trustchain-oc1-orchestral/authentik
Archived
10
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
8980 commits 95 branches 330 tags 336 MiB
Commit graph

73 commits

Author SHA1 Message Date
Jens Langhammer 34bcc2df1a root: disable session_save_every_request as it overwrites the session with old data 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2991
 2022-05-31 20:46:27 +02:00
Jens Langhammer 482491e93c core: fix username validator not allowing changes that can be done via flows 
closes #2755

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 19:40:54 +02:00
Jens L ab2299ba1e
outposts/ldap: cached bind (#2824) 
* initial cached ldap bind support

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add web

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* clean up api generation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use gh action for golangci-lint

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-08 16:48:53 +02:00
Jens Langhammer 5861d41ad3 tenants: add tenant-level attributes, applied to users based on request 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-06 10:41:35 +02:00
Jens Langhammer 54f170650a core: replace uid with uuid search 
uid can't be searched it as its a computed field

closes #2480

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-14 10:35:55 +01:00
Jens Langhammer 1e1d9f1bdd core/api: allow filtering users by uid, add uid to search 
closes #2428

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-03 10:19:56 +01:00
Jens L 4f4f954693
core: customisable user settings (#2397) 
* tenants: add user_settings flow, add basic flow and basic new executor

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: use flow PromptStage instead of custom stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: add tenant to StageHost interface

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: fix form missing component

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: re-add success message

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: improve support for multiple error messages

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: allow expressions in prompt placeholders

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: always set pending user

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: never cache stage configuration flow plans

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/user_write: fix error when pending user is anonymous user

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/admin: add checkbox for prompt placeholder expression

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* website/docs: add prompt expression docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/prompt: add ak-locale field type

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tenants: fix default policy

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: add function to do global refresh

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: fix rendering of ak-locale

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tenants: fix default policy, add error handling to placeholder, fix locale attribute

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-03 00:13:06 +01:00
Jens Langhammer 03503363e5 core: fix UserSelfSerializer's save() overwriting other user attributes 
closes #2070

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-06 18:23:06 +01:00
Jens Langhammer 5769ff45b5 core: add goauthentik.io/user/can-change-name 
closes #2054

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-04 19:03:12 +01:00
Jens Langhammer 3e22740eac core: add API endpoint to directly set user's password 
closes #2040

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-03 13:31:58 +01:00
Jens Langhammer 30386cd899 events: add custom manager with helpers for metrics 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 21:49:33 +01:00
Jens Langhammer 340a9bc8ee core: fix error when using invalid key-values in attributes query 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-09 19:53:47 +01:00
Jens Langhammer c1ea78c422 core: fix missing permission check for group creating when creating service account 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-06 12:33:29 +01:00
Jens Langhammer 88516ba2ca core: make defaults for _change_email and _change_username configurable 
closes #1789

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-13 22:33:03 +01:00
Jens Langhammer 971de4fcb9 core: add USER_ATTRIBUTE_CHANGE_EMAIL 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#1590 and #1677
 2021-10-27 13:34:11 +02:00
Jens Langhammer 61fab497cf core: add user flag to prevent users from changing their usernames 
closes #1590

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-20 16:17:19 +02:00
Jens Langhammer 8965451073 core: add default for user's settings attribute 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-09 16:01:22 +02:00
Jens Langhammer b33ea9cc61 core: add settings serializer to user/me and update_self endpoints, saved in a key in attributes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-09 15:35:18 +02:00
Jens Langhammer 9e7e22367b core: include group uuids in self serializer 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-05 13:10:44 +02:00
Jens Langhammer f5761dc70d core: only return group names for user_self 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-05 12:31:25 +02:00
Jens Langhammer 16380b3f7a api: ensure viewsets have default ordering 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-05 11:26:41 +02:00
Jens Langhammer 16f2603130 core: make user's name field fully options 
closes #1537

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-05 11:23:27 +02:00
Jens Langhammer 93bdea3769 core: fix api return code for user self-update 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-24 11:51:03 +02:00
Jens Langhammer 3f84abec2f core: fix token identifier not being slugified when created with user-controller input 
closes #1390

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-20 13:43:25 +02:00
Jens Langhammer 341c58a722 core: fix token expiry for service accounts being only 30 minutes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-16 09:57:34 +02:00
Jens Langhammer 20d65035d5 core: fix error when user updates themselves 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-25 17:52:50 +02:00
Jens Langhammer d7ad5f6a16 core: add API to create service account with token for app password 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-24 20:09:22 +02:00
Jens Langhammer 294d70ae4d outposts/ldap: move virtual groups to other OU for lookups, conditionally skip requests based on search filter 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-21 17:53:09 +02:00
Jens Langhammer 3e909ae6bb core: allow filtering users by the groups they are in 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-21 16:27:48 +02:00
Jens Langhammer e0e0f4fa6c core: fix users's group list not allowing blank values 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-11 20:16:45 +02:00
Jens Langhammer ec95a2bddc core: allow changing of groups a user is in from user api 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-10 19:31:30 +02:00
Jens Langhammer 557724768a core: add API to directly send recovery link to user 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-10 13:54:59 +02:00
Jens Langhammer 6fe5175f21 core: add UserSelfSerializer and separate method for users to update themselves with limited fields 
rework user settings page to better use form
closes #1227

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-05 17:42:19 +02:00
Jens Langhammer 77ed25ae34 root: reformat to 100 line width 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-08-03 17:45:16 +02:00
Jens Langhammer f6e1bfdfc8 outpost: fix 100% CPU Usage when not connected to websocket 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-07-23 18:57:26 +02:00
Jens Langhammer 8cd1223081 core: add email filter for user 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-07-22 20:10:42 +02:00
Jens Langhammer 320dab3425 core: only show Reset password link when recovery flow is configured 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-07-04 12:59:41 +02:00
Jens L 34ae9e6dab
API: add endpoint to show by what objects an object is used (#995) 
* core: add used_by API to show what objects are affected before deletion

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/elements: add support for used_by API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: add authentik_used_by_shadows to shadow other models

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: implement used_by API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: fix duplicate imports

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: add action field to used_by api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: add UI for used_by action

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: add notice to tenant form

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: fix naming in used_by

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: check length for used_by

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: fix used_by for non-pk models

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: improve __str__ on models

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: add support for many to many in used_by

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-06-10 11:58:12 +02:00
Jens Langhammer df92f01719 flows: remove default-recovery 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-29 18:30:55 +02:00
Jens Langhammer 1a0f72d0a8 Merge branch 'version-2021.5' into next 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	authentik/stages/authenticator_static/api.py
#	swagger.yaml
 2021-05-21 21:33:18 +02:00
Jens Langhammer a265dd54cc stages/authenticator_*: fix Permission Error when disabling Authenticator as non-superuser 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-21 21:25:03 +02:00
Jens Langhammer 0bac738090 *: fix static response descriptions 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-16 14:07:29 +02:00
Jens Langhammer 1324d03815 *: initial migration to openapi v3 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-15 23:57:28 +02:00
Jens Langhammer b3a3852a54 core: fix linting 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-06 13:58:58 +02:00
Jens Langhammer 49bf82a0a4 core: add user filter by superuser status 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-06 13:44:42 +02:00
Jens Langhammer 446f104c90 core: add user UID to API 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-05 11:54:28 +02:00
Jens Langhammer 1a02049104 core: show users and groups when user has overall user permissions 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-05 01:02:47 +02:00
Jens Langhammer 99d161e212 Merge branch 'master' into outpost-ldap 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	authentik/core/api/users.py
#	authentik/policies/event_matcher/migrations/0013_alter_eventmatcherpolicy_app.py
 2021-05-04 21:02:20 +02:00
Jens Langhammer 0d370ef0a9 web/admin: filter out service accounts by default 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-04 18:23:13 +02:00
Jens Langhammer 1d5958a78f providers/ldap: add search_group to limit who can do search requests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-26 23:25:03 +02:00