trustchain-oc1-orchestral/authentik
Archived
10
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
11326 commits 95 branches 330 tags 336 MiB
Commit graph

316 commits

Author SHA1 Message Date
Jens Langhammer 327df6529b sources/oauth: use oidc preferred_username if set, otherwise nickname 2022-07-19 16:41:10 +00:00
Jens Langhammer 1c64616ebd sources/ldap: add configuration for LDAP Source ciphers 
closes #3110

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-07-01 19:53:49 +02:00
Jens L 1c62a3db6e
core: user paths (#3085) 
* init

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add user_path_template

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to sources and flow

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add outposts & api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* dark theme for treeview

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add search

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add docs and tests for validation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add to user write stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add web ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: improve error handling

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-15 12:12:26 +02:00
Jens Langhammer c11435780d sources/oauth: fix twitter client missing basic auth 
closes #3038

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-05 14:21:32 +02:00
Jens L 0c591a50e3
*: don't dispatch tasks on startup of server (#3033) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-03 18:29:24 +02:00
Jens Langhammer 558c7bba2a lib: add lxml wrapper 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-06-02 13:25:24 +02:00
Jens L 2c6d82593e
root: cleanup session keys to use common format (#3003) 
cleanup session keys to use common format

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-31 21:53:23 +02:00
Jens Langhammer fb69f67f47 *: cleanup vendor 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-28 21:26:33 +02:00
Jens L 80c1dbdfbb
ensure all viewsets have filter and search and add tests (#2946) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 22:01:18 +02:00
Jens L b4e75218f5
sources/oauth: OIDC well-known and JWKS (#2936) 
* add initial

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add provider

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* include source and jwk key id in event

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add more docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add tests for source

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix web formatting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* add provider tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* fix lint error

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-24 21:02:50 +02:00
Jens L 75b0fb3393
sources/oauth: migrate twitter to oauth2 (#2893) 2022-05-18 00:03:02 +02:00
Jens Langhammer 85b6bfbe5f sources: fix parent serializer for user connections 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-14 21:26:02 +02:00
Jens Langhammer ee36b7f3eb flows: move autosubmit stage into flows package 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-14 12:06:19 +02:00
Jens Langhammer 1363226697 providers/saml: make SAML metadata generation consistent 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-05-13 17:40:18 +02:00
Jens Langhammer 0b4ac54363 *: default to max 60 for fqdn_rand 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-04-20 20:07:25 +02:00
Jens Langhammer 1a1434bfda *: decrease frequency of background tasks, smear tasks based on name and fqdn 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2159
 2022-04-20 18:43:40 +02:00
Behn 70794d79dd
sources/oauth: Fix wording for OAuth source names (#2732) 2022-04-17 16:40:10 +02:00
Jens L bb8af2f19b
providers/oauth2: add client_assertion_type jwt bearer support (#2618) 2022-03-31 00:30:55 +02:00
Jens Langhammer a3df414f24 sources/ldap: fix parent_group not being applied 
closes #2464

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-14 22:13:20 +01:00
Jens Langhammer c57fbcfd89 sources/oauth: log body when get_profile fails 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-03-02 20:37:42 +01:00
dependabot[bot] f98a9bed9f
build(deps-dev): bump bandit from 1.7.2 to 1.7.3 (#2403) 
* build(deps-dev): bump bandit from 1.7.2 to 1.7.3

Bumps [bandit](https://github.com/PyCQA/bandit) from 1.7.2 to 1.7.3.
- [Release notes](https://github.com/PyCQA/bandit/releases)
- [Commits](https://github.com/PyCQA/bandit/compare/1.7.2...1.7.3)

---
updated-dependencies:
- dependency-name: bandit
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* sigh

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-28 10:13:51 +01:00
Dorian Zedler e9064509fe
sources/oauth: Add Mailcow oauth source (#2380) 
* Feat: Add Mailcow oauth source

* Feat: Add mailcow icon

* Run make

* Feat: Add tests

* Fix: Remainder from discord test

* Docs: Add mailcow oauth source docs

* Docs: add mailcow source to menu

* Fix: Mailcow provider type in test

* Fix: Formatting

* Fix: Doc file name
 2022-02-27 15:06:02 +01:00
Jens Langhammer bb4be944dc sources/ldap: use merger that only appends unique items to list 
closes #2211

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-13 14:20:13 +01:00
Jens Langhammer b0936ea8f3 sources/ldap: log entire exception 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-07 19:37:39 +01:00
Jens Langhammer 4e4e2b36b6 sources/saml: fix server error 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-05 15:41:26 +01:00
Jens Langhammer eaba8006e6 sources/saml: fix incorrect ProtocolBinding being sent 
closes #2213

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-02-03 18:20:06 +01:00
Jens Langhammer e93be0de9a sources/ldap: add list_flatten function to property mappings, enable on managed LDAP mappings 
closes #2199

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2022-01-31 23:07:32 +01:00
Jens Langhammer ebd476be14 sources/oauth: fix sources not allowing blank values 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2047
 2022-01-03 21:36:14 +01:00
Jens Langhammer a101d48b5a core: passthrough connection and additional data to FlowManager 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2047
 2022-01-03 21:31:26 +01:00
Jens Langhammer 8f44c792ac sources/oauth: fix github provider not including correct base scopes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2047
 2022-01-03 21:04:18 +01:00
Jens Langhammer 212220554f sources/oauth: add additional scopes field to get additional data from provider 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#2047
 2022-01-03 16:43:52 +01:00
Jens Langhammer 9154b9b85d web/user: rework user source connection UI 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-30 21:59:41 +01:00
Jens Langhammer c249b55ff5 *: use py3.10 syntax for unions, remove old Type[] import when possible 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-30 14:59:01 +01:00
Jens Langhammer 4c5537ddfe sources/oauth: allow writing to user in SourceConnection 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#1888
 2021-12-18 15:33:46 +01:00
Jens Langhammer e18e681c2b events: dont store full backtrace in systemtask 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 22:55:38 +01:00
Jens Langhammer 10fe67e08d sources/ldap: fix incorrect task names being referenced, use source native slug 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 22:53:14 +01:00
Jens Langhammer 0131b1f6cc sources/oauth: fix wrong redirect URL being generated 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 09:34:47 +01:00
Jens Langhammer 2993f506a7 sources/oauth: implement apple native sign-in using the apple JS SDK 
closes #1881

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-14 00:40:29 +01:00
Jens Langhammer e4841d54a1 *: migrate ui_* properties to functions to allow context being passed 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-13 23:56:35 +01:00
Jens Langhammer 4f05dcec89 sources/oauth: allow oauth types to override their login button challenge 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-13 23:45:11 +01:00
Jens Langhammer ede6bcd31e *: remove debug statements from tests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-13 23:41:08 +01:00
Jens Langhammer 728c8e994d sources/oauth: strip parts of custom apple client_id 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-13 23:26:00 +01:00
Jens Langhammer 4911a243ff sources/oauth: add initial okta type 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#1910
 2021-12-13 21:48:59 +01:00
Jens Langhammer a9bd34f3c5 events: revert to @prefill_task decorator since base class doesn't get executed until task runs 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-09 10:18:00 +01:00
Jens Langhammer 3c8bbc2621 sources/*: only allow superusers to directly create source connections 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-06 12:22:40 +01:00
Jens Langhammer b694816e7b sources/*: Allow creation of source connections via API 
closes #1888

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-06 10:05:42 +01:00
Jens Langhammer 426cef998f sources/ldap: make task names more consistent 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-03 18:39:42 +01:00
Jens Langhammer 8ddb62ed0f sources/plex: fix plex token being included in event log 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-03 18:37:40 +01:00
Jens Langhammer f1b9021e3e sources/ldap: add optional tls verification certificate 
closes #1875

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-03 10:09:13 +01:00
Jens Langhammer 2e2b491ec7 source/ldap: fix hanging unittests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-03 09:41:13 +01:00
Jens Langhammer ac432e78e2 sources/ldap: don't cache LDAP Connection, use random server 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-02 21:18:20 +01:00
Jens Langhammer 2eb5a5cc76 sources/ldap: handle typeerror during creation of objects when using wrong kwargs params 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-02 20:24:24 +01:00
Jens Langhammer 75051687e6 sources/ldap: allow multiple server URIs for loadbalancing and failover 
closes #1874

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-02 20:15:11 +01:00
Jens Langhammer cf78c89830 events: replace @prefill_task with custom base class to prefill 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-02 13:47:35 +01:00
Jens Langhammer f0d7edb963 *: fix @prefill_task 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-12-02 10:05:51 +01:00
Jens Langhammer 0b8cfd437b *: fix typo'd signing pair name 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-24 09:55:10 +01:00
Jens L 9bb0d04aeb
root: Random tests (#1825) 
* root: add pytest-randomly to randomise tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: generate flows for testing instead of relying on existing ones

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: generate users for testing instead of relying on existing ones

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: use generated certificate

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: keep containers

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: use websockets test case

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-22 22:56:02 +01:00
Jens Langhammer 638e8d741f *: fix multiple tests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-16 10:38:21 +01:00
Rizwan Ahmed e4a5e86c93 sources/oauth: Fixed the incorrect padding issue in apple.py (#1773) 
* Fixed the incorrect padding issue in apple.py

Fixed the incorrect padding issue in apple.py by adding proper padding to the raw_payload.

* Fixed the incorrect encoding of client_secret in apple.py

In the get_client_secret() method, the "sub" in the payload must be only the client ID. So I have changed self.source.consumer_key to parts[0]

* Added the decode method for the id_token

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-12 12:10:29 +01:00
Jens Langhammer 4a773b2b4f sources/ldap: set connect/receive timeout (default to 15s) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-09 22:27:58 +01:00
Jens Langhammer 8003d67844 sources/ldap: fix typo 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-09 22:24:33 +01:00
Jens Langhammer 51783c1cbb sorces/ldap: fix user/group sync overwriting attributes instead of merging them 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-09 21:16:59 +01:00
dependabot[bot] 8de13d3f67 build(deps): bump goauthentik.io/api from 0.2021102.2 to 0.2021102.4 (#1738) 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-05 09:33:26 +01:00
Jens Langhammer 7798292aa8 sources/plex: use exception_to_string in tasks 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-05 01:16:36 +01:00
Jens Langhammer 023b97aa69 sources/ldap: remove deprecated default 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-04 22:13:47 +01:00
Jens Langhammer 5374352411 sources/plex: allow users to connect their plex account without login flow 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-03 21:09:02 +01:00
Jens Langhammer 08eff4cc5d sources/plex: fix missing ordering 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-03 20:21:33 +01:00
Jens Langhammer 8f6d700aa8 sources/oauth: set prompt=none for Discord provider 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-11-03 15:48:59 +01:00
Jens Langhammer f5dc81907a core: add created field to source connection 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-30 15:02:41 +02:00
Jens Langhammer fa6324ab1d sources/ldap: prevent key users from being set as this is an M2M relation 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-27 15:43:56 +02:00
Jens Langhammer 9e0daf2bcf sources/ldap: skip values which are of type bytes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-27 15:43:38 +02:00
Jens Langhammer 61fab497cf core: add user flag to prevent users from changing their usernames 
closes #1590

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-20 16:17:19 +02:00
Jens Langhammer 2df4322ecf sources/oauth: add choices to oauth provider_type 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-20 00:11:19 +02:00
Jens Langhammer 03369e2338 sources/ldap: check for existence of vendor fields before falling back 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

#1521
 2021-10-19 15:40:40 +02:00
Jens Langhammer 89bb27b95c sources/ldap: fix missing arguments? 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-18 22:04:58 +02:00
Jens Langhammer 2b155964c2 sources/ldap: extract vendor-specific functions 
#1521

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-18 21:44:10 +02:00
Jens L 922fc9b8d5
sources/oauth: add Sign in with Apple (#1635) 
* sources/oauth: add apple sign in support

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* website/docs: apple sign in docs

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* website/docs: fix missing apple in sidebar

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* sources/oauth: add fallback values for name and slug

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-18 16:35:12 +02:00
Jens Langhammer 4b7399f454 *: add @prefill_task() decorator to "pre-fill" tasks in cache, so they can be executed even before their schedule would do so 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-14 12:21:28 +02:00
Jens L e4f141c6c0
*: Squash Migrations (#1593) 
* *: first squash pass

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* sources/saml: squash less

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* outposts: fix docker controller not correctly checking image

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests/e2e: fix old migration reference

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-11 21:39:35 +02:00
Steven Armstrong ab5981836d
providers/ldap: use RDN when using posixGroup's memberUid attribute (#1514) 
Use the RDN instead of the FDN when establishing group memberships based on posixGroup's 'memberUid' attribute.

fixes #1436

Signed-off-by: Steven Armstrong <steven@armstrong.cc>
 2021-10-04 10:56:06 +02:00
Jens Langhammer 1c52836060 web: fix package lock 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-03 01:17:41 +02:00
Jens Langhammer 8dd77793a0 sources/ldap: fix logic error in Active Directory account disabled status 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-10-03 00:30:35 +02:00
Jens Langhammer 53e15bfbca sources/ldap: add support for Active Directory userAccountControl attribute 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-30 19:13:48 +02:00
Jens Langhammer 8bce16e6b4 sources/ldap: don't sync ldap source when no property mappings are set 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-30 18:49:18 +02:00
Jens L f9ad102915
flows: inspector (#1469) 
* flows: add initial inspector

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: change naming a bit

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flow: add inspector frame

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: don't use shadydom when inspecting

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: add current stage to api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* stages/*: fix imports

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: deep-copy plan instead of just adding

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: ui

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: restrict inspector to admin

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/admin: add buttons to launch flow with inspector

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: don't automatically follow redirects when inspector is open

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: make current_plan optional, only require historry

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: handle error messages in inspector

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/flows: improve UI when flow is done

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: add is_completed flag to inspector

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: fix monkeypatches for tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: add inspector tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* ci: re-enable cache

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-28 09:36:48 +02:00
Jens Langhammer 79b92e764e *: fix typos in code 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-25 00:01:11 +02:00
Jens Langhammer d900a2b6a9 *: fix lookup_fields 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-20 19:19:36 +02:00
Jens Langhammer b5c857aff4 api: add explicit lookup_value_regex, disable include_format_suffixes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-20 13:42:56 +02:00
Jens Langhammer ed6f5b98df sources/ldap: improve messages of sync tasks in UI 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-19 15:54:22 +02:00
Jens Langhammer 8279690a8f sources/ldap: prevent error when retrying old system task with no arguments 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-17 16:49:26 +02:00
Jens Langhammer 06af306e8a sources/ldap: bump timeout, run each sync component in its own task 
closes #1411

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-17 12:42:20 +02:00
Jens L 13e2eea72f
web/user: new end-user interface (#1404) 
* web/user: migrate to top navbar

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: prepare config from server

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* re-sort

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* remove old interface

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* update issue template

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* use notification badge

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: re-add go-to-admin button

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: fix remaining redirects directly to admin

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* make settings better

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* api: ensure sources and stages are sorted

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web/user: add sessions and consent

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* providers/oauth2: add post wrapper to stage

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* website/docs: add new interface to release notes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-16 22:17:05 +02:00
Denis Teyssier 37346763dc
sources/oauth: Updating token url to new google url (#1397) 
the present url goes to a 404
google openid (https://accounts.google.com/.well-known/openid-configuration) says the new url is `https://oauth2.googleapis.com/token`

not using the new url makes authentik fallback on the default auth flow
 2021-09-15 09:15:19 +02:00
Jens Langhammer 3ddf2d6f85 sources/oauth: fix type lookup for openid not matching 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-14 14:38:35 +02:00
Jens Langhammer ba6849f29c *: remove string.format() 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-14 12:06:47 +02:00
Jens Langhammer 942170f902 Revert "sources/oauth: fix access_token being sent as query param and not authorization header" 
This reverts commit 248f993541.
 2021-09-14 11:59:32 +02:00
Jens Langhammer 248f993541 sources/oauth: fix access_token being sent as query param and not authorization header 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-14 11:07:36 +02:00
Jens Langhammer 3a700a449a sources/oauth: don't try to load azure AD user ID as UUID 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-14 09:33:44 +02:00
Jens Langhammer c779ad2e3b *: use common user agent for all outgoing requests 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-11 21:08:26 +02:00
Jens Langhammer df4c8003b8 api: fix items of list fields having nullable set 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-09-10 18:15:59 +02:00