authentik

Commit Graph

Author	SHA1	Message	Date
Jens Langhammer	07a4f474f4	website/docs: add docs for `auth_method` and `auth_method_args` fields Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-23 17:23:55 +02:00
Jens Langhammer	9a6a3e66b8	root: update schema Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-23 16:14:33 +02:00
Jens Langhammer	aad753de68	ci: fix extraction of generated client Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-23 15:57:56 +02:00
Jens Langhammer	a79a150a1f	root: test schema auto-update Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-23 15:55:26 +02:00
Jens Langhammer	7639cdad0a	release: 2021.8.1-rc1	2021-08-22 20:17:35 +02:00
Jens Langhammer	3e909ae6bb	core: allow filtering users by the groups they are in Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 16:27:48 +02:00
Jens Langhammer	b4f738492d	sources/oauth: improve UI with prefilled urls (when customizable) and hiding provider type Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 15:52:41 +02:00
Jens Langhammer	6433b5982e	api: add cache timeouts to config API for outposts Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 14:14:18 +02:00
Jens Langhammer	84c4547005	sources/plex: add API for user connections Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-17 13:02:40 +02:00
Jens Langhammer	2592fc3826	sources/ldap: allow for anonymous binds, fix sync_users_password not working correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-12 19:09:29 +02:00
Jens Langhammer	ec95a2bddc	core: allow changing of groups a user is in from user api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-10 19:31:30 +02:00
Jens Langhammer	de9d483b9f	admin: add API to show embedded outpost status, add notice when its not configured properly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-10 19:16:11 +02:00
Jens Langhammer	557724768a	core: add API to directly send recovery link to user Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-10 13:54:59 +02:00
Jens Langhammer	ccfc1dbcc2	*: make all PropertyMappings filterable by multiple managed attributes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-08 16:06:44 +02:00
Jens Langhammer	9c9addb0ce	*: ensure all resources can be filtered Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-07 16:34:14 +02:00
Jens Langhammer	18211a2033	release: 2021.7.3	2021-08-05 19:23:03 +02:00
Jens Langhammer	1b91543add	core: add UserSelfSerializer and separate method for users to update themselves with limited fields rework user settings page to better use form closes #1227 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # authentik/core/api/users.py # web/src/elements/forms/ModelForm.ts # web/src/pages/user-settings/UserDetailsPage.ts # web/src/pages/user-settings/UserSettingsPage.ts	2021-08-05 17:47:45 +02:00
Jens Langhammer	add7a80fdc	release: 2021.7.2	2021-08-01 19:11:50 +02:00
Jens Langhammer	e6b515e3f7	release: 2021.7.1	2021-07-27 10:35:45 +02:00
Jens Langhammer	3c9cc9d421	Merge branch 'version-2021.7'	2021-07-24 20:07:42 +02:00
Jens Langhammer	1972464a20	tenants: make event retention configurable on tenant level Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-24 20:07:12 +02:00
Jens Langhammer	3041a30193	release: 2021.7.1-rc2	2021-07-24 18:32:05 +02:00
Jens Langhammer	8ae7403abc	core: add group filter by member username and pk Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-23 19:35:41 +02:00
Jens Langhammer	8cd1223081	core: add email filter for user Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-22 20:10:42 +02:00
Jens Langhammer	0a3fade1fd	providers/proxy: remove deprecated field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-22 16:20:26 +02:00
Jens Langhammer	39ad9d7c9d	release: 2021.7.1-rc1	2021-07-21 10:44:40 +02:00
Jens Langhammer	b3159a74e5	Merge branch 'master' into inbuilt-proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # Dockerfile # internal/outpost/ak/api.go # internal/outpost/ak/api_uag.go # internal/outpost/ak/global.go # internal/outpost/ldap/api_tls.go # internal/outpost/ldap/instance_bind.go # internal/outpost/ldap/utils.go # internal/outpost/proxy/api_bundle.go # outpost/go.mod # outpost/go.sum # outpost/pkg/ak/cert.go	2021-07-17 12:49:38 +02:00
Jens Langhammer	aa701c5725	core: don't delete expired tokens, rotate their key Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-14 21:47:32 +02:00
Jens Langhammer	6f98833150	core: allow users to create non-expiring tokens when flag is set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-14 21:15:14 +02:00
Jens Langhammer	4fe0bd4b6c	tests/e2e: fix e2e tests for ldap provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-14 10:10:11 +02:00
Lukas Söder	7f39399c32	providers/ldap: Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. (#1138 ) * Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. The starting number for uid/gid can be configured iva environtment variables and is by default 2000 which should work fine for most instances unless there are more than 999 local accounts on the server/computer. The uidNumber is just the users Pk + the starting number. The guidNumber is calculated by the last couple of bytes in the uuid of the group + the starting number, this should have a low enough chance for collisions that it's going to be fine for most use cases. I have not added any interface stuff for configuring the environment variables as I couldn't really find my way around all the places I'd have to edit to add it and the default values should in my opinion be fine for 99% use cases. * Add a 'fake' primary group for each user * First attempt att adding config to interface * Updated API to support new fields * Refactor code, update documentation and remove obsolete comment Simplify `GetRIDForGroup`, was a bit overcomplicated before. Add an additional class/struct `LDAPGroup` which is the new argument for `pi.GroupEntry` and util functions to create `LDAPGroup` from api.Group and api.User Add proper support in the interface for changing gidNumber and uidNumber starting points * make lint-fix for the migration files	2021-07-14 09:17:01 +02:00
Jens L	7dfc621ae4	LDAP Provider: TLS support (#1137 )	2021-07-13 18:24:18 +02:00
Jens Langhammer	948db46406	Merge branch 'master' into inbuilt-proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # internal/constants/constants.go # outpost/pkg/version.go	2021-07-05 19:11:26 +02:00
Jens Langhammer	adc4cd9c0d	release: 2021.6.4	2021-07-05 16:59:29 +02:00
Jens Langhammer	320dab3425	core: only show `Reset password` link when recovery flow is configured Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-04 12:59:41 +02:00
Jens Langhammer	d07704fdf1	crypto: show both sha1 and sha256 fingerprints Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-03 19:25:27 +02:00
Jens Langhammer	91f7b289cc	web/admin: show oauth2 token revoked status Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-03 16:04:24 +02:00
Jens Langhammer	3dc9e247d5	Merge branch 'master' into inbuilt-proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # internal/constants/constants.go # outpost/pkg/version.go	2021-07-02 16:23:30 +02:00
Jens Langhammer	014d93d485	root: fix mismatched version in openapi schema Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-29 16:34:42 +02:00
Jens Langhammer	8429dd19b2	Merge branch 'master' into inbuilt-proxy	2021-06-29 16:20:24 +02:00
Jens Langhammer	c19da839b1	stages/user_write: add create_users_as_inactive flag close #1086 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-28 23:24:54 +02:00
Jens Langhammer	2b1356bb91	flows: add invalid_response_action to configure how the FlowExecutor should handle invalid responses closes #1079 Default value of `retry` behaves like previous version. `restart` and `restart_with_context` restart the flow upon an invalid response. `restart_with_context` keeps the same context of the Flow, allowing users to bind policies that maybe aren't valid on the first execution, but are after a retry, like a reputation policy with a deny stage. Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-28 00:22:09 +02:00
Jens Langhammer	7d9c74ce04	tenants: include all default flows in current_tenant Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-26 23:47:49 +02:00
Jens Langhammer	60c3cf890a	events: add ability to create events via API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-26 23:37:03 +02:00
Jens Langhammer	1554dc9feb	outposts: make outpost managed Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-23 21:26:24 +02:00
Jens Langhammer	2b98637ca5	lib: fix regex_match result being inverted, add tests closes #1073 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-23 20:06:43 +02:00
Jens Langhammer	f7047df40e	policies: don't use policy cache when checking application access Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-20 13:30:07 +02:00
Jens Langhammer	cbea51ae5b	stages/authenticator_duo: make Duo-admin viewset writeable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-16 23:17:26 +02:00
Jens Langhammer	d9c2b64116	root: update schema Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-15 23:38:03 +02:00
Jens Langhammer	53100a72fe	stages/identification: fix challenges not being annotated correctly and API client not loading data correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-14 22:28:11 +02:00

1 2 3

123 Commits