trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
10,670 Commits 95 Branches 330 Tags 336 MiB
Commit Graph

94 Commits

Author SHA1 Message Date
Jens L e390f5b2d1
providers/oauth2: more x5c and ecdsa x/y tests (#4463) 
* add option to exclude x5*

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

#4082

* cleanup jwks, add flaky test

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add workaround based on https://github.com/jpadilla/pyjwt/issues/709

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* don't rstrip hashes

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* keycloak seems to strip equals

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-18 18:11:36 +00:00
Jens L c73fce4f58
sources/ldap: manual import (#4456) 
* events: fix task UID

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add ldap sync command

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add docs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-17 12:21:33 +01:00
Jens L cd12e177ea
providers/proxy: add initial header token auth (#4421) 
* initial implementation

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* check for openid/profile claims

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* include jwks sources in proxy provider

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add web ui for jwks

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* only show sources with JWKS data configured

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix introspection tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* start basic

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add basic auth

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add docs, update admonitions

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add client_id to api, add tab for auth

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* update locale

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
 2023-01-13 16:22:03 +01:00
Jens L dc1359a763
providers/saml: initial SLO implementation (#2346) 
* providers/saml: initial SLO implementation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* providers/saml: add logout request tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* providers/saml: add tests for POST SLO

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* matrix e2e tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix import

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* set e2e matrix name

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix imports

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* separate oidc and oauth tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add basic saml slo e2e tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add better metadata download url

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* kinda prepare release notes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* sort releases into folders

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add slo urls to website

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix linking

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add api tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2023-01-04 19:45:31 +01:00
Jens L 8195e6d4ff
website/integrations: add hcp docs (#4281) 
add hcp docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-24 22:27:33 +01:00
Jens Langhammer 42c278b4f8
root: migrate to hosted sentry with rate-limited DSN 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-23 11:18:26 +01:00
Skyler Mäntysaari 81fdd097c6
website/integrations: add note for nextcloud index.php (#4210) 
* feat(docs/nextcloud): Updated docs

It was missing the proper syntax for urls with index.php in between.

* feat(docs/nextcloud): Address PR suggestion

* fix formatting, use identical casing for nextcloud

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-20 11:12:15 +01:00
jonah 4182bfd8b5
website/integrations: fix typo (#4228) 
Signed-off-by: jonah <73760377+jonerrr@users.noreply.github.com>

Signed-off-by: jonah <73760377+jonerrr@users.noreply.github.com>
 2022-12-19 10:15:19 +01:00
Nate Brady 291573fbc5
website/integrations: Add docs for Skyhigh (#3890) 
* Add Skyhigh Security documentation

* Add Skyhigh to infrastructure application menu

* Add Skyhigh to infrastructure application menu

* fix linting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-13 12:21:13 +01:00
NWHirschfeld 53f3764879
website/integrations: update/extend Gitea integration (#3946) 
* website/docs: update/extend gitea integration

* website/docs: update/extend gitea integration / run prettier

* website/integrations: update/extend Gitea integration / switched to database based filtering

Co-authored-by: NWHirschfeld <git@nwhirschfeld.de>
 2022-12-13 12:02:49 +01:00
IrwenXYZ bdd8b59ab9
website/integrations: Update Wiki.JS documentation (#4146) 
* Update Wiki.JS documentation

updated based on UI changes in latest Authentik version

under providers, removed settings that are now the default. default Subject Mode also works instead of changing to based on username.

under self registration note, updated to reflect that emails must match instead of usernames, tested with latest wikijs and authentik

* fix lint

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-13 11:56:48 +01:00
flaktrooper 4bf6cfc4d8 website/integrations: fix instruction links on source pages (#4196) 
* website/integrations: fix links for adding source to login page instructions

* website/integrations: add missing login page instruction link to plex

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-12-12 15:54:21 +00:00
Nils K 5ae593bc00
website/docs: Fix typo in ldap source documentation (#4197) 
Signed-off-by: Nils K <24257556+septatrix@users.noreply.github.com>

Signed-off-by: Nils K <24257556+septatrix@users.noreply.github.com>
 2022-12-12 11:33:32 +01:00
Avsynthe 860c85d012
website/integrations: Update Bookstack SAML settings Documentation (#4137) 
Update Bookstack SAML settings

Enabled AUTH_AUTO_INITIATE=true to reduce amount of clicks needed to proceed to Bookstack and give a propper SSO experience. If user is not logged in elsewhere already, authentik's login page will still be displayed.

Edited SAML2_DISPLAY_NAME_ATTRIBUTES so it actually works. The previous "Name" entry is non-functional and does not parse. When this is the case, or the field is empty, usernames in Bookstack default to user's email address. Entries here need to be in line with Active Directory Federation Services' Role of Claims found here: https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/technical-reference/the-role-of-claims. Additionally, this will use the user's authentik username rather than real/full name.

Enabled Group Sync by default for easier administration for sysadmins. SAML2_GROUP_ATTRIBUTE also needed to be in line with Active Directory Federation Services' Role of Claims

Signed-off-by: Avsynthe <102600593+Avsynthe@users.noreply.github.com>

Signed-off-by: Avsynthe <102600593+Avsynthe@users.noreply.github.com>
 2022-12-02 11:46:44 +01:00
Jens Langhammer 2206b71f6f website/integrations: add missing read:org scope for github org check and improve error handling 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-25 21:17:08 +02:00
Darrin 35679f5abb
website/integrations: Add TrueCommand integration (#3819) 
* Create index.md

Initial checkin of truecommand integration

Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* Update index.md

First draft

Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* Add TrueCommand Integration

Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* website: run prettier on truecommand integration.

* Update website/integrations/services/truecommand/index.md

Co-authored-by: Jens L. <jens@beryju.org>
Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* Update website/integrations/services/truecommand/index.md

Co-authored-by: Jens L. <jens@beryju.org>
Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* Update website/integrations/services/truecommand/index.md

Co-authored-by: Jens L. <jens@beryju.org>
Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

* Change name to TrueNAS TrueCommand, update SAML Attribute.

Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>

Signed-off-by: Darrin <54423468+obsidiangroup@users.noreply.github.com>
Co-authored-by: Darrin Walton <darrinw@obsidian-group.co>
Co-authored-by: Jens L. <jens@beryju.org>
 2022-10-25 12:12:57 +02:00
Rob 895658e7a3
website/integrations: add Organizr integration (#3802) 
* Add new integration application category for Dashboard and initialize organizr service template

* added images and additional info for organizr integration

* alphabetized application integration categories

* alphabetized integration federation and social login categories

* forgot to make website-lint-fix :/

* revert mention of organizr in generic setup

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-19 10:28:48 +02:00
Jens Langhammer 96a30af0eb sources/oauth: allow overriding of all scopes 
closes #3747

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-16 21:21:43 +02:00
Nick Baughman 799452dc65
website/integrations: add missing step to create mappings (#3748) 
* Update index.md

Added Customisation menu helper under Step 1

Signed-off-by: Nick Baughman <baughmann1@gmail.com>

* fix same issue in other docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Nick Baughman <baughmann1@gmail.com>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-10-14 15:38:56 +02:00
lvoegl 3ecc715e91
sources/oauth: add Twitch OAuth source (#3746) 
* sources/oauth: add Twitch OAuth source

Signed-off-by: Lukas Vögl <lukas@voegl.org>

* website/integrations: add Twitch OAuth source documentation

Signed-off-by: Lukas Vögl <lukas@voegl.org>

Signed-off-by: Lukas Vögl <lukas@voegl.org>
 2022-10-10 10:59:07 +02:00
Daniel 13c0b917c3
website/integrations: NextCloud => Nextcloud (#3714) 
Signed-off-by: Daniel <mail@danielkesselberg.de>

Signed-off-by: Daniel <mail@danielkesselberg.de>
 2022-10-02 00:36:44 +02:00
Andre Mainka 4f08a9424a
website/integrations: add QNAP NAS using LDAP (#2614) 
* Add Docu: QNAP NAS LDAP connect

* fix formatting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 21:33:10 +00:00
JJGadgets b73c70cbc2
website/integrations: improve Vikunja docs (#3370) 
* website/docs: improve Vikunja docs

- Added placeholder for name set in config.yml with example using uppercase letters and spaces, to show how the callback URL will be handled with said name
- Added note that local login can be disabled
- Reword restart note at bottom to sound more fluent

Signed-off-by: JJGadgets <git@jjgadgets.tech>

* website/docs: update Vikunja provider screenshot

* minor fixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: JJGadgets <git@jjgadgets.tech>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 20:50:56 +00:00
sathrudi 9996e02f6d
website/integrations: add note about self-signed certificates for wikijs (#3557) 
* Note about setup with self-signed certificates

Added note with info about using self-signed certificates.

Signed-off-by: sathrudi <85929245+sathrudi@users.noreply.github.com>

* fix formatting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: sathrudi <85929245+sathrudi@users.noreply.github.com>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 20:43:13 +00:00
obxjames aabeb770d7
website/integrations: improve Guacamole docs (#3481) 
* Update index.mdx

Added user creation process in Guac
Added Signing Key as this was blocking usage on Production and Test Server

Signed-off-by: obxjames <james@myapollo.dev>

* reword changes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: obxjames <james@myapollo.dev>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 19:25:38 +00:00
Corentin Closs ac1036cf1c
website/integrations: Add ArgoCD documentation (#3553) 
* Add ArgoCD documentation

* fix naming and email verification configuration

* specify Slug field and update url to specify it has to match the slug value

* update preparation note

* minor consistency fixes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 21:20:40 +02:00
Darrin e9d4ae4031
website/integrations: added snipe-it integration (#3678) 
* Added Snipe-It Integration

* Cleanup spacing

* Update Nav Menu

* forgot to run make website-lint-fix

* minor phrasing fixes, sort sidebar

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: Darrin Walton <darrinw@obsidian-group.co>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-09-30 19:13:09 +00:00
clay 771b5d7261
website/integrations: added jellyfin integration (#3576) 2022-09-30 09:30:28 +02:00
Bennett Panesar a2ccdaca05
website/integrations: Add Gitea Helm Chart Configuration (#3558) 
* website/integrations: Add Gitea Helm Chart Configuration

* website/integrations: Add Gitea Helm Chart Configuration - pr fixes
 2022-09-15 10:24:17 +02:00
Jens Langhammer e477615b0f website/integrations: update harbor screenshot 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#3543
 2022-09-11 16:25:17 +02:00
Matthieu B 89f8962a23
website/integrations: improve 'Portainer' section (#3508) 
* Cleared up confusion regarding portainer

Adding in a / at the end of the redirect url is crucial and failing to do so will cause a 'Redirect URL' error thrown in by authentik.
I also find it more clear to use 'portainer.company' instead of 'port.company'.


Signed-off-by: Matthieu B <66959271+mtthidoteu@users.noreply.github.com>

* fix lint

Signed-off-by: Matthieu B <66959271+mtthidoteu@users.noreply.github.com>
Co-authored-by: Jens L <jens@beryju.org>
 2022-09-01 12:49:09 +02:00
tigattack dd2facdc57
website/integrations: Oracle Cloud title case (#3444) 
Signed-off-by: tigattack <10629864+tigattack@users.noreply.github.com>

Signed-off-by: tigattack <10629864+tigattack@users.noreply.github.com>
 2022-08-18 17:32:33 +02:00
Jens Langhammer 549dfa4c3a website/integrations: add OCI 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-18 16:48:07 +02:00
Jens Langhammer 7f8ae24e8d website/integrations: remove old options 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-18 16:39:34 +02:00
Oliver Møller c900411d5a
website/integrations: New VCS section and GitHub integrations (#3437) 
* website/docs: create VCS section

Moved gitea and gitlab to new VCS category.

* website/docs: add GitHub-related integrations

Added GitHub Organization and GitHub Enterprise Cloud integrations. GHEC contains a note on EMU users being unsupported (GitHub limitation).

* website/docs: added GitHub links to VCS

* website/docs: Fix GitHub linter problems
 2022-08-18 12:30:38 +02:00
Jens Langhammer 98ffec87c0 website/integrations: add note for apple source with tlds 
closes #2880

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-08-16 17:04:44 +02:00
Kyle Brown b52d5dccac
website/integrations: fix config typo in vikunja (#3373) 
Fixing configuration typo `truefo` -> `true`

Signed-off-by: Kyle Brown <blackbarn@gmail.com>

Signed-off-by: Kyle Brown <blackbarn@gmail.com>
 2022-08-16 17:01:21 +02:00
Jens Langhammer e44c716cbe website/integrations: add note for rancher idp initiated 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-07-13 23:14:01 +02:00
dugite-code 5ec052bd92
website/integrations: Node-Red integration with openidconnect (#3221) 
* add Node-Red integration doc

* Node-Red Protocol settings + linting fixes
 2022-07-11 10:59:57 +02:00
Jens Langhammer 3a00a5ac3d website/docs: cleanup vikunja docs 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-26 18:29:17 +02:00
Jens L c0c222a0b8
website/docs: support levels (#3103) 
* website/docs: add badges for integration level

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add badge for sources

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 21:31:34 +02:00
Jens L e17f7020e6
webiste/docs: use autogenerated pages and categories (#3102) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 20:56:27 +02:00
Matthieu B ad8fe9fe81 website/integrations: add Sonarr Proxy Setup (#3067) 
I was stuck after setting up as the guide never actually mentions you need to make the change to your reverse proxy

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-11 19:52:22 +02:00
Jens L 36cbc44ed6
migrate to main (#3035) 
closes #3032

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-03 19:40:09 +02:00
TheMythologist 5f04a187ea
website/docs: Update flow to run only during Github logins (#2959) 2022-05-27 16:07:33 +02:00
Jens L b4e75218f5
sources/oauth: OIDC well-known and JWKS (#2936) 
* add initial

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add provider

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* include source and jwk key id in event

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add more docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests for source

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix web formatting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add provider tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix lint error

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 21:02:50 +02:00
Michał Frąckiewicz 334898ae23
website/integrations: Fix Gitea integration manual steps (#2910) 2022-05-20 16:47:39 +02:00
Victor a500ff28ac
website/integrations: update proxmox docs (#2899) 
Signed-off-by: Victor Roest <victor@xirion.net>
 2022-05-19 20:23:27 +02:00
Jens L 75b0fb3393
sources/oauth: migrate twitter to oauth2 (#2893) 2022-05-18 00:03:02 +02:00
Jens Langhammer 296779ddf1 providers/ldap: remove technical preview disclaimer 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-15 17:33:03 +02:00