.client.get(reverse("authentik_brands:webfinger")).content.decode(), {}

					        )

					    def test_webfinger_not_supported(self):

					        """Test Webfinger"""

					        brand = create_test_brand()

					        provider = SAMLProvider.objects.create(

					            name=generate_id(),

					        )

					        app = Application.objects.create(name=generate_id(), slug=generate_id(), provider=provider)

					        brand.default_application = app

					        brand.save()

					        self.assertJSONEqual(

					            self.client.get(reverse("authentik_brands:webfinger")).content.decode(), {}

					        )

					    def test_webfinger_oidc(self):

					        """Test Webfinger"""

					        brand = create_test_brand()

					        provider = OAuth2Provider.objects.create(

					            name=generate_id(),

					        )

					        app = Application.objects.create(name=generate_id(), slug=generate_id(), provider=provider)

					        brand.default_application = app

					        brand.save()

					        self.assertJSONEqual(

					            self.client.get(reverse("authentik_brands:webfinger")).content.decode(),

					            {

					                "links": [

					                    {

					                        "href": f"http://testserver/application/o/{app.slug}/",

					                        "rel": "http://openid.net/specs/connect/1.0/issuer",

					                    }

					                ],

					                "subject": None,

					            },

					        )

									
										9

authentik/brands/urls_root.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,9 @@

					"""authentik brand root URLs"""

					from django.urls import path

					from authentik.brands.views.webfinger import WebFingerView

					urlpatterns = [

					    path(".well-known/webfinger", WebFingerView.as_view(), name="webfinger"),

					]

									
										4

authentik/brands/utils.py
									
												View File
												
					@ -5,7 +5,7 @@ from typing import Any

					from django.db.models import F, Q

					from django.db.models import F, Q

					from django.db.models import Value as V

					from django.db.models import Value as V

					from django.http.request import HttpRequest

					from django.http.request import HttpRequest

					from sentry_sdk.hub import Hub

					from sentry_sdk import get_current_span

					from authentik import get_full_version

					from authentik import get_full_version

					from authentik.brands.models import Brand

					from authentik.brands.models import Brand

					@ -33,7 +33,7 @@ def context_processor(request: HttpRequest) -> dict[str, Any]:

					    brand = getattr(request, "brand", DEFAULT_BRAND)

					    brand = getattr(request, "brand", DEFAULT_BRAND)

					    tenant = getattr(request, "tenant", Tenant())

					    tenant = getattr(request, "tenant", Tenant())

					    trace = ""

					    trace = ""

					    span = Hub.current.scope.span

					    span = get_current_span()

					    if span:

					    if span:

					        trace = span.to_traceparent()

					        trace = span.to_traceparent()

					    return {

					    return {

0

authentik/brands/views/init.py Normal file

View File

									
										29

authentik/brands/views/webfinger.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,29 @@

					from typing import Any

					from django.http import HttpRequest, HttpResponse, JsonResponse

					from django.views import View

					from authentik.brands.models import Brand, WebfingerProvider

					from authentik.core.models import Application

					class WebFingerView(View):

					    """Webfinger endpoint"""

					    def get(self, request: HttpRequest) -> HttpResponse:

					        brand: Brand = request.brand

					        if not brand.default_application:

					            return JsonResponse({})

					        application: Application = brand.default_application

					        provider = application.get_provider()

					        if not provider or not isinstance(provider, WebfingerProvider):

					            return JsonResponse({})

					        webfinger_data = provider.webfinger(request.GET.get("resource"), request)

					        return JsonResponse(webfinger_data)

					    def dispatch(self, request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:

					        response = super().dispatch(request, *args, **kwargs)

					        # RFC7033 spec

					        response["Access-Control-Allow-Origin"] = "*"

					        response["Content-Type"] = "application/jrd+json"

					        return response

									
										31

authentik/core/api/applications.py
									
												View File
												
					@ -17,7 +17,6 @@ from rest_framework.fields import CharField, ReadOnlyField, SerializerMethodFiel

					from rest_framework.parsers import MultiPartParser

					from rest_framework.parsers import MultiPartParser

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					@ -26,6 +25,7 @@ from authentik.api.pagination import Pagination

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.core.api.providers import ProviderSerializer

					from authentik.core.api.providers import ProviderSerializer

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import ModelSerializer

					from authentik.core.models import Application, User

					from authentik.core.models import Application, User

					from authentik.events.logs import LogEventSerializer, capture_logs

					from authentik.events.logs import LogEventSerializer, capture_logs

					from authentik.events.models import EventAction

					from authentik.events.models import EventAction

					@ -103,7 +103,12 @@ class ApplicationSerializer(ModelSerializer):

					class ApplicationViewSet(UsedByMixin, ModelViewSet):

					class ApplicationViewSet(UsedByMixin, ModelViewSet):

					    """Application Viewset"""

					    """Application Viewset"""

					    queryset = Application.objects.all().prefetch_related("provider")

					    queryset = (

					        Application.objects.all()

					        .with_provider()

					        .prefetch_related("policies")

					        .prefetch_related("backchannel_providers")

					    )

					    serializer_class = ApplicationSerializer

					    serializer_class = ApplicationSerializer

					    search_fields = [

					    search_fields = [

					        "name",

					        "name",

					@ -147,6 +152,15 @@ class ApplicationViewSet(UsedByMixin, ModelViewSet):

					                applications.append(application)

					                applications.append(application)

					        return applications

					        return applications

					    def _filter_applications_with_launch_url(

					        self, pagined_apps: Iterator[Application]

					    ) -> list[Application]:

					        applications = []

					        for app in pagined_apps:

					            if app.get_launch_url():

					                applications.append(app)

					        return applications

					    @extend_schema(

					    @extend_schema(

					        parameters=[

					        parameters=[

					            OpenApiParameter(

					            OpenApiParameter(

					@ -204,6 +218,11 @@ class ApplicationViewSet(UsedByMixin, ModelViewSet):

					                location=OpenApiParameter.QUERY,

					                location=OpenApiParameter.QUERY,

					                type=OpenApiTypes.INT,

					                type=OpenApiTypes.INT,

					            ),

					            ),

					            OpenApiParameter(

					                name="only_with_launch_url",

					                location=OpenApiParameter.QUERY,

					                type=OpenApiTypes.BOOL,

					            ),

					        ]

					        ]

					    )

					    )

					    def list(self, request: Request) -> Response:

					    def list(self, request: Request) -> Response:

					@ -216,6 +235,10 @@ class ApplicationViewSet(UsedByMixin, ModelViewSet):

					        if superuser_full_list and request.user.is_superuser:

					        if superuser_full_list and request.user.is_superuser:

					            return super().list(request)

					            return super().list(request)

					        only_with_launch_url = str(

					            request.query_params.get("only_with_launch_url", "false")

					        ).lower()

					        queryset = self._filter_queryset_for_list(self.get_queryset())

					        queryset = self._filter_queryset_for_list(self.get_queryset())

					        paginator: Pagination = self.paginator

					        paginator: Pagination = self.paginator

					        paginated_apps = paginator.paginate_queryset(queryset, request)

					        paginated_apps = paginator.paginate_queryset(queryset, request)

					@ -251,6 +274,10 @@ class ApplicationViewSet(UsedByMixin, ModelViewSet):

					                    allowed_applications,

					                    allowed_applications,

					                    timeout=86400,

					                    timeout=86400,

					                )

					                )

					        if only_with_launch_url == "true":

					            allowed_applications = self._filter_applications_with_launch_url(allowed_applications)

					        serializer = self.get_serializer(allowed_applications, many=True)

					        serializer = self.get_serializer(allowed_applications, many=True)

					        return self.get_paginated_response(serializer.data)

					        return self.get_paginated_response(serializer.data)

									
										2

authentik/core/api/authenticated_sessions.py
									
												View File
												
					@ -8,12 +8,12 @@ from rest_framework import mixins

					from rest_framework.fields import SerializerMethodField

					from rest_framework.fields import SerializerMethodField

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.serializers import ModelSerializer

					from rest_framework.viewsets import GenericViewSet

					from rest_framework.viewsets import GenericViewSet

					from ua_parser import user_agent_parser

					from ua_parser import user_agent_parser

					from authentik.api.authorization import OwnerSuperuserPermissions

					from authentik.api.authorization import OwnerSuperuserPermissions

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import ModelSerializer

					from authentik.core.models import AuthenticatedSession

					from authentik.core.models import AuthenticatedSession

					from authentik.events.context_processors.asn import ASN_CONTEXT_PROCESSOR, ASNDict

					from authentik.events.context_processors.asn import ASN_CONTEXT_PROCESSOR, ASNDict

					from authentik.events.context_processors.geoip import GEOIP_CONTEXT_PROCESSOR, GeoIPDict

					from authentik.events.context_processors.geoip import GEOIP_CONTEXT_PROCESSOR, GeoIPDict

									
										11

authentik/core/api/devices.py
									
												View File
												
					@ -2,7 +2,13 @@

					from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.utils import OpenApiParameter, extend_schema

					from drf_spectacular.utils import OpenApiParameter, extend_schema

					from rest_framework.fields import BooleanField, CharField, IntegerField, SerializerMethodField

					from rest_framework.fields import (

					    BooleanField,

					    CharField,

					    DateTimeField,

					    IntegerField,

					    SerializerMethodField,

					)

					from rest_framework.permissions import IsAdminUser, IsAuthenticated

					from rest_framework.permissions import IsAdminUser, IsAuthenticated

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					@ -20,6 +26,9 @@ class DeviceSerializer(MetaNameSerializer):

					    name = CharField()

					    name = CharField()

					    type = SerializerMethodField()

					    type = SerializerMethodField()

					    confirmed = BooleanField()

					    confirmed = BooleanField()

					    created = DateTimeField(read_only=True)

					    last_updated = DateTimeField(read_only=True)

					    last_used = DateTimeField(read_only=True, allow_null=True)

					    def get_type(self, instance: Device) -> str:

					    def get_type(self, instance: Device) -> str:

					        """Get type of device"""

					        """Get type of device"""

									
										33

authentik/core/api/groups.py
									
												View File
												
					@ -2,6 +2,7 @@

					from json import loads

					from json import loads

					from django.db.models import Prefetch

					from django.http import Http404

					from django.http import Http404

					from django_filters.filters import CharFilter, ModelMultipleChoiceFilter

					from django_filters.filters import CharFilter, ModelMultipleChoiceFilter

					from django_filters.filterset import FilterSet

					from django_filters.filterset import FilterSet

					@ -16,11 +17,12 @@ from rest_framework.decorators import action

					from rest_framework.fields import CharField, IntegerField, SerializerMethodField

					from rest_framework.fields import CharField, IntegerField, SerializerMethodField

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ListSerializer, ModelSerializer, ValidationError

					from rest_framework.serializers import ListSerializer, ValidationError

					from rest_framework.validators import UniqueValidator

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import JSONDictField, PassiveSerializer

					from authentik.core.api.utils import JSONDictField, ModelSerializer, PassiveSerializer

					from authentik.core.models import Group, User

					from authentik.core.models import Group, User

					from authentik.rbac.api.roles import RoleSerializer

					from authentik.rbac.api.roles import RoleSerializer

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.decorators import permission_required

					@ -100,7 +102,10 @@ class GroupSerializer(ModelSerializer):

					        extra_kwargs = {

					        extra_kwargs = {

					            "users": {

					            "users": {

					                "default": list,

					                "default": list,

					            }

					            },

					            # TODO: This field isn't unique on the database which is hard to backport

					            # hence we just validate the uniqueness here

					            "name": {"validators": [UniqueValidator(Group.objects.all())]},

					        }

					        }

					@ -154,12 +159,24 @@ class GroupViewSet(UsedByMixin, ModelViewSet):

					        pk = IntegerField(required=True)

					        pk = IntegerField(required=True)

					    queryset = Group.objects.all().select_related("parent").prefetch_related("users")

					    queryset = Group.objects.none()

					    serializer_class = GroupSerializer

					    serializer_class = GroupSerializer

					    search_fields = ["name", "is_superuser"]

					    search_fields = ["name", "is_superuser"]

					    filterset_class = GroupFilter

					    filterset_class = GroupFilter

					    ordering = ["name"]

					    ordering = ["name"]

					    def get_queryset(self):

					        base_qs = Group.objects.all().select_related("parent").prefetch_related("roles")

					        if self.serializer_class(context={"request": self.request})._should_include_users:

					            base_qs = base_qs.prefetch_related("users")

					        else:

					            base_qs = base_qs.prefetch_related(

					                Prefetch("users", queryset=User.objects.all().only("id"))

					            )

					        return base_qs

					    @extend_schema(

					    @extend_schema(

					        parameters=[

					        parameters=[

					            OpenApiParameter("include_users", bool, default=True),

					            OpenApiParameter("include_users", bool, default=True),

					@ -168,6 +185,14 @@ class GroupViewSet(UsedByMixin, ModelViewSet):

					    def list(self, request, *args, **kwargs):

					    def list(self, request, *args, **kwargs):

					        return super().list(request, *args, **kwargs)

					        return super().list(request, *args, **kwargs)

					    @extend_schema(

					        parameters=[

					            OpenApiParameter("include_users", bool, default=True),

					        ]

					    )

					    def retrieve(self, request, *args, **kwargs):

					        return super().retrieve(request, *args, **kwargs)

					    @permission_required("authentik_core.add_user_to_group")

					    @permission_required("authentik_core.add_user_to_group")

					    @extend_schema(

					    @extend_schema(

					        request=UserAccountSerializer,

					        request=UserAccountSerializer,

									
										79

authentik/core/api/object_types.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,79 @@

					"""API Utilities"""

					from drf_spectacular.utils import extend_schema

					from rest_framework.decorators import action

					from rest_framework.fields import (

					    BooleanField,

					    CharField,

					)

					from rest_framework.request import Request

					from rest_framework.response import Response

					from authentik.core.api.utils import PassiveSerializer

					from authentik.enterprise.apps import EnterpriseConfig

					from authentik.lib.utils.reflection import all_subclasses

					class TypeCreateSerializer(PassiveSerializer):

					    """Types of an object that can be created"""

					    name = CharField(required=True)

					    description = CharField(required=True)

					    component = CharField(required=True)

					    model_name = CharField(required=True)

					    icon_url = CharField(required=False)

					    requires_enterprise = BooleanField(default=False)

					class CreatableType:

					    """Class to inherit from to mark a model as creatable, even if the model itself is marked

					    as abstract"""

					class NonCreatableType:

					    """Class to inherit from to mark a model as non-creatable even if it is not abstract"""

					class TypesMixin:

					    """Mixin which adds an API endpoint to list all possible types that can be created"""

					    @extend_schema(responses={200: TypeCreateSerializer(many=True)})

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    def types(self, request: Request, additional: list[dict] | None = None) -> Response:

					        """Get all creatable types"""

					        data = []

					        for subclass in all_subclasses(self.queryset.model):

					            instance = None

					            if subclass._meta.abstract:

					                if not issubclass(subclass, CreatableType):

					                    continue

					                # Circumvent the django protection for not being able to instantiate

					                # abstract models. We need a model instance to access .component

					                # and further down .icon_url

					                instance = subclass.__new__(subclass)

					                # Django re-sets abstract = False so we need to override that

					                instance.Meta.abstract = True

					            else:

					                if issubclass(subclass, NonCreatableType):

					                    continue

					                instance = subclass()

					            try:

					                data.append(

					                    {

					                        "name": subclass._meta.verbose_name,

					                        "description": subclass.__doc__,

					                        "component": instance.component,

					                        "model_name": subclass._meta.model_name,

					                        "icon_url": getattr(instance, "icon_url", None),

					                        "requires_enterprise": isinstance(

					                            subclass._meta.app_config, EnterpriseConfig

					                        ),

					                    }

					                )

					            except NotImplementedError:

					                continue

					        if additional:

					            data.extend(additional)

					        data = sorted(data, key=lambda x: x["name"])

					        return Response(TypeCreateSerializer(data, many=True).data)

									
										117

authentik/core/api/propertymappings.py → authentik/core/api/property_mappings.py
									
												View File
												
					@ -2,25 +2,38 @@

					from json import dumps

					from json import dumps

					from django_filters.filters import AllValuesMultipleFilter, BooleanFilter

					from django_filters.filterset import FilterSet

					from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.utils import OpenApiParameter, OpenApiResponse, extend_schema

					from drf_spectacular.utils import (

					    OpenApiParameter,

					    OpenApiResponse,

					    extend_schema,

					    extend_schema_field,

					)

					from guardian.shortcuts import get_objects_for_user

					from guardian.shortcuts import get_objects_for_user

					from rest_framework import mixins

					from rest_framework import mixins

					from rest_framework.decorators import action

					from rest_framework.decorators import action

					from rest_framework.exceptions import PermissionDenied

					from rest_framework.exceptions import PermissionDenied

					from rest_framework.fields import BooleanField, CharField

					from rest_framework.fields import BooleanField, CharField, SerializerMethodField

					from rest_framework.relations import PrimaryKeyRelatedField

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer, SerializerMethodField

					from rest_framework.viewsets import GenericViewSet

					from rest_framework.viewsets import GenericViewSet

					from authentik.blueprints.api import ManagedSerializer

					from authentik.blueprints.api import ManagedSerializer

					from authentik.core.api.object_types import TypesMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import MetaNameSerializer, PassiveSerializer, TypeCreateSerializer

					from authentik.core.api.utils import (

					    MetaNameSerializer,

					    ModelSerializer,

					    PassiveSerializer,

					)

					from authentik.core.expression.evaluator import PropertyMappingEvaluator

					from authentik.core.expression.evaluator import PropertyMappingEvaluator

					from authentik.core.models import PropertyMapping

					from authentik.core.expression.exceptions import PropertyMappingExpressionException

					from authentik.core.models import Group, PropertyMapping, User

					from authentik.events.utils import sanitize_item

					from authentik.events.utils import sanitize_item

					from authentik.lib.utils.reflection import all_subclasses

					from authentik.lib.utils.errors import exception_to_string

					from authentik.policies.api.exec import PolicyTestSerializer

					from authentik.policies.api.exec import PolicyTestSerializer

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.decorators import permission_required

					@ -63,7 +76,20 @@ class PropertyMappingSerializer(ManagedSerializer, ModelSerializer, MetaNameSeri

					        ]

					        ]

					class PropertyMappingFilterSet(FilterSet):

					    """Filter for PropertyMapping"""

					    managed = extend_schema_field(OpenApiTypes.STR)(AllValuesMultipleFilter(field_name="managed"))

					    managed__isnull = BooleanFilter(field_name="managed", lookup_expr="isnull")

					    class Meta:

					        model = PropertyMapping

					        fields = ["name", "managed"]

					class PropertyMappingViewSet(

					class PropertyMappingViewSet(

					    TypesMixin,

					    mixins.RetrieveModelMixin,

					    mixins.RetrieveModelMixin,

					    mixins.DestroyModelMixin,

					    mixins.DestroyModelMixin,

					    UsedByMixin,

					    UsedByMixin,

					@ -72,37 +98,23 @@ class PropertyMappingViewSet(

					):

					):

					    """PropertyMapping Viewset"""

					    """PropertyMapping Viewset"""

					    queryset = PropertyMapping.objects.none()

					    class PropertyMappingTestSerializer(PolicyTestSerializer):

					        """Test property mapping execution for a user/group with context"""

					        user = PrimaryKeyRelatedField(queryset=User.objects.all(), required=False, allow_null=True)

					        group = PrimaryKeyRelatedField(

					            queryset=Group.objects.all(), required=False, allow_null=True

					        )

					    queryset = PropertyMapping.objects.select_subclasses()

					    serializer_class = PropertyMappingSerializer

					    serializer_class = PropertyMappingSerializer

					    search_fields = [

					    filterset_class = PropertyMappingFilterSet

					        "name",

					    ]

					    filterset_fields = {"managed": ["isnull"]}

					    ordering = ["name"]

					    ordering = ["name"]

					    search_fields = ["name"]

					    def get_queryset(self):  # pragma: no cover

					        return PropertyMapping.objects.select_subclasses()

					    @extend_schema(responses={200: TypeCreateSerializer(many=True)})

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    def types(self, request: Request) -> Response:

					        """Get all creatable property-mapping types"""

					        data = []

					        for subclass in all_subclasses(self.queryset.model):

					            subclass: PropertyMapping

					            data.append(

					                {

					                    "name": subclass._meta.verbose_name,

					                    "description": subclass.__doc__,

					                    "component": subclass().component,

					                    "model_name": subclass._meta.model_name,

					                }

					            )

					        return Response(TypeCreateSerializer(data, many=True).data)

					    @permission_required("authentik_core.view_propertymapping")

					    @permission_required("authentik_core.view_propertymapping")

					    @extend_schema(

					    @extend_schema(

					        request=PolicyTestSerializer(),

					        request=PropertyMappingTestSerializer(),

					        responses={

					        responses={

					            200: PropertyMappingTestResultSerializer,

					            200: PropertyMappingTestResultSerializer,

					            400: OpenApiResponse(description="Invalid parameters"),

					            400: OpenApiResponse(description="Invalid parameters"),

					@ -120,34 +132,47 @@ class PropertyMappingViewSet(

					        """Test Property Mapping"""

					        """Test Property Mapping"""

					        _mapping: PropertyMapping = self.get_object()

					        _mapping: PropertyMapping = self.get_object()

					        # Use `get_subclass` to get correct class and correct `.evaluate` implementation

					        # Use `get_subclass` to get correct class and correct `.evaluate` implementation

					        mapping = PropertyMapping.objects.get_subclass(pk=_mapping.pk)

					        mapping: PropertyMapping = PropertyMapping.objects.get_subclass(pk=_mapping.pk)

					        # FIXME: when we separate policy mappings between ones for sources

					        # FIXME: when we separate policy mappings between ones for sources

					        # and ones for providers, we need to make the user field optional for the source mapping

					        # and ones for providers, we need to make the user field optional for the source mapping

					        test_params = PolicyTestSerializer(data=request.data)

					        test_params = self.PropertyMappingTestSerializer(data=request.data)

					        if not test_params.is_valid():

					        if not test_params.is_valid():

					            return Response(test_params.errors, status=400)

					            return Response(test_params.errors, status=400)

					        format_result = str(request.GET.get("format_result", "false")).lower() == "true"

					        format_result = str(request.GET.get("format_result", "false")).lower() == "true"

					        # User permission check, only allow mapping testing for users that are readable

					        context: dict = test_params.validated_data.get("context", {})

					        users = get_objects_for_user(request.user, "authentik_core.view_user").filter(

					        context.setdefault("user", None)

					            pk=test_params.validated_data["user"].pk

					        )

					        if user := test_params.validated_data.get("user"):

					        if not users.exists():

					            # User permission check, only allow mapping testing for users that are readable

					            raise PermissionDenied()

					            users = get_objects_for_user(request.user, "authentik_core.view_user").filter(

					                pk=user.pk

					            )

					            if not users.exists():

					                raise PermissionDenied()

					            context["user"] = user

					        if group := test_params.validated_data.get("group"):

					            # Group permission check, only allow mapping testing for groups that are readable

					            groups = get_objects_for_user(request.user, "authentik_core.view_group").filter(

					                pk=group.pk

					            )

					            if not groups.exists():

					                raise PermissionDenied()

					            context["group"] = group

					        context["request"] = self.request

					        response_data = {"successful": True, "result": ""}

					        response_data = {"successful": True, "result": ""}

					        try:

					        try:

					            result = mapping.evaluate(

					            result = mapping.evaluate(dry_run=True, **context)

					                users.first(),

					                self.request,

					                **test_params.validated_data.get("context", {}),

					            )

					            response_data["result"] = dumps(

					            response_data["result"] = dumps(

					                sanitize_item(result), indent=(4 if format_result else None)

					                sanitize_item(result), indent=(4 if format_result else None)

					            )

					            )

					        except PropertyMappingExpressionException as exc:

					            response_data["result"] = exception_to_string(exc.exc)

					            response_data["successful"] = False

					        except Exception as exc:

					        except Exception as exc:

					            response_data["result"] = str(exc)

					            response_data["result"] = exception_to_string(exc)

					            response_data["successful"] = False

					            response_data["successful"] = False

					        response = PropertyMappingTestResultSerializer(response_data)

					        response = PropertyMappingTestResultSerializer(response_data)

					        return Response(response.data)

					        return Response(response.data)

									
										54

authentik/core/api/providers.py
									
												View File
												
					@ -5,20 +5,14 @@ from django.db.models.query import Q

					from django.utils.translation import gettext_lazy as _

					from django.utils.translation import gettext_lazy as _

					from django_filters.filters import BooleanFilter

					from django_filters.filters import BooleanFilter

					from django_filters.filterset import FilterSet

					from django_filters.filterset import FilterSet

					from drf_spectacular.utils import extend_schema

					from rest_framework import mixins

					from rest_framework import mixins

					from rest_framework.decorators import action

					from rest_framework.fields import ReadOnlyField, SerializerMethodField

					from rest_framework.fields import ReadOnlyField

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer, SerializerMethodField

					from rest_framework.viewsets import GenericViewSet

					from rest_framework.viewsets import GenericViewSet

					from authentik.core.api.object_types import TypesMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import MetaNameSerializer, TypeCreateSerializer

					from authentik.core.api.utils import MetaNameSerializer, ModelSerializer

					from authentik.core.models import Provider

					from authentik.core.models import Provider

					from authentik.enterprise.apps import EnterpriseConfig

					from authentik.lib.utils.reflection import all_subclasses

					class ProviderSerializer(ModelSerializer, MetaNameSerializer):

					class ProviderSerializer(ModelSerializer, MetaNameSerializer):

					@ -63,8 +57,12 @@ class ProviderFilter(FilterSet):

					    """Filter for providers"""

					    """Filter for providers"""

					    application__isnull = BooleanFilter(method="filter_application__isnull")

					    application__isnull = BooleanFilter(method="filter_application__isnull")

					    backchannel_only = BooleanFilter(

					    backchannel = BooleanFilter(

					        method="filter_backchannel_only",

					        method="filter_backchannel",

					        label=_(

					            "When not set all providers are returned. When set to true, only backchannel "

					            "providers are returned. When set to false, backchannel providers are excluded"

					        ),

					    )

					    )

					    def filter_application__isnull(self, queryset: QuerySet, name, value):

					    def filter_application__isnull(self, queryset: QuerySet, name, value):

					@ -75,12 +73,14 @@ class ProviderFilter(FilterSet):

					            | Q(application__isnull=value)

					            | Q(application__isnull=value)

					        )

					        )

					    def filter_backchannel_only(self, queryset: QuerySet, name, value):

					    def filter_backchannel(self, queryset: QuerySet, name, value):

					        """Only return backchannel providers"""

					        """By default all providers are returned. When set to true, only backchannel providers are

					        returned. When set to false, backchannel providers are excluded"""

					        return queryset.filter(is_backchannel=value)

					        return queryset.filter(is_backchannel=value)

					class ProviderViewSet(

					class ProviderViewSet(

					    TypesMixin,

					    mixins.RetrieveModelMixin,

					    mixins.RetrieveModelMixin,

					    mixins.DestroyModelMixin,

					    mixins.DestroyModelMixin,

					    UsedByMixin,

					    UsedByMixin,

					@ -99,31 +99,3 @@ class ProviderViewSet(

					    def get_queryset(self):  # pragma: no cover

					    def get_queryset(self):  # pragma: no cover

					        return Provider.objects.select_subclasses()

					        return Provider.objects.select_subclasses()

					    @extend_schema(responses={200: TypeCreateSerializer(many=True)})

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    def types(self, request: Request) -> Response:

					        """Get all creatable provider types"""

					        data = []

					        for subclass in all_subclasses(self.queryset.model):

					            subclass: Provider

					            if subclass._meta.abstract:

					                continue

					            data.append(

					                {

					                    "name": subclass._meta.verbose_name,

					                    "description": subclass.__doc__,

					                    "component": subclass().component,

					                    "model_name": subclass._meta.model_name,

					                    "requires_enterprise": isinstance(subclass._meta.app_config, EnterpriseConfig),

					                }

					            )

					        data.append(

					            {

					                "name": _("SAML Provider from Metadata"),

					                "description": _("Create a SAML Provider by importing its Metadata."),

					                "component": "ak-provider-saml-import-form",

					                "model_name": "",

					            }

					        )

					        return Response(TypeCreateSerializer(data, many=True).data)

									
										79

authentik/core/api/sources.py
									
												View File
												
					@ -11,15 +11,15 @@ from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.parsers import MultiPartParser

					from rest_framework.parsers import MultiPartParser

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer

					from rest_framework.viewsets import GenericViewSet

					from rest_framework.viewsets import GenericViewSet

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					from authentik.api.authorization import OwnerFilter, OwnerSuperuserPermissions

					from authentik.api.authorization import OwnerFilter, OwnerSuperuserPermissions

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.core.api.object_types import TypesMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import MetaNameSerializer, TypeCreateSerializer

					from authentik.core.api.utils import MetaNameSerializer, ModelSerializer

					from authentik.core.models import Source, UserSourceConnection

					from authentik.core.models import GroupSourceConnection, Source, UserSourceConnection

					from authentik.core.types import UserSettingSerializer

					from authentik.core.types import UserSettingSerializer

					from authentik.lib.utils.file import (

					from authentik.lib.utils.file import (

					    FilePathSerializer,

					    FilePathSerializer,

					@ -27,7 +27,6 @@ from authentik.lib.utils.file import (

					    set_file,

					    set_file,

					    set_file_url,

					    set_file_url,

					)

					)

					from authentik.lib.utils.reflection import all_subclasses

					from authentik.policies.engine import PolicyEngine

					from authentik.policies.engine import PolicyEngine

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.decorators import permission_required

					@ -61,6 +60,8 @@ class SourceSerializer(ModelSerializer, MetaNameSerializer):

					            "enabled",

					            "enabled",

					            "authentication_flow",

					            "authentication_flow",

					            "enrollment_flow",

					            "enrollment_flow",

					            "user_property_mappings",

					            "group_property_mappings",

					            "component",

					            "component",

					            "verbose_name",

					            "verbose_name",

					            "verbose_name_plural",

					            "verbose_name_plural",

					@ -74,6 +75,7 @@ class SourceSerializer(ModelSerializer, MetaNameSerializer):

					class SourceViewSet(

					class SourceViewSet(

					    TypesMixin,

					    mixins.RetrieveModelMixin,

					    mixins.RetrieveModelMixin,

					    mixins.DestroyModelMixin,

					    mixins.DestroyModelMixin,

					    UsedByMixin,

					    UsedByMixin,

					@ -132,30 +134,6 @@ class SourceViewSet(

					        source: Source = self.get_object()

					        source: Source = self.get_object()

					        return set_file_url(request, source, "icon")

					        return set_file_url(request, source, "icon")

					    @extend_schema(responses={200: TypeCreateSerializer(many=True)})

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    def types(self, request: Request) -> Response:

					        """Get all creatable source types"""

					        data = []

					        for subclass in all_subclasses(self.queryset.model):

					            subclass: Source

					            component = ""

					            if len(subclass.__subclasses__()) > 0:

					                continue

					            if subclass._meta.abstract:

					                component = subclass.__bases__[0]().component

					            else:

					                component = subclass().component

					            data.append(

					                {

					                    "name": subclass._meta.verbose_name,

					                    "description": subclass.__doc__,

					                    "component": component,

					                    "model_name": subclass._meta.model_name,

					                }

					            )

					        return Response(TypeCreateSerializer(data, many=True).data)

					    @extend_schema(responses={200: UserSettingSerializer(many=True)})

					    @extend_schema(responses={200: UserSettingSerializer(many=True)})

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    @action(detail=False, pagination_class=None, filter_backends=[])

					    def user_settings(self, request: Request) -> Response:

					    def user_settings(self, request: Request) -> Response:

					@ -212,6 +190,47 @@ class UserSourceConnectionViewSet(

					    queryset = UserSourceConnection.objects.all()

					    queryset = UserSourceConnection.objects.all()

					    serializer_class = UserSourceConnectionSerializer

					    serializer_class = UserSourceConnectionSerializer

					    permission_classes = [OwnerSuperuserPermissions]

					    permission_classes = [OwnerSuperuserPermissions]

					    filterset_fields = ["user"]

					    filterset_fields = ["user", "source__slug"]

					    search_fields = ["source__slug"]

					    filter_backends = [OwnerFilter, DjangoFilterBackend, OrderingFilter, SearchFilter]

					    filter_backends = [OwnerFilter, DjangoFilterBackend, OrderingFilter, SearchFilter]

					    ordering = ["pk"]

					    ordering = ["source__slug", "pk"]

					class GroupSourceConnectionSerializer(SourceSerializer):

					    """Group Source Connection Serializer"""

					    source = SourceSerializer(read_only=True)

					    class Meta:

					        model = GroupSourceConnection

					        fields = [

					            "pk",

					            "group",

					            "source",

					            "identifier",

					            "created",

					        ]

					        extra_kwargs = {

					            "group": {"read_only": True},

					            "identifier": {"read_only": True},

					            "created": {"read_only": True},

					        }

					class GroupSourceConnectionViewSet(

					    mixins.RetrieveModelMixin,

					    mixins.UpdateModelMixin,

					    mixins.DestroyModelMixin,

					    UsedByMixin,

					    mixins.ListModelMixin,

					    GenericViewSet,

					):

					    """Group-source connection Viewset"""

					    queryset = GroupSourceConnection.objects.all()

					    serializer_class = GroupSourceConnectionSerializer

					    permission_classes = [OwnerSuperuserPermissions]

					    filterset_fields = ["group", "source__slug"]

					    search_fields = ["source__slug"]

					    filter_backends = [OwnerFilter, DjangoFilterBackend, OrderingFilter, SearchFilter]

					    ordering = ["source__slug", "pk"]

									
										26

authentik/core/api/tokens.py
									
												View File
												
					@ -2,6 +2,7 @@

					from typing import Any

					from typing import Any

					from django.utils.timezone import now

					from django_filters.rest_framework import DjangoFilterBackend

					from django_filters.rest_framework import DjangoFilterBackend

					from drf_spectacular.utils import OpenApiResponse, extend_schema, inline_serializer

					from drf_spectacular.utils import OpenApiResponse, extend_schema, inline_serializer

					from guardian.shortcuts import assign_perm, get_anonymous_user

					from guardian.shortcuts import assign_perm, get_anonymous_user

					@ -11,7 +12,6 @@ from rest_framework.fields import CharField

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					from authentik.api.authorization import OwnerSuperuserPermissions

					from authentik.api.authorization import OwnerSuperuserPermissions

					@ -19,7 +19,7 @@ from authentik.blueprints.api import ManagedSerializer

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.users import UserSerializer

					from authentik.core.api.users import UserSerializer

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import ModelSerializer, PassiveSerializer

					from authentik.core.models import (

					from authentik.core.models import (

					    USER_ATTRIBUTE_TOKEN_EXPIRING,

					    USER_ATTRIBUTE_TOKEN_EXPIRING,

					    USER_ATTRIBUTE_TOKEN_MAXIMUM_LIFETIME,

					    USER_ATTRIBUTE_TOKEN_MAXIMUM_LIFETIME,

					@ -27,7 +27,6 @@ from authentik.core.models import (

					    TokenIntents,

					    TokenIntents,

					    User,

					    User,

					    default_token_duration,

					    default_token_duration,

					    token_expires_from_timedelta,

					)

					)

					from authentik.events.models import Event, EventAction

					from authentik.events.models import Event, EventAction

					from authentik.events.utils import model_to_dict

					from authentik.events.utils import model_to_dict

					@ -45,6 +44,13 @@ class TokenSerializer(ManagedSerializer, ModelSerializer):

					        if SERIALIZER_CONTEXT_BLUEPRINT in self.context:

					        if SERIALIZER_CONTEXT_BLUEPRINT in self.context:

					            self.fields["key"] = CharField(required=False)

					            self.fields["key"] = CharField(required=False)

					    def validate_user(self, user: User):

					        """Ensure user of token cannot be changed"""

					        if self.instance and self.instance.user_id:

					            if user.pk != self.instance.user_id:

					                raise ValidationError("User cannot be changed")

					        return user

					    def validate(self, attrs: dict[Any, str]) -> dict[Any, str]:

					    def validate(self, attrs: dict[Any, str]) -> dict[Any, str]:

					        """Ensure only API or App password tokens are created."""

					        """Ensure only API or App password tokens are created."""

					        request: Request = self.context.get("request")

					        request: Request = self.context.get("request")

					@ -68,15 +74,17 @@ class TokenSerializer(ManagedSerializer, ModelSerializer):

					            max_token_lifetime_dt = default_token_duration()

					            max_token_lifetime_dt = default_token_duration()

					            if max_token_lifetime is not None:

					            if max_token_lifetime is not None:

					                try:

					                try:

					                    max_token_lifetime_dt = timedelta_from_string(max_token_lifetime)

					                    max_token_lifetime_dt = now() + timedelta_from_string(max_token_lifetime)

					                except ValueError:

					                except ValueError:

					                    max_token_lifetime_dt = default_token_duration()

					                    pass

					            if "expires" in attrs and attrs.get("expires") > token_expires_from_timedelta(

					            if "expires" in attrs and attrs.get("expires") > max_token_lifetime_dt:

					                max_token_lifetime_dt

					            ):

					                raise ValidationError(

					                raise ValidationError(

					                    {"expires": f"Token expires exceeds maximum lifetime ({max_token_lifetime})."}

					                    {

					                        "expires": (

					                            f"Token expires exceeds maximum lifetime ({max_token_lifetime_dt} UTC)."

					                        )

					                    }

					                )

					                )

					        elif attrs.get("intent") == TokenIntents.INTENT_API:

					        elif attrs.get("intent") == TokenIntents.INTENT_API:

					            # For API tokens, expires cannot be overridden

					            # For API tokens, expires cannot be overridden

									
										11

authentik/core/api/used_by.py
									
												View File
												
					@ -14,6 +14,7 @@ from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import PassiveSerializer

					from authentik.rbac.filters import ObjectFilter

					class DeleteAction(Enum):

					class DeleteAction(Enum):

					@ -39,12 +40,12 @@ def get_delete_action(manager: Manager) -> str:

					    """Get the delete action from the Foreign key, falls back to cascade"""

					    """Get the delete action from the Foreign key, falls back to cascade"""

					    if hasattr(manager, "field"):

					    if hasattr(manager, "field"):

					        if manager.field.remote_field.on_delete.__name__ == SET_NULL.__name__:

					        if manager.field.remote_field.on_delete.__name__ == SET_NULL.__name__:

					            return DeleteAction.SET_NULL.name

					            return DeleteAction.SET_NULL.value

					        if manager.field.remote_field.on_delete.__name__ == SET_DEFAULT.__name__:

					        if manager.field.remote_field.on_delete.__name__ == SET_DEFAULT.__name__:

					            return DeleteAction.SET_DEFAULT.name

					            return DeleteAction.SET_DEFAULT.value

					    if hasattr(manager, "source_field"):

					    if hasattr(manager, "source_field"):

					        return DeleteAction.CASCADE_MANY.name

					        return DeleteAction.CASCADE_MANY.value

					    return DeleteAction.CASCADE.name

					    return DeleteAction.CASCADE.value

					class UsedByMixin:

					class UsedByMixin:

					@ -53,7 +54,7 @@ class UsedByMixin:

					    @extend_schema(

					    @extend_schema(

					        responses={200: UsedBySerializer(many=True)},

					        responses={200: UsedBySerializer(many=True)},

					    )

					    )

					    @action(detail=True, pagination_class=None, filter_backends=[])

					    @action(detail=True, pagination_class=None, filter_backends=[ObjectFilter])

					    def used_by(self, request: Request, *args, **kwargs) -> Response:

					    def used_by(self, request: Request, *args, **kwargs) -> Response:

					        """Get a list of all objects that use this object"""

					        """Get a list of all objects that use this object"""

					        model: Model = self.get_object()

					        model: Model = self.get_object()

									
										49

authentik/core/api/users.py
									
												View File
												
					@ -5,6 +5,7 @@ from json import loads

					from typing import Any

					from typing import Any

					from django.contrib.auth import update_session_auth_hash

					from django.contrib.auth import update_session_auth_hash

					from django.contrib.auth.models import Permission

					from django.contrib.sessions.backends.cache import KEY_PREFIX

					from django.contrib.sessions.backends.cache import KEY_PREFIX

					from django.core.cache import cache

					from django.core.cache import cache

					from django.db.models.functions import ExtractHour

					from django.db.models.functions import ExtractHour

					@ -33,16 +34,21 @@ from drf_spectacular.utils import (

					)

					)

					from guardian.shortcuts import get_objects_for_user

					from guardian.shortcuts import get_objects_for_user

					from rest_framework.decorators import action

					from rest_framework.decorators import action

					from rest_framework.fields import CharField, IntegerField, ListField, SerializerMethodField

					from rest_framework.exceptions import ValidationError

					from rest_framework.fields import (

					    BooleanField,

					    CharField,

					    ChoiceField,

					    DateTimeField,

					    IntegerField,

					    ListField,

					    SerializerMethodField,

					)

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import (

					from rest_framework.serializers import (

					    BooleanField,

					    DateTimeField,

					    ListSerializer,

					    ListSerializer,

					    ModelSerializer,

					    PrimaryKeyRelatedField,

					    PrimaryKeyRelatedField,

					    ValidationError,

					)

					)

					from rest_framework.validators import UniqueValidator

					from rest_framework.validators import UniqueValidator

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					@ -52,7 +58,12 @@ from authentik.admin.api.metrics import CoordinateSerializer

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.blueprints.v1.importer import SERIALIZER_CONTEXT_BLUEPRINT

					from authentik.brands.models import Brand

					from authentik.brands.models import Brand

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import JSONDictField, LinkSerializer, PassiveSerializer

					from authentik.core.api.utils import (

					    JSONDictField,

					    LinkSerializer,

					    ModelSerializer,

					    PassiveSerializer,

					)

					from authentik.core.middleware import (

					from authentik.core.middleware import (

					    SESSION_KEY_IMPERSONATE_ORIGINAL_USER,

					    SESSION_KEY_IMPERSONATE_ORIGINAL_USER,

					    SESSION_KEY_IMPERSONATE_USER,

					    SESSION_KEY_IMPERSONATE_USER,

					@ -74,6 +85,7 @@ from authentik.flows.planner import PLAN_CONTEXT_PENDING_USER, FlowPlanner

					from authentik.flows.views.executor import QS_KEY_TOKEN

					from authentik.flows.views.executor import QS_KEY_TOKEN

					from authentik.lib.avatars import get_avatar

					from authentik.lib.avatars import get_avatar

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.models import get_permission_choices

					from authentik.stages.email.models import EmailStage

					from authentik.stages.email.models import EmailStage

					from authentik.stages.email.tasks import send_mails

					from authentik.stages.email.tasks import send_mails

					from authentik.stages.email.utils import TemplateEmailMessage

					from authentik.stages.email.utils import TemplateEmailMessage

					@ -137,12 +149,19 @@ class UserSerializer(ModelSerializer):

					        super().__init__(*args, **kwargs)

					        super().__init__(*args, **kwargs)

					        if SERIALIZER_CONTEXT_BLUEPRINT in self.context:

					        if SERIALIZER_CONTEXT_BLUEPRINT in self.context:

					            self.fields["password"] = CharField(required=False, allow_null=True)

					            self.fields["password"] = CharField(required=False, allow_null=True)

					            self.fields["permissions"] = ListField(

					                required=False, child=ChoiceField(choices=get_permission_choices())

					            )

					    def create(self, validated_data: dict) -> User:

					    def create(self, validated_data: dict) -> User:

					        """If this serializer is used in the blueprint context, we allow for

					        """If this serializer is used in the blueprint context, we allow for

					        directly setting a password. However should be done via the `set_password`

					        directly setting a password. However should be done via the `set_password`

					        method instead of directly setting it like rest_framework."""

					        method instead of directly setting it like rest_framework."""

					        password = validated_data.pop("password", None)

					        password = validated_data.pop("password", None)

					        permissions = Permission.objects.filter(

					            codename__in=[x.split(".")[1] for x in validated_data.pop("permissions", [])]

					        )

					        validated_data["user_permissions"] = permissions

					        instance: User = super().create(validated_data)

					        instance: User = super().create(validated_data)

					        self._set_password(instance, password)

					        self._set_password(instance, password)

					        return instance

					        return instance

					@ -151,6 +170,10 @@ class UserSerializer(ModelSerializer):

					        """Same as `create` above, set the password directly if we're in a blueprint

					        """Same as `create` above, set the password directly if we're in a blueprint

					        context"""

					        context"""

					        password = validated_data.pop("password", None)

					        password = validated_data.pop("password", None)

					        permissions = Permission.objects.filter(

					            codename__in=[x.split(".")[1] for x in validated_data.pop("permissions", [])]

					        )

					        validated_data["user_permissions"] = permissions

					        instance = super().update(instance, validated_data)

					        instance = super().update(instance, validated_data)

					        self._set_password(instance, password)

					        self._set_password(instance, password)

					        return instance

					        return instance

					@ -407,8 +430,11 @@ class UserViewSet(UsedByMixin, ModelViewSet):

					    search_fields = ["username", "name", "is_active", "email", "uuid"]

					    search_fields = ["username", "name", "is_active", "email", "uuid"]

					    filterset_class = UsersFilter

					    filterset_class = UsersFilter

					    def get_queryset(self):  # pragma: no cover

					    def get_queryset(self):

					        return User.objects.all().exclude_anonymous().prefetch_related("ak_groups")

					        base_qs = User.objects.all().exclude_anonymous()

					        if self.serializer_class(context={"request": self.request})._should_include_groups:

					            base_qs = base_qs.prefetch_related("ak_groups")

					        return base_qs

					    @extend_schema(

					    @extend_schema(

					        parameters=[

					        parameters=[

					@ -652,10 +678,13 @@ class UserViewSet(UsedByMixin, ModelViewSet):

					        if not request.tenant.impersonation:

					        if not request.tenant.impersonation:

					            LOGGER.debug("User attempted to impersonate", user=request.user)

					            LOGGER.debug("User attempted to impersonate", user=request.user)

					            return Response(status=401)

					            return Response(status=401)

					        if not request.user.has_perm("impersonate"):

					        user_to_be = self.get_object()

					        # Check both object-level perms and global perms

					        if not request.user.has_perm(

					            "authentik_core.impersonate", user_to_be

					        ) and not request.user.has_perm("authentik_core.impersonate"):

					            LOGGER.debug("User attempted to impersonate without permissions", user=request.user)

					            LOGGER.debug("User attempted to impersonate without permissions", user=request.user)

					            return Response(status=401)

					            return Response(status=401)

					        user_to_be = self.get_object()

					        if user_to_be.pk == self.request.user.pk:

					        if user_to_be.pk == self.request.user.pk:

					            LOGGER.debug("User attempted to impersonate themselves", user=request.user)

					            LOGGER.debug("User attempted to impersonate themselves", user=request.user)

					            return Response(status=401)

					            return Response(status=401)

									
										58

authentik/core/api/utils.py
									
												View File
												
					@ -6,8 +6,19 @@ from django.db.models import Model

					from drf_spectacular.extensions import OpenApiSerializerFieldExtension

					from drf_spectacular.extensions import OpenApiSerializerFieldExtension

					from drf_spectacular.plumbing import build_basic_type

					from drf_spectacular.plumbing import build_basic_type

					from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.types import OpenApiTypes

					from rest_framework.fields import BooleanField, CharField, IntegerField, JSONField

					from rest_framework.fields import (

					from rest_framework.serializers import Serializer, SerializerMethodField, ValidationError

					    CharField,

					    IntegerField,

					    JSONField,

					    SerializerMethodField,

					)

					from rest_framework.serializers import ModelSerializer as BaseModelSerializer

					from rest_framework.serializers import (

					    Serializer,

					    ValidationError,

					    model_meta,

					    raise_errors_on_nested_writes,

					)

					def is_dict(value: Any):

					def is_dict(value: Any):

					@ -17,6 +28,39 @@ def is_dict(value: Any):

					    raise ValidationError("Value must be a dictionary, and not have any duplicate keys.")

					    raise ValidationError("Value must be a dictionary, and not have any duplicate keys.")

					class ModelSerializer(BaseModelSerializer):

					    def update(self, instance: Model, validated_data):

					        raise_errors_on_nested_writes("update", self, validated_data)

					        info = model_meta.get_field_info(instance)

					        # Simply set each attribute on the instance, and then save it.

					        # Note that unlike `.create()` we don't need to treat many-to-many

					        # relationships as being a special case. During updates we already

					        # have an instance pk for the relationships to be associated with.

					        m2m_fields = []

					        for attr, value in validated_data.items():

					            if attr in info.relations and info.relations[attr].to_many:

					                m2m_fields.append((attr, value))

					            else:

					                setattr(instance, attr, value)

					        instance.save()

					        # Note that many-to-many fields are set after updating instance.

					        # Setting m2m fields triggers signals which could potentially change

					        # updated instance and we do not want it to collide with .update()

					        for attr, value in m2m_fields:

					            field = getattr(instance, attr)

					            # We can't check for inheritance here as m2m managers are generated dynamically

					            if field.__class__.__name__ == "RelatedManager":

					                field.set(value, bulk=False)

					            else:

					                field.set(value)

					        return instance

					class JSONDictField(JSONField):

					class JSONDictField(JSONField):

					    """JSON Field which only allows dictionaries"""

					    """JSON Field which only allows dictionaries"""

					@ -68,16 +112,6 @@ class MetaNameSerializer(PassiveSerializer):

					        return f"{obj._meta.app_label}.{obj._meta.model_name}"

					        return f"{obj._meta.app_label}.{obj._meta.model_name}"

					class TypeCreateSerializer(PassiveSerializer):

					    """Types of an object that can be created"""

					    name = CharField(required=True)

					    description = CharField(required=True)

					    component = CharField(required=True)

					    model_name = CharField(required=True)

					    requires_enterprise = BooleanField(default=False)

					class CacheSerializer(PassiveSerializer):

					class CacheSerializer(PassiveSerializer):

					    """Generic cache stats for an object"""

					    """Generic cache stats for an object"""

									
										5

authentik/core/auth.py
									
												View File
												
					@ -31,8 +31,9 @@ class InbuiltBackend(ModelBackend):

					        # Since we can't directly pass other variables to signals, and we want to log the method

					        # Since we can't directly pass other variables to signals, and we want to log the method

					        # and the token used, we assume we're running in a flow and set a variable in the context

					        # and the token used, we assume we're running in a flow and set a variable in the context

					        flow_plan: FlowPlan = request.session.get(SESSION_KEY_PLAN, FlowPlan(""))

					        flow_plan: FlowPlan = request.session.get(SESSION_KEY_PLAN, FlowPlan(""))

					        flow_plan.context[PLAN_CONTEXT_METHOD] = method

					        flow_plan.context.setdefault(PLAN_CONTEXT_METHOD, method)

					        flow_plan.context[PLAN_CONTEXT_METHOD_ARGS] = cleanse_dict(sanitize_dict(kwargs))

					        flow_plan.context.setdefault(PLAN_CONTEXT_METHOD_ARGS, {})

					        flow_plan.context[PLAN_CONTEXT_METHOD_ARGS].update(cleanse_dict(sanitize_dict(kwargs)))

					        request.session[SESSION_KEY_PLAN] = flow_plan

					        request.session[SESSION_KEY_PLAN] = flow_plan

									
										7

authentik/core/exceptions.py
									
												View File
											
					@ -1,7 +0,0 @@

					"""authentik core exceptions"""

					from authentik.lib.sentry import SentryIgnoredException

					class PropertyMappingExpressionException(SentryIgnoredException):

					    """Error when a PropertyMapping Exception expression could not be parsed or evaluated."""

									
										33

authentik/core/expression/evaluator.py
									
												View File
												
					@ -1,11 +1,13 @@

					"""Property Mapping Evaluator"""

					"""Property Mapping Evaluator"""

					from types import CodeType

					from typing import Any

					from typing import Any

					from django.db.models import Model

					from django.db.models import Model

					from django.http import HttpRequest

					from django.http import HttpRequest

					from prometheus_client import Histogram

					from prometheus_client import Histogram

					from authentik.core.expression.exceptions import SkipObjectException

					from authentik.core.models import User

					from authentik.core.models import User

					from authentik.events.models import Event, EventAction

					from authentik.events.models import Event, EventAction

					from authentik.lib.expression.evaluator import BaseEvaluator

					from authentik.lib.expression.evaluator import BaseEvaluator

					@ -23,6 +25,8 @@ class PropertyMappingEvaluator(BaseEvaluator):

					    """Custom Evaluator that adds some different context variables."""

					    """Custom Evaluator that adds some different context variables."""

					    dry_run: bool

					    dry_run: bool

					    model: Model

					    _compiled: CodeType | None = None

					    def __init__(

					    def __init__(

					        self,

					        self,

					@ -32,22 +36,32 @@ class PropertyMappingEvaluator(BaseEvaluator):

					        dry_run: bool | None = False,

					        dry_run: bool | None = False,

					        **kwargs,

					        **kwargs,

					    ):

					    ):

					        self.model = model

					        if hasattr(model, "name"):

					        if hasattr(model, "name"):

					            _filename = model.name

					            _filename = model.name

					        else:

					        else:

					            _filename = str(model)

					            _filename = str(model)

					        super().__init__(filename=_filename)

					        super().__init__(filename=_filename)

					        self.dry_run = dry_run

					        self.set_context(user, request, **kwargs)

					    def set_context(

					        self,

					        user: User | None = None,

					        request: HttpRequest | None = None,

					        **kwargs,

					    ):

					        req = PolicyRequest(user=User())

					        req = PolicyRequest(user=User())

					        req.obj = model

					        req.obj = self.model

					        if user:

					        if user:

					            req.user = user

					            req.user = user

					            self._context["user"] = user

					            self._context["user"] = user

					        if request:

					        if request:

					            req.http_request = request

					            req.http_request = request

					        self._context["request"] = req

					        req.context.update(**kwargs)

					        req.context.update(**kwargs)

					        self._context["request"] = req

					        self._context.update(**kwargs)

					        self._context.update(**kwargs)

					        self.dry_run = dry_run

					        self._globals["SkipObject"] = SkipObjectException

					    def handle_error(self, exc: Exception, expression_source: str):

					    def handle_error(self, exc: Exception, expression_source: str):

					        """Exception Handler"""

					        """Exception Handler"""

					@ -62,10 +76,19 @@ class PropertyMappingEvaluator(BaseEvaluator):

					        )

					        )

					        if "request" in self._context:

					        if "request" in self._context:

					            req: PolicyRequest = self._context["request"]

					            req: PolicyRequest = self._context["request"]

					            event.from_http(req.http_request, req.user)

					            if req.http_request:

					            return

					                event.from_http(req.http_request, req.user)

					                return

					            elif req.user:

					                event.set_user(req.user)

					        event.save()

					        event.save()

					    def evaluate(self, *args, **kwargs) -> Any:

					    def evaluate(self, *args, **kwargs) -> Any:

					        with PROPERTY_MAPPING_TIME.labels(mapping_name=self._filename).time():

					        with PROPERTY_MAPPING_TIME.labels(mapping_name=self._filename).time():

					            return super().evaluate(*args, **kwargs)

					            return super().evaluate(*args, **kwargs)

					    def compile(self, expression: str | None = None) -> Any:

					        if not self._compiled:

					            compiled = super().compile(expression or self.model.expression)

					            self._compiled = compiled

					        return self._compiled

									
										19

authentik/core/expression/exceptions.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,19 @@

					"""authentik core exceptions"""

					from authentik.lib.expression.exceptions import ControlFlowException

					from authentik.lib.sentry import SentryIgnoredException

					class PropertyMappingExpressionException(SentryIgnoredException):

					    """Error when a PropertyMapping Exception expression could not be parsed or evaluated."""

					    def __init__(self, exc: Exception, mapping) -> None:

					        super().__init__()

					        self.exc = exc

					        self.mapping = mapping

					class SkipObjectException(ControlFlowException):

					    """Exception which can be raised in a property mapping to skip syncing an object.

					    Only applies to Property mappings which sync objects, and not on mappings which transitively

					    apply to a single user"""

									
										32

authentik/core/management/commands/change_user_type.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,32 @@

					"""Change user type"""

					from authentik.core.models import User, UserTypes

					from authentik.tenants.management import TenantCommand

					class Command(TenantCommand):

					    """Change user type"""

					    def add_arguments(self, parser):

					        parser.add_argument("--type", type=str, required=True)

					        parser.add_argument("--all", action="store_true", default=False)

					        parser.add_argument("usernames", nargs="*", type=str)

					    def handle_per_tenant(self, **options):

					        print(options)

					        new_type = UserTypes(options["type"])

					        qs = (

					            User.objects.exclude_anonymous()

					            .exclude(type=UserTypes.SERVICE_ACCOUNT)

					            .exclude(type=UserTypes.INTERNAL_SERVICE_ACCOUNT)

					        )

					        if options["usernames"] and options["all"]:

					            self.stderr.write("--all and usernames specified, only one can be specified")

					            return

					        if not options["usernames"] and not options["all"]:

					            self.stderr.write("--all or usernames must be specified")

					            return

					        if options["usernames"] and not options["all"]:

					            qs = qs.filter(username__in=options["usernames"])

					        updated = qs.update(type=new_type)

					        self.stdout.write(f"Updated {updated} users.")

									
										8

authentik/core/migrations/0029_provider_backchannel_applications_and_more.py
									
												View File
												
					@ -7,11 +7,13 @@ from django.db.backends.base.schema import BaseDatabaseSchemaEditor

					def backport_is_backchannel(apps: Apps, schema_editor: BaseDatabaseSchemaEditor):

					def backport_is_backchannel(apps: Apps, schema_editor: BaseDatabaseSchemaEditor):

					    from authentik.core.models import BackchannelProvider

					    db_alias = schema_editor.connection.alias

					    from authentik.providers.ldap.models import LDAPProvider

					    from authentik.providers.scim.models import SCIMProvider

					    for model in BackchannelProvider.__subclasses__():

					    for model in [LDAPProvider, SCIMProvider]:

					        try:

					        try:

					            for obj in model.objects.only("is_backchannel"):

					            for obj in model.objects.using(db_alias).only("is_backchannel"):

					                obj.is_backchannel = True

					                obj.is_backchannel = True

					                obj.save()

					                obj.save()

					        except (DatabaseError, InternalError, ProgrammingError):

					        except (DatabaseError, InternalError, ProgrammingError):

									
										43

authentik/core/migrations/0036_source_group_property_mappings_and_more.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,43 @@

					# Generated by Django 5.0.2 on 2024-02-29 11:05

					from django.db import migrations, models

					class Migration(migrations.Migration):

					    dependencies = [

					        ("authentik_core", "0035_alter_group_options_and_more"),

					    ]

					    operations = [

					        migrations.AddField(

					            model_name="source",

					            name="group_property_mappings",

					            field=models.ManyToManyField(

					                blank=True,

					                default=None,

					                related_name="source_grouppropertymappings_set",

					                to="authentik_core.propertymapping",

					            ),

					        ),

					        migrations.AddField(

					            model_name="source",

					            name="user_property_mappings",

					            field=models.ManyToManyField(

					                blank=True,

					                default=None,

					                related_name="source_userpropertymappings_set",

					                to="authentik_core.propertymapping",

					            ),

					        ),

					        migrations.AlterField(

					            model_name="source",

					            name="property_mappings",

					            field=models.ManyToManyField(

					                blank=True,

					                default=None,

					                related_name="source_set",

					                to="authentik_core.propertymapping",

					            ),

					        ),

					    ]

									
										18

authentik/core/migrations/0037_remove_source_property_mappings.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,18 @@

					# Generated by Django 5.0.2 on 2024-02-29 11:21

					from django.db import migrations

					class Migration(migrations.Migration):

					    dependencies = [

					        ("authentik_sources_ldap", "0005_remove_ldappropertymapping_object_field_and_more"),

					        ("authentik_core", "0036_source_group_property_mappings_and_more"),

					    ]

					    operations = [

					        migrations.RemoveField(

					            model_name="source",

					            name="property_mappings",

					        ),

					    ]

									
										19

authentik/core/migrations/0038_source_authentik_c_enabled_d72365_idx.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,19 @@

					# Generated by Django 5.0.7 on 2024-07-22 13:32

					from django.db import migrations, models

					class Migration(migrations.Migration):

					    dependencies = [

					        ("authentik_core", "0037_remove_source_property_mappings"),

					        ("authentik_flows", "0027_auto_20231028_1424"),

					        ("authentik_policies", "0011_policybinding_failure_result_and_more"),

					    ]

					    operations = [

					        migrations.AddIndex(

					            model_name="source",

					            index=models.Index(fields=["enabled"], name="authentik_c_enabled_d72365_idx"),

					        ),

					    ]

									
										67

authentik/core/migrations/0039_source_group_matching_mode_alter_group_name_and_more.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,67 @@

					# Generated by Django 5.0.7 on 2024-08-01 18:52

					import django.db.models.deletion

					from django.db import migrations, models

					class Migration(migrations.Migration):

					    dependencies = [

					        ("authentik_core", "0038_source_authentik_c_enabled_d72365_idx"),

					    ]

					    operations = [

					        migrations.AddField(

					            model_name="source",

					            name="group_matching_mode",

					            field=models.TextField(

					                choices=[

					                    ("identifier", "Use the source-specific identifier"),

					                    (

					                        "name_link",

					                        "Link to a group with identical name. Can have security implications when a group name is used with another source.",

					                    ),

					                    (

					                        "name_deny",

					                        "Use the group name, but deny enrollment when the name already exists.",

					                    ),

					                ],

					                default="identifier",

					                help_text="How the source determines if an existing group should be used or a new group created.",

					            ),

					        ),

					        migrations.AlterField(

					            model_name="group",

					            name="name",

					            field=models.TextField(verbose_name="name"),

					        ),

					        migrations.CreateModel(

					            name="GroupSourceConnection",

					            fields=[

					                (

					                    "id",

					                    models.AutoField(

					                        auto_created=True, primary_key=True, serialize=False, verbose_name="ID"

					                    ),

					                ),

					                ("created", models.DateTimeField(auto_now_add=True)),

					                ("last_updated", models.DateTimeField(auto_now=True)),

					                ("identifier", models.TextField()),

					                (

					                    "group",

					                    models.ForeignKey(

					                        on_delete=django.db.models.deletion.CASCADE, to="authentik_core.group"

					                    ),

					                ),

					                (

					                    "source",

					                    models.ForeignKey(

					                        on_delete=django.db.models.deletion.CASCADE, to="authentik_core.source"

					                    ),

					                ),

					            ],

					            options={

					                "unique_together": {("group", "source")},

					            },

					        ),

					    ]

									
										323

authentik/core/models.py
									
												View File
												
					@ -1,6 +1,6 @@

					"""authentik core models"""

					"""authentik core models"""

					from datetime import datetime, timedelta

					from datetime import datetime

					from hashlib import sha256

					from hashlib import sha256

					from typing import Any, Optional, Self

					from typing import Any, Optional, Self

					from uuid import uuid4

					from uuid import uuid4

					@ -11,10 +11,12 @@ from django.contrib.auth.models import AbstractUser

					from django.contrib.auth.models import UserManager as DjangoUserManager

					from django.contrib.auth.models import UserManager as DjangoUserManager

					from django.db import models

					from django.db import models

					from django.db.models import Q, QuerySet, options

					from django.db.models import Q, QuerySet, options

					from django.db.models.constants import LOOKUP_SEP

					from django.http import HttpRequest

					from django.http import HttpRequest

					from django.utils.functional import SimpleLazyObject, cached_property

					from django.utils.functional import SimpleLazyObject, cached_property

					from django.utils.timezone import now

					from django.utils.timezone import now

					from django.utils.translation import gettext_lazy as _

					from django.utils.translation import gettext_lazy as _

					from django_cte import CTEQuerySet, With

					from guardian.conf import settings

					from guardian.conf import settings

					from guardian.mixins import GuardianUserMixin

					from guardian.mixins import GuardianUserMixin

					from model_utils.managers import InheritanceManager

					from model_utils.managers import InheritanceManager

					@ -22,10 +24,12 @@ from rest_framework.serializers import Serializer

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					from authentik.blueprints.models import ManagedModel

					from authentik.blueprints.models import ManagedModel

					from authentik.core.exceptions import PropertyMappingExpressionException

					from authentik.core.expression.exceptions import PropertyMappingExpressionException

					from authentik.core.types import UILoginButton, UserSettingSerializer

					from authentik.core.types import UILoginButton, UserSettingSerializer

					from authentik.lib.avatars import get_avatar

					from authentik.lib.avatars import get_avatar

					from authentik.lib.expression.exceptions import ControlFlowException

					from authentik.lib.generators import generate_id

					from authentik.lib.generators import generate_id

					from authentik.lib.merge import MERGE_LIST_UNIQUE

					from authentik.lib.models import (

					from authentik.lib.models import (

					    CreatedUpdatedModel,

					    CreatedUpdatedModel,

					    DomainlessFormattedURLValidator,

					    DomainlessFormattedURLValidator,

					@ -56,6 +60,8 @@ options.DEFAULT_NAMES = options.DEFAULT_NAMES + (

					    "authentik_used_by_shadows",

					    "authentik_used_by_shadows",

					)

					)

					GROUP_RECURSION_LIMIT = 20

					def default_token_duration() -> datetime:

					def default_token_duration() -> datetime:

					    """Default duration a Token is valid"""

					    """Default duration a Token is valid"""

					@ -68,11 +74,6 @@ def default_token_duration() -> datetime:

					    return now() + timedelta_from_string(token_duration)

					    return now() + timedelta_from_string(token_duration)

					def token_expires_from_timedelta(dt: timedelta) -> datetime:

					    """Return a `datetime.datetime` object with the duration of the Token"""

					    return now() + dt

					def default_token_key() -> str:

					def default_token_key() -> str:

					    """Default token key"""

					    """Default token key"""

					    current_tenant = get_current_tenant()

					    current_tenant = get_current_tenant()

					@ -101,12 +102,78 @@ class UserTypes(models.TextChoices):

					    INTERNAL_SERVICE_ACCOUNT = "internal_service_account"

					    INTERNAL_SERVICE_ACCOUNT = "internal_service_account"

					class Group(SerializerModel):

					class AttributesMixin(models.Model):

					    """Adds an attributes property to a model"""

					    attributes = models.JSONField(default=dict, blank=True)

					    class Meta:

					        abstract = True

					    def update_attributes(self, properties: dict[str, Any]):

					        """Update fields and attributes, but correctly by merging dicts"""

					        for key, value in properties.items():

					            if key == "attributes":

					                continue

					            setattr(self, key, value)

					        final_attributes = {}

					        MERGE_LIST_UNIQUE.merge(final_attributes, self.attributes)

					        MERGE_LIST_UNIQUE.merge(final_attributes, properties.get("attributes", {}))

					        self.attributes = final_attributes

					        self.save()

					    @classmethod

					    def update_or_create_attributes(

					        cls, query: dict[str, Any], properties: dict[str, Any]

					    ) -> tuple[models.Model, bool]:

					        """Same as django's update_or_create but correctly updates attributes by merging dicts"""

					        instance = cls.objects.filter(**query).first()

					        if not instance:

					            return cls.objects.create(**properties), True

					        instance.update_attributes(properties)

					        return instance, False

					class GroupQuerySet(CTEQuerySet):

					    def with_children_recursive(self):

					        """Recursively get all groups that have the current queryset as parents

					        or are indirectly related."""

					        def make_cte(cte):

					            """Build the query that ends up in WITH RECURSIVE"""

					            # Start from self, aka the current query

					            # Add a depth attribute to limit the recursion

					            return self.annotate(

					                relative_depth=models.Value(0, output_field=models.IntegerField())

					            ).union(

					                # Here is the recursive part of the query. cte refers to the previous iteration

					                # Only select groups for which the parent is part of the previous iteration

					                # and increase the depth

					                # Finally, limit the depth

					                cte.join(Group, group_uuid=cte.col.parent_id)

					                .annotate(

					                    relative_depth=models.ExpressionWrapper(

					                        cte.col.relative_depth

					                        + models.Value(1, output_field=models.IntegerField()),

					                        output_field=models.IntegerField(),

					                    )

					                )

					                .filter(relative_depth__lt=GROUP_RECURSION_LIMIT),

					                all=True,

					            )

					        # Build the recursive query, see above

					        cte = With.recursive(make_cte)

					        # Return the result, as a usable queryset for Group.

					        return cte.join(Group, group_uuid=cte.col.group_uuid).with_cte(cte)

					class Group(SerializerModel, AttributesMixin):

					    """Group model which supports a basic hierarchy and has attributes"""

					    """Group model which supports a basic hierarchy and has attributes"""

					    group_uuid = models.UUIDField(primary_key=True, editable=False, default=uuid4)

					    group_uuid = models.UUIDField(primary_key=True, editable=False, default=uuid4)

					    name = models.CharField(_("name"), max_length=80)

					    name = models.TextField(_("name"))

					    is_superuser = models.BooleanField(

					    is_superuser = models.BooleanField(

					        default=False, help_text=_("Users added to this group will be superusers.")

					        default=False, help_text=_("Users added to this group will be superusers.")

					    )

					    )

					@ -121,7 +188,26 @@ class Group(SerializerModel):

					        on_delete=models.SET_NULL,

					        on_delete=models.SET_NULL,

					        related_name="children",

					        related_name="children",

					    )

					    )

					    attributes = models.JSONField(default=dict, blank=True)

					    objects = GroupQuerySet.as_manager()

					    class Meta:

					        unique_together = (

					            (

					                "name",

					                "parent",

					            ),

					        )

					        indexes = [models.Index(fields=["name"])]

					        verbose_name = _("Group")

					        verbose_name_plural = _("Groups")

					        permissions = [

					            ("add_user_to_group", _("Add user to group")),

					            ("remove_user_from_group", _("Remove user from group")),

					        ]

					    def __str__(self):

					        return f"Group {self.name}"

					    @property

					    @property

					    def serializer(self) -> Serializer:

					    def serializer(self) -> Serializer:

					@ -141,54 +227,11 @@ class Group(SerializerModel):

					        return user.all_groups().filter(group_uuid=self.group_uuid).exists()

					        return user.all_groups().filter(group_uuid=self.group_uuid).exists()

					    def children_recursive(self: Self | QuerySet["Group"]) -> QuerySet["Group"]:

					    def children_recursive(self: Self | QuerySet["Group"]) -> QuerySet["Group"]:

					        """Recursively get all groups that have this as parent or are indirectly related"""

					        """Compatibility layer for Group.objects.with_children_recursive()"""

					        direct_groups = []

					        qs = self

					        if isinstance(self, QuerySet):

					        if not isinstance(self, QuerySet):

					            direct_groups = list(x for x in self.all().values_list("pk", flat=True).iterator())

					            qs = Group.objects.filter(group_uuid=self.group_uuid)

					        else:

					        return qs.with_children_recursive()

					            direct_groups = [self.pk]

					        if len(direct_groups) < 1:

					            return Group.objects.none()

					        query = """

					        WITH RECURSIVE parents AS (

					            SELECT authentik_core_group.*, 0 AS relative_depth

					            FROM authentik_core_group

					            WHERE authentik_core_group.group_uuid = ANY(%s)

					            UNION ALL

					            SELECT authentik_core_group.*, parents.relative_depth + 1

					            FROM authentik_core_group, parents

					            WHERE (

					                authentik_core_group.group_uuid = parents.parent_id and

					                parents.relative_depth < 20

					            )

					        )

					        SELECT group_uuid

					        FROM parents

					        GROUP BY group_uuid, name

					        ORDER BY name;

					        """

					        group_pks = [group.pk for group in Group.objects.raw(query, [direct_groups]).iterator()]

					        return Group.objects.filter(pk__in=group_pks)

					    def __str__(self):

					        return f"Group {self.name}"

					    class Meta:

					        unique_together = (

					            (

					                "name",

					                "parent",

					            ),

					        )

					        indexes = [models.Index(fields=["name"])]

					        verbose_name = _("Group")

					        verbose_name_plural = _("Groups")

					        permissions = [

					            ("add_user_to_group", _("Add user to group")),

					            ("remove_user_from_group", _("Remove user from group")),

					        ]

					class UserQuerySet(models.QuerySet):

					class UserQuerySet(models.QuerySet):

					@ -215,7 +258,7 @@ class UserManager(DjangoUserManager):

					        return self.get_queryset().exclude_anonymous()

					        return self.get_queryset().exclude_anonymous()

					class User(SerializerModel, GuardianUserMixin, AbstractUser):

					class User(SerializerModel, GuardianUserMixin, AttributesMixin, AbstractUser):

					    """authentik User model, based on django's contrib auth user model."""

					    """authentik User model, based on django's contrib auth user model."""

					    uuid = models.UUIDField(default=uuid4, editable=False, unique=True)

					    uuid = models.UUIDField(default=uuid4, editable=False, unique=True)

					@ -227,20 +270,38 @@ class User(SerializerModel, GuardianUserMixin, AbstractUser):

					    ak_groups = models.ManyToManyField("Group", related_name="users")

					    ak_groups = models.ManyToManyField("Group", related_name="users")

					    password_change_date = models.DateTimeField(auto_now_add=True)

					    password_change_date = models.DateTimeField(auto_now_add=True)

					    attributes = models.JSONField(default=dict, blank=True)

					    objects = UserManager()

					    objects = UserManager()

					    class Meta:

					        verbose_name = _("User")

					        verbose_name_plural = _("Users")

					        permissions = [

					            ("reset_user_password", _("Reset Password")),

					            ("impersonate", _("Can impersonate other users")),

					            ("assign_user_permissions", _("Can assign permissions to users")),

					            ("unassign_user_permissions", _("Can unassign permissions from users")),

					            ("preview_user", _("Can preview user data sent to providers")),

					            ("view_user_applications", _("View applications the user has access to")),

					        ]

					        indexes = [

					            models.Index(fields=["last_login"]),

					            models.Index(fields=["password_change_date"]),

					            models.Index(fields=["uuid"]),

					            models.Index(fields=["path"]),

					            models.Index(fields=["type"]),

					        ]

					    def __str__(self):

					        return self.username

					    @staticmethod

					    @staticmethod

					    def default_path() -> str:

					    def default_path() -> str:

					        """Get the default user path"""

					        """Get the default user path"""

					        return User._meta.get_field("path").default

					        return User._meta.get_field("path").default

					    def all_groups(self) -> QuerySet[Group]:

					    def all_groups(self) -> QuerySet[Group]:

					        """Recursively get all groups this user is a member of.

					        """Recursively get all groups this user is a member of."""

					        At least one query is done to get the direct groups of the user, with groups

					        return self.ak_groups.all().with_children_recursive()

					        there are at most 3 queries done"""

					        return Group.children_recursive(self.ak_groups.all())

					    def group_attributes(self, request: HttpRequest | None = None) -> dict[str, Any]:

					    def group_attributes(self, request: HttpRequest | None = None) -> dict[str, Any]:

					        """Get a dictionary containing the attributes from all groups the user belongs to,

					        """Get a dictionary containing the attributes from all groups the user belongs to,

					@ -314,25 +375,6 @@ class User(SerializerModel, GuardianUserMixin, AbstractUser):

					        """Get avatar, depending on authentik.avatar setting"""

					        """Get avatar, depending on authentik.avatar setting"""

					        return get_avatar(self)

					        return get_avatar(self)

					    class Meta:

					        verbose_name = _("User")

					        verbose_name_plural = _("Users")

					        permissions = [

					            ("reset_user_password", _("Reset Password")),

					            ("impersonate", _("Can impersonate other users")),

					            ("assign_user_permissions", _("Can assign permissions to users")),

					            ("unassign_user_permissions", _("Can unassign permissions from users")),

					            ("preview_user", _("Can preview user data sent to providers")),

					            ("view_user_applications", _("View applications the user has access to")),

					        ]

					        indexes = [

					            models.Index(fields=["last_login"]),

					            models.Index(fields=["password_change_date"]),

					            models.Index(fields=["uuid"]),

					            models.Index(fields=["path"]),

					            models.Index(fields=["type"]),

					        ]

					class Provider(SerializerModel):

					class Provider(SerializerModel):

					    """Application-independent Provider instance. For example SAML2 Remote, OAuth2 Application"""

					    """Application-independent Provider instance. For example SAML2 Remote, OAuth2 Application"""

					@ -382,6 +424,10 @@ class Provider(SerializerModel):

					        Can return None for providers that are not URL-based"""

					        Can return None for providers that are not URL-based"""

					        return None

					        return None

					    @property

					    def icon_url(self) -> str | None:

					        return None

					    @property

					    @property

					    def component(self) -> str:

					    def component(self) -> str:

					        """Return component used to edit this object"""

					        """Return component used to edit this object"""

					@ -416,6 +462,14 @@ class BackchannelProvider(Provider):

					        abstract = True

					        abstract = True

					class ApplicationQuerySet(QuerySet):

					    def with_provider(self) -> "QuerySet[Application]":

					        qs = self.select_related("provider")

					        for subclass in Provider.objects.get_queryset()._get_subclasses_recurse(Provider):

					            qs = qs.select_related(f"provider__{subclass}")

					        return qs

					class Application(SerializerModel, PolicyBindingModel):

					class Application(SerializerModel, PolicyBindingModel):

					    """Every Application which uses authentik for authentication/identification/authorization

					    """Every Application which uses authentik for authentication/identification/authorization

					    needs an Application record. Other authentication types can subclass this Model to

					    needs an Application record. Other authentication types can subclass this Model to

					@ -447,6 +501,8 @@ class Application(SerializerModel, PolicyBindingModel):

					    meta_description = models.TextField(default="", blank=True)

					    meta_description = models.TextField(default="", blank=True)

					    meta_publisher = models.TextField(default="", blank=True)

					    meta_publisher = models.TextField(default="", blank=True)

					    objects = ApplicationQuerySet.as_manager()

					    @property

					    @property

					    def serializer(self) -> Serializer:

					    def serializer(self) -> Serializer:

					        from authentik.core.api.applications import ApplicationSerializer

					        from authentik.core.api.applications import ApplicationSerializer

					@ -483,16 +539,28 @@ class Application(SerializerModel, PolicyBindingModel):

					        return url

					        return url

					    def get_provider(self) -> Provider | None:

					    def get_provider(self) -> Provider | None:

					        """Get casted provider instance"""

					        """Get casted provider instance. Needs Application queryset with_provider"""

					        if not self.provider:

					        if not self.provider:

					            return None

					            return None

					        # if the Application class has been cache, self.provider is set

					        # but doing a direct query lookup will fail.

					        candidates = []

					        # In that case, just return None

					        base_class = Provider

					        try:

					        for subclass in base_class.objects.get_queryset()._get_subclasses_recurse(base_class):

					            return Provider.objects.get_subclass(pk=self.provider.pk)

					            parent = self.provider

					        except Provider.DoesNotExist:

					            for level in subclass.split(LOOKUP_SEP):

					                try:

					                    parent = getattr(parent, level)

					                except AttributeError:

					                    break

					            if parent in candidates:

					                continue

					            idx = subclass.count(LOOKUP_SEP)

					            if type(parent) is not base_class:

					                idx += 1

					            candidates.insert(idx, parent)

					        if not candidates:

					            return None

					            return None

					        return candidates[-1]

					    def __str__(self):

					    def __str__(self):

					        return str(self.name)

					        return str(self.name)

					@ -522,6 +590,19 @@ class SourceUserMatchingModes(models.TextChoices):

					    )

					    )

					class SourceGroupMatchingModes(models.TextChoices):

					    """Different modes a source can handle new/returning groups"""

					    IDENTIFIER = "identifier", _("Use the source-specific identifier")

					    NAME_LINK = "name_link", _(

					        "Link to a group with identical name. Can have security implications "

					        "when a group name is used with another source."

					    )

					    NAME_DENY = "name_deny", _(

					        "Use the group name, but deny enrollment when the name already exists."

					    )

					class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					    """Base Authentication source, i.e. an OAuth Provider, SAML Remote or LDAP Server"""

					    """Base Authentication source, i.e. an OAuth Provider, SAML Remote or LDAP Server"""

					@ -531,7 +612,12 @@ class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					    user_path_template = models.TextField(default="goauthentik.io/sources/%(slug)s")

					    user_path_template = models.TextField(default="goauthentik.io/sources/%(slug)s")

					    enabled = models.BooleanField(default=True)

					    enabled = models.BooleanField(default=True)

					    property_mappings = models.ManyToManyField("PropertyMapping", default=None, blank=True)

					    user_property_mappings = models.ManyToManyField(

					        "PropertyMapping", default=None, blank=True, related_name="source_userpropertymappings_set"

					    )

					    group_property_mappings = models.ManyToManyField(

					        "PropertyMapping", default=None, blank=True, related_name="source_grouppropertymappings_set"

					    )

					    icon = models.FileField(

					    icon = models.FileField(

					        upload_to="source-icons/",

					        upload_to="source-icons/",

					        default=None,

					        default=None,

					@ -566,6 +652,14 @@ class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					            "a new user enrolled."

					            "a new user enrolled."

					        ),

					        ),

					    )

					    )

					    group_matching_mode = models.TextField(

					        choices=SourceGroupMatchingModes.choices,

					        default=SourceGroupMatchingModes.IDENTIFIER,

					        help_text=_(

					            "How the source determines if an existing group should be used or "

					            "a new group created."

					        ),

					    )

					    objects = InheritanceManager()

					    objects = InheritanceManager()

					@ -595,6 +689,11 @@ class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					        """Return component used to edit this object"""

					        """Return component used to edit this object"""

					        raise NotImplementedError

					        raise NotImplementedError

					    @property

					    def property_mapping_type(self) -> "type[PropertyMapping]":

					        """Return property mapping type used by this object"""

					        raise NotImplementedError

					    def ui_login_button(self, request: HttpRequest) -> UILoginButton | None:

					    def ui_login_button(self, request: HttpRequest) -> UILoginButton | None:

					        """If source uses a http-based flow, return UI Information about the login

					        """If source uses a http-based flow, return UI Information about the login

					        button. If source doesn't use http-based flow, return None."""

					        button. If source doesn't use http-based flow, return None."""

					@ -605,6 +704,14 @@ class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					        user settings are available, or UserSettingSerializer."""

					        user settings are available, or UserSettingSerializer."""

					        return None

					        return None

					    def get_base_user_properties(self, **kwargs) -> dict[str, Any | dict[str, Any]]:

					        """Get base properties for a user to build final properties upon."""

					        raise NotImplementedError

					    def get_base_group_properties(self, **kwargs) -> dict[str, Any | dict[str, Any]]:

					        """Get base properties for a group to build final properties upon."""

					        raise NotImplementedError

					    def __str__(self):

					    def __str__(self):

					        return str(self.name)

					        return str(self.name)

					@ -620,6 +727,11 @@ class Source(ManagedModel, SerializerModel, PolicyBindingModel):

					                    "name",

					                    "name",

					                ]

					                ]

					            ),

					            ),

					            models.Index(

					                fields=[

					                    "enabled",

					                ]

					            ),

					        ]

					        ]

					@ -637,12 +749,33 @@ class UserSourceConnection(SerializerModel, CreatedUpdatedModel):

					        raise NotImplementedError

					        raise NotImplementedError

					    def __str__(self) -> str:

					    def __str__(self) -> str:

					        return f"User-source connection (user={self.user.username}, source={self.source.slug})"

					        return f"User-source connection (user={self.user_id}, source={self.source_id})"

					    class Meta:

					    class Meta:

					        unique_together = (("user", "source"),)

					        unique_together = (("user", "source"),)

					class GroupSourceConnection(SerializerModel, CreatedUpdatedModel):

					    """Connection between Group and Source."""

					    group = models.ForeignKey(Group, on_delete=models.CASCADE)

					    source = models.ForeignKey(Source, on_delete=models.CASCADE)

					    identifier = models.TextField()

					    objects = InheritanceManager()

					    @property

					    def serializer(self) -> type[Serializer]:

					        """Get serializer for this model"""

					        raise NotImplementedError

					    def __str__(self) -> str:

					        return f"Group-source connection (group={self.group_id}, source={self.source_id})"

					    class Meta:

					        unique_together = (("group", "source"),)

					class ExpiringModel(models.Model):

					class ExpiringModel(models.Model):

					    """Base Model which can expire, and is automatically cleaned up."""

					    """Base Model which can expire, and is automatically cleaned up."""

					@ -772,8 +905,10 @@ class PropertyMapping(SerializerModel, ManagedModel):

					        evaluator = PropertyMappingEvaluator(self, user, request, **kwargs)

					        evaluator = PropertyMappingEvaluator(self, user, request, **kwargs)

					        try:

					        try:

					            return evaluator.evaluate(self.expression)

					            return evaluator.evaluate(self.expression)

					        except ControlFlowException as exc:

					            raise exc

					        except Exception as exc:

					        except Exception as exc:

					            raise PropertyMappingExpressionException(exc) from exc

					            raise PropertyMappingExpressionException(exc, self) from exc

					    def __str__(self):

					    def __str__(self):

					        return f"Property Mapping {self.name}"

					        return f"Property Mapping {self.name}"

									
										2

authentik/core/signals.py
									
												View File
												
					@ -52,6 +52,8 @@ def user_logged_in_session(sender, request: HttpRequest, user: User, **_):

					@receiver(user_logged_out)

					@receiver(user_logged_out)

					def user_logged_out_session(sender, request: HttpRequest, user: User, **_):

					def user_logged_out_session(sender, request: HttpRequest, user: User, **_):

					    """Delete AuthenticatedSession if it exists"""

					    """Delete AuthenticatedSession if it exists"""

					    if not request.session or not request.session.session_key:

					        return

					    AuthenticatedSession.objects.filter(session_key=request.session.session_key).delete()

					    AuthenticatedSession.objects.filter(session_key=request.session.session_key).delete()

									
										247

authentik/core/sources/flow_manager.py
									
												View File
												
					@ -4,7 +4,7 @@ from enum import Enum

					from typing import Any

					from typing import Any

					from django.contrib import messages

					from django.contrib import messages

					from django.db import IntegrityError

					from django.db import IntegrityError, transaction

					from django.db.models.query_utils import Q

					from django.db.models.query_utils import Q

					from django.http import HttpRequest, HttpResponse

					from django.http import HttpRequest, HttpResponse

					from django.shortcuts import redirect

					from django.shortcuts import redirect

					@ -12,8 +12,20 @@ from django.urls import reverse

					from django.utils.translation import gettext as _

					from django.utils.translation import gettext as _

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					from authentik.core.models import Source, SourceUserMatchingModes, User, UserSourceConnection

					from authentik.core.models import (

					from authentik.core.sources.stage import PLAN_CONTEXT_SOURCES_CONNECTION, PostUserEnrollmentStage

					    Group,

					    GroupSourceConnection,

					    Source,

					    SourceGroupMatchingModes,

					    SourceUserMatchingModes,

					    User,

					    UserSourceConnection,

					)

					from authentik.core.sources.mapper import SourceMapper

					from authentik.core.sources.stage import (

					    PLAN_CONTEXT_SOURCES_CONNECTION,

					    PostSourceStage,

					)

					from authentik.events.models import Event, EventAction

					from authentik.events.models import Event, EventAction

					from authentik.flows.exceptions import FlowNonApplicableException

					from authentik.flows.exceptions import FlowNonApplicableException

					from authentik.flows.models import Flow, FlowToken, Stage, in_memory_stage

					from authentik.flows.models import Flow, FlowToken, Stage, in_memory_stage

					@ -36,7 +48,10 @@ from authentik.stages.password.stage import PLAN_CONTEXT_AUTHENTICATION_BACKEND

					from authentik.stages.prompt.stage import PLAN_CONTEXT_PROMPT

					from authentik.stages.prompt.stage import PLAN_CONTEXT_PROMPT

					from authentik.stages.user_write.stage import PLAN_CONTEXT_USER_PATH

					from authentik.stages.user_write.stage import PLAN_CONTEXT_USER_PATH

					LOGGER = get_logger()

					SESSION_KEY_OVERRIDE_FLOW_TOKEN = "authentik/flows/source_override_flow_token"  # nosec

					SESSION_KEY_OVERRIDE_FLOW_TOKEN = "authentik/flows/source_override_flow_token"  # nosec

					PLAN_CONTEXT_SOURCE_GROUPS = "source_groups"

					class Action(Enum):

					class Action(Enum):

					@ -70,50 +85,69 @@ class SourceFlowManager:

					    or deny the request."""

					    or deny the request."""

					    source: Source

					    source: Source

					    mapper: SourceMapper

					    request: HttpRequest

					    request: HttpRequest

					    identifier: str

					    identifier: str

					    connection_type: type[UserSourceConnection] = UserSourceConnection

					    user_connection_type: type[UserSourceConnection] = UserSourceConnection

					    group_connection_type: type[GroupSourceConnection] = GroupSourceConnection

					    enroll_info: dict[str, Any]

					    user_info: dict[str, Any]

					    policy_context: dict[str, Any]

					    policy_context: dict[str, Any]

					    user_properties: dict[str, Any | dict[str, Any]]

					    groups_properties: dict[str, dict[str, Any | dict[str, Any]]]

					    def __init__(

					    def __init__(

					        self,

					        self,

					        source: Source,

					        source: Source,

					        request: HttpRequest,

					        request: HttpRequest,

					        identifier: str,

					        identifier: str,

					        enroll_info: dict[str, Any],

					        user_info: dict[str, Any],

					        policy_context: dict[str, Any],

					    ) -> None:

					    ) -> None:

					        self.source = source

					        self.source = source

					        self.mapper = SourceMapper(self.source)

					        self.request = request

					        self.request = request

					        self.identifier = identifier

					        self.identifier = identifier

					        self.enroll_info = enroll_info

					        self.user_info = user_info

					        self._logger = get_logger().bind(source=source, identifier=identifier)

					        self._logger = get_logger().bind(source=source, identifier=identifier)

					        self.policy_context = {}

					        self.policy_context = policy_context

					        self.user_properties = self.mapper.build_object_properties(

					            object_type=User, request=request, user=None, **self.user_info

					        )

					        self.groups_properties = {

					            group_id: self.mapper.build_object_properties(

					                object_type=Group,

					                request=request,

					                user=None,

					                group_id=group_id,

					                **self.user_info,

					            )

					            for group_id in self.user_properties.setdefault("groups", [])

					        }

					        del self.user_properties["groups"]

					    def get_action(self, **kwargs) -> tuple[Action, UserSourceConnection | None]:  # noqa: PLR0911

					    def get_action(self, **kwargs) -> tuple[Action, UserSourceConnection | None]:  # noqa: PLR0911

					        """decide which action should be taken"""

					        """decide which action should be taken"""

					        new_connection = self.connection_type(source=self.source, identifier=self.identifier)

					        new_connection = self.user_connection_type(source=self.source, identifier=self.identifier)

					        # When request is authenticated, always link

					        # When request is authenticated, always link

					        if self.request.user.is_authenticated:

					        if self.request.user.is_authenticated:

					            new_connection.user = self.request.user

					            new_connection.user = self.request.user

					            new_connection = self.update_connection(new_connection, **kwargs)

					            new_connection = self.update_user_connection(new_connection, **kwargs)

					            new_connection.save()

					            return Action.LINK, new_connection

					            return Action.LINK, new_connection

					        existing_connections = self.connection_type.objects.filter(

					        existing_connections = self.user_connection_type.objects.filter(

					            source=self.source, identifier=self.identifier

					            source=self.source, identifier=self.identifier

					        )

					        )

					        if existing_connections.exists():

					        if existing_connections.exists():

					            connection = existing_connections.first()

					            connection = existing_connections.first()

					            return Action.AUTH, self.update_connection(connection, **kwargs)

					            return Action.AUTH, self.update_user_connection(connection, **kwargs)

					        # No connection exists, but we match on identifier, so enroll

					        # No connection exists, but we match on identifier, so enroll

					        if self.source.user_matching_mode == SourceUserMatchingModes.IDENTIFIER:

					        if self.source.user_matching_mode == SourceUserMatchingModes.IDENTIFIER:

					            # We don't save the connection here cause it doesn't have a user assigned yet

					            # We don't save the connection here cause it doesn't have a user assigned yet

					            return Action.ENROLL, self.update_connection(new_connection, **kwargs)

					            return Action.ENROLL, self.update_user_connection(new_connection, **kwargs)

					        # Check for existing users with matching attributes

					        # Check for existing users with matching attributes

					        query = Q()

					        query = Q()

					@ -122,24 +156,24 @@ class SourceFlowManager:

					            SourceUserMatchingModes.EMAIL_LINK,

					            SourceUserMatchingModes.EMAIL_LINK,

					            SourceUserMatchingModes.EMAIL_DENY,

					            SourceUserMatchingModes.EMAIL_DENY,

					        ]:

					        ]:

					            if not self.enroll_info.get("email", None):

					            if not self.user_properties.get("email", None):

					                self._logger.warning("Refusing to use none email", source=self.source)

					                self._logger.warning("Refusing to use none email")

					                return Action.DENY, None

					                return Action.DENY, None

					            query = Q(email__exact=self.enroll_info.get("email", None))

					            query = Q(email__exact=self.user_properties.get("email", None))

					        if self.source.user_matching_mode in [

					        if self.source.user_matching_mode in [

					            SourceUserMatchingModes.USERNAME_LINK,

					            SourceUserMatchingModes.USERNAME_LINK,

					            SourceUserMatchingModes.USERNAME_DENY,

					            SourceUserMatchingModes.USERNAME_DENY,

					        ]:

					        ]:

					            if not self.enroll_info.get("username", None):

					            if not self.user_properties.get("username", None):

					                self._logger.warning("Refusing to use none username", source=self.source)

					                self._logger.warning("Refusing to use none username")

					                return Action.DENY, None

					                return Action.DENY, None

					            query = Q(username__exact=self.enroll_info.get("username", None))

					            query = Q(username__exact=self.user_properties.get("username", None))

					        self._logger.debug("trying to link with existing user", query=query)

					        self._logger.debug("trying to link with existing user", query=query)

					        matching_users = User.objects.filter(query)

					        matching_users = User.objects.filter(query)

					        # No matching users, always enroll

					        # No matching users, always enroll

					        if not matching_users.exists():

					        if not matching_users.exists():

					            self._logger.debug("no matching users found, enrolling")

					            self._logger.debug("no matching users found, enrolling")

					            return Action.ENROLL, self.update_connection(new_connection, **kwargs)

					            return Action.ENROLL, self.update_user_connection(new_connection, **kwargs)

					        user = matching_users.first()

					        user = matching_users.first()

					        if self.source.user_matching_mode in [

					        if self.source.user_matching_mode in [

					@ -147,8 +181,7 @@ class SourceFlowManager:

					            SourceUserMatchingModes.USERNAME_LINK,

					            SourceUserMatchingModes.USERNAME_LINK,

					        ]:

					        ]:

					            new_connection.user = user

					            new_connection.user = user

					            new_connection = self.update_connection(new_connection, **kwargs)

					            new_connection = self.update_user_connection(new_connection, **kwargs)

					            new_connection.save()

					            return Action.LINK, new_connection

					            return Action.LINK, new_connection

					        if self.source.user_matching_mode in [

					        if self.source.user_matching_mode in [

					            SourceUserMatchingModes.EMAIL_DENY,

					            SourceUserMatchingModes.EMAIL_DENY,

					@ -159,10 +192,10 @@ class SourceFlowManager:

					        # Should never get here as default enroll case is returned above.

					        # Should never get here as default enroll case is returned above.

					        return Action.DENY, None  # pragma: no cover

					        return Action.DENY, None  # pragma: no cover

					    def update_connection(

					    def update_user_connection(

					        self, connection: UserSourceConnection, **kwargs

					        self, connection: UserSourceConnection, **kwargs

					    ) -> UserSourceConnection:  # pragma: no cover

					    ) -> UserSourceConnection:  # pragma: no cover

					        """Optionally make changes to the connection after it is looked up/created."""

					        """Optionally make changes to the user connection after it is looked up/created."""

					        return connection

					        return connection

					    def get_flow(self, **kwargs) -> HttpResponse:

					    def get_flow(self, **kwargs) -> HttpResponse:

					@ -209,38 +242,40 @@ class SourceFlowManager:

					    def get_stages_to_append(self, flow: Flow) -> list[Stage]:

					    def get_stages_to_append(self, flow: Flow) -> list[Stage]:

					        """Hook to override stages which are appended to the flow"""

					        """Hook to override stages which are appended to the flow"""

					        if not self.source.enrollment_flow:

					        return [

					            return []

					            in_memory_stage(PostSourceStage),

					        if flow.slug == self.source.enrollment_flow.slug:

					        ]

					            return [

					                in_memory_stage(PostUserEnrollmentStage),

					            ]

					        return []

					    def _prepare_flow(

					    def _prepare_flow(

					        self,

					        self,

					        flow: Flow,

					        flow: Flow | None,

					        connection: UserSourceConnection,

					        connection: UserSourceConnection,

					        stages: list[StageView] | None = None,

					        stages: list[StageView] | None = None,

					        **kwargs,

					        **flow_context,

					    ) -> HttpResponse:

					    ) -> HttpResponse:

					        """Prepare Authentication Plan, redirect user FlowExecutor"""

					        """Prepare Authentication Plan, redirect user FlowExecutor"""

					        kwargs.update(

					        # Ensure redirect is carried through when user was trying to

					        # authorize application

					        final_redirect = self.request.session.get(SESSION_KEY_GET, {}).get(

					            NEXT_ARG_NAME, "authentik_core:if-user"

					        )

					        flow_context.update(

					            {

					            {

					                # Since we authenticate the user by their token, they have no backend set

					                # Since we authenticate the user by their token, they have no backend set

					                PLAN_CONTEXT_AUTHENTICATION_BACKEND: BACKEND_INBUILT,

					                PLAN_CONTEXT_AUTHENTICATION_BACKEND: BACKEND_INBUILT,

					                PLAN_CONTEXT_SSO: True,

					                PLAN_CONTEXT_SSO: True,

					                PLAN_CONTEXT_SOURCE: self.source,

					                PLAN_CONTEXT_SOURCE: self.source,

					                PLAN_CONTEXT_SOURCES_CONNECTION: connection,

					                PLAN_CONTEXT_SOURCES_CONNECTION: connection,

					                PLAN_CONTEXT_SOURCE_GROUPS: self.groups_properties,

					            }

					            }

					        )

					        )

					        kwargs.update(self.policy_context)

					        flow_context.update(self.policy_context)

					        if SESSION_KEY_OVERRIDE_FLOW_TOKEN in self.request.session:

					        if SESSION_KEY_OVERRIDE_FLOW_TOKEN in self.request.session:

					            token: FlowToken = self.request.session.get(SESSION_KEY_OVERRIDE_FLOW_TOKEN)

					            token: FlowToken = self.request.session.get(SESSION_KEY_OVERRIDE_FLOW_TOKEN)

					            self._logger.info("Replacing source flow with overridden flow", flow=token.flow.slug)

					            self._logger.info("Replacing source flow with overridden flow", flow=token.flow.slug)

					            plan = token.plan

					            plan = token.plan

					            plan.context[PLAN_CONTEXT_IS_RESTORED] = token

					            plan.context[PLAN_CONTEXT_IS_RESTORED] = token

					            plan.context.update(kwargs)

					            plan.context.update(flow_context)

					            for stage in self.get_stages_to_append(flow):

					            for stage in self.get_stages_to_append(flow):

					                plan.append_stage(stage)

					                plan.append_stage(stage)

					            if stages:

					            if stages:

					@ -259,8 +294,8 @@ class SourceFlowManager:

					        final_redirect = self.request.session.get(SESSION_KEY_GET, {}).get(

					        final_redirect = self.request.session.get(SESSION_KEY_GET, {}).get(

					            NEXT_ARG_NAME, "authentik_core:if-user"

					            NEXT_ARG_NAME, "authentik_core:if-user"

					        )

					        )

					        if PLAN_CONTEXT_REDIRECT not in kwargs:

					        if PLAN_CONTEXT_REDIRECT not in flow_context:

					            kwargs[PLAN_CONTEXT_REDIRECT] = final_redirect

					            flow_context[PLAN_CONTEXT_REDIRECT] = final_redirect

					        if not flow:

					        if not flow:

					            return bad_request_message(

					            return bad_request_message(

					@ -269,9 +304,15 @@ class SourceFlowManager:

					            )

					            )

					        # We run the Flow planner here so we can pass the Pending user in the context

					        # We run the Flow planner here so we can pass the Pending user in the context

					        planner = FlowPlanner(flow)

					        planner = FlowPlanner(flow)

					        plan = planner.plan(self.request, kwargs)

					        # We append some stages so the initial flow we get might be empty

					        planner.allow_empty_flows = True

					        planner.use_cache = False

					        plan = planner.plan(self.request, flow_context)

					        for stage in self.get_stages_to_append(flow):

					        for stage in self.get_stages_to_append(flow):

					            plan.append_stage(stage)

					            plan.append_stage(stage)

					        plan.append_stage(

					            in_memory_stage(GroupUpdateStage, group_connection_type=self.group_connection_type)

					        )

					        if stages:

					        if stages:

					            for stage in stages:

					            for stage in stages:

					                plan.append_stage(stage)

					                plan.append_stage(stage)

					@ -313,7 +354,9 @@ class SourceFlowManager:

					        # When request isn't authenticated we jump straight to auth

					        # When request isn't authenticated we jump straight to auth

					        if not self.request.user.is_authenticated:

					        if not self.request.user.is_authenticated:

					            return self.handle_auth(connection)

					            return self.handle_auth(connection)

					        # Connection has already been saved

					        if SESSION_KEY_OVERRIDE_FLOW_TOKEN in self.request.session:

					            return self._prepare_flow(None, connection)

					        connection.save()

					        Event.new(

					        Event.new(

					            EventAction.SOURCE_LINKED,

					            EventAction.SOURCE_LINKED,

					            message="Linked Source",

					            message="Linked Source",

					@ -327,7 +370,7 @@ class SourceFlowManager:

					            reverse(

					            reverse(

					                "authentik_core:if-user",

					                "authentik_core:if-user",

					            )

					            )

					            + f"#/settings;page-{self.source.slug}"

					            + "#/settings;page-sources"

					        )

					        )

					    def handle_enroll(

					    def handle_enroll(

					@ -356,7 +399,123 @@ class SourceFlowManager:

					                )

					                )

					            ],

					            ],

					            **{

					            **{

					                PLAN_CONTEXT_PROMPT: delete_none_values(self.enroll_info),

					                PLAN_CONTEXT_PROMPT: delete_none_values(self.user_properties),

					                PLAN_CONTEXT_USER_PATH: self.source.get_user_path(),

					                PLAN_CONTEXT_USER_PATH: self.source.get_user_path(),

					            },

					            },

					        )

					        )

					class GroupUpdateStage(StageView):

					    """Dynamically injected stage which updates the user after enrollment/authentication."""

					    def get_action(

					        self, group_id: str, group_properties: dict[str, Any | dict[str, Any]]

					    ) -> tuple[Action, GroupSourceConnection | None]:

					        """decide which action should be taken"""

					        new_connection = self.group_connection_type(source=self.source, identifier=group_id)

					        existing_connections = self.group_connection_type.objects.filter(

					            source=self.source, identifier=group_id

					        )

					        if existing_connections.exists():

					            return Action.LINK, existing_connections.first()

					        # No connection exists, but we match on identifier, so enroll

					        if self.source.group_matching_mode == SourceGroupMatchingModes.IDENTIFIER:

					            # We don't save the connection here cause it doesn't have a user assigned yet

					            return Action.ENROLL, new_connection

					        # Check for existing groups with matching attributes

					        query = Q()

					        if self.source.group_matching_mode in [

					            SourceGroupMatchingModes.NAME_LINK,

					            SourceGroupMatchingModes.NAME_DENY,

					        ]:

					            if not group_properties.get("name", None):

					                LOGGER.warning(

					                    "Refusing to use none group name", source=self.source, group_id=group_id

					                )

					                return Action.DENY, None

					            query = Q(name__exact=group_properties.get("name"))

					        LOGGER.debug(

					            "trying to link with existing group", source=self.source, query=query, group_id=group_id

					        )

					        matching_groups = Group.objects.filter(query)

					        # No matching groups, always enroll

					        if not matching_groups.exists():

					            LOGGER.debug(

					                "no matching groups found, enrolling", source=self.source, group_id=group_id

					            )

					            return Action.ENROLL, new_connection

					        group = matching_groups.first()

					        if self.source.group_matching_mode in [

					            SourceGroupMatchingModes.NAME_LINK,

					        ]:

					            new_connection.group = group

					            return Action.LINK, new_connection

					        if self.source.group_matching_mode in [

					            SourceGroupMatchingModes.NAME_DENY,

					        ]:

					            LOGGER.info(

					                "denying source because group exists",

					                source=self.source,

					                group=group,

					                group_id=group_id,

					            )

					            return Action.DENY, None

					        # Should never get here as default enroll case is returned above.

					        return Action.DENY, None  # pragma: no cover

					    def handle_group(

					        self, group_id: str, group_properties: dict[str, Any | dict[str, Any]]

					    ) -> Group | None:

					        action, connection = self.get_action(group_id, group_properties)

					        if action == Action.ENROLL:

					            group = Group.objects.create(**group_properties)

					            connection.group = group

					            connection.save()

					            return group

					        elif action == Action.LINK:

					            group = connection.group

					            group.update_attributes(group_properties)

					            connection.save()

					            return group

					        return None

					    def handle_groups(self) -> bool:

					        self.source: Source = self.executor.plan.context[PLAN_CONTEXT_SOURCE]

					        self.user: User = self.executor.plan.context[PLAN_CONTEXT_PENDING_USER]

					        self.group_connection_type: GroupSourceConnection = (

					            self.executor.current_stage.group_connection_type

					        )

					        raw_groups: dict[str, dict[str, Any | dict[str, Any]]] = self.executor.plan.context[

					            PLAN_CONTEXT_SOURCE_GROUPS

					        ]

					        groups: list[Group] = []

					        for group_id, group_properties in raw_groups.items():

					            group = self.handle_group(group_id, group_properties)

					            if not group:

					                return False

					            groups.append(group)

					        with transaction.atomic():

					            self.user.ak_groups.remove(

					                *self.user.ak_groups.filter(groupsourceconnection__source=self.source)

					            )

					            self.user.ak_groups.add(*groups)

					        return True

					    def get(self, request: HttpRequest, *args, **kwargs) -> HttpResponse:

					        """Stage used after the user has been enrolled to sync their groups from source data"""

					        if self.handle_groups():

					            return self.executor.stage_ok()

					        else:

					            return self.executor.stage_invalid("Failed to update groups. Please try again later.")

					    def post(self, request: HttpRequest) -> HttpResponse:

					        """Wrapper for post requests"""

					        return self.get(request)

									
										103

authentik/core/sources/mapper.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,103 @@

					from typing import Any

					from django.http import HttpRequest

					from structlog.stdlib import get_logger

					from authentik.core.expression.exceptions import PropertyMappingExpressionException

					from authentik.core.models import Group, PropertyMapping, Source, User

					from authentik.events.models import Event, EventAction

					from authentik.lib.merge import MERGE_LIST_UNIQUE

					from authentik.lib.sync.mapper import PropertyMappingManager

					from authentik.policies.utils import delete_none_values

					LOGGER = get_logger()

					class SourceMapper:

					    def __init__(self, source: Source):

					        self.source = source

					    def get_manager(

					        self, object_type: type[User | Group], context_keys: list[str]

					    ) -> PropertyMappingManager:

					        """Get property mapping manager for this source."""

					        qs = PropertyMapping.objects.none()

					        if object_type == User:

					            qs = self.source.user_property_mappings.all().select_subclasses()

					        elif object_type == Group:

					            qs = self.source.group_property_mappings.all().select_subclasses()

					        qs = qs.order_by("name")

					        return PropertyMappingManager(

					            qs,

					            self.source.property_mapping_type,

					            ["source", "properties"] + context_keys,

					        )

					    def get_base_properties(

					        self, object_type: type[User | Group], **kwargs

					    ) -> dict[str, Any | dict[str, Any]]:

					        """Get base properties for a user or a group to build final properties upon."""

					        if object_type == User:

					            properties = self.source.get_base_user_properties(**kwargs)

					            properties.setdefault("path", self.source.get_user_path())

					            return properties

					        if object_type == Group:

					            return self.source.get_base_group_properties(**kwargs)

					        return {}

					    def build_object_properties(

					        self,

					        object_type: type[User | Group],

					        manager: "PropertyMappingManager | None" = None,

					        user: User | None = None,

					        request: HttpRequest | None = None,

					        **kwargs,

					    ) -> dict[str, Any | dict[str, Any]]:

					        """Build a user or group properties from the source configured property mappings."""

					        properties = self.get_base_properties(object_type, **kwargs)

					        if "attributes" not in properties:

					            properties["attributes"] = {}

					        if not manager:

					            manager = self.get_manager(object_type, list(kwargs.keys()))

					        evaluations = manager.iter_eval(

					            user=user,

					            request=request,

					            return_mapping=True,

					            source=self.source,

					            properties=properties,

					            **kwargs,

					        )

					        while True:

					            try:

					                value, mapping = next(evaluations)

					            except StopIteration:

					                break

					            except PropertyMappingExpressionException as exc:

					                Event.new(

					                    EventAction.CONFIGURATION_ERROR,

					                    message=f"Failed to evaluate property mapping: '{exc.mapping.name}'",

					                    source=self,

					                    mapping=exc.mapping,

					                ).save()

					                LOGGER.warning(

					                    "Mapping failed to evaluate",

					                    exc=exc,

					                    source=self,

					                    mapping=exc.mapping,

					                )

					                raise exc

					            if not value or not isinstance(value, dict):

					                LOGGER.debug(

					                    "Mapping evaluated to None or is not a dict. Skipping",

					                    source=self,

					                    mapping=mapping,

					                )

					                continue

					            MERGE_LIST_UNIQUE.merge(properties, value)

					        return delete_none_values(properties)

									
										14

authentik/core/sources/stage.py
									
												View File
												
					@ -10,7 +10,7 @@ from authentik.flows.stage import StageView

					PLAN_CONTEXT_SOURCES_CONNECTION = "goauthentik.io/sources/connection"

					PLAN_CONTEXT_SOURCES_CONNECTION = "goauthentik.io/sources/connection"

					class PostUserEnrollmentStage(StageView):

					class PostSourceStage(StageView):

					    """Dynamically injected stage which saves the Connection after

					    """Dynamically injected stage which saves the Connection after

					    the user has been enrolled."""

					    the user has been enrolled."""

					@ -21,10 +21,12 @@ class PostUserEnrollmentStage(StageView):

					        ]

					        ]

					        user: User = self.executor.plan.context[PLAN_CONTEXT_PENDING_USER]

					        user: User = self.executor.plan.context[PLAN_CONTEXT_PENDING_USER]

					        connection.user = user

					        connection.user = user

					        linked = connection.pk is None

					        connection.save()

					        connection.save()

					        Event.new(

					        if linked:

					            EventAction.SOURCE_LINKED,

					            Event.new(

					            message="Linked Source",

					                EventAction.SOURCE_LINKED,

					            source=connection.source,

					                message="Linked Source",

					        ).from_http(self.request)

					                source=connection.source,

					            ).from_http(self.request)

					        return self.executor.stage_ok()

					        return self.executor.stage_ok()

									
										36

authentik/core/tasks.py
									
												View File
												
					@ -2,7 +2,9 @@

					from datetime import datetime, timedelta

					from datetime import datetime, timedelta

					from django.conf import ImproperlyConfigured

					from django.contrib.sessions.backends.cache import KEY_PREFIX

					from django.contrib.sessions.backends.cache import KEY_PREFIX

					from django.contrib.sessions.backends.db import SessionStore as DBSessionStore

					from django.core.cache import cache

					from django.core.cache import cache

					from django.utils.timezone import now

					from django.utils.timezone import now

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					@ -15,6 +17,7 @@ from authentik.core.models import (

					    User,

					    User,

					)

					)

					from authentik.events.system_tasks import SystemTask, TaskStatus, prefill_task

					from authentik.events.system_tasks import SystemTask, TaskStatus, prefill_task

					from authentik.lib.config import CONFIG

					from authentik.root.celery import CELERY_APP

					from authentik.root.celery import CELERY_APP

					LOGGER = get_logger()

					LOGGER = get_logger()

					@ -39,16 +42,31 @@ def clean_expired_models(self: SystemTask):

					    amount = 0

					    amount = 0

					    for session in AuthenticatedSession.objects.all():

					    for session in AuthenticatedSession.objects.all():

					        cache_key = f"{KEY_PREFIX}{session.session_key}"

					        match CONFIG.get("session_storage", "cache"):

					        value = None

					            case "cache":

					        try:

					                cache_key = f"{KEY_PREFIX}{session.session_key}"

					            value = cache.get(cache_key)

					                value = None

					                try:

					                    value = cache.get(cache_key)

					        except Exception as exc:

					                except Exception as exc:

					            LOGGER.debug("Failed to get session from cache", exc=exc)

					                    LOGGER.debug("Failed to get session from cache", exc=exc)

					        if not value:

					                if not value:

					            session.delete()

					                    session.delete()

					            amount += 1

					                    amount += 1

					            case "db":

					                if not (

					                    DBSessionStore.get_model_class()

					                    .objects.filter(session_key=session.session_key, expire_date__gt=now())

					                    .exists()

					                ):

					                    session.delete()

					                    amount += 1

					            case _:

					                # Should never happen, as we check for other values in authentik/root/settings.py

					                raise ImproperlyConfigured(

					                    "Invalid session_storage setting, allowed values are db and cache"

					                )

					    LOGGER.debug("Expired sessions", model=AuthenticatedSession, amount=amount)

					    LOGGER.debug("Expired sessions", model=AuthenticatedSession, amount=amount)

					    messages.append(f"Expired {amount} {AuthenticatedSession._meta.verbose_name_plural}")

					    messages.append(f"Expired {amount} {AuthenticatedSession._meta.verbose_name_plural}")

									
										2

authentik/core/templates/base/header_js.html
									
												View File
												
					@ -10,7 +10,7 @@

					        versionSubdomain: "{{ version_subdomain }}",

					        versionSubdomain: "{{ version_subdomain }}",

					        build: "{{ build }}",

					        build: "{{ build }}",

					    };

					    };

					    window.addEventListener("DOMContentLoaded", () => {

					    window.addEventListener("DOMContentLoaded", function () {

					        {% for message in messages %}

					        {% for message in messages %}

					        window.dispatchEvent(

					        window.dispatchEvent(

					            new CustomEvent("ak-message", {

					            new CustomEvent("ak-message", {

									
										7

authentik/core/templates/base/skeleton.html
									
												View File
												
					@ -1,9 +1,10 @@

					{% load static %}

					{% load static %}

					{% load i18n %}

					{% load i18n %}

					{% load authentik_core %}

					<!DOCTYPE html>

					<!DOCTYPE html>

					<html lang="en">

					<html>

					    <head>

					    <head>

					        <meta charset="UTF-8">

					        <meta charset="UTF-8">

					        <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">

					        <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">

					@ -14,8 +15,8 @@

					        {% endblock %}

					        {% endblock %}

					        <link rel="stylesheet" type="text/css" href="{% static 'dist/authentik.css' %}">

					        <link rel="stylesheet" type="text/css" href="{% static 'dist/authentik.css' %}">

					        <link rel="stylesheet" type="text/css" href="{% static 'dist/custom.css' %}" data-inject>

					        <link rel="stylesheet" type="text/css" href="{% static 'dist/custom.css' %}" data-inject>

					        <script src="{% static 'dist/poly.js' %}?version={{ version }}" type="module"></script>

					        {% versioned_script "dist/poly-%v.js" %}

					        <script src="{% static 'dist/standalone/loading/index.js' %}?version={{ version }}" type="module"></script>

					        {% versioned_script "dist/standalone/loading/index-%v.js" %}

					        {% block head %}

					        {% block head %}

					        {% endblock %}

					        {% endblock %}

					        <meta name="sentry-trace" content="{{ sentry_trace }}" />

					        <meta name="sentry-trace" content="{{ sentry_trace }}" />

									
										4

authentik/core/templates/if/admin.html
									
												View File
												
					@ -1,9 +1,9 @@

					{% extends "base/skeleton.html" %}

					{% extends "base/skeleton.html" %}

					{% load static %}

					{% load authentik_core %}

					{% block head %}

					{% block head %}

					<script src="{% static 'dist/admin/AdminInterface.js' %}?version={{ version }}" type="module"></script>

					{% versioned_script "dist/admin/AdminInterface-%v.js" %}

					<meta name="theme-color" content="#18191a" media="(prefers-color-scheme: dark)">

					<meta name="theme-color" content="#18191a" media="(prefers-color-scheme: dark)">

					<meta name="theme-color" content="#ffffff" media="(prefers-color-scheme: light)">

					<meta name="theme-color" content="#ffffff" media="(prefers-color-scheme: light)">

					{% include "base/header_js.html" %}

					{% include "base/header_js.html" %}

									
										4

authentik/core/templates/if/user.html
									
												View File
												
					@ -1,9 +1,9 @@

					{% extends "base/skeleton.html" %}

					{% extends "base/skeleton.html" %}

					{% load static %}

					{% load authentik_core %}

					{% block head %}

					{% block head %}

					<script src="{% static 'dist/user/UserInterface.js' %}?version={{ version }}" type="module"></script>

					{% versioned_script "dist/user/UserInterface-%v.js" %}

					<meta name="theme-color" content="#1c1e21" media="(prefers-color-scheme: light)">

					<meta name="theme-color" content="#1c1e21" media="(prefers-color-scheme: light)">

					<meta name="theme-color" content="#1c1e21" media="(prefers-color-scheme: dark)">

					<meta name="theme-color" content="#1c1e21" media="(prefers-color-scheme: dark)">

					{% include "base/header_js.html" %}

					{% include "base/header_js.html" %}

									
										4

authentik/core/templates/login/base_full.html
									
												View File
												
					@ -71,9 +71,9 @@

					                </li>

					                </li>

					                {% endfor %}

					                {% endfor %}

					                <li>

					                <li>

					                    <a href="https://goauthentik.io?utm_source=authentik">

					                    <span>

					                        {% trans 'Powered by authentik' %}

					                        {% trans 'Powered by authentik' %}

					                    </a>

					                    </span>

					                </li>

					                </li>

					            </ul>

					            </ul>

					        </footer>

					        </footer>

0

authentik/core/templatetags/init.py Normal file

View File

									
										21

authentik/core/templatetags/authentik_core.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,21 @@

					"""authentik core tags"""

					from django import template

					from django.templatetags.static import static as static_loader

					from django.utils.safestring import mark_safe

					from authentik import get_full_version

					register = template.Library()

					@register.simple_tag()

					def versioned_script(path: str) -> str:

					    """Wrapper around {% static %} tag that supports setting the version"""

					    returned_lines = [

					        (

					            f'<script src="{static_loader(path.replace("%v", get_full_version()))}'

					            '" type="module"></script>'

					        ),

					    ]

					    return mark_safe("".join(returned_lines))  # nosec

									
										31

authentik/core/tests/test_applications_api.py
									
												View File
												
					@ -9,9 +9,12 @@ from rest_framework.test import APITestCase

					from authentik.core.models import Application

					from authentik.core.models import Application

					from authentik.core.tests.utils import create_test_admin_user, create_test_flow

					from authentik.core.tests.utils import create_test_admin_user, create_test_flow

					from authentik.lib.generators import generate_id

					from authentik.policies.dummy.models import DummyPolicy

					from authentik.policies.dummy.models import DummyPolicy

					from authentik.policies.models import PolicyBinding

					from authentik.policies.models import PolicyBinding

					from authentik.providers.oauth2.models import OAuth2Provider

					from authentik.providers.oauth2.models import OAuth2Provider

					from authentik.providers.proxy.models import ProxyProvider

					from authentik.providers.saml.models import SAMLProvider

					class TestApplicationsAPI(APITestCase):

					class TestApplicationsAPI(APITestCase):

					@ -222,3 +225,31 @@ class TestApplicationsAPI(APITestCase):

					                ],

					                ],

					            },

					            },

					        )

					        )

					    def test_get_provider(self):

					        """Ensure that proxy providers (at the time of writing that is the only provider

					        that inherits from another proxy type (OAuth) instead of inheriting from the root

					        provider class) is correctly looked up and selected from the database"""

					        slug = generate_id()

					        provider = ProxyProvider.objects.create(name=generate_id())

					        Application.objects.create(

					            name=generate_id(),

					            slug=slug,

					            provider=provider,

					        )

					        self.assertEqual(Application.objects.get(slug=slug).get_provider(), provider)

					        self.assertEqual(

					            Application.objects.with_provider().get(slug=slug).get_provider(), provider

					        )

					        slug = generate_id()

					        provider = SAMLProvider.objects.create(name=generate_id())

					        Application.objects.create(

					            name=generate_id(),

					            slug=slug,

					            provider=provider,

					        )

					        self.assertEqual(Application.objects.get(slug=slug).get_provider(), provider)

					        self.assertEqual(

					            Application.objects.with_provider().get(slug=slug).get_provider(), provider

					        )

									
										20

authentik/core/tests/test_groups_api.py
									
												View File
												
					@ -5,7 +5,7 @@ from guardian.shortcuts import assign_perm

					from rest_framework.test import APITestCase

					from rest_framework.test import APITestCase

					from authentik.core.models import Group, User

					from authentik.core.models import Group, User

					from authentik.core.tests.utils import create_test_user

					from authentik.core.tests.utils import create_test_admin_user, create_test_user

					from authentik.lib.generators import generate_id

					from authentik.lib.generators import generate_id

					@ -16,6 +16,24 @@ class TestGroupsAPI(APITestCase):

					        self.login_user = create_test_user()

					        self.login_user = create_test_user()

					        self.user = User.objects.create(username="test-user")

					        self.user = User.objects.create(username="test-user")

					    def test_list_with_users(self):

					        """Test listing with users"""

					        admin = create_test_admin_user()

					        self.client.force_login(admin)

					        response = self.client.get(reverse("authentik_api:group-list"), {"include_users": "true"})

					        self.assertEqual(response.status_code, 200)

					    def test_retrieve_with_users(self):

					        """Test retrieve with users"""

					        admin = create_test_admin_user()

					        group = Group.objects.create(name=generate_id())

					        self.client.force_login(admin)

					        response = self.client.get(

					            reverse("authentik_api:group-detail", kwargs={"pk": group.pk}),

					            {"include_users": "true"},

					        )

					        self.assertEqual(response.status_code, 200)

					    def test_add_user(self):

					    def test_add_user(self):

					        """Test add_user"""

					        """Test add_user"""

					        group = Group.objects.create(name=generate_id())

					        group = Group.objects.create(name=generate_id())

									
										46

authentik/core/tests/test_impersonation.py
									
												View File
												
					@ -3,10 +3,10 @@

					from json import loads

					from json import loads

					from django.urls import reverse

					from django.urls import reverse

					from guardian.shortcuts import assign_perm

					from rest_framework.test import APITestCase

					from rest_framework.test import APITestCase

					from authentik.core.models import User

					from authentik.core.tests.utils import create_test_admin_user, create_test_user

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.tenants.utils import get_current_tenant

					from authentik.tenants.utils import get_current_tenant

					@ -15,7 +15,7 @@ class TestImpersonation(APITestCase):

					    def setUp(self) -> None:

					    def setUp(self) -> None:

					        super().setUp()

					        super().setUp()

					        self.other_user = User.objects.create(username="to-impersonate")

					        self.other_user = create_test_user()

					        self.user = create_test_admin_user()

					        self.user = create_test_admin_user()

					    def test_impersonate_simple(self):

					    def test_impersonate_simple(self):

					@ -44,6 +44,46 @@ class TestImpersonation(APITestCase):

					        self.assertEqual(response_body["user"]["username"], self.user.username)

					        self.assertEqual(response_body["user"]["username"], self.user.username)

					        self.assertNotIn("original", response_body)

					        self.assertNotIn("original", response_body)

					    def test_impersonate_global(self):

					        """Test impersonation with global permissions"""

					        new_user = create_test_user()

					        assign_perm("authentik_core.impersonate", new_user)

					        assign_perm("authentik_core.view_user", new_user)

					        self.client.force_login(new_user)

					        response = self.client.post(

					            reverse(

					                "authentik_api:user-impersonate",

					                kwargs={"pk": self.other_user.pk},

					            )

					        )

					        self.assertEqual(response.status_code, 201)

					        response = self.client.get(reverse("authentik_api:user-me"))

					        response_body = loads(response.content.decode())

					        self.assertEqual(response_body["user"]["username"], self.other_user.username)

					        self.assertEqual(response_body["original"]["username"], new_user.username)

					    def test_impersonate_scoped(self):

					        """Test impersonation with scoped permissions"""

					        new_user = create_test_user()

					        assign_perm("authentik_core.impersonate", new_user, self.other_user)

					        assign_perm("authentik_core.view_user", new_user, self.other_user)

					        self.client.force_login(new_user)

					        response = self.client.post(

					            reverse(

					                "authentik_api:user-impersonate",

					                kwargs={"pk": self.other_user.pk},

					            )

					        )

					        self.assertEqual(response.status_code, 201)

					        response = self.client.get(reverse("authentik_api:user-me"))

					        response_body = loads(response.content.decode())

					        self.assertEqual(response_body["user"]["username"], self.other_user.username)

					        self.assertEqual(response_body["original"]["username"], new_user.username)

					    def test_impersonate_denied(self):

					    def test_impersonate_denied(self):

					        """test impersonation without permissions"""

					        """test impersonation without permissions"""

					        self.client.force_login(self.other_user)

					        self.client.force_login(self.other_user)

									
										30

authentik/core/tests/test_models.py
									
												View File
												
					@ -1,14 +1,14 @@

					"""authentik core models tests"""

					"""authentik core models tests"""

					from collections.abc import Callable

					from collections.abc import Callable

					from time import sleep

					from datetime import timedelta

					from django.test import RequestFactory, TestCase

					from django.test import RequestFactory, TestCase

					from django.utils.timezone import now

					from django.utils.timezone import now

					from freezegun import freeze_time

					from guardian.shortcuts import get_anonymous_user

					from guardian.shortcuts import get_anonymous_user

					from authentik.core.models import Provider, Source, Token

					from authentik.core.models import Provider, Source, Token

					from authentik.flows.models import Stage

					from authentik.lib.utils.reflection import all_subclasses

					from authentik.lib.utils.reflection import all_subclasses

					@ -17,18 +17,20 @@ class TestModels(TestCase):

					    def test_token_expire(self):

					    def test_token_expire(self):

					        """Test token expiring"""

					        """Test token expiring"""

					        token = Token.objects.create(expires=now(), user=get_anonymous_user())

					        with freeze_time() as freeze:

					        sleep(0.5)

					            token = Token.objects.create(expires=now(), user=get_anonymous_user())

					        self.assertTrue(token.is_expired)

					            freeze.tick(timedelta(seconds=1))

					            self.assertTrue(token.is_expired)

					    def test_token_expire_no_expire(self):

					    def test_token_expire_no_expire(self):

					        """Test token expiring with "expiring" set"""

					        """Test token expiring with "expiring" set"""

					        token = Token.objects.create(expires=now(), user=get_anonymous_user(), expiring=False)

					        with freeze_time() as freeze:

					        sleep(0.5)

					            token = Token.objects.create(expires=now(), user=get_anonymous_user(), expiring=False)

					        self.assertFalse(token.is_expired)

					            freeze.tick(timedelta(seconds=1))

					            self.assertFalse(token.is_expired)

					def source_tester_factory(test_model: type[Stage]) -> Callable:

					def source_tester_factory(test_model: type[Source]) -> Callable:

					    """Test source"""

					    """Test source"""

					    factory = RequestFactory()

					    factory = RequestFactory()

					@ -36,19 +38,19 @@ def source_tester_factory(test_model: type[Stage]) -> Callable:

					    def tester(self: TestModels):

					    def tester(self: TestModels):

					        model_class = None

					        model_class = None

					        if test_model._meta.abstract:  # pragma: no cover

					        if test_model._meta.abstract:

					            model_class = test_model.__bases__[0]()

					            model_class = [x for x in test_model.__bases__ if issubclass(x, Source)][0]()

					        else:

					        else:

					            model_class = test_model()

					            model_class = test_model()

					        model_class.slug = "test"

					        model_class.slug = "test"

					        self.assertIsNotNone(model_class.component)

					        self.assertIsNotNone(model_class.component)

					        _ = model_class.ui_login_button(request)

					        model_class.ui_login_button(request)

					        _ = model_class.ui_user_settings()

					        model_class.ui_user_settings()

					    return tester

					    return tester

					def provider_tester_factory(test_model: type[Stage]) -> Callable:

					def provider_tester_factory(test_model: type[Provider]) -> Callable:

					    """Test provider"""

					    """Test provider"""

					    def tester(self: TestModels):

					    def tester(self: TestModels):

									
										23

authentik/core/tests/test_property_mapping.py
									
												View File
												
					@ -3,7 +3,10 @@

					from django.test import RequestFactory, TestCase

					from django.test import RequestFactory, TestCase

					from guardian.shortcuts import get_anonymous_user

					from guardian.shortcuts import get_anonymous_user

					from authentik.core.exceptions import PropertyMappingExpressionException

					from authentik.core.expression.exceptions import (

					    PropertyMappingExpressionException,

					    SkipObjectException,

					)

					from authentik.core.models import PropertyMapping

					from authentik.core.models import PropertyMapping

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.events.models import Event, EventAction

					from authentik.events.models import Event, EventAction

					@ -42,6 +45,17 @@ class TestPropertyMappings(TestCase):

					        self.assertTrue(events.exists())

					        self.assertTrue(events.exists())

					        self.assertEqual(len(events), 1)

					        self.assertEqual(len(events), 1)

					    def test_expression_skip(self):

					        """Test expression error"""

					        expr = "raise SkipObject"

					        mapping = PropertyMapping.objects.create(name=generate_id(), expression=expr)

					        with self.assertRaises(SkipObjectException):

					            mapping.evaluate(None, None)

					        events = Event.objects.filter(

					            action=EventAction.PROPERTY_MAPPING_EXCEPTION, context__expression=expr

					        )

					        self.assertFalse(events.exists())

					    def test_expression_error_extended(self):

					    def test_expression_error_extended(self):

					        """Test expression error (with user and http request"""

					        """Test expression error (with user and http request"""

					        expr = "return aaa"

					        expr = "return aaa"

					@ -66,14 +80,11 @@ class TestPropertyMappings(TestCase):

					            expression="return request.http_request.path",

					            expression="return request.http_request.path",

					        )

					        )

					        http_request = self.factory.get("/")

					        http_request = self.factory.get("/")

					        tmpl = (

					        tmpl = f"""

					            """

					        res = ak_call_policy('{expr.name}')

					        res = ak_call_policy('%s')

					        result = [request.http_request.path, res.raw_result]

					        result = [request.http_request.path, res.raw_result]

					        return result

					        return result

					        """

					        """

					            % expr.name

					        )

					        evaluator = PropertyMapping(expression=tmpl, name=generate_id())

					        evaluator = PropertyMapping(expression=tmpl, name=generate_id())

					        res = evaluator.evaluate(self.user, http_request)

					        res = evaluator.evaluate(self.user, http_request)

					        self.assertEqual(res, ["/", "/"])

					        self.assertEqual(res, ["/", "/"])

									
										34

authentik/core/tests/test_property_mapping_api.py
									
												View File
												
					@ -6,9 +6,10 @@ from django.urls import reverse

					from rest_framework.serializers import ValidationError

					from rest_framework.serializers import ValidationError

					from rest_framework.test import APITestCase

					from rest_framework.test import APITestCase

					from authentik.core.api.propertymappings import PropertyMappingSerializer

					from authentik.core.api.property_mappings import PropertyMappingSerializer

					from authentik.core.models import PropertyMapping

					from authentik.core.models import Group, PropertyMapping

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.lib.generators import generate_id

					class TestPropertyMappingAPI(APITestCase):

					class TestPropertyMappingAPI(APITestCase):

					@ -16,23 +17,40 @@ class TestPropertyMappingAPI(APITestCase):

					    def setUp(self) -> None:

					    def setUp(self) -> None:

					        super().setUp()

					        super().setUp()

					        self.mapping = PropertyMapping.objects.create(

					            name="dummy", expression="""return {'foo': 'bar'}"""

					        )

					        self.user = create_test_admin_user()

					        self.user = create_test_admin_user()

					        self.client.force_login(self.user)

					        self.client.force_login(self.user)

					    def test_test_call(self):

					    def test_test_call(self):

					        """Test PropertMappings's test endpoint"""

					        """Test PropertyMappings's test endpoint"""

					        mapping = PropertyMapping.objects.create(

					            name="dummy", expression="""return {'foo': 'bar', 'baz': user.username}"""

					        )

					        response = self.client.post(

					        response = self.client.post(

					            reverse("authentik_api:propertymapping-test", kwargs={"pk": self.mapping.pk}),

					            reverse("authentik_api:propertymapping-test", kwargs={"pk": mapping.pk}),

					            data={

					            data={

					                "user": self.user.pk,

					                "user": self.user.pk,

					            },

					            },

					        )

					        )

					        self.assertJSONEqual(

					        self.assertJSONEqual(

					            response.content.decode(),

					            response.content.decode(),

					            {"result": dumps({"foo": "bar"}), "successful": True},

					            {"result": dumps({"foo": "bar", "baz": self.user.username}), "successful": True},

					        )

					    def test_test_call_group(self):

					        """Test PropertyMappings's test endpoint"""

					        mapping = PropertyMapping.objects.create(

					            name="dummy", expression="""return {'foo': 'bar', 'baz': group.name}"""

					        )

					        group = Group.objects.create(name=generate_id())

					        response = self.client.post(

					            reverse("authentik_api:propertymapping-test", kwargs={"pk": mapping.pk}),

					            data={

					                "group": group.pk,

					            },

					        )

					        self.assertJSONEqual(

					            response.content.decode(),

					            {"result": dumps({"foo": "bar", "baz": group.name}), "successful": True},

					        )

					        )

					    def test_validate(self):

					    def test_validate(self):

									
										90

authentik/core/tests/test_source_flow_manager.py
									
												View File
												
					@ -2,11 +2,15 @@

					from django.contrib.auth.models import AnonymousUser

					from django.contrib.auth.models import AnonymousUser

					from django.test import TestCase

					from django.test import TestCase

					from django.urls import reverse

					from guardian.utils import get_anonymous_user

					from guardian.utils import get_anonymous_user

					from authentik.core.models import SourceUserMatchingModes, User

					from authentik.core.models import SourceUserMatchingModes, User

					from authentik.core.sources.flow_manager import Action

					from authentik.core.sources.flow_manager import Action

					from authentik.core.sources.stage import PostSourceStage

					from authentik.core.tests.utils import create_test_flow

					from authentik.core.tests.utils import create_test_flow

					from authentik.flows.planner import FlowPlan

					from authentik.flows.views.executor import SESSION_KEY_PLAN

					from authentik.lib.generators import generate_id

					from authentik.lib.generators import generate_id

					from authentik.lib.tests.utils import get_request

					from authentik.lib.tests.utils import get_request

					from authentik.policies.denied import AccessDeniedResponse

					from authentik.policies.denied import AccessDeniedResponse

					@ -21,42 +25,70 @@ class TestSourceFlowManager(TestCase):

					    def setUp(self) -> None:

					    def setUp(self) -> None:

					        super().setUp()

					        super().setUp()

					        self.source: OAuthSource = OAuthSource.objects.create(name="test")

					        self.authentication_flow = create_test_flow()

					        self.enrollment_flow = create_test_flow()

					        self.source: OAuthSource = OAuthSource.objects.create(

					            name=generate_id(),

					            slug=generate_id(),

					            authentication_flow=self.authentication_flow,

					            enrollment_flow=self.enrollment_flow,

					        )

					        self.identifier = generate_id()

					        self.identifier = generate_id()

					    def test_unauthenticated_enroll(self):

					    def test_unauthenticated_enroll(self):

					        """Test un-authenticated user enrolling"""

					        """Test un-authenticated user enrolling"""

					        request = get_request("/", user=AnonymousUser())

					        flow_manager = OAuthSourceFlowManager(

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {}

					            self.source, request, self.identifier, {"info": {}}, {}

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.ENROLL)

					        self.assertEqual(action, Action.ENROLL)

					        flow_manager.get_flow()

					        response = flow_manager.get_flow()

					        self.assertEqual(response.status_code, 302)

					        flow_plan: FlowPlan = request.session[SESSION_KEY_PLAN]

					        self.assertEqual(flow_plan.bindings[0].stage.view, PostSourceStage)

					    def test_unauthenticated_auth(self):

					    def test_unauthenticated_auth(self):

					        """Test un-authenticated user authenticating"""

					        """Test un-authenticated user authenticating"""

					        UserOAuthSourceConnection.objects.create(

					        UserOAuthSourceConnection.objects.create(

					            user=get_anonymous_user(), source=self.source, identifier=self.identifier

					            user=get_anonymous_user(), source=self.source, identifier=self.identifier

					        )

					        )

					        request = get_request("/", user=AnonymousUser())

					        flow_manager = OAuthSourceFlowManager(

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {}

					            self.source, request, self.identifier, {"info": {}}, {}

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.AUTH)

					        self.assertEqual(action, Action.AUTH)

					        flow_manager.get_flow()

					        response = flow_manager.get_flow()

					        self.assertEqual(response.status_code, 302)

					        flow_plan: FlowPlan = request.session[SESSION_KEY_PLAN]

					        self.assertEqual(flow_plan.bindings[0].stage.view, PostSourceStage)

					    def test_authenticated_link(self):

					    def test_authenticated_link(self):

					        """Test authenticated user linking"""

					        """Test authenticated user linking"""

					        UserOAuthSourceConnection.objects.create(

					            user=get_anonymous_user(), source=self.source, identifier=self.identifier

					        )

					        user = User.objects.create(username="foo", email="foo@bar.baz")

					        user = User.objects.create(username="foo", email="foo@bar.baz")

					        request = get_request("/", user=user)

					        flow_manager = OAuthSourceFlowManager(

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/", user=user), self.identifier, {}

					            self.source, request, self.identifier, {"info": {}}, {}

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, connection = flow_manager.get_action()

					        self.assertEqual(action, Action.LINK)

					        self.assertEqual(action, Action.LINK)

					        self.assertIsNone(connection.pk)

					        response = flow_manager.get_flow()

					        self.assertEqual(response.status_code, 302)

					        self.assertEqual(

					            response.url,

					            reverse("authentik_core:if-user") + "#/settings;page-sources",

					        )

					    def test_unauthenticated_link(self):

					        """Test un-authenticated user linking"""

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/"), self.identifier, {"info": {}}, {}

					        )

					        action, connection = flow_manager.get_action()

					        self.assertEqual(action, Action.LINK)

					        self.assertIsNone(connection.pk)

					        flow_manager.get_flow()

					        flow_manager.get_flow()

					    def test_unauthenticated_enroll_email(self):

					    def test_unauthenticated_enroll_email(self):

					@ -66,7 +98,7 @@ class TestSourceFlowManager(TestCase):

					        # Without email, deny

					        # Without email, deny

					        flow_manager = OAuthSourceFlowManager(

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {}

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {"info": {}}, {}

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.DENY)

					        self.assertEqual(action, Action.DENY)

					@ -76,7 +108,12 @@ class TestSourceFlowManager(TestCase):

					            self.source,

					            self.source,

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {"email": "foo@bar.baz"},

					            {

					                "info": {

					                    "email": "foo@bar.baz",

					                },

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.LINK)

					        self.assertEqual(action, Action.LINK)

					@ -89,7 +126,7 @@ class TestSourceFlowManager(TestCase):

					        # Without username, deny

					        # Without username, deny

					        flow_manager = OAuthSourceFlowManager(

					        flow_manager = OAuthSourceFlowManager(

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {}

					            self.source, get_request("/", user=AnonymousUser()), self.identifier, {"info": {}}, {}

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.DENY)

					        self.assertEqual(action, Action.DENY)

					@ -99,7 +136,10 @@ class TestSourceFlowManager(TestCase):

					            self.source,

					            self.source,

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {"username": "foo"},

					            {

					                "info": {"username": "foo"},

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.LINK)

					        self.assertEqual(action, Action.LINK)

					@ -116,8 +156,11 @@ class TestSourceFlowManager(TestCase):

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {

					            {

					                "username": "bar",

					                "info": {

					                    "username": "bar",

					                },

					            },

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.ENROLL)

					        self.assertEqual(action, Action.ENROLL)

					@ -127,7 +170,10 @@ class TestSourceFlowManager(TestCase):

					            self.source,

					            self.source,

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {"username": "foo"},

					            {

					                "info": {"username": "foo"},

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.DENY)

					        self.assertEqual(action, Action.DENY)

					@ -141,7 +187,10 @@ class TestSourceFlowManager(TestCase):

					            self.source,

					            self.source,

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {"username": "foo"},

					            {

					                "info": {"username": "foo"},

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.ENROLL)

					        self.assertEqual(action, Action.ENROLL)

					@ -167,7 +216,10 @@ class TestSourceFlowManager(TestCase):

					            self.source,

					            self.source,

					            get_request("/", user=AnonymousUser()),

					            get_request("/", user=AnonymousUser()),

					            self.identifier,

					            self.identifier,

					            {"username": "foo"},

					            {

					                "info": {"username": "foo"},

					            },

					            {},

					        )

					        )

					        action, _ = flow_manager.get_action()

					        action, _ = flow_manager.get_action()

					        self.assertEqual(action, Action.ENROLL)

					        self.assertEqual(action, Action.ENROLL)

									
										237

authentik/core/tests/test_source_flow_manager_group_update_stage.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,237 @@

					"""Test Source flow_manager group update stage"""

					from django.test import RequestFactory

					from authentik.core.models import Group, SourceGroupMatchingModes

					from authentik.core.sources.flow_manager import PLAN_CONTEXT_SOURCE_GROUPS, GroupUpdateStage

					from authentik.core.tests.utils import create_test_admin_user, create_test_flow

					from authentik.flows.models import in_memory_stage

					from authentik.flows.planner import PLAN_CONTEXT_PENDING_USER, PLAN_CONTEXT_SOURCE, FlowPlan

					from authentik.flows.tests import FlowTestCase

					from authentik.flows.views.executor import FlowExecutorView

					from authentik.lib.generators import generate_id

					from authentik.sources.oauth.models import GroupOAuthSourceConnection, OAuthSource

					class TestSourceFlowManager(FlowTestCase):

					    """Test Source flow_manager group update stage"""

					    def setUp(self) -> None:

					        super().setUp()

					        self.factory = RequestFactory()

					        self.authentication_flow = create_test_flow()

					        self.enrollment_flow = create_test_flow()

					        self.source: OAuthSource = OAuthSource.objects.create(

					            name=generate_id(),

					            slug=generate_id(),

					            authentication_flow=self.authentication_flow,

					            enrollment_flow=self.enrollment_flow,

					        )

					        self.identifier = generate_id()

					        self.user = create_test_admin_user()

					    def test_nonexistant_group(self):

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "group 1": {

					                                "name": "group 1",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertTrue(stage.handle_groups())

					        self.assertTrue(Group.objects.filter(name="group 1").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="group 1").exists())

					        self.assertTrue(

					            GroupOAuthSourceConnection.objects.filter(

					                group=Group.objects.get(name="group 1"), source=self.source

					            ).exists()

					        )

					    def test_nonexistant_group_name_link(self):

					        self.source.group_matching_mode = SourceGroupMatchingModes.NAME_LINK

					        self.source.save()

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "group 1": {

					                                "name": "group 1",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertTrue(stage.handle_groups())

					        self.assertTrue(Group.objects.filter(name="group 1").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="group 1").exists())

					        self.assertTrue(

					            GroupOAuthSourceConnection.objects.filter(

					                group=Group.objects.get(name="group 1"), source=self.source

					            ).exists()

					        )

					    def test_existant_group_name_link(self):

					        self.source.group_matching_mode = SourceGroupMatchingModes.NAME_LINK

					        self.source.save()

					        group = Group.objects.create(name="group 1")

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "group 1": {

					                                "name": "group 1",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertTrue(stage.handle_groups())

					        self.assertTrue(Group.objects.filter(name="group 1").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="group 1").exists())

					        self.assertTrue(

					            GroupOAuthSourceConnection.objects.filter(group=group, source=self.source).exists()

					        )

					    def test_nonexistant_group_name_deny(self):

					        self.source.group_matching_mode = SourceGroupMatchingModes.NAME_DENY

					        self.source.save()

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "group 1": {

					                                "name": "group 1",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertTrue(stage.handle_groups())

					        self.assertTrue(Group.objects.filter(name="group 1").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="group 1").exists())

					        self.assertTrue(

					            GroupOAuthSourceConnection.objects.filter(

					                group=Group.objects.get(name="group 1"), source=self.source

					            ).exists()

					        )

					    def test_existant_group_name_deny(self):

					        self.source.group_matching_mode = SourceGroupMatchingModes.NAME_DENY

					        self.source.save()

					        group = Group.objects.create(name="group 1")

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "group 1": {

					                                "name": "group 1",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertFalse(stage.handle_groups())

					        self.assertFalse(self.user.ak_groups.filter(name="group 1").exists())

					        self.assertFalse(

					            GroupOAuthSourceConnection.objects.filter(group=group, source=self.source).exists()

					        )

					    def test_group_updates(self):

					        self.source.group_matching_mode = SourceGroupMatchingModes.NAME_LINK

					        self.source.save()

					        other_group = Group.objects.create(name="other group")

					        old_group = Group.objects.create(name="old group")

					        new_group = Group.objects.create(name="new group")

					        self.user.ak_groups.set([other_group, old_group])

					        GroupOAuthSourceConnection.objects.create(

					            group=old_group, source=self.source, identifier=old_group.name

					        )

					        GroupOAuthSourceConnection.objects.create(

					            group=new_group, source=self.source, identifier=new_group.name

					        )

					        request = self.factory.get("/")

					        stage = GroupUpdateStage(

					            FlowExecutorView(

					                current_stage=in_memory_stage(

					                    GroupUpdateStage, group_connection_type=GroupOAuthSourceConnection

					                ),

					                plan=FlowPlan(

					                    flow_pk=generate_id(),

					                    context={

					                        PLAN_CONTEXT_SOURCE: self.source,

					                        PLAN_CONTEXT_PENDING_USER: self.user,

					                        PLAN_CONTEXT_SOURCE_GROUPS: {

					                            "new group": {

					                                "name": "new group",

					                            },

					                        },

					                    },

					                ),

					            ),

					            request=request,

					        )

					        self.assertTrue(stage.handle_groups())

					        self.assertFalse(self.user.ak_groups.filter(name="old group").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="other group").exists())

					        self.assertTrue(self.user.ak_groups.filter(name="new group").exists())

					        self.assertEqual(self.user.ak_groups.count(), 2)

									
										72

authentik/core/tests/test_source_property_mappings.py
									
										Normal file
									
												View File
												
					@ -0,0 +1,72 @@

					"""Test Source Property mappings"""

					from django.test import TestCase

					from authentik.core.models import Group, PropertyMapping, Source, User

					from authentik.core.sources.mapper import SourceMapper

					from authentik.lib.generators import generate_id

					class ProxySource(Source):

					    @property

					    def property_mapping_type(self):

					        return PropertyMapping

					    def get_base_user_properties(self, **kwargs):

					        return {

					            "username": kwargs.get("username", None),

					            "email": kwargs.get("email", "default@authentik"),

					        }

					    def get_base_group_properties(self, **kwargs):

					        return {"name": kwargs.get("name", None)}

					    class Meta:

					        proxy = True

					class TestSourcePropertyMappings(TestCase):

					    """Test Source PropertyMappings"""

					    def test_base_properties(self):

					        source = ProxySource.objects.create(name=generate_id(), slug=generate_id(), enabled=True)

					        mapper = SourceMapper(source)

					        user_base_properties = mapper.get_base_properties(User, username="test1")

					        self.assertEqual(

					            user_base_properties,

					            {

					                "username": "test1",

					                "email": "default@authentik",

					                "path": f"goauthentik.io/sources/{source.slug}",

					            },

					        )

					        group_base_properties = mapper.get_base_properties(Group)

					        self.assertEqual(group_base_properties, {"name": None})

					    def test_build_properties(self):

					        source = ProxySource.objects.create(name=generate_id(), slug=generate_id(), enabled=True)

					        mapper = SourceMapper(source)

					        source.user_property_mappings.add(

					            PropertyMapping.objects.create(

					                name=generate_id(),

					                expression="""

					                    return {"username": data.get("username", None), "email": None}

					                """,

					            )

					        )

					        properties = mapper.build_object_properties(

					            object_type=User, user=None, request=None, username="test1", data={"username": "test2"}

					        )

					        self.assertEqual(

					            properties,

					            {

					                "username": "test2",

					                "path": f"goauthentik.io/sources/{source.slug}",

					                "attributes": {},

					            },

					        )

									
										23

authentik/core/tests/test_token_api.py
									
												View File
												
					@ -13,9 +13,8 @@ from authentik.core.models import (

					    USER_ATTRIBUTE_TOKEN_MAXIMUM_LIFETIME,

					    USER_ATTRIBUTE_TOKEN_MAXIMUM_LIFETIME,

					    Token,

					    Token,

					    TokenIntents,

					    TokenIntents,

					    User,

					)

					)

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.core.tests.utils import create_test_admin_user, create_test_user

					from authentik.lib.generators import generate_id

					from authentik.lib.generators import generate_id

					@ -24,7 +23,7 @@ class TestTokenAPI(APITestCase):

					    def setUp(self) -> None:

					    def setUp(self) -> None:

					        super().setUp()

					        super().setUp()

					        self.user = User.objects.create(username="testuser")

					        self.user = create_test_user()

					        self.admin = create_test_admin_user()

					        self.admin = create_test_admin_user()

					        self.client.force_login(self.user)

					        self.client.force_login(self.user)

					@ -154,6 +153,24 @@ class TestTokenAPI(APITestCase):

					        self.assertEqual(token.expiring, True)

					        self.assertEqual(token.expiring, True)

					        self.assertNotEqual(token.expires.timestamp(), expires.timestamp())

					        self.assertNotEqual(token.expires.timestamp(), expires.timestamp())

					    def test_token_change_user(self):

					        """Test creating a token and then changing the user"""

					        ident = generate_id()

					        response = self.client.post(reverse("authentik_api:token-list"), {"identifier": ident})

					        self.assertEqual(response.status_code, 201)

					        token = Token.objects.get(identifier=ident)

					        self.assertEqual(token.user, self.user)

					        self.assertEqual(token.intent, TokenIntents.INTENT_API)

					        self.assertEqual(token.expiring, True)

					        self.assertTrue(self.user.has_perm("authentik_core.view_token_key", token))

					        response = self.client.put(

					            reverse("authentik_api:token-detail", kwargs={"identifier": ident}),

					            data={"identifier": "user_token_poc_v3", "intent": "api", "user": self.admin.pk},

					        )

					        self.assertEqual(response.status_code, 400)

					        token.refresh_from_db()

					        self.assertEqual(token.user, self.user)

					    def test_list(self):

					    def test_list(self):

					        """Test Token List (Test normal authentication)"""

					        """Test Token List (Test normal authentication)"""

					        Token.objects.all().delete()

					        Token.objects.all().delete()

									
										6

authentik/core/tests/test_users_api.py
									
												View File
												
					@ -41,6 +41,12 @@ class TestUsersAPI(APITestCase):

					        )

					        )

					        self.assertEqual(response.status_code, 200)

					        self.assertEqual(response.status_code, 200)

					    def test_list_with_groups(self):

					        """Test listing with groups"""

					        self.client.force_login(self.admin)

					        response = self.client.get(reverse("authentik_api:user-list"), {"include_groups": "true"})

					        self.assertEqual(response.status_code, 200)

					    def test_metrics(self):

					    def test_metrics(self):

					        """Test user's metrics"""

					        """Test user's metrics"""

					        self.client.force_login(self.admin)

					        self.client.force_login(self.admin)

									
										6

authentik/core/tests/test_users_avatars.py
									
												View File
												
					@ -8,7 +8,6 @@ from rest_framework.test import APITestCase

					from authentik.core.models import User

					from authentik.core.models import User

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.core.tests.utils import create_test_admin_user

					from authentik.lib.config import CONFIG

					from authentik.tenants.utils import get_current_tenant

					from authentik.tenants.utils import get_current_tenant

					@ -25,7 +24,6 @@ class TestUsersAvatars(APITestCase):

					        tenant.avatars = mode

					        tenant.avatars = mode

					        tenant.save()

					        tenant.save()

					    @CONFIG.patch("avatars", "none")

					    def test_avatars_none(self):

					    def test_avatars_none(self):

					        """Test avatars none"""

					        """Test avatars none"""

					        self.set_avatar_mode("none")

					        self.set_avatar_mode("none")

					@ -44,8 +42,8 @@ class TestUsersAvatars(APITestCase):

					        with Mocker() as mocker:

					        with Mocker() as mocker:

					            mocker.head(

					            mocker.head(

					                (

					                (

					                    "https://secure.gravatar.com/avatar/84730f9c1851d1ea03f1a"

					                    "https://www.gravatar.com/avatar/76eb3c74c8beb6faa037f1b6e2ecb3e252bdac"

					                    "a9ed85bd1ea?size=158&rating=g&default=404"

					                    "6cf71fb567ae36025a9d4ea86b?size=158&rating=g&default=404"

					                ),

					                ),

					                text="foo",

					                text="foo",

					            )

					            )

									
										10

authentik/core/tests/utils.py
									
												View File
												
					@ -4,7 +4,7 @@ from django.utils.text import slugify

					from authentik.brands.models import Brand

					from authentik.brands.models import Brand

					from authentik.core.models import Group, User

					from authentik.core.models import Group, User

					from authentik.crypto.builder import CertificateBuilder

					from authentik.crypto.builder import CertificateBuilder, PrivateKeyAlg

					from authentik.crypto.models import CertificateKeyPair

					from authentik.crypto.models import CertificateKeyPair

					from authentik.flows.models import Flow, FlowDesignation

					from authentik.flows.models import Flow, FlowDesignation

					from authentik.lib.generators import generate_id

					from authentik.lib.generators import generate_id

					@ -50,12 +50,10 @@ def create_test_brand(**kwargs) -> Brand:

					    return Brand.objects.create(domain=uid, default=True, **kwargs)

					    return Brand.objects.create(domain=uid, default=True, **kwargs)

					def create_test_cert(use_ec_private_key=False) -> CertificateKeyPair:

					def create_test_cert(alg=PrivateKeyAlg.RSA) -> CertificateKeyPair:

					    """Generate a certificate for testing"""

					    """Generate a certificate for testing"""

					    builder = CertificateBuilder(

					    builder = CertificateBuilder(f"{generate_id()}.self-signed.goauthentik.io")

					        name=f"{generate_id()}.self-signed.goauthentik.io",

					    builder.alg = alg

					        use_ec_private_key=use_ec_private_key,

					    )

					    builder.build(

					    builder.build(

					        subject_alt_names=[f"{generate_id()}.self-signed.goauthentik.io"],

					        subject_alt_names=[f"{generate_id()}.self-signed.goauthentik.io"],

					        validity_days=360,

					        validity_days=360,

									
										26

authentik/core/urls.py
									
												View File
												
					@ -6,22 +6,26 @@ from django.conf import settings

					from django.contrib.auth.decorators import login_required

					from django.contrib.auth.decorators import login_required

					from django.urls import path

					from django.urls import path

					from django.views.decorators.csrf import ensure_csrf_cookie

					from django.views.decorators.csrf import ensure_csrf_cookie

					from django.views.generic import RedirectView

					from authentik.core.api.applications import ApplicationViewSet

					from authentik.core.api.applications import ApplicationViewSet

					from authentik.core.api.authenticated_sessions import AuthenticatedSessionViewSet

					from authentik.core.api.authenticated_sessions import AuthenticatedSessionViewSet

					from authentik.core.api.devices import AdminDeviceViewSet, DeviceViewSet

					from authentik.core.api.devices import AdminDeviceViewSet, DeviceViewSet

					from authentik.core.api.groups import GroupViewSet

					from authentik.core.api.groups import GroupViewSet

					from authentik.core.api.propertymappings import PropertyMappingViewSet

					from authentik.core.api.property_mappings import PropertyMappingViewSet

					from authentik.core.api.providers import ProviderViewSet

					from authentik.core.api.providers import ProviderViewSet

					from authentik.core.api.sources import SourceViewSet, UserSourceConnectionViewSet

					from authentik.core.api.sources import SourceViewSet, UserSourceConnectionViewSet

					from authentik.core.api.tokens import TokenViewSet

					from authentik.core.api.tokens import TokenViewSet

					from authentik.core.api.transactional_applications import TransactionalApplicationView

					from authentik.core.api.transactional_applications import TransactionalApplicationView

					from authentik.core.api.users import UserViewSet

					from authentik.core.api.users import UserViewSet

					from authentik.core.views import apps

					from authentik.core.views.apps import RedirectToAppLaunch

					from authentik.core.views.debug import AccessDeniedView

					from authentik.core.views.debug import AccessDeniedView

					from authentik.core.views.interface import FlowInterfaceView, InterfaceView

					from authentik.core.views.interface import (

					    BrandDefaultRedirectView,

					    InterfaceView,

					    RootRedirectView,

					)

					from authentik.core.views.session import EndSessionView

					from authentik.core.views.session import EndSessionView

					from authentik.flows.views.interface import FlowInterfaceView

					from authentik.root.asgi_middleware import SessionMiddleware

					from authentik.root.asgi_middleware import SessionMiddleware

					from authentik.root.messages.consumer import MessageConsumer

					from authentik.root.messages.consumer import MessageConsumer

					from authentik.root.middleware import ChannelsLoggingMiddleware

					from authentik.root.middleware import ChannelsLoggingMiddleware

					@ -29,30 +33,30 @@ from authentik.root.middleware import ChannelsLoggingMiddleware

					urlpatterns = [

					urlpatterns = [

					    path(

					    path(

					        "",

					        "",

					        login_required(

					        login_required(RootRedirectView.as_view()),

					            RedirectView.as_view(pattern_name="authentik_core:if-user", query_string=True)

					        ),

					        name="root-redirect",

					        name="root-redirect",

					    ),

					    ),

					    path(

					    path(

					        # We have to use this format since everything else uses applications/o or applications/saml

					        # We have to use this format since everything else uses application/o or application/saml

					        "application/launch/<slug:application_slug>/",

					        "application/launch/<slug:application_slug>/",

					        apps.RedirectToAppLaunch.as_view(),

					        RedirectToAppLaunch.as_view(),

					        name="application-launch",

					        name="application-launch",

					    ),

					    ),

					    # Interfaces

					    # Interfaces

					    path(

					    path(

					        "if/admin/",

					        "if/admin/",

					        ensure_csrf_cookie(InterfaceView.as_view(template_name="if/admin.html")),

					        ensure_csrf_cookie(BrandDefaultRedirectView.as_view(template_name="if/admin.html")),

					        name="if-admin",

					        name="if-admin",

					    ),

					    ),

					    path(

					    path(

					        "if/user/",

					        "if/user/",

					        ensure_csrf_cookie(InterfaceView.as_view(template_name="if/user.html")),

					        ensure_csrf_cookie(BrandDefaultRedirectView.as_view(template_name="if/user.html")),

					        name="if-user",

					        name="if-user",

					    ),

					    ),

					    path(

					    path(

					        "if/flow/<slug:flow_slug>/",

					        "if/flow/<slug:flow_slug>/",

					        # FIXME: move this url to the flows app...also will cause all

					        # of the reverse calls to be adjusted

					        ensure_csrf_cookie(FlowInterfaceView.as_view()),

					        ensure_csrf_cookie(FlowInterfaceView.as_view()),

					        name="if-flow",

					        name="if-flow",

					    ),

					    ),

									
										2

authentik/core/views/apps.py
									
												View File
												
					@ -8,7 +8,6 @@ from django.views import View

					from authentik.core.models import Application

					from authentik.core.models import Application

					from authentik.flows.challenge import (

					from authentik.flows.challenge import (

					    ChallengeResponse,

					    ChallengeResponse,

					    ChallengeTypes,

					    HttpChallengeResponse,

					    HttpChallengeResponse,

					    RedirectChallenge,

					    RedirectChallenge,

					)

					)

					@ -74,7 +73,6 @@ class RedirectToAppStage(ChallengeStageView):

					            raise Http404

					            raise Http404

					        return RedirectChallenge(

					        return RedirectChallenge(

					            instance={

					            instance={

					                "type": ChallengeTypes.REDIRECT.value,

					                "to": launch,

					                "to": launch,

					            }

					            }

					        )

					        )

									
										55

authentik/core/views/interface.py
									
												View File
												
					@ -3,15 +3,42 @@

					from json import dumps

					from json import dumps

					from typing import Any

					from typing import Any

					from django.shortcuts import get_object_or_404

					from django.http import HttpRequest

					from django.views.generic.base import TemplateView

					from django.http.response import HttpResponse

					from django.shortcuts import redirect

					from django.utils.translation import gettext as _

					from django.views.generic.base import RedirectView, TemplateView

					from rest_framework.request import Request

					from rest_framework.request import Request

					from authentik import get_build_hash

					from authentik import get_build_hash

					from authentik.admin.tasks import LOCAL_VERSION

					from authentik.admin.tasks import LOCAL_VERSION

					from authentik.api.v3.config import ConfigView

					from authentik.api.v3.config import ConfigView

					from authentik.brands.api import CurrentBrandSerializer

					from authentik.brands.api import CurrentBrandSerializer

					from authentik.flows.models import Flow

					from authentik.brands.models import Brand

					from authentik.core.models import UserTypes

					from authentik.policies.denied import AccessDeniedResponse

					class RootRedirectView(RedirectView):

					    """Root redirect view, redirect to brand's default application if set"""

					    pattern_name = "authentik_core:if-user"

					    query_string = True

					    def redirect_to_app(self, request: HttpRequest):

					        if request.user.is_authenticated and request.user.type == UserTypes.EXTERNAL:

					            brand: Brand = request.brand

					            if brand.default_application:

					                return redirect(

					                    "authentik_core:application-launch",

					                    application_slug=brand.default_application.slug,

					                )

					        return None

					    def dispatch(self, request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:

					        if redirect_response := RootRedirectView().redirect_to_app(request):

					            return redirect_response

					        return super().dispatch(request, *args, **kwargs)

					class InterfaceView(TemplateView):

					class InterfaceView(TemplateView):

					@ -27,12 +54,18 @@ class InterfaceView(TemplateView):

					        return super().get_context_data(**kwargs)

					        return super().get_context_data(**kwargs)

					class FlowInterfaceView(InterfaceView):

					class BrandDefaultRedirectView(InterfaceView):

					    """Flow interface"""

					    """By default redirect to default app"""

					    template_name = "if/flow.html"

					    def dispatch(self, request: HttpRequest, *args: Any, **kwargs: Any) -> HttpResponse:

					        if request.user.is_authenticated and request.user.type == UserTypes.EXTERNAL:

					    def get_context_data(self, **kwargs: Any) -> dict[str, Any]:

					            brand: Brand = request.brand

					        kwargs["flow"] = get_object_or_404(Flow, slug=self.kwargs.get("flow_slug"))

					            if brand.default_application:

					        kwargs["inspector"] = "inspector" in self.request.GET

					                return redirect(

					        return super().get_context_data(**kwargs)

					                    "authentik_core:application-launch",

					                    application_slug=brand.default_application.slug,

					                )

					            response = AccessDeniedResponse(self.request)

					            response.error_message = _("Interface can only be accessed by internal users.")

					            return response

					        return super().dispatch(request, *args, **kwargs)

									
										20

authentik/crypto/api.py
									
												View File
												
					@ -14,22 +14,28 @@ from drf_spectacular.types import OpenApiTypes

					from drf_spectacular.utils import OpenApiParameter, OpenApiResponse, extend_schema

					from drf_spectacular.utils import OpenApiParameter, OpenApiResponse, extend_schema

					from rest_framework.decorators import action

					from rest_framework.decorators import action

					from rest_framework.exceptions import ValidationError

					from rest_framework.exceptions import ValidationError

					from rest_framework.fields import CharField, DateTimeField, IntegerField, SerializerMethodField

					from rest_framework.fields import (

					    CharField,

					    ChoiceField,

					    DateTimeField,

					    IntegerField,

					    SerializerMethodField,

					)

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.filters import OrderingFilter, SearchFilter

					from rest_framework.request import Request

					from rest_framework.request import Request

					from rest_framework.response import Response

					from rest_framework.response import Response

					from rest_framework.serializers import ModelSerializer

					from rest_framework.viewsets import ModelViewSet

					from rest_framework.viewsets import ModelViewSet

					from structlog.stdlib import get_logger

					from structlog.stdlib import get_logger

					from authentik.api.authorization import SecretKeyFilter

					from authentik.api.authorization import SecretKeyFilter

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.used_by import UsedByMixin

					from authentik.core.api.utils import PassiveSerializer

					from authentik.core.api.utils import ModelSerializer, PassiveSerializer

					from authentik.crypto.apps import MANAGED_KEY

					from authentik.crypto.apps import MANAGED_KEY

					from authentik.crypto.builder import CertificateBuilder

					from authentik.crypto.builder import CertificateBuilder, PrivateKeyAlg

					from authentik.crypto.models import CertificateKeyPair

					from authentik.crypto.models import CertificateKeyPair

					from authentik.events.models import Event, EventAction

					from authentik.events.models import Event, EventAction

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.decorators import permission_required

					from authentik.rbac.filters import ObjectFilter

					LOGGER = get_logger()

					LOGGER = get_logger()

					@ -178,6 +184,7 @@ class CertificateGenerationSerializer(PassiveSerializer):

					    common_name = CharField()

					    common_name = CharField()

					    subject_alt_name = CharField(required=False, allow_blank=True, label=_("Subject-alt name"))

					    subject_alt_name = CharField(required=False, allow_blank=True, label=_("Subject-alt name"))

					    validity_days = IntegerField(initial=365)

					    validity_days = IntegerField(initial=365)

					    alg = ChoiceField(default=PrivateKeyAlg.RSA, choices=PrivateKeyAlg.choices)

					class CertificateKeyPairFilter(FilterSet):

					class CertificateKeyPairFilter(FilterSet):

					@ -240,6 +247,7 @@ class CertificateKeyPairViewSet(UsedByMixin, ModelViewSet):

					        raw_san = data.validated_data.get("subject_alt_name", "")

					        raw_san = data.validated_data.get("subject_alt_name", "")

					        sans = raw_san.split(",") if raw_san != "" else []

					        sans = raw_san.split(",") if raw_san != "" else []

					        builder = CertificateBuilder(data.validated_data["common_name"])

					        builder = CertificateBuilder(data.validated_data["common_name"])

					        builder.alg = data.validated_data["alg"]

					        builder.build(

					        builder.build(

					            subject_alt_names=sans,

					            subject_alt_names=sans,

					            validity_days=int(data.validated_data["validity_days"]),

					            validity_days=int(data.validated_data["validity_days"]),

					@ -258,7 +266,7 @@ class CertificateKeyPairViewSet(UsedByMixin, ModelViewSet):

					        ],

					        ],

					        responses={200: CertificateDataSerializer(many=False)},

					        responses={200: CertificateDataSerializer(many=False)},

					    )

					    )

					    @action(detail=True, pagination_class=None, filter_backends=[])

					    @action(detail=True, pagination_class=None, filter_backends=[ObjectFilter])

					    def view_certificate(self, request: Request, pk: str) -> Response:

					    def view_certificate(self, request: Request, pk: str) -> Response:

					        """Return certificate-key pairs certificate and log access"""

					        """Return certificate-key pairs certificate and log access"""

					        certificate: CertificateKeyPair = self.get_object()

					        certificate: CertificateKeyPair = self.get_object()

					@ -288,7 +296,7 @@ class CertificateKeyPairViewSet(UsedByMixin, ModelViewSet):

					        ],

					        ],

					        responses={200: CertificateDataSerializer(many=False)},

					        responses={200: CertificateDataSerializer(many=False)},

					    )

					    )

					    @action(detail=True, pagination_class=None, filter_backends=[])

					    @action(detail=True, pagination_class=None, filter_backends=[ObjectFilter])

					    def view_private_key(self, request: Request, pk: str) -> Response:

					    def view_private_key(self, request: Request, pk: str) -> Response:

					        """Return certificate-key pairs private key and log access"""

					        """Return certificate-key pairs private key and log access"""

					        certificate: CertificateKeyPair = self.get_object()

					        certificate: CertificateKeyPair = self.get_object()

									
										28

authentik/crypto/builder.py
									
												View File
												
					@ -9,20 +9,28 @@ from cryptography.hazmat.primitives import hashes, serialization

					from cryptography.hazmat.primitives.asymmetric import ec, rsa

					from cryptography.hazmat.primitives.asymmetric import ec, rsa

					from cryptography.hazmat.primitives.asymmetric.types import PrivateKeyTypes

					from cryptography.hazmat.primitives.asymmetric.types import PrivateKeyTypes

					from cryptography.x509.oid import NameOID

					from cryptography.x509.oid import NameOID

					from django.db import models

					from django.utils.translation import gettext_lazy as _

					from authentik import __version__

					from authentik import __version__

					from authentik.crypto.models import CertificateKeyPair

					from authentik.crypto.models import CertificateKeyPair

					class PrivateKeyAlg(models.TextChoices):

					    """Algorithm to create private key with"""

					    RSA = "rsa", _("rsa")

					    ECDSA = "ecdsa", _("ecdsa")

					class CertificateBuilder:

					class CertificateBuilder:

					    """Build self-signed certificates"""

					    """Build self-signed certificates"""

					    common_name: str

					    common_name: str

					    alg: PrivateKeyAlg

					    _use_ec_private_key: bool

					    def __init__(self, name: str):

					        self.alg = PrivateKeyAlg.RSA

					    def __init__(self, name: str, use_ec_private_key=False):

					        self._use_ec_private_key = use_ec_private_key

					        self.__public_key = None

					        self.__public_key = None

					        self.__private_key = None

					        self.__private_key = None

					        self.__builder = None

					        self.__builder = None

					@ -42,11 +50,13 @@ class CertificateBuilder:

					    def generate_private_key(self) -> PrivateKeyTypes:

					    def generate_private_key(self) -> PrivateKeyTypes:

					        """Generate private key"""

					        """Generate private key"""

					        if self._use_ec_private_key:

					        if self.alg == PrivateKeyAlg.ECDSA:

					            return ec.generate_private_key(curve=ec.SECP256R1())

					            return ec.generate_private_key(curve=ec.SECP256R1())

					        return rsa.generate_private_key(

					        if self.alg == PrivateKeyAlg.RSA:

					            public_exponent=65537, key_size=4096, backend=default_backend()

					            return rsa.generate_private_key(

					        )

					                public_exponent=65537, key_size=4096, backend=default_backend()

					            )

					        raise ValueError(f"Invalid alg: {self.alg}")

					    def build(

					    def build(

					        self,

					        self,

					@ -66,7 +76,7 @@ class CertificateBuilder:

					            .subject_name(

					            .subject_name(

					                x509.Name(

					                x509.Name(

					                    [

					                    [

					                        x509.NameAttribute(NameOID.COMMON_NAME, self.common_name),

					                        x509.NameAttribute(NameOID.COMMON_NAME, self.common_name[:64]),

					                        x509.NameAttribute(NameOID.ORGANIZATION_NAME, "authentik"),

					                        x509.NameAttribute(NameOID.ORGANIZATION_NAME, "authentik"),

					                        x509.NameAttribute(NameOID.ORGANIZATIONAL_UNIT_NAME, "Self-signed"),

					                        x509.NameAttribute(NameOID.ORGANIZATIONAL_UNIT_NAME, "Self-signed"),

					                    ]

					                    ]

									
										6

authentik/crypto/models.py
									
												View File
												
					@ -92,7 +92,11 @@ class CertificateKeyPair(SerializerModel, ManagedModel, CreatedUpdatedModel):

					    @property

					    @property

					    def kid(self):

					    def kid(self):

					        """Get Key ID used for JWKS"""

					        """Get Key ID used for JWKS"""

					        return md5(self.key_data.encode("utf-8")).hexdigest() if self.key_data else ""  # nosec

					        return (

					            md5(self.key_data.encode("utf-8"), usedforsecurity=False).hexdigest()

					            if self.key_data

					            else ""

					        )  # nosec

					    def __str__(self) -> str:

					    def __str__(self) -> str:

					        return f"Certificate-Key Pair {self.name}"

					        return f"Certificate-Key Pair {self.name}"

									
										62

authentik/crypto/tests.py
									
												View File
												
					@ -214,6 +214,46 @@ class TestCrypto(APITestCase):

					        self.assertEqual(200, response.status_code)

					        self.assertEqual(200, response.status_code)

					        self.assertIn("Content-Disposition", response)

					        self.assertIn("Content-Disposition", response)

					    def test_certificate_download_denied(self):

					        """Test certificate export (download)"""

					        self.client.logout()

					        keypair = create_test_cert()

					        response = self.client.get(

					            reverse(

					                "authentik_api:certificatekeypair-view-certificate",

					                kwargs={"pk": keypair.pk},

					            )

					        )

					        self.assertEqual(403, response.status_code)

					        response = self.client.get(

					            reverse(

					                "authentik_api:certificatekeypair-view-certificate",

					                kwargs={"pk": keypair.pk},

					            ),

					            data={"download": True},

					        )

					        self.assertEqual(403, response.status_code)

					    def test_private_key_download_denied(self):

					        """Test private_key export (download)"""

					        self.client.logout()

					        keypair = create_test_cert()

					        response = self.client.get(

					            reverse(

					                "authentik_api:certificatekeypair-view-private-key",

					                kwargs={"pk": keypair.pk},

					            )

					        )

					        self.assertEqual(403, response.status_code)

					        response = self.client.get(

					            reverse(

					                "authentik_api:certificatekeypair-view-private-key",

					                kwargs={"pk": keypair.pk},

					            ),

					            data={"download": True},

					        )

					        self.assertEqual(403, response.status_code)

					    def test_used_by(self):

					    def test_used_by(self):

					        """Test used_by endpoint"""

					        """Test used_by endpoint"""

					        self.client.force_login(create_test_admin_user())

					        self.client.force_login(create_test_admin_user())

					@ -241,11 +281,31 @@ class TestCrypto(APITestCase):

					                    "model_name": "oauth2provider",

					                    "model_name": "oauth2provider",

					                    "pk": str(provider.pk),

					                    "pk": str(provider.pk),

					                    "name": str(provider),

					                    "name": str(provider),

					                    "action": DeleteAction.SET_NULL.name,

					                    "action": DeleteAction.SET_NULL.value,

					                }

					                }

					            ],

					            ],

					        )

					        )

					    def test_used_by_denied(self):

					        """Test used_by endpoint"""

					        self.client.logout()

					        keypair = create_test_cert()

					        OAuth2Provider.objects.create(

					            name=generate_id(),

					            client_id="test",

					            client_secret=generate_key(),

					            authorization_flow=create_test_flow(),

					            redirect_uris="http://localhost",

					            signing_key=keypair,

					        )

					        response = self.client.get(

					            reverse(

					                "authentik_api:certificatekeypair-used-by",

					                kwargs={"pk": keypair.pk},

					            )

					        )

					        self.assertEqual(403, response.status_code)

					    def test_discovery(self):

					    def test_discovery(self):

					        """Test certificate discovery"""

					        """Test certificate discovery"""

					        name = generate_id()

					        name = generate_id()

Compare commits

1130 Commits version-20 ... version/20

6 .bumpversion.cfg Unescape Escape View File

14 .github/actions/comment-pr-instructions/action.yml vendored Unescape Escape View File

6 .github/actions/docker-push-variables/action.yml vendored Unescape Escape View File

32 .github/actions/docker-push-variables/push_vars.py vendored Unescape Escape View File

2 .github/actions/setup/docker-compose.yml vendored Unescape Escape View File

1 .github/codespell-words.txt vendored Unescape Escape View File

40 .github/dependabot.yml vendored Unescape Escape View File

7 .github/workflows/api-ts-publish.yml vendored Unescape Escape View File

26 .github/workflows/ci-main.yml vendored Unescape Escape View File

23 .github/workflows/ci-outpost.yml vendored Unescape Escape View File

105 .github/workflows/ci-web.yml vendored Unescape Escape View File

19 .github/workflows/ci-website.yml vendored Unescape Escape View File

40 .github/workflows/release-publish.yml vendored Unescape Escape View File

4 .github/workflows/release-tag.yml vendored Unescape Escape View File

2 .vscode/extensions.json vendored Unescape Escape View File

2 .vscode/launch.json vendored Unescape Escape View File

34 .vscode/settings.json vendored Unescape Escape View File

62 .vscode/tasks.json vendored Unescape Escape View File

56 Dockerfile Unescape Escape View File

17 Makefile Unescape Escape View File

4 README.md Unescape Escape View File

8 SECURITY.md Unescape Escape View File

2 authentik/__init__.py Unescape Escape View File

19 authentik/admin/api/system.py Unescape Escape View File

11 authentik/admin/api/version.py Unescape Escape View File

4 authentik/api/templates/api/browser.html Unescape Escape View File

6 authentik/blueprints/api.py Unescape Escape View File

6 authentik/blueprints/management/commands/apply_blueprint.py Unescape Escape View File

25 authentik/blueprints/management/commands/make_blueprint_schema.py Unescape Escape View File

24 authentik/blueprints/tests/fixtures/rbac_object.yaml vendored Normal file Unescape Escape View File

8 authentik/blueprints/tests/fixtures/rbac_role.yaml vendored Normal file Unescape Escape View File

9 authentik/blueprints/tests/fixtures/rbac_user.yaml vendored Normal file Unescape Escape View File

2 authentik/blueprints/tests/test_v1_api.py Unescape Escape View File

57 authentik/blueprints/tests/test_v1_rbac.py Normal file Unescape Escape View File

30 authentik/blueprints/v1/common.py Unescape Escape View File

64 authentik/blueprints/v1/importer.py Unescape Escape View File

6 authentik/brands/api.py Unescape Escape View File

3 authentik/brands/apps.py Unescape Escape View File

26 authentik/brands/migrations/0007_brand_default_application.py Normal file Unescape Escape View File

21 authentik/brands/models.py Unescape Escape View File

46 authentik/brands/tests.py Unescape Escape View File

9 authentik/brands/urls_root.py Normal file Unescape Escape View File

4 authentik/brands/utils.py Unescape Escape View File

0 authentik/brands/views/__init__.py Normal file Unescape Escape View File

29 authentik/brands/views/webfinger.py Normal file Unescape Escape View File

31 authentik/core/api/applications.py Unescape Escape View File

2 authentik/core/api/authenticated_sessions.py Unescape Escape View File

11 authentik/core/api/devices.py Unescape Escape View File

33 authentik/core/api/groups.py Unescape Escape View File

79 authentik/core/api/object_types.py Normal file Unescape Escape View File

117 authentik/core/api/propertymappings.py → authentik/core/api/property_mappings.py Unescape Escape View File

54 authentik/core/api/providers.py Unescape Escape View File

79 authentik/core/api/sources.py Unescape Escape View File

26 authentik/core/api/tokens.py Unescape Escape View File

11 authentik/core/api/used_by.py Unescape Escape View File

49 authentik/core/api/users.py Unescape Escape View File

58 authentik/core/api/utils.py Unescape Escape View File

5 authentik/core/auth.py Unescape Escape View File

7 authentik/core/exceptions.py Unescape Escape View File

33 authentik/core/expression/evaluator.py Unescape Escape View File

19 authentik/core/expression/exceptions.py Normal file Unescape Escape View File

32 authentik/core/management/commands/change_user_type.py Normal file Unescape Escape View File

8 authentik/core/migrations/0029_provider_backchannel_applications_and_more.py Unescape Escape View File

43 authentik/core/migrations/0036_source_group_property_mappings_and_more.py Normal file Unescape Escape View File

18 authentik/core/migrations/0037_remove_source_property_mappings.py Normal file Unescape Escape View File

19 authentik/core/migrations/0038_source_authentik_c_enabled_d72365_idx.py Normal file Unescape Escape View File

67 authentik/core/migrations/0039_source_group_matching_mode_alter_group_name_and_more.py Normal file Unescape Escape View File

323 authentik/core/models.py Unescape Escape View File

2 authentik/core/signals.py Unescape Escape View File

247 authentik/core/sources/flow_manager.py Unescape Escape View File

103 authentik/core/sources/mapper.py Normal file Unescape Escape View File

14 authentik/core/sources/stage.py Unescape Escape View File

36 authentik/core/tasks.py Unescape Escape View File

2 authentik/core/templates/base/header_js.html Unescape Escape View File

7 authentik/core/templates/base/skeleton.html Unescape Escape View File

4 authentik/core/templates/if/admin.html Unescape Escape View File

4 authentik/core/templates/if/user.html Unescape Escape View File

4 authentik/core/templates/login/base_full.html Unescape Escape View File

1130 Commits

version-20 ... version/20

6

.bumpversion.cfg

View File

14

.github/actions/comment-pr-instructions/action.yml vendored

View File

6

.github/actions/docker-push-variables/action.yml vendored

View File

32

.github/actions/docker-push-variables/push_vars.py vendored

View File

2

.github/actions/setup/docker-compose.yml vendored

View File

1

.github/codespell-words.txt vendored

View File

40

.github/dependabot.yml vendored

View File

7

.github/workflows/api-ts-publish.yml vendored

View File

26

.github/workflows/ci-main.yml vendored

View File

23

.github/workflows/ci-outpost.yml vendored

View File

105

.github/workflows/ci-web.yml vendored

View File

19

.github/workflows/ci-website.yml vendored

View File

40

.github/workflows/release-publish.yml vendored

View File

4

.github/workflows/release-tag.yml vendored

View File

2

.vscode/extensions.json vendored

View File

2

.vscode/launch.json vendored

View File

34

.vscode/settings.json vendored

View File

62

.vscode/tasks.json vendored

View File

56

Dockerfile

View File

17

Makefile

View File

4

README.md

View File

8

SECURITY.md

View File

2

authentik/init.py

View File

19

authentik/admin/api/system.py

View File

11

authentik/admin/api/version.py

View File

4

authentik/api/templates/api/browser.html

View File

6

authentik/blueprints/api.py

View File

6

authentik/blueprints/management/commands/apply_blueprint.py

View File

25

authentik/blueprints/management/commands/make_blueprint_schema.py

View File

24

authentik/blueprints/tests/fixtures/rbac_object.yaml vendored Normal file

View File

8

authentik/blueprints/tests/fixtures/rbac_role.yaml vendored Normal file

View File

9

authentik/blueprints/tests/fixtures/rbac_user.yaml vendored Normal file

View File

2

authentik/blueprints/tests/test_v1_api.py

View File

57

authentik/blueprints/tests/test_v1_rbac.py Normal file

View File

30

authentik/blueprints/v1/common.py

View File

64

authentik/blueprints/v1/importer.py

View File

6

authentik/brands/api.py

View File

3

authentik/brands/apps.py

View File

26

authentik/brands/migrations/0007_brand_default_application.py Normal file

View File

21

authentik/brands/models.py

View File

46

authentik/brands/tests.py

View File

9

authentik/brands/urls_root.py Normal file

View File

4

authentik/brands/utils.py

View File

0

authentik/brands/views/init.py Normal file

View File

29

authentik/brands/views/webfinger.py Normal file

View File

31

authentik/core/api/applications.py

View File

2

authentik/core/api/authenticated_sessions.py

View File

11

authentik/core/api/devices.py

View File

33

authentik/core/api/groups.py

View File

79

authentik/core/api/object_types.py Normal file

View File

117

authentik/core/api/propertymappings.py → authentik/core/api/property_mappings.py

View File

54

authentik/core/api/providers.py

View File

79

authentik/core/api/sources.py

View File

26

authentik/core/api/tokens.py

View File

11

authentik/core/api/used_by.py

View File

49

authentik/core/api/users.py

View File

58

authentik/core/api/utils.py

View File

5

authentik/core/auth.py

View File

7

authentik/core/exceptions.py

View File

33

authentik/core/expression/evaluator.py

View File

19

authentik/core/expression/exceptions.py Normal file

View File

32

authentik/core/management/commands/change_user_type.py Normal file

View File

8

authentik/core/migrations/0029_provider_backchannel_applications_and_more.py

View File

43

authentik/core/migrations/0036_source_group_property_mappings_and_more.py Normal file

View File

18

authentik/core/migrations/0037_remove_source_property_mappings.py Normal file

View File

19

authentik/core/migrations/0038_source_authentik_c_enabled_d72365_idx.py Normal file

View File

67

authentik/core/migrations/0039_source_group_matching_mode_alter_group_name_and_more.py Normal file

View File

323

authentik/core/models.py

View File

2

authentik/core/signals.py

View File

247

authentik/core/sources/flow_manager.py

View File

103

authentik/core/sources/mapper.py Normal file

View File

14

authentik/core/sources/stage.py

View File

36

authentik/core/tasks.py

View File

2

authentik/core/templates/base/header_js.html

View File

7

authentik/core/templates/base/skeleton.html

View File

4

authentik/core/templates/if/admin.html

View File

4

authentik/core/templates/if/user.html

View File

4

authentik/core/templates/login/base_full.html

View File

0

authentik/core/templatetags/init.py Normal file

View File