Jens Langhammer
|
220d21c3e0
|
release: 2022.5.1
|
2022-05-20 19:34:45 +02:00 |
Jens L
|
333e58ce2f
|
flows/layouts (#2867)
|
2022-05-16 01:10:23 +02:00 |
Jens Langhammer
|
eb4dce91c3
|
events: add user filter to notifications
as superuser all notifications are returned regardless of permission so we need to filter
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-14 22:31:13 +02:00 |
Jens Langhammer
|
85b6bfbe5f
|
sources: fix parent serializer for user connections
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-14 21:26:02 +02:00 |
Jens Langhammer
|
ddd785898b
|
providers/saml: add title attribute to autosubmit stage and render correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-14 00:08:14 +02:00 |
Jens L
|
fd1d38f844
|
stages/authenticator_validate: remember (#2828)
* initial
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: cleanup timedelta help
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add tooltip
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* assert response code in self.assertStageResponse
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add more tests, add duo
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-10 21:05:22 +02:00 |
Jens Langhammer
|
3554406aa5
|
root: fix duplicate enum in api scheme
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-10 10:24:18 +02:00 |
Jens Langhammer
|
d3ef7920cb
|
root: add bind mode to schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-05-08 16:08:06 +02:00 |
Jens Langhammer
|
778065f468
|
core: add flag to globally disable impersonation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-17 16:52:55 +02:00 |
Jens Langhammer
|
9b9c0fe663
|
release: 2022.4.1
|
2022-04-12 22:07:34 +02:00 |
Jens Langhammer
|
2303a97bb9
|
core: add method to set key of token
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2574
|
2022-04-11 20:43:39 +02:00 |
Jens Langhammer
|
5861d41ad3
|
tenants: add tenant-level attributes, applied to users based on request
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-06 10:41:35 +02:00 |
Jens Langhammer
|
20262f3f4b
|
core: mark provider_obj as read_only
closes #2637
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-04 10:17:59 +02:00 |
Jens L
|
633296503d
|
core: add grouping to applications (#2648)
* core: add grouping to applications
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* core: add new field to tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-02 23:08:58 +02:00 |
Jens Langhammer
|
d84ff2bbca
|
policies: add policy log messages to test endpoints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-01 22:07:35 +02:00 |
Jens Langhammer
|
99008252f8
|
providers/oauth2: fix verification_keys being required
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-31 20:19:13 +02:00 |
Jens L
|
bb8af2f19b
|
providers/oauth2: add client_assertion_type jwt bearer support (#2618)
|
2022-03-31 00:30:55 +02:00 |
Jens Langhammer
|
c7a83e6182
|
stages/invitation: add invitation name
closes #2583
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-26 18:32:59 +01:00 |
Jens Langhammer
|
0c2b32da31
|
core: add num_pk to group for applications that need a numerical group id
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2497
|
2022-03-22 21:37:11 +01:00 |
Jens Langhammer
|
0bbea79c64
|
root: update schema with latest drf-spectacular
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-22 20:15:15 +01:00 |
Jens Langhammer
|
86a4a7dcee
|
release: 2022.3.3
|
2022-03-21 22:37:13 +01:00 |
Jens Langhammer
|
260a7aac63
|
release: 2022.3.2
|
2022-03-15 00:01:01 +01:00 |
Jens Langhammer
|
54f170650a
|
core: replace uid with uuid search
uid can't be searched it as its a computed field
closes #2480
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-14 10:35:55 +01:00 |
Jens Langhammer
|
fedb81571d
|
release: 2022.3.1
|
2022-03-10 19:12:29 +01:00 |
Jens Langhammer
|
1e1d9f1bdd
|
core/api: allow filtering users by uid, add uid to search
closes #2428
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-03 10:19:56 +01:00 |
Jens L
|
4f4f954693
|
core: customisable user settings (#2397)
* tenants: add user_settings flow, add basic flow and basic new executor
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/user: use flow PromptStage instead of custom stage
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/flows: add tenant to StageHost interface
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/user: fix form missing component
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/user: re-add success message
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/user: improve support for multiple error messages
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* stages/prompt: allow expressions in prompt placeholders
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* stages/prompt: add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* flows: always set pending user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* flows: never cache stage configuration flow plans
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* stages/user_write: fix error when pending user is anonymous user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: add checkbox for prompt placeholder expression
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* website/docs: add prompt expression docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* stages/prompt: add ak-locale field type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tenants: fix default policy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/user: add function to do global refresh
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/flows: fix rendering of ak-locale
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tenants: fix default policy, add error handling to placeholder, fix locale attribute
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-03-03 00:13:06 +01:00 |
Dorian Zedler
|
e9064509fe
|
sources/oauth: Add Mailcow oauth source (#2380)
* Feat: Add Mailcow oauth source
* Feat: Add mailcow icon
* Run make
* Feat: Add tests
* Fix: Remainder from discord test
* Docs: Add mailcow oauth source docs
* Docs: add mailcow source to menu
* Fix: Mailcow provider type in test
* Fix: Formatting
* Fix: Doc file name
|
2022-02-27 15:06:02 +01:00 |
Jens Langhammer
|
4a1acd377b
|
release: 2022.2.1
|
2022-02-16 10:51:55 +01:00 |
Jens Langhammer
|
2ccab75021
|
stages/authenticator_validate: add ability to select multiple configuration stages which the user can choose
closes #1843
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-12 16:55:50 +01:00 |
Jens Langhammer
|
8bc3db7c90
|
release: 2022.1.5
|
2022-02-09 22:42:34 +01:00 |
Jens L
|
d5e04a2301
|
*: remove deprecated backup (#2129)
* *: remove backup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix lint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* website/docs: add docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: final cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* ci: use correct pyproject when migrating from stable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* website/docs: fix broken docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-02-05 18:54:15 +01:00 |
Jens Langhammer
|
49dfb4756e
|
release: 2022.1.4
|
2022-02-01 20:12:55 +01:00 |
Jens Langhammer
|
c55f503b9b
|
release: 2022.1.3
|
2022-01-26 22:15:28 +01:00 |
Jens Langhammer
|
3d724db0e3
|
release: 2022.1.2
|
2022-01-24 11:28:00 +01:00 |
Jens Langhammer
|
f4a6c70e98
|
release: 2022.1.1
|
2022-01-22 18:28:40 +01:00 |
Jens Langhammer
|
e758db5727
|
stages/authenticator_webauthn: make more WebAuthn options configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-12 22:57:49 +01:00 |
Jens Langhammer
|
0027dbc0e5
|
root: remove old api path
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-06 22:21:21 +01:00 |
Jens Langhammer
|
c15e4b24a1
|
release: 2021.12.5
|
2022-01-06 21:29:12 +01:00 |
Jens Langhammer
|
6e53f1689d
|
policies/reputation: rework reputation to use a single entry, include geo_ip data
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-05 21:02:33 +01:00 |
Jens Langhammer
|
212220554f
|
sources/oauth: add additional scopes field to get additional data from provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2047
|
2022-01-03 16:43:52 +01:00 |
Jens Langhammer
|
3e22740eac
|
core: add API endpoint to directly set user's password
closes #2040
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-03 13:31:58 +01:00 |
Jens Langhammer
|
90c31c2214
|
flows: add test helpers to simplify and improve checking of stages, remove force_str
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-01 20:25:32 +01:00 |
Jens Langhammer
|
9154b9b85d
|
web/user: rework user source connection UI
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-30 21:59:41 +01:00 |
Jens Langhammer
|
d03b0b8152
|
outposts: include outposts build hash in state
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-30 15:16:34 +01:00 |
Jens Langhammer
|
b19da6d774
|
crypto: return private key's type (required for some oauth2 providers)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-25 16:51:28 +01:00 |
Jens Langhammer
|
5c5634830f
|
stages/identification: add field for passwordless flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-23 18:27:00 +01:00 |
Jens Langhammer
|
9c42b75567
|
release: 2021.12.4
|
2021-12-23 10:32:48 +01:00 |
Jens Langhammer
|
2f3026084e
|
providers/oauth2: remove jwt_alg field and set algorithm based on selected keypair, select HS256 when no keypair is selected
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 22:09:49 +01:00 |
Jens Langhammer
|
34b11524f1
|
tenants: add web certificate field, make authentik's core certificate configurable based on keypair
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 11:43:45 +01:00 |
Jens Langhammer
|
cf4b4030aa
|
release: 2021.12.3
|
2021-12-21 20:52:08 +01:00 |
Jens Langhammer
|
8599d9efe0
|
web/admin: auto set the embedded outpost's authentik_host on first view
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-19 13:27:04 +01:00 |
Jens Langhammer
|
e9910732bc
|
release: 2021.12.2
|
2021-12-18 21:03:50 +01:00 |
Jens Langhammer
|
61097b9400
|
policies/password: add minimum digits
closes #1952
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-18 16:15:56 +01:00 |
Jens Langhammer
|
4c5537ddfe
|
sources/oauth: allow writing to user in SourceConnection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1888
|
2021-12-18 15:33:46 +01:00 |
NeroPcStation
|
273f5211a0
|
providers/saml: Fix typo (#1950)
|
2021-12-17 11:00:20 +00:00 |
Jens Langhammer
|
f33190caa5
|
release: 2021.12.1
|
2021-12-16 15:48:59 +01:00 |
Jens Langhammer
|
2a09fc0ae2
|
release: 2021.12.1-rc5
|
2021-12-15 10:21:29 +01:00 |
Jens Langhammer
|
fbb6756488
|
Merge branch 'master' into version-2021.12
|
2021-12-15 10:16:05 +01:00 |
Jens Langhammer
|
30386cd899
|
events: add custom manager with helpers for metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 21:49:33 +01:00 |
Jens Langhammer
|
64a10e9a46
|
events: fix schema for top_per_user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 21:08:15 +01:00 |
Jens Langhammer
|
0b00768b84
|
events: add flow_execution event type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 16:13:51 +01:00 |
Jens Langhammer
|
8c16dfc478
|
stages/invitation: use GroupMemberSerializer serializer to prevent all of the user's groups and their users from being returned
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 15:56:13 +01:00 |
Jens Langhammer
|
4e6714fffe
|
stages/authenticator_webauthn: make user_verification configurable
closes #1921
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 09:58:20 +01:00 |
Jens Langhammer
|
2993f506a7
|
sources/oauth: implement apple native sign-in using the apple JS SDK
closes #1881
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 00:40:29 +01:00 |
Jens Langhammer
|
4911a243ff
|
sources/oauth: add initial okta type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1910
|
2021-12-13 21:48:59 +01:00 |
Jens Langhammer
|
09b02e1aec
|
release: 2021.12.1-rc4
|
2021-12-13 12:53:58 +01:00 |
Jens Langhammer
|
5914bbf173
|
Merge branch 'master' into version-2021.12
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# Dockerfile
|
2021-12-13 10:54:21 +01:00 |
Jens Langhammer
|
340a9bc8ee
|
core: fix error when using invalid key-values in attributes query
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-09 19:53:47 +01:00 |
Jens Langhammer
|
ffb0135f06
|
release: 2021.12.1-rc3
|
2021-12-09 13:23:41 +01:00 |
Jens Langhammer
|
ee0ddc3d17
|
Merge branch 'master' into version-2021.12
|
2021-12-09 13:23:28 +01:00 |
Jens Langhammer
|
e3e9178ccc
|
web/admin: show outpost warning on application page too
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-06 10:10:44 +01:00 |
Jens Langhammer
|
b694816e7b
|
sources/*: Allow creation of source connections via API
closes #1888
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-06 10:05:42 +01:00 |
Jens Langhammer
|
6a3f7e45cf
|
providers/saml: add ?force_binding to limit bindings for metadata endpoint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-05 11:14:42 +01:00 |
Jens Langhammer
|
2b5504ff63
|
release: 2021.12.1-rc2
|
2021-12-04 20:06:41 +01:00 |
Jens Langhammer
|
639c2f5c2e
|
Merge branch 'master' into version-2021.12
|
2021-12-04 19:55:37 +01:00 |
Jens Langhammer
|
f1b9021e3e
|
sources/ldap: add optional tls verification certificate
closes #1875
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-03 10:09:13 +01:00 |
Jens Langhammer
|
60b95271eb
|
outposts/proxy: add additional headers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-01 20:19:09 +01:00 |
Jens Langhammer
|
e6818c1f6a
|
release: 2021.12.1-rc1
|
2021-12-01 13:08:13 +01:00 |
Jens Langhammer
|
e3a5ef1907
|
root: make sentry sample rate configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-29 13:52:34 +01:00 |
Jens Langhammer
|
5c54de66fc
|
*: add meta_model_name field to all models with inheritance
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-26 10:32:39 +01:00 |
Jens Langhammer
|
2c0d8d8943
|
core: add meta_model_name to MetaNameSerializer to easily show relevant events
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-26 10:27:08 +01:00 |
Jens Langhammer
|
0b8cfd437b
|
*: fix typo'd signing pair name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-24 09:55:10 +01:00 |
Jens Langhammer
|
b0fac9c9f1
|
providers/saml: fix SessionNotOnOrAfter not being included
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-16 12:36:40 +01:00 |
Jens Langhammer
|
2a3b049b01
|
release: 2021.10.4
|
2021-11-12 12:31:24 +01:00 |
Jens Langhammer
|
c98bdbacc5
|
providers/proxy: return list of configured scope names so outpost requests custom scopes
closes #1762
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-10 23:06:21 +01:00 |
Jens Langhammer
|
ab2b13938e
|
release: 2021.10.3
|
2021-11-08 20:52:11 +01:00 |
Jens Langhammer
|
da74304221
|
stages/prompt: add text_read_only field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-08 14:45:56 +01:00 |
Jens Langhammer
|
1cc60f572d
|
root: use forked openapi-generator
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-06 19:10:17 +01:00 |
Jens Langhammer
|
90151a13ae
|
stages/identification: only allow limited challenges for login sources
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-06 14:53:38 +01:00 |
Jens L
|
5a8c66d325
|
providers/ldap: memory Query (#1681)
* outposts/ldap: modularise ldap outpost, to allow different searchers and binders
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts/ldap: add basic in-memory searcher
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/ldap: add search mode field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: add search mode field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-05 10:37:30 +01:00 |
Jens Langhammer
|
909461e533
|
providers/*: include list of outposts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-05 01:06:04 +01:00 |
Jens Langhammer
|
4a89be3048
|
core: include parent group name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-05 00:11:17 +01:00 |
Jens Langhammer
|
738e4d5c74
|
web/admin: only show flows with an invitation stage configured instead of all enrollment flows
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1720
|
2021-11-04 20:54:55 +01:00 |
Jens Langhammer
|
5374352411
|
sources/plex: allow users to connect their plex account without login flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-03 21:09:02 +01:00 |
Jens Langhammer
|
58c221e867
|
release: 2021.10.2
|
2021-11-03 10:07:28 +01:00 |
Jens Langhammer
|
af83308fd4
|
stages/prompt: fix type in Prompt not having enum set
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-01 20:44:48 +01:00 |
Jens Langhammer
|
5646141fe2
|
stages/identification: add show_source_labels option, to show labels for sources
closes #1679
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-31 17:57:48 +01:00 |
Jens Langhammer
|
2788329880
|
release: 2021.10.1
|
2021-10-31 10:56:21 +01:00 |
Jens Langhammer
|
f5dc81907a
|
core: add created field to source connection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-30 15:02:41 +02:00 |
Jens Langhammer
|
d70c8fbcc3
|
core: add API for all user-source connections
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-30 14:36:54 +02:00 |