trustchain-oc1-orchestral/authentik
Archived
10
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
9088 commits 95 branches 330 tags 336 MiB
Commit graph

2311 commits

Author SHA1 Message Date
Jens Langhammer e892ed14da providers/oauth2: include source's user path in M2M created users 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 14:07:28 +02:00
Jens L 1c62a3db6e
core: user paths (#3085) 
* init

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add user_path_template

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to sources and flow

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add outposts & api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* dark theme for treeview

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add search

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add docs and tests for validation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to user write stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add web ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: improve error handling

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 12:12:26 +02:00
Jens L 6821402fef
providers/oauth2: remove deprecated verification_keys (#3071) 
remove verification_keys

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-11 19:48:07 +02:00
Jens L 8dbb0bd2c6
providers/oauth2: token revoke (#3077) 2022-06-11 18:49:16 +02:00
Jens L 0cad56ec73
providers/oauth2: if a redirect_uri cannot be parsed as regex, compare strict (#3070) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-10 23:32:57 +02:00
Jens Langhammer bdf76bb4b7 internal: skip tracing for go healthcheck and metrics endpoints 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-10 22:21:11 +02:00
Jens Langhammer 74ce9cc6fd root: ignore healthcheck routes in sentry tracing 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-10 20:10:27 +02:00
Jens Langhammer 5e2d647a6c core: trigger bootstrap tasks in server if we're debugging 
closes #3040

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-09 20:21:31 +02:00
Jens Langhammer 7beebe030d lifecycle: run bootstrap tasks inline when using automated install 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-09 20:09:55 +02:00
Jens L 66f4a31b4c
stages/authenticator_validate: add webauthn tests (#3069) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-08 20:50:48 +02:00
Jens Langhammer 039d896dee policies: consolidate log user and application 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-07 22:26:01 +02:00
Jens Langhammer ff2baf502b release: 2022.6.2 2022-06-07 21:36:18 +02:00
Jens Langhammer 23023ec727 providers/oauth2: add JWKS URL to OAuth2ProviderSetupURLs 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-07 20:17:06 +02:00
Jens Langhammer 7d84a71a01 stages/authenticator_validate: fix double-negation of password-less check 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-07 09:52:10 +02:00
Jens Langhammer 9add8479ca stages/authenticator_validate: fix error in passwordless webauthn 
closes #3050

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-06 13:50:11 +02:00
Jens Langhammer ca40d31dac *: make user logging more consistent 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 18:50:44 +02:00
Frédérick Permantier 2dfa6c2c82
core: add setting to open application launch URL in a new browser tab (#3037) 
* core: add setting to open application launch URL in a new browser tab

* core: fix failing applications unit tests

* core: fix formatting

* core: include models only generated when debug mode is enabled
 2022-06-05 14:32:22 +02:00
Jens Langhammer c11435780d sources/oauth: fix twitter client missing basic auth 
closes #3038

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 14:21:32 +02:00
Jens Langhammer 817d538b8f core: add additional filters to source viewset 
https://github.com/goauthentik/terraform-provider-authentik/issues/184
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 00:56:46 +02:00
Jens Langhammer 210775776f core: add slug to built-in source 
https://github.com/goauthentik/terraform-provider-authentik/issues/184
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 00:50:10 +02:00
Jens Langhammer b26111fb42 events: fix error when attempting to create event with GeoIP City in context 
closes #2709

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 00:16:07 +02:00
Jens Langhammer 67d54c5209 release: 2022.6.1 2022-06-04 21:23:33 +02:00
Jens L fa04883ac1
events: use custom login failed signal, also send for mfa errors, add stage and more to context (#3039) 
* use custom login failed signal, also send for mfa errors, add stage and more to context

closes #3027

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* include device class in event

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-04 15:30:56 +02:00
Jens L 36cbc44ed6
migrate to main (#3035) 
closes #3032

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-03 19:40:09 +02:00
Jens L 0c591a50e3
*: don't dispatch tasks on startup of server (#3033) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-03 18:29:24 +02:00
Jens L 7ee655a318
core: add bootstrap variables with authentik prefix for helm charts (#3031) 
https://github.com/goauthentik/helm/pull/72
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-03 15:22:56 +02:00
Jens Langhammer eba339ba27 core: improve loading speed of flow background 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-02 14:20:23 +02:00
Jens Langhammer 558c7bba2a lib: add lxml wrapper 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-02 13:25:24 +02:00
Jens Langhammer 8cd1a42fb9 *: fix linting 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-02 11:50:10 +02:00
Jens L c0cb891078
stages/authenticator_sms: verify-only (#3011) 2022-06-01 23:16:28 +02:00
Jens L fc1c1a849a
stages/*: use bound logger (#3012) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-01 23:01:58 +02:00
Jens L 2c6d82593e
root: cleanup session keys to use common format (#3003) 
cleanup session keys to use common format

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-31 21:53:23 +02:00
Jens Langhammer 34bcc2df1a root: disable session_save_every_request as it overwrites the session with old data 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2991
 2022-05-31 20:46:27 +02:00
Jens Langhammer b4d528a789 policies: fix incorrect bound_to count 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-31 10:16:09 +02:00
Jens Langhammer a0397fdcf4 events: set default transport mode 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-30 21:32:48 +02:00
Jens L 8faa1bf865
events: add local transport mode (#2992) 
* events: add local transport mode

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add default local transport

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-30 20:55:05 +02:00
Jens Langhammer fc75867218 events: ignore session model 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-30 20:23:07 +02:00
Jens L 3eb466ff4b
lifecycle: cleanup prometheus (#2972) 
* remove high cardinality labels

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* retry worker number for prometheus multiprocess id

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* revert to pid, use subdirectories

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* cleanup more

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use worker id based off of https://github.com/benoitc/gunicorn/issues/1352

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix missing app label

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: remove static names

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-29 21:45:25 +02:00
Jens L 9f2529c886
stages/authentiactor_validate: cookies (#2978) 
* stages/authenticator_validate: rewrite to use signed jwt cookie + expiry as MFA threshold

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add more tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add more tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-29 19:47:34 +02:00
Jens L fb25b28976
core: db sessions (#2979) 
* use db session backend

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* root: wrap session cookie in JWT and add useful claims

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix compatibility with tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use standard session key for writing in sessions too

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-29 18:58:54 +02:00
Jens Langhammer fb69f67f47 *: cleanup vendor 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-28 21:26:33 +02:00
Jens Langhammer 18b48684eb providers/oauth2: add configuration error event when wrong redirect uri is used in token request 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-28 21:15:58 +02:00
Jens Langhammer 098b0aef6e *: use create_test_admin_user for all unittests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-28 21:13:16 +02:00
Jens Langhammer 082df0ec51 Merge branch 'version-2022.5' 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	authentik/providers/oauth2/views/token.py
#	web/src/locales/zh-Hans.po
 2022-05-28 13:19:58 +02:00
Jens Langhammer 1883402b3d release: 2022.5.3 2022-05-28 12:04:26 +02:00
Jens Langhammer 1b3aacfa1d providers/oauth2: add migration from "*" to ".*" 
closes #2970

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-27 21:43:51 +02:00
Jens Langhammer 2b68363452 providers/oauth2: add migration from "*" to ".*" 
closes #2970

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-27 10:23:13 +02:00
Jens Langhammer 6105956847 providers/oauth2: regex-escape URLs when set to blank 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-26 22:17:34 +02:00
Jens Langhammer 4ff32af343 flows: fix flakiness in tests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-26 22:17:03 +02:00
Jens Langhammer 972868c15c providers/oauth2: only set expiry on user when it was freshly created 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-26 22:16:55 +02:00