diff --git a/authentik/providers/oauth2/migrations/0010_alter_oauth2provider_verification_keys.py b/authentik/providers/oauth2/migrations/0010_alter_oauth2provider_verification_keys.py new file mode 100644 index 000000000..11718cb38 --- /dev/null +++ b/authentik/providers/oauth2/migrations/0010_alter_oauth2provider_verification_keys.py @@ -0,0 +1,26 @@ +# Generated by Django 4.0.3 on 2022-03-31 18:17 + +from django.db import migrations, models + + +class Migration(migrations.Migration): + + dependencies = [ + ("authentik_crypto", "0003_certificatekeypair_managed"), + ("authentik_providers_oauth2", "0009_oauth2provider_verification_keys_and_more"), + ] + + operations = [ + migrations.AlterField( + model_name="oauth2provider", + name="verification_keys", + field=models.ManyToManyField( + blank=True, + default=None, + help_text="JWTs created with the configured certificates can authenticate with this provider.", + related_name="+", + to="authentik_crypto.certificatekeypair", + verbose_name="Allowed certificates for JWT-based client_credentials", + ), + ), + ] diff --git a/authentik/providers/oauth2/models.py b/authentik/providers/oauth2/models.py index b70f669dc..7a93b1cbe 100644 --- a/authentik/providers/oauth2/models.py +++ b/authentik/providers/oauth2/models.py @@ -227,6 +227,8 @@ class OAuth2Provider(Provider): "JWTs created with the configured certificates can authenticate with this provider." ), related_name="+", + default=None, + blank=True, ) def create_refresh_token( diff --git a/schema.yml b/schema.yml index 31df40770..fb7153eaf 100644 --- a/schema.yml +++ b/schema.yml @@ -23124,7 +23124,6 @@ components: - pk - verbose_name - verbose_name_plural - - verification_keys OAuth2ProviderRequest: type: object description: OAuth2Provider Serializer @@ -23198,7 +23197,6 @@ components: required: - authorization_flow - name - - verification_keys OAuth2ProviderSetupURLs: type: object description: OAuth2 Provider Metadata serializer