Jens L
|
dad24c03ff
|
outposts: set cookies for a domain to authenticate an entire domain (#971)
* outposts: initial cookie domain implementation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: add cookie domain setting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: replace forward_auth_mode with general mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: rebuild proxy provider form
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: re-add forward_auth_mode for backwards compat
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: fix data.mode not being set
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: always set log level to debug when testing
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: use new mode attribute
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: only ingress /akprox on forward_domain
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: fix lint error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: fix error on ProxyProviderForm when not using proxy mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: fix default for outpost form's type missing
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: add additional desc for proxy modes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts: fix service account permissions not always being updated
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost/proxy: fix redirecting to incorrect host for domain mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: improve error handling for network errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: fix image naming not matching main imaeg
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts/proxy: fix redirects for domain mode and traefik
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: fix colour for paragraphs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/flows: fix consent stage not showing permissions correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* website/docs: add domain-level docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* website/docs: fix broken links
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts/proxy: remove dead code
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/flows: fix missing id for #header-text
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-08 23:10:17 +02:00 |
|
|
Jens Langhammer
|
88cc38394e
|
root: improve sentry tags to simplify queries
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-06 14:51:43 +02:00 |
|
|
Jens Langhammer
|
17326615b7
|
events: rewrite GeoIP to a wrapper, reload file every 8 hours
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-06 00:42:41 +02:00 |
|
|
Jens Langhammer
|
f996f9d4e3
|
tests/e2e: ensure outpost service account has correct permissions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-04 09:46:31 +02:00 |
|
|
Jens Langhammer
|
e9621bae06
|
tests: show logs for containers on failed e2e tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-03 22:17:18 +02:00 |
|
|
Jens Langhammer
|
14f85ec980
|
tenants: migrate context_processor to tenants
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-29 18:01:48 +02:00 |
|
|
Jens Langhammer
|
ff611f21cd
|
tenants: initial implementation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-29 17:47:25 +02:00 |
|
|
Jens Langhammer
|
1b346866da
|
Merge branch 'master' into duo
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# Pipfile.lock
|
2021-05-24 14:54:24 +02:00 |
|
|
Jens Langhammer
|
9f5a3c396d
|
stages/authenticator_duo: initial duo stage
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-23 21:10:39 +02:00 |
|
|
Jens L
|
53e2b2c784
|
Prometheus metrics (#914)
* admin: add worker metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* admin: add version metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* events: add gauge for system tasks
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts: add gauge for last hello and connection status
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: re-add prometheus metrics to database
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: allow access to metrics without credentials when debug is on
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: add UpdatingGauge to auto-set value on load
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* flows: add metrics for cache and building
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* policies: add metrics for policy engine
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* events: add histogram for task durations
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* events: revert to gauge because values are updated on export view
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* core: add gauge to count all models
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* events: add metrics for events
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-23 20:29:34 +02:00 |
|
|
Jens Langhammer
|
1a0f72d0a8
|
Merge branch 'version-2021.5' into next
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# authentik/stages/authenticator_static/api.py
# swagger.yaml
|
2021-05-21 21:33:18 +02:00 |
|
|
Jens Langhammer
|
d9a788aac8
|
api: rename auth to authentication, add authorization for rest_framework permission class
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-21 20:14:03 +02:00 |
|
|
Jens Langhammer
|
92f2a82c03
|
providers/oauth2: fix double login required when prompt=login
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-20 01:10:08 +02:00 |
|
|
Jens Langhammer
|
acf1ad91d9
|
providers/oauth2: fix double login required when prompt=login
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-19 23:34:27 +02:00 |
|
|
Jens Langhammer
|
7f4bd27b85
|
Merge branch 'master' into openapi-v3
|
2021-05-16 23:51:45 +02:00 |
|
|
Jens Langhammer
|
b66626f9c4
|
ci: generate secert_key for CI runs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 23:46:23 +02:00 |
|
|
Jens Langhammer
|
ae6a406b1d
|
Merge branch 'master' into openapi-v3
|
2021-05-16 22:29:39 +02:00 |
|
|
Jens Langhammer
|
45c1a603e7
|
root: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 22:29:28 +02:00 |
|
|
Jens Langhammer
|
330219e76f
|
Merge branch 'master' into openapi-v3
|
2021-05-16 22:26:07 +02:00 |
|
|
Jens Langhammer
|
583271d5ed
|
root: only load debug secret key when debug is enabled
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 22:25:55 +02:00 |
|
|
Jens Langhammer
|
0db17b9729
|
root: remove yasg
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 22:18:04 +02:00 |
|
|
Jens Langhammer
|
cbed5a6522
|
api: fix missing error definitions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 19:53:04 +02:00 |
|
|
Jens Langhammer
|
ef9f08553c
|
*: linting pass, rename from swagger to schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 15:22:57 +02:00 |
|
|
Jens Langhammer
|
4fb71a6bdd
|
api: fix pagination schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 15:08:51 +02:00 |
|
|
Jens Langhammer
|
cac1f242dc
|
*: replace swagger with openapi
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 14:23:05 +02:00 |
|
|
Jens Langhammer
|
0bac738090
|
*: fix static response descriptions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-16 14:07:29 +02:00 |
|
|
Jens Langhammer
|
1324d03815
|
*: initial migration to openapi v3
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-15 23:57:28 +02:00 |
|
|
Jens Langhammer
|
c55f2ad10a
|
root: set additional sentry tags
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-15 19:53:43 +02:00 |
|
|
Jens Langhammer
|
9a0aa4c79b
|
outposts/ldap: add infinite loop prevention
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-12 18:31:44 +02:00 |
|
|
Jens Langhammer
|
52cf4890cf
|
root: remove servername from backup files
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-12 17:53:23 +02:00 |
|
|
Jens Langhammer
|
c7f0ea8a4b
|
root: update dbbackup to git version
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-12 01:20:31 +02:00 |
|
|
Jens Langhammer
|
96ea7ae09c
|
root: allow configuration of s3 backup location
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-11 02:10:00 +02:00 |
|
|
Jens Langhammer
|
172bfceb31
|
root: fix db backup failing when password has special chars
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-11 02:01:22 +02:00 |
|
|
Jens Langhammer
|
c7d4e69669
|
root: make database port configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-10 19:25:15 +02:00 |
|
|
Jens Langhammer
|
99d161e212
|
Merge branch 'master' into outpost-ldap
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# authentik/core/api/users.py
# authentik/policies/event_matcher/migrations/0013_alter_eventmatcherpolicy_app.py
|
2021-05-04 21:02:20 +02:00 |
|
|
Jens Langhammer
|
812be495a5
|
Merge branch 'master' into go-proxy
|
2021-05-03 22:53:33 +02:00 |
|
|
Jens Langhammer
|
988cf15b71
|
root: initial go proxy, update compose and helm
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-03 09:39:09 +02:00 |
|
|
Jens Langhammer
|
f1b100c8a5
|
sources/plex: initial plex source implementation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-02 14:43:51 +02:00 |
|
|
Jens Langhammer
|
4d858c64e0
|
Merge branch 'master' into outpost-ldap
|
2021-04-27 17:08:26 +02:00 |
|
|
Jens Langhammer
|
e9e0992dce
|
root: add middleware to properly report websocket connection to sentry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-27 16:21:44 +02:00 |
|
|
Jens Langhammer
|
f89479caf3
|
providers/ldap: add LDAP provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-26 11:52:42 +02:00 |
|
|
Jens Langhammer
|
799d186510
|
web/flows: fix Sentry not being loaded correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-22 20:48:22 +02:00 |
|
|
Jens Langhammer
|
5df9ad63cf
|
root: base Websocket message storage on Base not fallback
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-16 23:46:03 +02:00 |
|
|
Jens Langhammer
|
c34fcc73dc
|
root: fix setting of EMAIL_USE_TLS and EMAIL_USE_SSL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-16 22:44:42 +02:00 |
|
|
Jens Langhammer
|
6821679fbc
|
*: add support for bearer authentication on API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-13 20:01:30 +02:00 |
|
dependabot[bot]
|
a35f77c612
|
build(deps-dev): bump pylint-django from 2.4.2 to 2.4.3 (#729)
* build(deps-dev): bump pylint-django from 2.4.2 to 2.4.3
Bumps [pylint-django](https://github.com/PyCQA/pylint-django) from 2.4.2 to 2.4.3.
- [Release notes](https://github.com/PyCQA/pylint-django/releases)
- [Changelog](https://github.com/PyCQA/pylint-django/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/PyCQA/pylint-django/compare/v2.4.2...v2.4.3)
Signed-off-by: dependabot[bot] <support@github.com>
* root: fix pylint warning
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-12 09:33:56 +02:00 |
|
|
Jens Langhammer
|
5dd29d45d8
|
core: make Source model managed, add inbuilt source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-09 16:20:59 +02:00 |
|
|
Jens Langhammer
|
232a5a8ad0
|
root: set default session age to expire on browser close
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-09 11:50:09 +02:00 |
|
|
Jens Langhammer
|
12b1f53948
|
root: monitor redis in readiness check, relax monitoring period
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-07 15:51:19 +02:00 |
|
|
dependabot[bot]
|
17de0ff24e
|
build(deps): bump django from 3.1.7 to 3.2 (#707)
* build(deps): bump django from 3.1.7 to 3.2
Bumps [django](https://github.com/django/django) from 3.1.7 to 3.2.
- [Release notes](https://github.com/django/django/releases)
- [Commits](https://github.com/django/django/compare/3.1.7...3.2)
Signed-off-by: dependabot[bot] <support@github.com>
* root: set DEFAULT_AUTO_FIELD and remove full app config paths
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: check parent class for component and serializer on abstract classes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-07 10:54:38 +02:00 |
|