*/api: fix lookups per user

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

authentik/events/api/notification.py

@@ -50,4 +50,4 @@ class NotificationViewSet(
 
     def get_queryset(self):
         user = self.request.user if self.request else get_anonymous_user()
-        return Notification.objects.filter(user=user)
+        return Notification.objects.filter(user=user.pk)

authentik/providers/oauth2/api/tokens.py

@@ -42,7 +42,7 @@ class AuthorizationCodeViewSet(
         user = self.request.user if self.request else get_anonymous_user()
         if user.is_superuser:
             return super().get_queryset()
-        return super().get_queryset().filter(user=user)
+        return super().get_queryset().filter(user=user.pk)
 
 
 class RefreshTokenViewSet(
@@ -62,4 +62,4 @@ class RefreshTokenViewSet(
         user = self.request.user if self.request else get_anonymous_user()
         if user.is_superuser:
             return super().get_queryset()
-        return super().get_queryset().filter(user=user)
+        return super().get_queryset().filter(user=user.pk)

authentik/sources/oauth/api/source_connection.py

@@ -30,4 +30,4 @@ class UserOAuthSourceConnectionViewSet(ModelViewSet):
         user = self.request.user if self.request else get_anonymous_user()
         if user.is_superuser:
             return super().get_queryset()
-        return super().get_queryset().filter(user=user)
+        return super().get_queryset().filter(user=user.pk)

authentik/stages/authenticator_static/api.py

@@ -46,7 +46,7 @@ class StaticDeviceViewSet(ModelViewSet):
 
     def get_queryset(self):
         user = self.request.user if self.request else get_anonymous_user()
-        return StaticDevice.objects.filter(user=user)
+        return StaticDevice.objects.filter(user=user.pk)
 
 
 class StaticAdminDeviceViewSet(ReadOnlyModelViewSet):

authentik/stages/authenticator_totp/api.py

@@ -49,7 +49,7 @@ class TOTPDeviceViewSet(ModelViewSet):
 
     def get_queryset(self):
         user = self.request.user if self.request else get_anonymous_user()
-        return TOTPDevice.objects.filter(user=user)
+        return TOTPDevice.objects.filter(user=user.pk)
 
 
 class TOTPAdminDeviceViewSet(ReadOnlyModelViewSet):

authentik/stages/authenticator_webauthn/api.py

@@ -48,7 +48,7 @@ class WebAuthnDeviceViewSet(ModelViewSet):
 
     def get_queryset(self):
         user = self.request.user if self.request else get_anonymous_user()
-        return WebAuthnDevice.objects.filter(user=user)
+        return WebAuthnDevice.objects.filter(user=user.pk)
 
 
 class WebAuthnAdminDeviceViewSet(ReadOnlyModelViewSet):

authentik/stages/consent/api.py

@@ -54,4 +54,4 @@ class UserConsentViewSet(
         user = self.request.user if self.request else get_anonymous_user()
         if user.is_superuser:
             return super().get_queryset()
-        return super().get_queryset().filter(user=user)
+        return super().get_queryset().filter(user=user.pk)