authentik

Archived

Author	SHA1	Message	Date
Jens L	711e98d049	stages/identification: revert is_active check (#5183 )	2023-04-05 15:49:35 +02:00
sdimovv	6192d01b7e	stages: Add ability to set user friendly names for MFA stages (#5005 ) * Added ability to name MFA stage * Schema * Changed Charfield to Textfield * Regenerated schema * Add explicit required * set null instead of blank so title check works Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add help text and adjust wording Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-04-02 16:52:44 +02:00
Jens L	5947c7b97e	stages/user_write: improve error handling (#5136 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-31 23:59:37 +02:00
Jens L	4218ece2a5	stages/authenticator_validate: fix stage not working without pending user (#5096 ) closes #5094 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-27 23:08:55 +02:00
Jens L	5c0d7f9a58	web/admin: fix error when creating bindings due to hidden inputs (#5081 ) * web/admin: fix error when creating bindings due to hidden inputs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix flaky test Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-26 18:58:02 +02:00
Jens L	6437fbc814	web/admin: prompt preview (#5078 ) * add initial prompt preview Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve error handling Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't flood api with requests when fields are changeed Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-25 22:31:48 +01:00
sdimovv	8b52d711e8	stages/prompt: Add Radio Button Group, Dropdown and Text Area prompt fields (#4822 ) * Added radio-button prompt type in model * Add radio-button prompt * Refactored radio-button prompt; Added dropdown prompt * Added tests * Fixed unrelated to choice fields bug causing validation errors; Added more tests * Added description for new prompts * Added docs * Fix lint * Add forgotten file changes * Fix lint * Small fix * Add text-area prompts * Update authentik/stages/prompt/models.py Co-authored-by: Jens L. <jens@beryju.org> Signed-off-by: sdimovv <36302090+sdimovv@users.noreply.github.com> * Update authentik/stages/prompt/models.py Co-authored-by: Jens L. <jens@beryju.org> Signed-off-by: sdimovv <36302090+sdimovv@users.noreply.github.com> * Fix inline css * remove AKGlobal, update schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: sdimovv <36302090+sdimovv@users.noreply.github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L. <jens@beryju.org> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-03-19 18:56:17 +01:00
Jens L	eaf56f4f3f	stages/user_login: stay logged in (#4958 ) * add initial remember me offset Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add to go executor Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui for user login stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-15 20:21:05 +01:00
Jens L	59a92dbacd	stages/authenticator_webauthn: remove credential_id size limit (#4931 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-13 21:24:10 +01:00
Jens L	fab6a8f8c9	stages/user_login: expiry before login (#4920 ) * stages/user_write: run set_expiry before login, so that session used in Signal has correct expiry Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-13 15:31:06 +01:00
Jens L	972dce1462	security: fix CVE-2023-26481 (#4832 ) fix CVE-2023-26481 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-02 20:15:33 +01:00
Jens L	7b44d8972f	stages/authenticator_sms: fix twilio sending, add test (#4829 ) closes #4823 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-03-02 14:39:28 +01:00
Jens L	20e971f5ce	flows: planner error handling (#4812 ) * handle FlowNonApplicableException everywhere Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make flow planner check authentication when no pending user is in planning context Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add mailhog to e2e test services, remove local docker requirement Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-28 15:18:29 +01:00
Jens L	80f4fccd35	providers/oauth2: OpenID conformance (#4758 ) * don't open inspector by default when debug is enabled Signed-off-by: Jens Langhammer <jens@goauthentik.io> * encode error in fragment when using hybrid grant_type Signed-off-by: Jens Langhammer <jens@goauthentik.io> * require nonce for all response_types that get an id_token from the authorization endpoint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't set empty family_name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only set at_hash when response has token Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleaner way to get login time Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove authentication requirement from authentication flow Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use wrapper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix auth_time not being handled correctly Signed-off-by: Jens Langhammer <jens@goauthentik.io> * minor cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test files Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove USER_LOGIN_AUTHENTICATED Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework prompt=login handling Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also set last login uid for max_age check to prevent double login when max_age and prompt=login is set Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-23 15:26:41 +01:00
Jens L	122055b38b	stages/user_login: terminate others (#4754 ) * rework session list Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use sender filtering for signals when possible Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add terminate_other_sessions Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-02-22 14:09:28 +01:00
dependabot[bot]	c590cb86cf	core: bump pylint from 2.15.10 to 2.16.0 (#4600 ) * core: bump pylint from 2.15.10 to 2.16.0 Bumps [pylint](https://github.com/PyCQA/pylint) from 2.15.10 to 2.16.0. - [Release notes](https://github.com/PyCQA/pylint/releases) - [Commits](https://github.com/PyCQA/pylint/compare/v2.15.10...v2.16.0) --- updated-dependencies: - dependency-name: pylint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-02-02 11:05:46 +01:00
dependabot[bot]	18cfe67719	core: bump black from 22.12.0 to 23.1.0 (#4584 ) * core: bump black from 22.12.0 to 23.1.0 Bumps [black](https://github.com/psf/black) from 22.12.0 to 23.1.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/22.12.0...23.1.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * re-format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-02-01 11:31:32 +01:00
Aaron Carson	c05d6b96a2	stages/prompt: set UUID to be a string (#4563 )	2023-01-30 00:02:12 +01:00
Jens Langhammer	5631a99f00	stages/prompt: fallback to uuid for unique names Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-25 23:29:26 +01:00
Jens Langhammer	36f8f8bae5	stages/prompt: fix mismatched name field in migration Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-25 14:46:40 +01:00
Jens Langhammer	68058fb2ae	stages/authenticator_validate: fix error with passwordless webauthn login, improve tests closes #4527 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-25 14:45:00 +01:00
Jens L	53b65a9d1a	stages/prompt: field name (#4497 ) * add prompt field name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove numerical prefix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use text field Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add description label Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add migrate blueprint to remove old stages Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add task to remove unretrievable blueprints Signed-off-by: Jens Langhammer <jens@goauthentik.io> * lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix blueprint test paths Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests even more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix fixtures Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-24 12:23:22 +01:00
Jens Langhammer	b99afd82b2	stages/user_write: fix migration setting wrong value, fix form Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-23 14:38:26 +01:00
Jens Langhammer	1ce2a1b846	stages/email: update tests Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-23 10:43:49 +01:00
Loan J	4731ccfafe	stages/email: fix a typo in email template (#4485 ) fix a typo in main content Signed-off-by: Loan J <joliveau.loan@gmail.com> Signed-off-by: Loan J <joliveau.loan@gmail.com>	2023-01-23 10:22:49 +01:00
jmptbl	c1b9b5c5e2	stages/authenticator_totp: url quote TOTP issuer instead of slugifying (#4482 ) * Fix TOTP issuer mangling * Fix OTP issuer mangling * sort imports Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-01-22 16:37:47 +00:00
Jens Langhammer	b288393cd4	stages/invitation: handle incorrectly formatted token closes #4481 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-22 00:03:39 +01:00
Jens Langhammer	5736a1542c	stages/authenticator_sms: fix code not being sent when phone_number is in context Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-19 20:19:23 +01:00
Jens Langhammer	fc8fe5317a	stages: always use get_pending_user instead of getting context user Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-19 17:57:21 +01:00
Jens L	9568f4dbd6	root: improve code style (#4436 ) * cleanup pylint comments Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix url name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * *: use ExtractHour instead of ExtractDay Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-01-15 17:02:31 +01:00
Jens L	a960ce9454	stages/user_write: add more user creation options (#4367 ) * add more user creation options Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update blueprints and docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-05 15:46:20 +01:00
Jens Langhammer	3e7320734c	*: improve general tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-04 22:26:55 +01:00
Jens Langhammer	2dc0792d9e	stages/email: remove unused import Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-02 09:28:26 +01:00
Jens Langhammer	c810628fe3	stages/email: use pending user correctly closes #4318 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-01 23:50:57 +01:00
Jens Langhammer	2cae6596eb	core: cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-01 23:01:08 +01:00
Jens Langhammer	11b1eb4173	stages/email: make template tests less flaky Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-01 23:00:32 +01:00
Jens Langhammer	9fdfb8c99b	stages/dummy: add toggle to throw error for debugging Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-01 21:25:53 +01:00
Jens Langhammer	5cab280759	stages/captcha: fix captcha not loading correctly, add tests closes #4320 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2023-01-01 18:15:41 +01:00
Jens Langhammer	9d422918b3	stages/prompt: use stage.get_pending_user() to fallback to the correct user Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-30 20:38:15 +01:00
Jens Langhammer	20a4dfd13d	stages/invitation: fix incorrect pk check for invitation's flow closes #4278 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-27 13:55:51 +01:00
Jens L	9f846d94be	security: fix CVE 2022 23555 (#4274 ) * add flow to invitation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * show warning on invitation page Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add security advisory Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-23 14:13:49 +01:00
Jens L	84fbeb5721	security: fix CVE 2022 46172 (#4275 ) * fallback to current user in user_write, add flag to disable user creation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update api and web ui Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update default flows Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add cve post to website Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-23 14:12:58 +01:00
Jens L	ec925491b2	stages/captcha: customisable URLs (#3832 ) * make api and js url customisable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use recaptcha.net domains Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * regen locale Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-18 14:18:43 +01:00
Jens Langhammer	f47ce9a360	stages/user_login: prevent double success message when logging in via source Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-12 16:34:16 +00:00
Jens Langhammer	5d51621278	stages/user_write: always ignore `component` field and prevent warning Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-12-12 15:31:56 +00:00
Jens Langhammer	e22fce02f8	stages/authenticator_validate: improve validation for not_configured_action Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-28 10:52:51 +01:00
Jens Langhammer	e2bd96c5de	stages/authenticator_validate: fix validation to ensure configuration stage is set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-25 21:37:52 +01:00
Jens Langhammer	1fa9b3a996	providers/saml: set AuthnContextClassRef based on login event Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #4070	2022-11-25 11:21:45 +01:00
Jens Langhammer	f22f1ebcde	stages/authenticator_validate: save used mfa devices in login event Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-25 10:47:49 +01:00
Jens Langhammer	1c2cdfe06a	web/flows: improve error messages for failed duo push Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-11-24 13:42:13 +01:00

1 2 3 4 5 ...

492 commits