authentik

Archived

Author	SHA1	Message	Date
gcp-cherry-pick-bot[bot]	750669dcab	stages/email: improve error handling for incorrect template syntax (cherry-pick #7758 ) (#7936 ) stages/email: improve error handling for incorrect template syntax (#7758) * stages/email: improve error handling for incorrect template syntax * add tests --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-12-19 18:30:56 +01:00
gcp-cherry-pick-bot[bot]	88a3eed67e	root: don't show warning when app has no URLs to import (cherry-pick #7765 ) (#7935 ) root: don't show warning when app has no URLs to import (#7765) Co-authored-by: Jens L <jens@goauthentik.io>	2023-12-19 18:30:49 +01:00
gcp-cherry-pick-bot[bot]	6c214fffc4	blueprints: improve file change handler (cherry-pick #7813 ) (#7934 ) blueprints: improve file change handler (#7813) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-12-19 18:30:37 +01:00
gcp-cherry-pick-bot[bot]	2648333590	providers/scim: change familyName default (cherry-pick #7904 ) (#7930 ) providers/scim: change familyName default (#7904) * Update providers-scim.yaml * fix: add formatted to match the givenName & familyName * fix, update tests --------- Signed-off-by: Antoine <antoine+github@jiveoff.fr> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io> Co-authored-by: Antoine <antoine+github@jiveoff.fr>	2023-12-19 18:29:55 +01:00
Jens L	29a6530742	web: dark/light theme fixes (#7872 ) * web: fix css for user tree-view Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix header button colors Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing fallback not showing default slant Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move global theme-dark css to only use for SSR rendered pages Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # .github/workflows/ci-main.yml # web/xliff/fr.xlf	2023-12-19 18:18:19 +01:00
Jens Langhammer	a2a67161ac	release: 2023.10.4	2023-11-21 18:38:24 +01:00
gcp-cherry-pick-bot[bot]	6b9afed21f	security: fix CVE-2023-48228 (cherry-pick #7666 ) (#7668 ) security: fix CVE-2023-48228 (#7666) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-21 18:13:54 +01:00
gcp-cherry-pick-bot[bot]	7c3d60ec3a	events: don't update internal service accounts unless needed (cherry-pick #7611 ) (#7640 ) events: stop spam (#7611) * events: don't log updates to internal service accounts * dont log reputation updates * don't actually ignore things, stop updating outpost user when not required * prevent updating internal service account users * fix setattr call --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-20 19:43:30 +01:00
gcp-cherry-pick-bot[bot]	ea6cf6eabf	events: fix missing model_* events when not directly authenticated (cherry-pick #7588 ) (#7597 ) events: fix missing model_* events when not directly authenticated (#7588) * events: fix missing model_* events when not directly authenticated * defer accessing database --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-16 12:59:41 +01:00
gcp-cherry-pick-bot[bot]	769ce3ce7b	providers/scim: fix missing schemas attribute for User and Group (cherry-pick #7477 ) (#7596 ) providers/scim: fix missing schemas attribute for User and Group (#7477) * providers/scim: fix missing schemas attribute for User and Group * make things actually work --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-16 12:06:01 +01:00
gcp-cherry-pick-bot[bot]	3891fb3fa8	events: sanitize functions (cherry-pick #7587 ) (#7589 ) events: sanitize functions (#7587) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-15 23:24:13 +01:00
gcp-cherry-pick-bot[bot]	41eb965350	stages/email: use uuid for email confirmation token instead of username (cherry-pick #7581 ) (#7584 ) stages/email: use uuid for email confirmation token instead of username (#7581) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-15 21:57:05 +01:00
Jens Langhammer	82b5274b15	release: 2023.10.3	2023-11-09 18:37:22 +01:00
gcp-cherry-pick-bot[bot]	af56ce3d78	core: fix worker beat toggle inverted (cherry-pick #7508 ) (#7509 ) core: fix worker beat toggle inverted (#7508) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-09 18:36:56 +01:00
gcp-cherry-pick-bot[bot]	3809400e93	events: fix gdpr compliance always running (cherry-pick #7491 ) (#7505 ) events: fix gdpr compliance always running Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2023-11-09 17:57:25 +01:00
gcp-cherry-pick-bot[bot]	3716298639	sources/oauth: fix patreon (cherry-pick #7454 ) (#7456 ) sources/oauth: fix patreon (#7454) * web/admin: add note for potentially confusing consumer key/secret * sources/oauth: fix patreon default scopes --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-06 16:36:22 +01:00
gcp-cherry-pick-bot[bot]	0fefd5f522	stages/email: fix duplicate querystring encoding (cherry-pick #7386 ) (#7425 ) stages/email: fix duplicate querystring encoding (#7386) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-03 13:17:18 +01:00
gcp-cherry-pick-bot[bot]	88057db0b0	providers/oauth2: set auth_via for token and other endpoints (cherry-pick #7417 ) (#7427 ) providers/oauth2: set auth_via for token and other endpoints (#7417) Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens L <jens@goauthentik.io>	2023-11-03 13:17:10 +01:00
Jens Langhammer	8e72fcab59	release: 2023.10.2	2023-10-28 21:43:54 +02:00
Jens L	261879022d	security: fix oobe-flow reuse when akadmin is deleted (#7361 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-28 21:24:06 +02:00
Jens L	ad9f500ad1	crypto: fix race conditions when creating self-signed certificates on startup (#7344 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-27 16:29:10 +02:00
Jens L	15d7175750	blueprints: fix entries with state: absent not being deleted if their serializer has errors (#7345 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-27 16:28:56 +02:00
Jens L	83b84e8d26	rbac: handle lookup error (#7341 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-27 13:38:44 +02:00
Jens L	2b4b1d2f76	stages/email: fix sending emails from task (#7325 ) closes #7322 Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-27 00:39:06 +02:00
Jens Langhammer	64c38909ff	release: 2023.10.1	2023-10-26 20:06:05 +02:00
Jens L	134799c734	root: fix pylint errors (#7312 )	2023-10-26 19:57:11 +02:00
Jens Langhammer	ed46fd629e	release: 2023.10.0	2023-10-26 16:51:57 +02:00
Jens Langhammer	263d9128c4	stages/email: fix path for email icon Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-26 16:06:00 +02:00
Jens L	28053059ff	stages/user_write: allow setting user type when creating new user (#7293 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-26 14:33:29 +02:00
Oleh Vivtash	add873ca9b	core: Use branding_title in the end session page (#7282 ) Update end_session.html Use branding_title in the end session "You've logged out of" section Signed-off-by: Oleh Vivtash <oleh@vivtash.net>	2023-10-25 15:55:20 +02:00
Jens L	c0fe99714f	stages/authenticator_sms: fix error when phone number from context already exists (#7264 )	2023-10-24 02:42:16 +02:00
Jens L	616f0b8b4f	sources/oauth: fix name clash (#7253 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-21 20:29:36 +02:00
Jens L	7e213f3ca6	sources/oauth: fix oidc well-known parsing (#7248 )	2023-10-20 20:37:52 +02:00
Jens L	63426bc9a8	sources/oauth: include default JWKS URLs for OAuth sources (#6992 ) * sources/oauth: include default JWKS URLs for OAuth sources makes it easier to use pre-defined types like github, google, azure with JWT M2M instead of needing to create a generic OAuth Source Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix error Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-20 16:54:03 +02:00
Jens L	63c52fd936	sources/oauth: periodically update OAuth sources' OIDC configuration (#7245 ) * sources/oauth: periodically update OAuth sources' OIDC configuration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make monitored task Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-20 16:51:37 +02:00
Roney Dsilva	f036820fd8	stages/email: Fix query parameters getting lost in Email links (#5376 ) * fix to email confirmation flow * handled query keyerror * rewrite using django's QueryDict, add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix makefile Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove commented out code Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Roney Dsilva <roney.dsilva@cdmx.in> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-10-19 17:52:27 +02:00
Jens L	8aafa06259	providers/radius: TOTP MFA support (#7217 ) * move CheckPasswordMFA to flow executor Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add mfa support field to radius Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-18 19:43:36 +02:00
Samir Musali	a60f3b4b81	stage/deny: add custom message (#7144 ) * stage/deny: add message * add migration, tests and schema update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add form Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-10-18 17:13:33 +02:00
Jens L	6ba4f4df46	enterprise: bump license usage task frequency (#7215 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-18 14:57:35 +02:00
Jens L	0697e3d5a4	rbac: revisions (#7188 ) * improve system migration logging Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix filter for internal service accounts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * merge migration Signed-off-by: Jens Langhammer <jens@goauthentik.io> * bump go api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sources/ldap: check if we need to connect to ldap before connecting Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-16 19:42:19 +02:00
Jens L	e28babb0b8	core: Initial RBAC (#6806 ) * rename consent permission Signed-off-by: Jens Langhammer <jens@goauthentik.io> * the user version Signed-off-by: Jens Langhammer <jens@goauthentik.io> t Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial role Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start form Signed-off-by: Jens Langhammer <jens@goauthentik.io> * some minor table refactoring Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix user, add assign Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add roles ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix backend Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add assign API for roles Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding toggle buttons Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start view page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * exclude add_ permission for per-object perms Signed-off-by: Jens Langhammer <jens@goauthentik.io> * small cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add permission list for roles Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make sidebar update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix page header not re-rendering? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fixup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add search Signed-off-by: Jens Langhammer <jens@goauthentik.io> * show first category in table groupBy except when its empty Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make model and object PK optional but required together Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow for setting global perms Signed-off-by: Jens Langhammer <jens@goauthentik.io> * exclude non-authentik permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * exclude models which aren't allowed (base models etc) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ensure all models have verbose_name set, exclude some more internal objects Signed-off-by: Jens Langhammer <jens@goauthentik.io> * lint fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix role perm assign Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add unasign for global perms Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add meta changes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * clear modal state after submit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add roles to our group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix duplicate url names Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make recursive group query more usable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add name field to role itself and move group creation to signal Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start sync Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move rbac stuff to separate django app Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint and such Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix go Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start API changes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more API tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make admin interface not require superuser for now, improve error handling Signed-off-by: Jens Langhammer <jens@goauthentik.io> * replace some IsAdminUser where applicable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate flow inspector perms to actual permission Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix license not being a serializermodel Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add permission modal to models without view page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add additional permissions to assign/unassign permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add action to unassign user permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add permissions tab to remaining view pages Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix flow inspector permission check Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix codecov config? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more API tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ensure viewsets have an order set Signed-off-by: Jens Langhammer <jens@goauthentik.io> * hopefully the last api name change Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make perm modal less confusing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start user view permission page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only make delete bulk form expandable if usedBy is set Signed-off-by: Jens Langhammer <jens@goauthentik.io> * expand permission tables Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add user global permission table Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests' url names Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for assign perms Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add unassign tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rebuild permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent assigning/unassigning permissions to internal service accounts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only enable default api browser in debug Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix role object permissions showing duplicate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix role link on role object permissions table Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix object permission modal having duplicate close buttons Signed-off-by: Jens Langhammer <jens@goauthentik.io> * return error if user has no global perm and no object perms also improve error display on table Signed-off-by: Jens Langhammer <jens@goauthentik.io> * small optimisation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * optimise even more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update locale Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add system permission for non-object permissions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow access to admin interface based on perm Signed-off-by: Jens Langhammer <jens@goauthentik.io> * clean Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't exclude base models Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-16 17:31:50 +02:00
Jens L	25d4905d6c	outposts: use channel groups instead of saving channel names (#7183 ) * outposts: use channel groups instead of saving channel names Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use pubsub Signed-off-by: Jens Langhammer <jens@goauthentik.io> * support storing other args with state Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-16 17:01:44 +02:00
Alissa Gerhard	00b2a773b4	sources/ldap: made ldap_sync_single calls from ldap_sync_all asynchronous (#6862 )	2023-10-16 13:11:34 +02:00
Jens L	abab635a01	tests: fix potential infinite wait in tests spinning up a container (#7153 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-12 13:57:29 +02:00
horego	ab1b3b09d6	core/api: add uuid field to core api user http response (#7110 ) * feat: Add uuid field to core api user response * update schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: hor <hor@HOSRV> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2023-10-09 12:34:38 +02:00
Jens L	4db365c947	providers/proxy: improve SLO by backchannel logging out sessions (#7099 ) * outposts: add support for provider-specific websocket messages Signed-off-by: Jens Langhammer <jens@goauthentik.io> * providers/proxy: add custom signal on logout to logout in provider Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-09 01:06:52 +02:00
Jens L	6f3fc22c9b	providers/saml: add default RelayState value for IDP-initiated requests (#7100 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-09 00:08:16 +02:00
Jens L	25ee6f8116	sources/ldap: fix attribute path resolution (#7090 ) * lib: make set_path_in_dict reusable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sources/ldap: use set_path_in_dict to set attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * stages/user_write: also use set_path_in_dict Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-06 18:01:09 +02:00
Philipp Kolberg	205d3d10e3	root: Support PyCharm's test runner (#7074 ) * Initial commit. * Use Django's test runner as basis * Skip already correctly formatted test labels	2023-10-05 20:13:38 +02:00
Jens L	f28f301865	policies: fix cached policy metric (#7068 )	2023-10-05 02:05:01 +02:00

1 2 3 4 5 ...

3075 commits