authentik/Makefile

.SHELLFLAGS += -x -e
PWD = $(shell pwd)
UID = $(shell id -u)
GID = $(shell id -g)
NPM_VERSION = $(shell python -m scripts.npm_version)

all: lint-fix lint test gen web

test-integration:
	coverage run manage.py test tests/integration

test-e2e-provider:
	coverage run manage.py test tests/e2e/test_provider*

test-e2e-rest:
	coverage run manage.py test tests/e2e/test_flows* tests/e2e/test_source*

test-go:
	go test -timeout 0 -v -race ./...

test:
	coverage run manage.py test authentik
	coverage html
	coverage report

lint-fix:
	isort authentik tests lifecycle
	black authentik tests lifecycle
	codespell -I .github/codespell-words.txt -S 'web/src/locales/**' -w \
		authentik \
		internal \
		cmd \
		web/src \
		website/src \
		website/docs \
		website/developer-docs

lint:
	bandit -r authentik tests lifecycle -x node_modules
	pylint authentik tests lifecycle
	golangci-lint run -v

i18n-extract: i18n-extract-core web-extract

i18n-extract-core:
	./manage.py makemessages --ignore web --ignore internal --ignore web --ignore web-api --ignore website -l en

gen-build:
	./manage.py spectacular --file schema.yml

gen-clean:
	rm -rf web/api/src/
	rm -rf api/

gen-web:
	docker run \
		--rm -v ${PWD}:/local \
		--user ${UID}:${GID} \
		openapitools/openapi-generator-cli generate \
		-i /local/schema.yml \
		-g typescript-fetch \
		-o /local/web-api \
		--additional-properties=typescriptThreePlus=true,supportsES6=true,npmName=@goauthentik/api,npmVersion=${NPM_VERSION}
	mkdir -p web/node_modules/@goauthentik/api
	python -m scripts.web_api_esm
	\cp -fv scripts/web_api_readme.md web-api/README.md
	cd web-api && npm i
	\cp -rfv web-api/* web/node_modules/@goauthentik/api

gen-outpost:
	wget https://raw.githubusercontent.com/goauthentik/client-go/main/config.yaml -O config.yaml
	mkdir -p templates
	wget https://raw.githubusercontent.com/goauthentik/client-go/main/templates/README.mustache -O templates/README.mustache
	wget https://raw.githubusercontent.com/goauthentik/client-go/main/templates/go.mod.mustache -O templates/go.mod.mustache
	docker run \
		--rm -v ${PWD}:/local \
		--user ${UID}:${GID} \
		openapitools/openapi-generator-cli:v5.2.1 generate \
		-i /local/schema.yml \
		-g go \
		-o /local/api \
		-c /local/config.yaml
	go mod edit -replace goauthentik.io/api=./api
	rm -rf config.yaml ./templates/

gen: gen-build gen-clean gen-web

migrate:
	python -m lifecycle.migrate

run:
	go run -v cmd/server/main.go

web-watch:
	cd web && npm run watch

web: web-lint-fix web-lint web-extract

web-lint-fix:
	cd web && npm run prettier

web-lint:
	cd web && npm run lint
	cd web && npm run lit-analyse

web-extract:
	cd web && npm run extract

# These targets are use by GitHub actions to allow usage of matrix
# which makes the YAML File a lot smaller

ci--meta-debug:
	python -V
	node --version

ci-pylint: ci--meta-debug
	pylint authentik tests lifecycle

ci-black: ci--meta-debug
	black --check authentik tests lifecycle

ci-isort: ci--meta-debug
	isort --check authentik tests lifecycle

ci-bandit: ci--meta-debug
	bandit -r authentik tests lifecycle

ci-pyright: ci--meta-debug
	pyright e2e lifecycle

ci-pending-migrations: ci--meta-debug
	./manage.py makemigrations --check
providers/api: return redirect_uris for proxy provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-11 18:02:17 +00:00			`.SHELLFLAGS += -x -e`
			`PWD = $(shell pwd)`
root: explicitly set --user for codegen Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 21:14:51 +00:00			`UID = $(shell id -u)`
			`GID = $(shell id -g)`
web: improve api client versioning Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 08:09:56 +00:00			`NPM_VERSION = $(shell python -m scripts.npm_version)`
providers/api: return redirect_uris for proxy provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-11 18:02:17 +00:00
web: add link to open API Browser for API Drawer Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-14 15:03:42 +00:00			`all: lint-fix lint test gen web`
Proxy v2 (#189) 2020-09-02 22:04:12 +00:00
tests: move integration tests into separate folder, add separate pipeline task 2020-11-19 13:25:53 +00:00			`test-integration:`
root: make testing output more consistent Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-23 22:46:27 +00:00			`coverage run manage.py test tests/integration`
tests: move integration tests into separate folder, add separate pipeline task 2020-11-19 13:25:53 +00:00
outposts: release binary outposts (#1954) * outposts/proxy: always embed static assets, still check local Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: add initial ci to build outpost as binary Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: fix typo, build web Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: upload to release on publish, only run linux on ci Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: ensure latest go is used Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: split e2e tests into two halves Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-17 19:49:32 +00:00			`test-e2e-provider:`
			`coverage run manage.py test tests/e2e/test_provider*`

			`test-e2e-rest:`
			`coverage run manage.py test tests/e2e/test_flows* tests/e2e/test_source*`
tests: move integration tests into separate folder, add separate pipeline task 2020-11-19 13:25:53 +00:00
internal: add more outpost tests, add support for X-Original-URL Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-01-24 19:50:13 +00:00			`test-go:`
			`go test -timeout 0 -v -race ./...`

core: improve messaging on flow_manager, authenticate user when they linked their account after not having been authenticateed Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-04 16:45:28 +00:00			`test:`
root: make testing output more consistent Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-23 22:46:27 +00:00			`coverage run manage.py test authentik`
Proxy v2 (#189) 2020-09-02 22:04:12 +00:00			`coverage html`
			`coverage report`

			`lint-fix:`
root: update linters, remove prospector Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-03-22 18:52:41 +00:00			`isort authentik tests lifecycle`
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * : new sentry dsn tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject 2020-12-05 21:08:42 +00:00			`black authentik tests lifecycle`
website/docs: fix typos Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-10-19 13:45:15 +00:00			`codespell -I .github/codespell-words.txt -S 'web/src/locales/**' -w \`
			`authentik \`
			`internal \`
			`cmd \`
			`web/src \`
			`website/src \`
			`website/docs \`
			`website/developer-docs`
Proxy v2 (#189) 2020-09-02 22:04:12 +00:00
			`lint:`
wip: rename to authentik (#361) * root: initial rename * web: rename custom element prefix * root: rename external functions with pb_ prefix * root: fix formatting * root: replace domain with goauthentik.io * proxy: update path * root: rename remaining prefixes * flows: rename file extension * root: pbadmin -> akadmin * docs: fix image filenames * lifecycle: ignore migration files * ci: copy default config from current source before loading last tagged * : new sentry dsn tests: fix missing python3.9-dev package * root: add additional migrations for service accounts created by outposts * core: mark system-created service accounts with attribute * policies/expression: fix pb_ replacement not working * web: fix last linting errors, add lit-analyse * policies/expressions: fix lint errors * web: fix sidebar display on screens where not all items fit * proxy: attempt to fix proxy pipeline * proxy: use go env GOPATH to get gopath * lib: fix user_default naming inconsistency * docs: add upgrade docs * docs: update screenshots to use authentik * admin: fix create button on empty-state of outpost * web: fix modal submit not refreshing SiteShell and Table * web: fix height of app-card and height of generic icon * web: fix rendering of subtext * admin: fix version check error not being caught * web: fix worker count not being shown * docs: update screenshots * root: new icon * web: fix lint error * admin: fix linting error * root: migrate coverage config to pyproject 2020-12-05 21:08:42 +00:00			`bandit -r authentik tests lifecycle -x node_modules`
			`pylint authentik tests lifecycle`
internal: cleanup logging, remove duplicate code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-22 09:33:21 +00:00			`golangci-lint run -v`
Proxy v2 (#189) 2020-09-02 22:04:12 +00:00
web/admin: allow flow edit on flow view page Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-19 09:20:31 +00:00			`i18n-extract: i18n-extract-core web-extract`

			`i18n-extract-core:`
root: add translation for backend strings Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-10-09 18:07:28 +00:00			`./manage.py makemessages --ignore web --ignore internal --ignore web --ignore web-api --ignore website -l en`

outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00			`gen-build:`
*: replace swagger with openapi Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 12:13:07 +00:00			`./manage.py spectacular --file schema.yml`
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00
website/docs: update nginx config Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-20 20:06:55 +00:00			`gen-clean:`
			`rm -rf web/api/src/`
root: initial merging of outpost and main project Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-06-16 10:02:02 +00:00			`rm -rf api/`
website/docs: update nginx config Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-20 20:06:55 +00:00
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00			`gen-web:`
providers/api: return redirect_uris for proxy provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-11 18:02:17 +00:00			`docker run \`
			`--rm -v ${PWD}:/local \`
root: explicitly set --user for codegen Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 21:14:51 +00:00			`--user ${UID}:${GID} \`
root: revert to upstream api generator Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-29 12:54:29 +00:00			`openapitools/openapi-generator-cli generate \`
*: initial migration to openapi v3 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-15 21:57:28 +00:00			`-i /local/schema.yml \`
providers/api: return redirect_uris for proxy provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-11 18:02:17 +00:00			`-g typescript-fetch \`
web: build. api in different folder Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 07:49:09 +00:00			`-o /local/web-api \`
web: improve api client versioning Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 08:09:56 +00:00			`--additional-properties=typescriptThreePlus=true,supportsES6=true,npmName=@goauthentik/api,npmVersion=${NPM_VERSION}`
website: add docs for making schema changes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 08:32:37 +00:00			`mkdir -p web/node_modules/@goauthentik/api`
web: add ESM to generated Client https://github.com/OpenAPITools/openapi-generator/issues/8881 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 09:11:18 +00:00			`python -m scripts.web_api_esm`
web: add custom readme to api client Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 10:00:35 +00:00			`\cp -fv scripts/web_api_readme.md web-api/README.md`
website: add docs for making schema changes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-08-23 08:32:37 +00:00			`cd web-api && npm i`
			`\cp -rfv web-api/* web/node_modules/@goauthentik/api`
root: fix IP detection in ASGI logger, attempt to fix out of order issues 2020-09-10 14:58:25 +00:00
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00			`gen-outpost:`
providers/ldap: memory Query (#1681) * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-05 09:37:30 +00:00			`wget https://raw.githubusercontent.com/goauthentik/client-go/main/config.yaml -O config.yaml`
			`mkdir -p templates`
			`wget https://raw.githubusercontent.com/goauthentik/client-go/main/templates/README.mustache -O templates/README.mustache`
			`wget https://raw.githubusercontent.com/goauthentik/client-go/main/templates/go.mod.mustache -O templates/go.mod.mustache`
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00			`docker run \`
			`--rm -v ${PWD}:/local \`
root: explicitly set --user for codegen Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 21:14:51 +00:00			`--user ${UID}:${GID} \`
root: fix overlay outpost api generation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-01 19:13:05 +00:00			`openapitools/openapi-generator-cli:v5.2.1 generate \`
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00			`-i /local/schema.yml \`
			`-g go \`
root: initial merging of outpost and main project Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-06-16 10:02:02 +00:00			`-o /local/api \`
providers/ldap: memory Query (#1681) * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-05 09:37:30 +00:00			`-c /local/config.yaml`
			`go mod edit -replace goauthentik.io/api=./api`
root: revert to upstream api generator Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-29 12:54:29 +00:00			`rm -rf config.yaml ./templates/`
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00
stages/user_write: add option to add newly created users to a group Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-09-14 19:45:34 +00:00			`gen: gen-build gen-clean gen-web`
outpost: migrate to openapitools/openapi-generator-cli Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-16 19:07:01 +00:00
core: fix error when setting icon/background to url longer than 100 chars Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-07-09 17:31:32 +00:00			`migrate:`
			`python -m lifecycle.migrate`

web/admin: filter out service accounts by default Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-05-04 16:14:25 +00:00			`run:`
stages/authenticator_sms: Add SMS Authenticator Stage (#1577) * stages/authenticator_sms: initial implementation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add initial stage UI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/elements: clear invalid state when old input was invalid but new input is correct Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * stages/authenticator_sms: add more logic Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/user: add basic SMS settings Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * stages/authenticator_sms: initial working version Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * stages/authenticator_sms: add tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: optimise totp password manager entry on authenticator_validation stage Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/elements: add grouping support for table Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: allow sms class in authenticator stage Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add grouping to more pages Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * stages/authenticator_validate: add SMS support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * api: add throttling for flow executor based on session key and pending user Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: fix style issues Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: add workflow to compile backend translations Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-10-11 15:51:49 +00:00			`go run -v cmd/server/main.go`
web/elements: add new API to store attributes in URL, use for table and tabs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-18 20:01:58 +00:00
web: fix duplicate classes, make generic icon clickable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-06 20:13:04 +00:00			`web-watch:`
			`cd web && npm run watch`

web/admin: allow flow edit on flow view page Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-19 09:20:31 +00:00			`web: web-lint-fix web-lint web-extract`
web/elements: add new API to store attributes in URL, use for table and tabs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-18 20:01:58 +00:00
			`web-lint-fix:`
			`cd web && npm run prettier`

			`web-lint:`
			`cd web && npm run lint`
			`cd web && npm run lit-analyse`
web/admin: allow flow edit on flow view page Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-19 09:20:31 +00:00
			`web-extract:`
			`cd web && npm run extract`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00
			`# These targets are use by GitHub actions to allow usage of matrix`
			`# which makes the YAML File a lot smaller`

root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci--meta-debug:`
			`python -V`
			`node --version`

			`ci-pylint: ci--meta-debug`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00			`pylint authentik tests lifecycle`

root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci-black: ci--meta-debug`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00			`black --check authentik tests lifecycle`

root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci-isort: ci--meta-debug`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00			`isort --check authentik tests lifecycle`

root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci-bandit: ci--meta-debug`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00			`bandit -r authentik tests lifecycle`

root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci-pyright: ci--meta-debug`
ci: use matrix for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-11-21 21:47:10 +00:00			`pyright e2e lifecycle`
ci: add check to ensure no migrations are missing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-03 09:05:21 +00:00
root: migrate pipenv to poetry (#1995) 2021-12-24 22:25:38 +00:00			`ci-pending-migrations: ci--meta-debug`
ci: add check to ensure no migrations are missing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-03 09:05:21 +00:00			`./manage.py makemigrations --check`