authentik

Archived

Author	SHA1	Message	Date
Jens Langhammer	ae0d28abde	move path config into paths. object Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-25 19:35:44 +01:00
Jens Langhammer	ee75357059	root: move root-dir in docker Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-25 19:29:41 +01:00
Jens Langhammer	d535a82372	core: fix PropertyMapping context not being available in request context Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-23 02:55:49 +01:00
Jens L	02869d8173	stages/user_login: session binding (#7881 ) * start with user_login stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> # Conflicts: # authentik/root/settings.py * fix and improve logout event Signed-off-by: Jens Langhammer <jens@goauthentik.io> * lint pass Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update authenticated session when IP changes and binding doesn't break Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs, always keep old and new IP in event Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-gen api schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-23 01:20:23 +01:00
Jens L	9a261c52d1	providers/oauth2: remember session_id from initial token (#7976 ) * providers/oauth2: remember session_id original token was created with for future access/refresh tokens Signed-off-by: Jens Langhammer <jens@goauthentik.io> * providers/proxy: use hashed session as `sid` Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-23 00:53:05 +01:00
Jens L	06df705240	sources/oauth: fix missing get_user_id for OIDC-like sources (Azure AD) (#7970 ) * lib: add debug requests session that shows all sent requests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sources/oauth: fix missing get_user_id for OIDC-like OAuth Sources Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-22 00:10:47 +01:00
Jens L	48e5823ad6	lib: fix event creation when deprecated config is detected (#7969 ) * lib: fix event creation when deprecated config is detected Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix black parsing errors Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-21 22:27:46 +01:00
Jens Langhammer	7778a8fab2	release: 2023.10.5	2023-12-21 15:08:13 +01:00
Jens L	2521073dba	providers/scim: use lock for sync (#7948 ) * providers/scim: use lock for sync Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-21 14:43:40 +01:00
Jens L	ec8f2d4bf9	stages/email: prevent authentik emails from being marked as spam (also add text template support) (#7949 ) * use <> style email address with name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support for text templates Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix icon display in event log Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add text email templates Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs, update email screenshot Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent prettier from breaking example template Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Optimised images with calibre/image-actions * Apply suggestions from code review Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens L. <jens@beryju.org> * reword docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2023-12-21 14:32:05 +01:00
Jens L	50860d7ffe	events: add ASN Database reader (#7793 ) * events: add ASN Database reader Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix test config generator Signed-off-by: Jens Langhammer <jens@goauthentik.io> * de-duplicate code Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add enrich_context Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename to context processors? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix cache Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use config deprecation system, update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update more docs and tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test asn db Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-build schema with latest versions Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-20 22:16:50 +01:00
Jens L	0bf84b77d8	providers/scim: set timeout based on page and page count (#7941 ) providers/scim: set better timeouts Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-20 00:40:26 +01:00
Jens L	b7532740ef	root: fix static templates (#7925 ) * root: fix static HTML templates to match flow executor Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove top margin on smaller viewports Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-19 13:59:53 +01:00
Jens L	3e530cf1b5	flows: add "require outpost" authentication_requirement (#7921 ) * migrate get_client_ip to middleware Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use middleware directly without wrapper Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add require_outpost setting for flows Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update web ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fixup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * improve fallback Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-19 13:32:10 +01:00
Jens L	2ec979d490	root: make test database name configurable (#7591 ) * test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * idk attempt to fix flaky test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * oops Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-18 23:00:24 +01:00
Jens L	729ef4d786	root: bump python deps (django 5) (#7862 ) * bump python deps Signed-off-by: Jens Langhammer <jens@goauthentik.io> * vendor pickle serializer for now Signed-off-by: Jens Langhammer <jens@goauthentik.io> #7761 * cleanup some things and re-build api scheme Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web and go Signed-off-by: Jens Langhammer <jens@goauthentik.io> * actually fix go...? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better annotate json fields Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use jsondictfield wherever Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove all virtualenvs? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * final version bump Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-18 22:07:59 +01:00
Jens L	ba174d810b	providers/scim: change familyName default (#7904 ) * Update providers-scim.yaml Signed-off-by: Antoine <antoine+github@jiveoff.fr> * fix: add formatted to match the givenName & familyName Signed-off-by: Antoine <antoine+github@jiveoff.fr> * fix, update tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Antoine <antoine+github@jiveoff.fr> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Antoine <antoine+github@jiveoff.fr>	2023-12-18 16:52:34 +01:00
Jens L	2337f5a173	web: dark/light theme fixes (#7872 ) * web: fix css for user tree-view Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix unrelated things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix header button colors Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing fallback not showing default slant Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move global theme-dark css to only use for SSR rendered pages Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-13 17:32:09 +01:00
Jens L	ef8a119c44	web/flows: show logo in card (#7824 )	2023-12-08 20:34:35 +02:00
Jens L	a9dba4eb5c	blueprints: improve file change handler (#7813 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-08 16:04:00 +02:00
Jens L	944368c4f2	events: add graph for event volume (#7639 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-06 19:06:07 +02:00
Jens L	893b8376cf	stages/email: improve error handling for incorrect template syntax (#7758 ) * stages/email: improve error handling for incorrect template syntax Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-12-04 12:02:39 +02:00
Jens L	5b244a04f9	root: don't show warning when app has no URLs to import (#7765 )	2023-12-03 21:47:27 +02:00
Jens L	a07fbf5c02	root: disable django-silk profiler (#7715 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-28 12:23:19 +02:00
Jens L	8889e0d39a	events: fix lint (#7700 ) * events: fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * test without explicit poetry env use? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * delete previous poetry env Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent invalid cached poetry envs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * run test-from-stable as matrix and make required Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing postgres version Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sigh Signed-off-by: Jens Langhammer <jens@goauthentik.io> * idk Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-23 23:59:42 +01:00
Jens L	0797dec46b	events: add better fallback for sanitize_item to ensure everything can be saved as JSON (#7694 ) * events: fix events sanitizing not handling all types Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove some leftover prints Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-23 11:43:39 +01:00
Jens L	8db34fc65b	events: include user agent in events (#7693 ) * events: include user agent in events Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-22 20:53:10 +01:00
Jens L	68d266a480	core: fix sources get icon naming (#7674 ) * core: rename source's get_icon to clearer signify it being a property Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove deprecated vscode settings Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-21 21:38:30 +01:00
Jens Langhammer	18b2f489c0	release: 2023.10.4	2023-11-21 19:29:02 +01:00
Jens L	b88e39411c	security: fix CVE-2023-48228 (#7666 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-21 18:10:07 +01:00
ChandonPierre	c0b7d32b36	sources/ldap: clean-up certs written from db (#7617 ) * sources/ldap: clean-up certs written from db * fix test when certificate is none	2023-11-20 15:29:18 +01:00
Jens L	44fc9ee80c	stages/identification: add option to pretend user exists (#7610 ) * stages/identification: add option to pretend user exists Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * test CI permission fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-18 01:55:48 +01:00
Jens L	98a07cd0ef	events: stop spam (#7611 ) * events: don't log updates to internal service accounts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dont log reputation updates Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't actually ignore things, stop updating outpost user when not required Signed-off-by: Jens Langhammer <jens@goauthentik.io> * prevent updating internal service account users Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix setattr call Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-18 01:46:16 +01:00
Jens L	ce86b20e6b	stages/authenticator_totp: fix API validation error due to choices (#7608 )	2023-11-17 13:52:30 +01:00
Jens L	b5e059dfd9	root: fix API schema for kotlin (#7601 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-17 00:07:21 +01:00
Jens L	31ef91900b	events: fix missing model_* events when not directly authenticated (#7588 ) * events: fix missing model_* events when not directly authenticated Signed-off-by: Jens Langhammer <jens@goauthentik.io> * defer accessing database Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-16 12:06:39 +01:00
Jens L	51d3511f8b	providers/scim: fix missing schemas attribute for User and Group (#7477 ) * providers/scim: fix missing schemas attribute for User and Group Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make things actually work Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-16 11:36:49 +01:00
Jens L	3d66923310	events: sanitize functions (#7587 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-15 21:56:16 +01:00
Jens L	95c71016ae	stages/email: use uuid for email confirmation token instead of username (#7581 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-15 21:13:53 +01:00
Jens L	f728bbb14b	sources/ldap: add check command to verify ldap connectivity (#7263 ) * sources/ldap: add check command to verify ldap connectivity Signed-off-by: Jens Langhammer <jens@goauthentik.io> * default to checking all sources Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding an API for ldap connectivity Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add webui for ldap source connection status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better show sync status, clear previous tasks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * set timeout on redis lock for ldap sync Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix py lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-13 15:01:40 +01:00
Philipp Kolberg	9db9ad3d66	root: Restructure broker / cache / channel / result configuration (#7097 ) * Initial commit * Remove any remaining mentions of Redis URL This is handled in https://github.com/goauthentik/authentik/pull/5395 * Allow setting broker transport options This enables usage of other brokers that require additional settings * Remove remaining reference to Redis URL This functionality is not part of this PR * Reset default TLS requirements to none * Fix linter errors * Move dict from base64 encoded json to config.py Additionally add tests * Replace ast.literal_eval with json.loads * Use default channel and cache backend configuration If more customization is desired users shall look at goauthentik.io/docs/installation/configuration#custom-python-settings * Send config deprecation notification to all superusers * Remove duplicate method * Add configuration explanation For channel layer settings * Use Event for deprecation warning * Fix remove duplicated method * Add missing comma * Update authentik/lib/config.py Signed-off-by: Jens L. <jens@beryju.org> * Fix Event deprecation handling --------- Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: Jens L <jens@beryju.org>	2023-11-10 15:44:37 +01:00
Jens Langhammer	c30a2406a9	release: 2023.10.3	2023-11-09 19:20:28 +01:00
Jens L	1e05d38059	core: fix worker beat toggle inverted (#7508 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-09 18:33:41 +01:00
Marc 'risson' Schmitt	2d821a07c6	events: fix gdpr compliance always running Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2023-11-08 15:19:49 +01:00
Jens L	fe1a06ebf2	sources/oauth: fix patreon (#7454 ) * web/admin: add note for potentially confusing consumer key/secret Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sources/oauth: fix patreon default scopes Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-06 15:40:43 +01:00
Jens L	3d9f7ee27e	providers/oauth2: set auth_via for token and other endpoints (#7417 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-11-03 00:11:30 +01:00
Jens L	028c7af00f	stages/email: fix duplicate querystring encoding (#7386 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-31 00:27:34 +01:00
Jens Langhammer	8e72fcab59	release: 2023.10.2	2023-10-28 21:43:54 +02:00
Jens L	261879022d	security: fix oobe-flow reuse when akadmin is deleted (#7361 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-28 21:24:06 +02:00
Jens L	ad9f500ad1	crypto: fix race conditions when creating self-signed certificates on startup (#7344 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2023-10-27 16:29:10 +02:00

1 2 3 4 5 ...

3104 commits