* ldap: support cert based auth
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* ldap: default sni switch to off
* ldap: `get_info=NONE` on insufficient access error
* fix: Make file locale script
* ldap: add google ldap attribute mappings
* ldap: move google secure ldap blueprint to examples
Revert "ldap: add google ldap attribute mappings"
This reverts commit 8a861bb92c1bd763b6e7ec0513f73b3039a1adb4.
* ldap: remove `validate` for client cert auth
not strictly necessary
* ldap: write temp cert files more securely
* ldap: use first array value for sni when provided csv input
* don't specify tempdir
we set $TMPDIR in the dockerfile
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* limit API to only allow certificate key pairs with private key
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* use maxsplit
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* update locale
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens L. <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
* providers/oauth2: launch url: if URL parsing fails, return no launch URL
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
* add test
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* only get provider launch URL when no url is set
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* only catch value error
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
* Fix typo in stage.py
Fix typo in "Cancells the current flow"
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
* Fix typo in models.py
Fix typo in "Cancells the current flow"
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
---------
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
* Fix typo in stage.py
Fix typo in "Cancells the current flow"
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
* Fix typo in models.py
Fix typo in "Cancells the current flow"
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
---------
Signed-off-by: rlew-is <96594816+rlew-is@users.noreply.github.com>
* providers/radius: add warning message when radius provider is not used with outpost
same message as Proxy and LDAP provider have
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* providers/scim: add warning when provider is not used as backchannel provider
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* providers/scim: don't sync SCIM provider that isn't used as backchannel at all
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
stages/authenticator_sms: Fix SMS Authenticator Setup Stage with generic provider does not work without mapping
This fixes issue #5629. Problem is/was that self.get_message(token) in send_generic returned a type django.utils.functional.lazy.<locals>.__proxy__ which is not json serializable.
when importing a flow and returning logs, sometimes an enum might be included which is currently not sanitized and hence causes an exception
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
