Commit Graph

1501 Commits

Author SHA1 Message Date
Jens Langhammer b75feab709 outposts: don't run outpost_controller when no service connection is set
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 19:23:26 +02:00
Jens Langhammer 10b45a8dea api: fix 401 responses which should be 403s
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 19:03:00 +02:00
Jens Langhammer c43ac1f704 api: mount outposts under outposts/instances to match flows
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 18:51:12 +02:00
Jens Langhammer 14d702450a core: add parameter to output property mapping test formatted
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 18:32:36 +02:00
Jens Langhammer 8a6879afa5 core: add superuser_full_list to applications list, shows all applications when superuser
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 16:07:30 +02:00
Jens Langhammer fdc7f14056 core: fix Tokens being created with incorrect intent by default
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 15:43:16 +02:00
Jens Langhammer 8be80aaf9d api: fix CSRF error when using POST/PATCH/PUT in API Browser
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-19 15:31:32 +02:00
Jens Langhammer ce082ead5e providers/oauth2: add unittests for authorize and token views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-18 21:05:49 +02:00
Jens Langhammer f328b21e89 providers/oauth2: Set CORS Headers for token endpoint, check Origin header against redirect URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-18 14:20:50 +02:00
Jens Langhammer 52abd959eb sources/oauth: save null instead of empty string for sources without configurable URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 21:15:06 +02:00
Jens Langhammer 32c5bf04b8 *: fix linting errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 20:08:49 +02:00
Jens Langhammer 0021a93952 web/admin: fix non-matching provider type being selected when creating an OAuth Source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 19:17:08 +02:00
Jens Langhammer 67240fb9ad *: add model_name to TypeCreate API to pass to forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 19:12:00 +02:00
Jens Langhammer d2dd7d1366 sources/oauth: fix redirect loop for source with non-configurable URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 19:06:12 +02:00
Jens Langhammer 476e57daa2 Merge branch 'version-2021.4'
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	docker-compose.yml
#	website/docs/installation/kubernetes.md
2021-04-17 16:01:35 +02:00
Jens Langhammer 60615c9f3e release: 2021.4.2 2021-04-17 15:26:59 +02:00
Jens Langhammer b5b8573d87 core: fix propertymapping API returning invalid value for components
closes #746

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:05 +02:00
Jens Langhammer 2e44c1cdfc sources/ldap: improve error handling during sync
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:05 +02:00
Jens Langhammer 4a444e667a root: base Websocket message storage on Base not fallback
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:05 +02:00
Jens Langhammer f67b57e369 flows: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:04 +02:00
Jens Langhammer 262a9fa2a0 flows: annotate flows executor 404 error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:04 +02:00
Jens Langhammer e8ba159756 root: fix setting of EMAIL_USE_TLS and EMAIL_USE_SSL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:04 +02:00
Jens Langhammer 0b03d66a2f outposts: fix errors when creating multiple outposts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:04 +02:00
Jens Langhammer 71b6839d03 flows: include configure_flow in stages API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:04 +02:00
Jens Langhammer 2b48ba4103 sources/oauth: fix resolution of sources' provider type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:03 +02:00
Jens Langhammer 5e67f68f2b core: improve messaging when creating a recovery link for a user when no recovery flow exists
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:03 +02:00
Jens Langhammer 1992b89154 sources/oauth: fix error when creating an oauth source which has fixed URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 12:01:03 +02:00
Jens Langhammer de74f3ec1f core: fix propertymapping API returning invalid value for components
closes #746

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 11:50:28 +02:00
Jens Langhammer ce98255607 sources/ldap: improve error handling during sync
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-17 11:29:51 +02:00
Jens Langhammer 5df9ad63cf root: base Websocket message storage on Base not fallback
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 23:46:03 +02:00
Jens Langhammer e4400476a2 flows: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 23:15:06 +02:00
Jens Langhammer b136d3bc69 flows: annotate flows executor 404 error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 22:56:44 +02:00
Jens Langhammer c34fcc73dc root: fix setting of EMAIL_USE_TLS and EMAIL_USE_SSL
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 22:44:42 +02:00
Jens Langhammer 11b09c4ebd outposts: fix errors when creating multiple outposts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 22:43:35 +02:00
Jens Langhammer 33a8cea007 flows: include configure_flow in stages API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 17:19:48 +02:00
Jens Langhammer 1770e42cbf sources/oauth: add login with plex support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 17:05:35 +02:00
Jens Langhammer 582d2eb5eb sources/oauth: fix resolution of sources' provider type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 11:29:23 +02:00
Jens Langhammer c5e2635903 core: improve messaging when creating a recovery link for a user when no recovery flow exists
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 10:09:46 +02:00
Jens Langhammer cfe0a7a694 sources/oauth: fix error when creating an oauth source which has fixed URLs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-16 09:49:25 +02:00
Jens Langhammer bd8447d5a7 release: 2021.4.1 2021-04-14 09:46:16 +02:00
Jens Langhammer 4f9f936a7f Merge branch 'master' into version-2021.4 2021-04-13 23:16:35 +02:00
Jens Langhammer 85c9fbe763 api: fix linting error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-13 21:49:47 +02:00
Jens Langhammer 3d9874be69 api: fix error when authorization is empty
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-13 21:41:26 +02:00
Jens Langhammer 9742d19729 Merge branch 'master' into version-2021.4 2021-04-13 21:07:20 +02:00
Jens Langhammer 5a25e6d697 api: add legacy support for older outposts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-13 21:06:04 +02:00
Jens Langhammer 7a562fe8c0 Merge branch 'master' into version-2021.4 2021-04-13 20:02:25 +02:00
Jens Langhammer 6821679fbc *: add support for bearer authentication on API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-13 20:01:30 +02:00
Jens Langhammer 55bb9b6643 web/admin: show banner when backend and frontend versions mismatch
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-13 16:52:02 +02:00
Jens Langhammer fd0ad20031 release: 2021.4.1-rc2 2021-04-12 20:03:21 +02:00
Jens Langhammer cd1b0c67ea web: fix text colour on initial load when not in dark mode
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-12 12:25:44 +02:00
dependabot[bot] a35f77c612
build(deps-dev): bump pylint-django from 2.4.2 to 2.4.3 (#729)
* build(deps-dev): bump pylint-django from 2.4.2 to 2.4.3

Bumps [pylint-django](https://github.com/PyCQA/pylint-django) from 2.4.2 to 2.4.3.
- [Release notes](https://github.com/PyCQA/pylint-django/releases)
- [Changelog](https://github.com/PyCQA/pylint-django/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/PyCQA/pylint-django/compare/v2.4.2...v2.4.3)

Signed-off-by: dependabot[bot] <support@github.com>

* root: fix pylint warning

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-12 09:33:56 +02:00
Jens Langhammer fae92f6bc8 *: fix JSONField overwriting required
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 23:20:45 +02:00
Jens Langhammer f9bf491240 stages/invitation: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 23:09:09 +02:00
Jens Langhammer 4f27a97e10 *: add validator to ensure JSON Fields only receive dicts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 23:05:19 +02:00
Jens Langhammer a0daaabfde web: replace full pf with components for loading animation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 22:02:48 +02:00
Jens Langhammer ea7ecb50c0 web: disable loading of roboto fonts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 21:52:01 +02:00
Jens Langhammer e7626d0716 Revert "release: 2021.4.1-rc1"
This reverts commit 2397cb162a.
2021-04-11 21:04:25 +02:00
Jens Langhammer 2397cb162a release: 2021.4.1-rc1 2021-04-11 16:18:20 +02:00
Jens Langhammer ab4569e5d6 web/admin: fix application form's provider selection not working
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 13:49:35 +02:00
Jens Langhammer 8df29235bb core: add provider_obj field to applications API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 13:31:31 +02:00
Jens Langhammer cb048764f4 providers/proxy: make outpost API readonly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-11 13:31:15 +02:00
Jens Langhammer d76db3caba *: add missing error codes as swagger annotations
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-10 23:55:43 +02:00
Jens Langhammer 32d88c3a49 core: consider never consider expiring models with self.expiring set to false expired
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-10 23:42:42 +02:00
Jens Langhammer 19e73630ab lib: discard all log messages from dbbackup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-10 23:20:20 +02:00
Jens Langhammer 34b8a97ae9 web/admin: add custom rendering for inbuilt sources
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-09 16:30:53 +02:00
Jens Langhammer 5dd29d45d8 core: make Source model managed, add inbuilt source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-09 16:20:59 +02:00
Jens Langhammer 98318953cd sources/ldap: create event when user integrity error occurs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-09 12:17:27 +02:00
Jens Langhammer 232a5a8ad0 root: set default session age to expire on browser close
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-09 11:50:09 +02:00
Jens Langhammer 118f55d95c sources/ldap: fix error during event creation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-09 11:29:32 +02:00
Jens Langhammer d37c33d941 sources/ldap: only save sync state in TaskInfo, return TaskInfo in API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 23:33:41 +02:00
Jens Langhammer 7b0005ac42 stages/password: handle authenticate() throwing a ValidationError
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 23:13:25 +02:00
Jens Langhammer aefeb5bacf sources/ldap: create Event when changing a user's password fails
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 23:13:11 +02:00
Jens Langhammer 7d0e7bcf75 core: return none when application has no launch URL and none could be guessed
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 22:59:11 +02:00
Jens Langhammer ca35204e0c flows: ask for email address in oob flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 22:50:58 +02:00
Jens Langhammer 37632bd0c7 lib: don't send DockerException to sentry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-08 22:03:10 +02:00
Jens Langhammer 4054e6da8c helm: don't automount Service token when integration is not enabled, improve k8s detection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-07 16:16:17 +02:00
Jens Langhammer 12b1f53948 root: monitor redis in readiness check, relax monitoring period
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-07 15:51:19 +02:00
Jens Langhammer 35232afa7e core: skip backup when running in k8s and s3 backup not configured
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-07 15:34:28 +02:00
dependabot[bot] 17de0ff24e
build(deps): bump django from 3.1.7 to 3.2 (#707)
* build(deps): bump django from 3.1.7 to 3.2

Bumps [django](https://github.com/django/django) from 3.1.7 to 3.2.
- [Release notes](https://github.com/django/django/releases)
- [Commits](https://github.com/django/django/compare/3.1.7...3.2)

Signed-off-by: dependabot[bot] <support@github.com>

* root: set DEFAULT_AUTO_FIELD and remove full app config paths

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: check parent class for component and serializer on abstract classes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-07 10:54:38 +02:00
Jens L a2a35e49a9
improved out-of-box experience (#704) 2021-04-06 20:25:22 +02:00
Jens Langhammer fb409a73a1 web/elements: Fix display in deleteform when object has no name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-06 17:36:42 +02:00
Jens Langhammer a31fc8319d policies: fix policybinding API returning wrong policy objects
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-06 17:24:32 +02:00
Jens Langhammer dcc873b88b admin: add API to get info for a single task
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-05 20:40:22 +02:00
Jens Langhammer f0ef2eea4f admin: sort tasks api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-05 19:21:19 +02:00
Jens Langhammer 61652406c7 events: add progress bar to event expiry migration
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-05 13:33:01 +02:00
Jens Langhammer 16d989dbfa core: fix schema for Challenge's type enum
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 16:15:58 +02:00
Jens Langhammer 9517c890b5 if/*: show loading animation before full JS is loaded
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 16:10:08 +02:00
Jens Langhammer 8cae1f2ab5 stages/email: add tests for API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 14:14:58 +02:00
Jens Langhammer 37a14858ad policies: fix display of policy result source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 14:04:41 +02:00
Jens Langhammer b8c41f54c5 stages/email: update default email templates
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 13:40:52 +02:00
Jens Langhammer d1cde64214 stages/email: add support for custom template to API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 13:19:22 +02:00
Jens Langhammer a2cfe9c2a7 admin: sort apps in meta api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-04 12:17:35 +02:00
Jens Langhammer a7f751f3b3 web/admin: fix expression info not being localised
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 20:53:52 +02:00
Jens Langhammer e246071aac core: fix user metrics not accepting detail
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 20:33:59 +02:00
Jens Langhammer 55c24de8c7 policies: fix error when viewing/clearing cache
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 19:57:50 +02:00
Jens Langhammer fc1caf1469 api: remove js i18n catalog
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 19:07:54 +02:00
Jens Langhammer 650b084c72 web: migrate to babel
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 18:20:17 +02:00
Jens Langhammer eeb9449c11 lib: remove templatetags
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 12:37:32 +02:00
Jens Langhammer c17eb00e3b providers/oauth2: fix component for Scope
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 12:08:21 +02:00
Jens Langhammer 42cb55d78a *: rename objectType to component to get rid of lookup tables
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 11:32:17 +02:00
Jens Langhammer aaebd01058 admin: finalise migration
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 01:20:20 +02:00
Jens Langhammer d7698343ae stages/authenticator_validate: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 01:15:32 +02:00
Jens Langhammer 0b057ccb34 stages/authenticator_webauthn: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 01:06:41 +02:00
Jens Langhammer 995f3a13d1 stages/authenticator_static: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 01:03:43 +02:00
Jens Langhammer ab7f4c5ba2 stages/authenticator_totp: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 01:01:59 +02:00
Jens Langhammer be4288fb46 stages/consent: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:55:17 +02:00
Jens Langhammer 75d8641a38 stages/dummy: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:49:15 +02:00
Jens Langhammer 1d72019645 stages/deny: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:48:15 +02:00
Jens Langhammer c1c47c5f30 stages/email: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:46:40 +02:00
Jens Langhammer fc47af12be stages/invitation: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:42:41 +02:00
Jens Langhammer a9bee998f2 stages/password: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:22:23 +02:00
Jens Langhammer 31226e3c75 stages/prompt: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:10:59 +02:00
Jens Langhammer f7aabe8ca9 stages/user_delete: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-03 00:04:20 +02:00
Jens Langhammer 8ac82b97d3 stages/user_write: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:54:00 +02:00
Jens Langhammer 128af67011 stages/user_logout: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:52:55 +02:00
Jens Langhammer fb9a4ec461 stages/user_login: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:51:39 +02:00
Jens Langhammer 2a261cfaf8 stages/identification: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:45:50 +02:00
Jens Langhammer 224ad46a21 stages/captcha: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:45:39 +02:00
Jens Langhammer ffe3ec0cb4 root: disable django admin
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:21:40 +02:00
Jens Langhammer 448dd7ed54 core: change TypeCreateSerializer to component
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:17:30 +02:00
Jens Langhammer 1dc01ef857 *: add API tests for types endpoints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 23:11:53 +02:00
Jens Langhammer 0f76e80341 admin: remove policies views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 17:15:48 +02:00
Jens Langhammer 6acfbb7d66 policies/reputation: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 17:09:30 +02:00
Jens Langhammer fcdc064cac policies/password: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 17:09:19 +02:00
Jens Langhammer 0c92f4a74d policies/hibp: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:57:55 +02:00
Jens Langhammer ac136ec5f6 policies/expiry: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:49:37 +02:00
Jens Langhammer f75f6a8404 policies/expression: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:42:30 +02:00
Jens Langhammer 415bb4cc88 policies/event_matcher: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:37:51 +02:00
Jens Langhammer 6a3e1da986 policies/dummy: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:31:53 +02:00
Jens Langhammer 5a6b6c369e admin: add API to get all installed apps
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:13:09 +02:00
Jens Langhammer 66d342880c events: add API to get all event actions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 16:02:58 +02:00
Jens Langhammer 7fad2b6563 sources/oauth: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 15:42:07 +02:00
Jens Langhammer 22f50aae45 managed: fix ManagedSerializer interfering with other serializers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 15:00:15 +02:00
Jens Langhammer 1daba5db87 sources/oauth: revamp types system, move default URLs to type
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 14:59:58 +02:00
Jens Langhammer 83fc22005c *: remove swagger parameters from functions that don't accept them
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 13:39:22 +02:00
Jens Langhammer 7eb7fc2e12 sources/oauth: add API to get provider types
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 13:26:42 +02:00
Jens Langhammer 07702afe68 sources/saml: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 13:12:31 +02:00
Jens Langhammer 70fc4c0d88 sources/ldap: migrate to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 12:12:14 +02:00
Jens Langhammer 742f570c4c managed: add API serializer, add managed field
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-02 12:03:33 +02:00
Jens Langhammer ed2e9b88e7 Merge branch 'master' into new-forms-part-3
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 23:02:22 +02:00
Jens Langhammer dd88d9254e Merge branch 'next'
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	web/src/interfaces/AdminInterface.ts
2021-04-01 20:46:06 +02:00
Jens Langhammer 509f21a9b4 providers/oauth2: add validation and tests to API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 20:43:18 +02:00
Jens Langhammer b299451cab providers/saml: fix metadata download not being unauthenticated
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 20:16:07 +02:00
Jens Langhammer 7e63a18d37 providers/saml: fix unittests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 20:05:50 +02:00
Jens Langhammer b9e718f5b8 web: build polyfills into separate file, load first
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 19:55:32 +02:00
Jens Langhammer b4a6f8350b admin: remove provider views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 19:28:30 +02:00
Jens Langhammer 5eb9b95ab5 providers/saml: migrate import to API, add API tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 19:28:12 +02:00
Jens Langhammer 7a0ebbdc53 crypto: add filter for key-pairs with private key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-04-01 11:38:35 +02:00
Jens Langhammer d3f2f987e0 providers/saml: migrate saml property mappings to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 23:38:40 +02:00
Jens Langhammer 221e6190c8 sources/ldap: migrate property mappings to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 23:08:40 +02:00
Jens Langhammer 6a69425688 providers/oauth2: migrate scope mapping to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 23:07:57 +02:00
Jens Langhammer 656fe00302 outposts: migrate service connections to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 22:47:41 +02:00
Jens Langhammer af438af8ac stages/invitation: add API tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 20:52:46 +02:00
Jens Langhammer 041b51a7f8 policies: add tests for bindings API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 20:37:24 +02:00
Jens Langhammer 330d5047e7 core: add tests for token API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 20:36:28 +02:00
Jens Langhammer e476186cbc web/admin: migrate policybinding form
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 19:41:42 +02:00
Jens Langhammer 3124b0f39c web/elements: add support for non-field errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 19:13:56 +02:00
Jens Langhammer 55f68a9197 policies: fix api updating issues
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 18:54:36 +02:00
Jens Langhammer c92a2ecbf5 web/admin: fix hideManaged toggle for propertymapping list
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 16:47:39 +02:00
Jens Langhammer d248b30eb3 policies: fix serializers for bindings
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 16:26:52 +02:00
Jens Langhammer 25e043afea web/admin: migrate FlowStageBinding form to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 15:46:48 +02:00
Jens Langhammer 0395c84270 web/admin: fix flow execute button
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 15:00:54 +02:00
Jens Langhammer e66c46ff59 Merge branch 'master' into new-forms-part-2 2021-03-31 14:16:24 +02:00
Jens L 46f4493f04
policies: configurable engine mode (#682)
* policies: add policy_engine_mode field, defaults to MODE_ALL

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: add policy_engine_mode to API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* *: add policy_engine_mode to forms

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* policies: update default for new objects

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* docs: add to release notes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-31 14:14:56 +02:00
Jens Langhammer 64fa04306c core: overwrite user on token creation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 22:46:19 +02:00
Jens Langhammer cb0b5f7146 web/admin: migrate prompts to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 22:12:06 +02:00
Jens Langhammer 8a3b1ae29d web/admin: migrate invitations to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 22:11:30 +02:00
Jens Langhammer 78a4a167ac outposts: remove outpost form
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 18:45:26 +02:00
Jens Langhammer 23d7ef36d2 core: remove provider and outpostserviceconnection base model create operations
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 18:35:06 +02:00
Jens Langhammer d1dd6b7a8f core: fix tests for property mapping API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 18:34:33 +02:00
Jens Langhammer 9c65fd814b web: fix saving for CodeMirror not returning an object
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 18:20:48 +02:00
Jens Langhammer 58a7d67922 web/admin: migrate property mapping test to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 17:53:43 +02:00
Jens Langhammer b1fb2982ef web/admin: port policy test form
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 17:53:26 +02:00
Jens Langhammer f206baf3f0 core: add API to test property mapping
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 17:32:57 +02:00
Jens Langhammer 6916c59483 policies: fix test API not working, add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 17:22:47 +02:00
Jens Langhammer 41914d9b7a crypto: add tests for builder
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 16:34:45 +02:00
Jens Langhammer 80b0aef210 core: add new permissions for tokens to view key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 15:50:41 +02:00
Jens Langhammer b1214f6c35 *: add new base class for non-model serializers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 15:50:00 +02:00
Jens Langhammer c7dcf92a2e api: add tests for swagger generation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 15:23:37 +02:00
Jens Langhammer 69ee18e13d Merge branch 'master' into new-forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	Pipfile.lock
#	authentik/api/decorators.py
#	authentik/core/api/applications.py
#	authentik/core/api/users.py
#	authentik/events/api/event.py
#	authentik/events/api/notification_transport.py
#	authentik/flows/api/flows.py
#	swagger.yaml
2021-03-30 10:26:18 +02:00
dependabot[bot] c180a521ec
build(deps-dev): bump pylint from 2.7.2 to 2.7.3 (#674)
* build(deps-dev): bump pylint from 2.7.2 to 2.7.3

Bumps [pylint](https://github.com/PyCQA/pylint) from 2.7.2 to 2.7.3.
- [Release notes](https://github.com/PyCQA/pylint/releases)
- [Changelog](https://github.com/PyCQA/pylint/blob/master/ChangeLog)
- [Commits](https://github.com/PyCQA/pylint/compare/pylint-2.7.2...pylint-2.7.3)

Signed-off-by: dependabot[bot] <support@github.com>

* sources/saml: fix linting for SAMLBindingTypes.Redirect

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* sources/oauth: Fix linting for RequestKind

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: fix linting for ChallengeTypes

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 10:05:14 +02:00
Jens Langhammer 7e85524e51 *: simplify API permissions checking, add API for user recovery
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-30 09:45:48 +02:00
Jens Langhammer 54c50f6446 policies: add test API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 23:40:36 +02:00
Jens Langhammer 09aa5d6350 web/admin: migrate outposts to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 23:12:31 +02:00
Jens Langhammer e5ff416c2d outposts: add API for default config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 22:52:08 +02:00
Jens Langhammer 21ea527623 api: fix invalid swagger schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 22:34:24 +02:00
Jens Langhammer 36c34e05f8 stages/authenticator_webuahtn: remove views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 22:31:29 +02:00
Jens Langhammer 3a2f285a87 flows: add API to debug-execute a flow and import flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 22:21:04 +02:00
Jens Langhammer a09481dea2 flows: add API to set background image
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 21:40:08 +02:00
Jens Langhammer 03ff495011 web/admin: migrate application form to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 21:39:53 +02:00
Jens Langhammer 657b0089b1 core: add set_icon operation to applications API to set icon
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 21:16:13 +02:00
Jens Langhammer 7d74e1d2c4 *: revert to drf-yasg upstream
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 21:04:54 +02:00
Jens Langhammer 81ac53ff0a web/admin: migrate events notification rules to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 19:22:22 +02:00
Jens Langhammer 1e58941323 web/admin: migrate Event Transport to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 19:06:00 +02:00
Jens Langhammer a52b57cc38 events: fix missing send_once param from api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 18:58:54 +02:00
Jens Langhammer 372cf4a8cb api: add error responses to swagger schema
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 18:09:45 +02:00
Jens Langhammer dfff2a1134 web/admin: migrate crypto/certificatekeypair to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 17:35:13 +02:00
Jens Langhammer b3d54b7620 api: cleanup args for @permission_required
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 17:33:55 +02:00
Jens Langhammer a445b03523 crypto: add API to generate keypair
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 17:33:27 +02:00
Jens Langhammer 5d37012075 api: allow @permission_required with no object permission
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 17:28:28 +02:00
Jens Langhammer 526af26536 web/admin: migrate user forms to web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 16:16:27 +02:00
Jens Langhammer 464a56ad52 Merge branch 'master' into new-forms 2021-03-29 15:37:12 +02:00
Jens Langhammer 0793fff222 *: simplify API permissions checking, add API for user recovery
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 15:36:35 +02:00
Jens Langhammer 583b6cc20b web/admin: remove site-shell
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 14:42:28 +02:00
Jens Langhammer 3cc7d54cc1 policies: use GroupSerializer for PolicyBinding API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 12:28:06 +02:00
Jens Langhammer e7c6ff9499 admin: remove group views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-29 12:03:11 +02:00
Jens Langhammer fbc33815a3 core: fix user view imports
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-28 22:33:27 +02:00
Jens Langhammer bd9c0efab7 core: use only user ids for group
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-28 22:03:48 +02:00
Jens Langhammer 0fcef494a6 Merge branch 'next' into new-forms 2021-03-27 23:48:04 +01:00
Jens Langhammer 6f6fe6ad06 flows: fully fix unittests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 23:47:00 +01:00
Jens Langhammer 95ecad8382 Merge branch 'next' into new-forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

# Conflicts:
#	web/src/api/legacy.ts
#	web/src/main.ts
#	web/src/pages/users/UserSettingsPage.ts
2021-03-27 23:21:16 +01:00
Jens Langhammer e621eb7455 web: cleanup message API, use enum for level
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 23:11:44 +01:00
Jens Langhammer 261583cb92 flows: fix tests for dummy stage
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 22:58:41 +01:00
Jens Langhammer 1bc48d2bea stages/dummy: fix missing component
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 22:35:36 +01:00
Jens Langhammer 103e0f3b06 web: add default title
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 22:24:09 +01:00
Jens Langhammer 32fb90e056 core: include full users in group API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-27 15:53:54 +01:00
Jens Langhammer fe4791c216 web: initial implementation of new forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-25 00:05:11 +01:00
Jens Langhammer 6e46124c94 web/admin/user: fix user source connection lookups
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 21:40:08 +01:00
Jens Langhammer 533a719914 sources/oauth: migrate to webcomponents
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 20:35:00 +01:00
Jens Langhammer a085632b8e stages/authenticator_*: migrate remaining stages to webcomponents
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 20:13:31 +01:00
Jens Langhammer 1ef5a8e6c5 stages/password: migrate settings to webcomponents
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 19:48:24 +01:00
Jens Langhammer ab5d6dbea1 sources/authenticator_webauthn: rewrite to webcomponent
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 18:00:37 +01:00
Jens Langhammer ffd8c59c8e api: use common skeleton in swagger template
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 17:46:41 +01:00
Jens Langhammer 83c3a116f3 core: add Serializer for UserSettings, used by stages and sources
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 17:46:31 +01:00
Jens Langhammer f695a3f40a stages/authenticator_*: fix missing fields
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 17:19:39 +01:00
Jens Langhammer f41f2bfdab sources/saml: use STAGE_CONFIGURATION for default-source-pre-authentication flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 17:12:41 +01:00
Jens Langhammer 17f7a97ef3 sources/oauth2: add API For UserSourceConnection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 14:46:08 +01:00
Jens Langhammer 3698c6431c flow: pass Query on FlowExecutorSolve to prevent redirect issues
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 14:12:49 +01:00
Jens Langhammer 4d88af4601 flows: fix RedirectChallenge wrapper being confused by querystrings
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 12:47:12 +01:00
Jens Langhammer dce869b566 flows: fix post-email continuation not working
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 12:46:54 +01:00
Jens Langhammer 5a5539da97 sources/saml: fix failing unittests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 09:55:43 +01:00
Jens Langhammer 4612cea970 sources/saml: replace server-side pre-auth views for pre_auth flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 09:22:15 +01:00
Jens Langhammer da4fa96499 sources/oauth: simplify enrollment handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 09:22:15 +01:00
Jens Langhammer 4137266041 flows: revert to sever-side redirects for security, pass querystring from client during flow plan
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-24 09:22:15 +01:00
Jens Langhammer 62d0e020db stages/email: add wrapper view to accept queryargs and redirects to flow if
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 19:42:58 +01:00
Jens Langhammer 3f6174e8cc ci: fix missing isort
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 18:28:23 +01:00
Jens Langhammer 1fd949d4ec flows: remove FlowExecutorShellView
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 18:09:13 +01:00
Jens Langhammer de6fa63d21 web: detect deep links in flow interface and redirect locally
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 18:04:21 +01:00
Jens Langhammer cfe7bc8155 flows: migrate access denied message to webcompoennts
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 17:55:13 +01:00
Jens Langhammer c6c4636b9b policies: show messages of root result
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 17:14:54 +01:00
Jens Langhammer bd74e07ce1 flows: move <ak-message-container> outside of flow executor
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 16:18:00 +01:00
Jens Langhammer 33787d0685 web: remove pf-c-card-aggregate
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 16:05:37 +01:00
Jens Langhammer 56344cadeb web: add confirmation form for simple write-requests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 15:07:45 +01:00
Jens Langhammer 0671d712fa policies: remove deprecated group_membership policy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 14:43:24 +01:00
Jens Langhammer 6961089425 flows: add API to clear cache
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-23 10:37:41 +01:00
Jens Langhammer 3157bf63a6 root: upgrade to pylint 2.7
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-22 20:03:33 +01:00
Jens Langhammer e202fd988b root: update to isort 5
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-22 19:53:10 +01:00
Jens Langhammer 4f8b882554 web: copy static assets only once
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-22 14:54:12 +01:00
Jens L fe7f23238c
Static SPA (#648)
* core: initial migration to /if

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: move jsi18n to api

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests: fix static URLs in tests

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: add new html files to rollup

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: fix rollup config and nginx config

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: add Impersonation support to user API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: add banner for impersonation

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* tests: fix test_user function for new User API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: add background to API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: set background from flow API

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* core: make root view login_required for redirect

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* flows: redirect to root-redirect instead of if-admin direct

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* api: add header to prevent Authorization Basic prompt in browser

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

* web: redirect to root when user/me request fails

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-22 13:44:17 +01:00
Jens Langhammer 25c82d80f5 flows: use full ShadowDom for flowContainer
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-21 17:51:23 +01:00
Jens Langhammer 7e47906475 api: add Footer links to config API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-21 17:35:00 +01:00
Jens Langhammer 24ac6d2c25 stages/authenticator_webauthn: prefer Biometrics over security key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-21 16:52:14 +01:00
Jens Langhammer bb9fbb55b6 core: use a single column for flow executor flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-21 14:53:02 +01:00
Jens Langhammer c834f0a372 stages/authenticator_webauthn: explicitly allow cross-platform devices for iOS/safari
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-21 00:10:07 +01:00
Jens Langhammer 43f19f78bb providers/oauth2: fix error when redirecting from an authorization error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-20 22:06:45 +01:00
Jens Langhammer 3d45956f15 web: fix display of scopes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-20 19:05:10 +01:00
Jens Langhammer fb20ae7e1a web: sort users by last_login
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-20 18:39:12 +01:00
Jens Langhammer 4c49209f71 core: add user metrics API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-20 17:30:01 +01:00
Jens Langhammer 45a397bd77 web: fix card titles
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-20 15:38:09 +01:00
Jens Langhammer fe054136b1 website: add comparison based on vector.dev's site
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 22:09:54 +01:00
Jens Langhammer d82dfc65b7 api: replace rest_framework browser with rapi-doc
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 20:35:12 +01:00
Jens Langhammer 080282a0bc events: add better filters to event API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 18:11:38 +01:00
Jens Langhammer 8242c139c2 events: use ExpiringModel with delta of 1 year for events
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 17:10:59 +01:00
Jens Langhammer 5b4c5d0f31 stages/consent: add API to get user's given consent
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 16:07:33 +01:00
Jens Langhammer 9ad10863de providers/oauth2: add API for auth codes and refresh tokens
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 15:59:38 +01:00
Jens Langhammer 14f2522c3e events: improve logging for geoip
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 15:16:43 +01:00
Jens Langhammer 01fc63fc98 web: set document title on navigation
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 14:48:02 +01:00
Jens Langhammer a57d524273 flows: add API for flow export
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 14:36:00 +01:00
Jens Langhammer 93bd95436f admin: remove user enable/disable views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 13:09:00 +01:00
Jens Langhammer db9aa5d9dc admin: remove delete views
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 12:40:28 +01:00
Jens Langhammer dae60b5a08 *: replace ReadOnlyModelViewSet with List/Retrieve/Delete viewsets
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 12:11:07 +01:00
Jens Langhammer ac78e3e2ec root: further cleanup in asgi logger
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 01:27:52 +01:00
Jens Langhammer 77a484e698 stages/*: fix warning for user settings API
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 01:11:13 +01:00
Jens Langhammer f1f706dd0d web: migrate user settings to SPA
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 01:03:07 +01:00
Jens Langhammer a6123cfbe4 flows: add API for user's stage settings
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 00:33:12 +01:00
Jens Langhammer 07142cab8b core: add API for user source settings
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-18 00:32:40 +01:00
Jens Langhammer ef58020fd4 web: move MessageContainer to document
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 22:23:24 +01:00
Jens Langhammer a8d411a77b outposts: fix integration test failing occasionally
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 22:02:13 +01:00
Jens Langhammer 5f6f5dbfc4 web: revert to use full pf in skeleton to improve FMP
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 21:20:47 +01:00
Jens Langhammer 14d990df7f web: replace pf-icon-arrow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 19:51:52 +01:00
Jens Langhammer 5b0d875a42 admin: re-add property-mapping test template
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 19:28:45 +01:00
Jens Langhammer c70f6e3122 events: fix Schema for query params for top_per_user
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 18:33:12 +01:00
Jens Langhammer 56260cd23f root: fix concurrency logging issues
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-17 18:20:00 +01:00
Jens Langhammer 4b33971155 release: 2021.3.4 2021-03-16 19:17:50 +01:00
Jens Langhammer e45bc3834a web: use ShadowDom for all elements, embed smaller CSS in skeleton
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-16 17:24:02 +01:00
Jens Langhammer 07ca82e599 admin: include git build hash in gh-* tags and show build hash in admin overview
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-16 14:42:01 +01:00
Jens Langhammer 9d339d8b11 policies: fix error when clearing policy cache when no policies are cached
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-13 21:10:13 +01:00
Jens Langhammer 4e86aa3f59 sources/oauth: fix error on user enrollment when no enrollment flow is defined
fixes #636

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-03-13 21:08:31 +01:00
Jens Langhammer e67f235a9f website: add docs for compose configuration options 2021-03-12 16:43:31 +01:00
Jens Langhammer d99451b45c outposts: improve logs for outpost connection 2021-03-11 17:50:57 +01:00
Jens Langhammer f8dc32b387 events: don't fail on boot when geoip can't be opened 2021-03-11 16:38:14 +01:00
Jens Langhammer e0298141cf web: backport fix: add missing background filter
# Conflicts:
#	authentik/core/templates/login/base_full.html
2021-03-10 23:23:25 +01:00
Jens Langhammer d5de12b69e release: 2021.3.3 2021-03-09 18:03:53 +01:00
Jens Langhammer 34a3d81eff stages/authenticator_*: add API for authenticator devices 2021-03-09 10:38:07 +01:00
Jens Langhammer d150851ff5 root: fix date settings 2021-03-08 15:24:11 +01:00
Jens Langhammer ff276fcc58 web: fix layout for search 2021-03-08 12:55:13 +01:00
Jens L 2852fa3c5e
web: use generated API Client (#616)
* api: fix types for config API

* api: remove broken swagger UI

* admin: re-fix system task enum

* events: make event optional

* events: fix Schema for notification transport test

* flows: use APIView for Flow Executor

* core: fix schema for Metrics APIs

* web: rewrite to use generated API client

* web: generate API Client in CI

* admin: use x_cord and y_cord to prevent yaml issues

* events: fix linting errors

* web: don't lint generated code

* core: fix fields not being required in TypeSerializer

* flows: fix missing permission_classes

* web: cleanup

* web: fix rendering of graph on Overview page

* web: cleanup imports

* core: fix missing background image filter

* flows: fix flows not advancing properly

* stages/*: fix warnings during get_challenge

* web: send Flow response as JSON instead of FormData

* web: fix styles for horizontal tabs

* web: add base chart class and custom chart for application view

* root: generate ts client for e2e tests

* web: don't attempt to connect to websocket in selenium tests

* web: fix UserTokenList not being included in the build

* web: fix styling for static token list

* web: fix CSRF Token missing

* stages/authenticator_static: fix error when disable static tokens

* core: fix display issue when updating user info

* web: fix Flow executor not showing spinner when redirecting
2021-03-08 11:14:00 +01:00
Jens Langhammer 3f0e4bb654 stages/authenticator_static: fix error when disable static tokens 2021-03-08 10:26:03 +01:00
Jens Langhammer cbc86d674d web: fix Colours for user settings in dark mode 2021-03-06 23:00:29 +01:00
Jens Langhammer c6de4e47d7 providers/oauth2: allow protected_resource_view when method is OPTIONS 2021-03-05 16:57:37 +01:00
Jens Langhammer de4b3d6290 providers/oauth2: always set CORS headers on provider info view 2021-03-05 14:27:16 +01:00
Jens Langhammer 0fe009d37c stages/authenticator_webauthn: add missing migration 2021-03-05 14:14:37 +01:00
Jens Langhammer d53c82eee2 core: fix link on login template 2021-03-04 09:39:13 +01:00
Jens Langhammer e1e0b0cf7d release: 2021.3.2 2021-03-04 09:33:25 +01:00
Jens Langhammer 32655567da sources/ldap: fix sync for Users without pwdLastSet 2021-03-03 22:54:05 +01:00
Jens Langhammer ff5f5f65e8 web: fix date display issue 2021-03-03 21:53:30 +01:00
Jens Langhammer 32e5ebb8a3 release: 2021.3.1 2021-03-03 20:53:43 +01:00
Jens Langhammer dd31191845 Merge branch 'master' into version-2021.3 2021-03-03 20:48:02 +01:00
Jens Langhammer 3319547a0e outposts: improve error handling for kubernetes outpost 2021-03-03 20:27:38 +01:00
Jens Langhammer 1a00730cdd core: cleanup output for backup task 2021-03-03 20:11:55 +01:00
Jens Langhammer 466723573c api: fix types for config API 2021-03-03 20:05:43 +01:00
Jens Langhammer ea784d47f4 admin: fix mismatched Swagger schema 2021-03-03 17:44:47 +01:00
Jens Langhammer 77d5ba2862 events: fix typo in events API 2021-03-03 16:54:59 +01:00
Jens Langhammer f4580a1097 api: remove legacy messages API as its WS only 2021-03-03 15:02:20 +01:00
Jens Langhammer c002c4b610 api: make pagination required 2021-03-03 10:37:03 +01:00
Jens Langhammer 28cd08bbba core: make user settings use vertical tabs 2021-03-03 10:05:12 +01:00
Jens Langhammer 3cb0575a1e root: fix swagger pagination not matching API 2021-03-03 09:28:22 +01:00
Jens Langhammer e2a771bdaa docs: update screenshot in captcha stage 2021-03-02 22:25:00 +01:00
Jens Langhammer 23de9df2a5 stages/authenticator_validate: cleanup 2021-03-02 22:20:54 +01:00
Jens Langhammer d420719649 release: 2021.3.1-rc2 2021-03-02 21:41:30 +01:00
Jens Langhammer 0018fbacd3 Merge branch 'master' into version-2021.3
# Conflicts:
#	web/src/constants.ts
2021-03-02 21:39:30 +01:00
Jens Langhammer 8c41d2f4cb stages/authenticator_webauthn: add views to update and delete devices 2021-03-02 21:26:31 +01:00
Jens Langhammer dc4a7c35da core: fix errors on user token views 2021-03-02 21:16:03 +01:00
Jens Langhammer e8c9b70ae8 sources/ldap: check pwdLastSet when syncing Users 2021-03-02 21:05:02 +01:00
Jens Langhammer 74d240dfd4 admin: use spinner-button for modal forms 2021-03-02 20:37:23 +01:00
Jens Langhammer 373793ce9a policies: show more information when provider fails to resolve application 2021-03-02 16:58:55 +01:00
Jens Langhammer 792fa45dca providers/oauth2: add logout URL to Setup URLs API 2021-03-02 15:11:18 +01:00
Jens Langhammer 743aaea15e policies: improve logging 2021-03-02 15:04:31 +01:00
Jens Langhammer 38d9533afd root: update screenshots 2021-03-02 12:15:32 +01:00
Jens Langhammer 7538af5e09 docs: fix download links for compose 2021-03-02 10:07:46 +01:00
Jens Langhammer 2e659c1ab0 release: 2021.3.1-rc1 2021-03-02 09:41:09 +01:00
Jens Langhammer 7fb95dfabf stages/password: improve logging 2021-03-02 09:40:32 +01:00
Jens Langhammer 83cc5d24f2 stages/password: improve logging 2021-03-02 09:30:29 +01:00
Jens Langhammer 3045cf1aef web: make user password-reset button use action button 2021-03-01 20:41:54 +01:00
Jens Langhammer c65b2944b3 stages/reputation: add API for user and IP Score 2021-03-01 20:22:37 +01:00
Jens Langhammer 2ae5a81c15 stages/deny: add deny stage 2021-03-01 20:16:54 +01:00
Jens Langhammer ed8b78600e stages/authenticator_validate: add configuration stage to configure Authenticator 2021-03-01 19:23:59 +01:00
Jens Langhammer 644a03e40e lib: don't order_by on widget because PolicyBindingModel, order in form 2021-03-01 19:23:09 +01:00
Jens Langhammer 88ce93ab04 policies: fix tests creating policies with empty names 2021-03-01 19:22:35 +01:00
Jens Langhammer 03d38557e5 stages/*: simplify __str__ of classes 2021-03-01 18:30:47 +01:00
Jens Langhammer 37b59bb5b9 lib: sort GroupedModelChoiceField by name
closes #602
2021-03-01 18:30:27 +01:00
Jens Langhammer ce7aae16c9 stages/password: fix ?next param for password change 2021-03-01 17:17:44 +01:00
Jens Langhammer fd9ba97479 core: remove source's ui_additional_info 2021-03-01 16:57:51 +01:00
Jens Langhammer ca4ead8fd8 events: fix event creation with anonymous user 2021-03-01 12:04:27 +01:00
Jens Langhammer a81f981471 lib: fix being unable to set authentik. options 2021-03-01 11:11:00 +01:00
Jens Langhammer d6fd2b0afa sources/saml: add Metadata API 2021-03-01 10:50:45 +01:00
Jens Langhammer 1149a8d9a4 flows: fix tests for diagram 2021-02-28 11:01:34 +01:00
Jens Langhammer 9b3e94c7c8 flows: fix flow diagram showing policy after stage and not before 2021-02-28 10:28:37 +01:00
Jens Langhammer 7f65ae3f92 Merge branch 'master' into stage-challenge
# Conflicts:
#	web/package-lock.json
2021-02-28 00:47:18 +01:00
Jens Langhammer 0958740b51 providers/saml: fix Autosubmit Challenge 2021-02-28 00:09:08 +01:00
Jens Langhammer 05a5b5b675 stages/prompt: fix fields not being sorted correctly 2021-02-27 21:03:57 +01:00
Jens Langhammer ffcf064f83 Merge branch 'version-2021.2'
# Conflicts:
#	authentik/policies/group_membership/forms.py
#	web/package.json
#	web/src/constants.ts
#	web/src/elements/buttons/TokenCopyButton.ts
2021-02-27 18:29:30 +01:00
Jens Langhammer 5725e54334 release: 2021.2.6-stable 2021-02-27 18:16:46 +01:00
Jens Langhammer c20856ca17 web: fix colourstyles not being included in common_styles
# Conflicts:
#	authentik/events/geo.py
#	web/src/elements/buttons/TokenCopyButton.ts
2021-02-27 18:16:32 +01:00
Jens Langhammer 402afa1e85 Merge branch 'master' into stage-challenge
# Conflicts:
#	web/src/elements/buttons/SpinnerButton.ts
2021-02-27 18:10:08 +01:00
Jens Langhammer 5b4e75000b web: fix colourstyles not being included in common_styles 2021-02-27 17:38:21 +01:00
Jens Langhammer fe290aa214 sources/ldap: fix password setter on users which are not LDAP 2021-02-27 17:04:16 +01:00
Jens Langhammer a2e69bd250 sources/ldap: fix API error when source has not synced yet 2021-02-27 17:04:16 +01:00
Jens Langhammer d2a35eb8de admin: fix missing success_url for clean views 2021-02-27 17:04:16 +01:00
Jens Langhammer 3437d8b4b0 flows: handle error when app cannot be found during import 2021-02-27 17:04:16 +01:00
Jens Langhammer b862bf4284 providers/oauth2: fix error when no login event could be found 2021-02-27 17:04:16 +01:00
Jens Langhammer de22a367b1 events: fix error when event can't be loaded into rule task 2021-02-27 17:04:15 +01:00
Jens Langhammer 17ab895652 flows: fix glob pattern for doc flows 2021-02-27 17:04:06 +01:00
Jens Langhammer a4d5815e1b policies: sort groups in groupmembership policy and binding
closes #595

# Conflicts:
#	authentik/policies/group_membership/forms.py
2021-02-27 17:02:34 +01:00
Jens Langhammer 4cbfaaa72b sources/ldap: fix password setter on users which are not LDAP 2021-02-27 16:49:59 +01:00
Jens Langhammer 92943f08d9 sources/ldap: fix API error when source has not synced yet 2021-02-27 16:29:36 +01:00
Jens Langhammer 10ef1c7e93 admin: fix missing success_url for clean views 2021-02-27 16:27:42 +01:00
Jens Langhammer 02c762c268 flows: handle error when app cannot be found during import 2021-02-27 16:26:06 +01:00
Jens Langhammer d2dfc6d63b Merge branch 'master' into stage-challenge 2021-02-27 16:04:57 +01:00
Jens Langhammer a18240fcd7 providers/oauth2: fix error when no login event could be found 2021-02-27 16:02:07 +01:00
Jens Langhammer 9af1d6f63b events: fix error when event can't be loaded into rule task 2021-02-27 15:22:43 +01:00
Jens Langhammer e94abfc986 flows: fix glob pattern for doc flows 2021-02-27 13:23:16 +01:00
Jens Langhammer 5c652c1f79 policies: sort groups in groupmembership policy and binding
closes #595
2021-02-27 13:19:38 +01:00
Jens Langhammer c62ef4ae81 stages/identification: don't pass entire application 2021-02-26 16:44:45 +01:00
Jens Langhammer 3df81ca6f0 root: don't use failfast 2021-02-26 15:39:50 +01:00
Jens Langhammer 2335ccddaa root: add fallback URL for websocket 2021-02-26 15:12:58 +01:00
Jens Langhammer 477e30f542 core: fix path for blank avatar when avatars are disabled 2021-02-26 15:07:30 +01:00
Jens Langhammer 7bf3d7e10a Merge branch 'master' into stage-challenge
# Conflicts:
#	Pipfile.lock
2021-02-26 12:02:49 +01:00
Jens Langhammer 1bef659b10 stages/captcha: remove dependency on captcha app 2021-02-26 10:13:58 +01:00
Jens Langhammer fbf2fe2404 stages/authenticator_validate: fix webauthn validation 2021-02-25 21:00:32 +01:00
Jens Langhammer b968adffc1 stages/authenticator_totp: fix error when disabling device 2021-02-25 21:00:18 +01:00
Jens Langhammer 4e2c686db1 Merge branch 'master' into stage-challenge
# Conflicts:
#	Pipfile.lock
2021-02-25 20:13:17 +01:00
Jens Langhammer 9e6a7bf16b stages/captcha: migrated to SPA 2021-02-25 19:58:38 +01:00
Jens Langhammer 890e0e9054 *: remove unused templates and code, move avatar to User model 2021-02-25 19:58:23 +01:00
Jens Langhammer cf7e7c44ff stages/password: fix recovery link not being shown in SPA 2021-02-25 15:09:48 +01:00
Jens Langhammer 0f169f176d stages/authenticator_validate: implement validation, add button to go back to device picker 2021-02-25 12:07:32 +01:00
Jens Langhammer 007676b400 stages/authenticator_validate: fix post from code form 2021-02-24 20:39:39 +01:00
Jens Langhammer 5977c09b05 Merge branch 'version-2021.2'
# Conflicts:
#	authentik/admin/templates/administration/policy/list.html
#	web/src/pages/outposts/OutpostListPage.ts
2021-02-24 10:20:48 +01:00
Jens Langhammer e81d3dad3e release: 2021.2.5-stable 2021-02-24 09:54:06 +01:00
Jens Langhammer 5aabaebd96 root: fix request_id not being logged for actual asgi requests 2021-02-24 09:45:52 +01:00
Jens Langhammer c1caf84d92 events: fix user QuerySet being passed 2021-02-24 09:44:05 +01:00
Jens Langhammer 86c069fe64 admin: fix policy list not having a refresh button 2021-02-24 09:43:57 +01:00
Jens Langhammer ce0140ef67 events: pass Event's user to Notification policy engine when present 2021-02-24 09:43:50 +01:00
Jens Langhammer bba43c5109 sources/oauth: fix buttons not being ak-root-link 2021-02-24 09:23:44 +01:00
Jens Langhammer 9049593ff5 sources/oauth: fix buttons not being ak-root-link 2021-02-24 09:23:19 +01:00
Jens Langhammer 3cdb81c5ba stages/authenticator_validate: create challenge per device, implement class switcher 2021-02-23 23:43:13 +01:00
Jens Langhammer e8259791f0 stages/authenticator_webauthn: fix rp_id and origin generation 2021-02-23 23:39:00 +01:00
Jens Langhammer 55af786852 Merge branch 'master' into stage-challenge 2021-02-23 23:17:03 +01:00
Jens Langhammer 7101c7987c Merge branch 'version-2021.2' 2021-02-23 23:02:05 +01:00
Jens Langhammer bd48955f39 release: 2021.2.4-stable 2021-02-23 23:00:43 +01:00
Jens Langhammer 53adcd9157 core: fix user-settings not loading sources 2021-02-23 22:55:08 +01:00
Jens Langhammer c5a2bb8914 admin: fix success_urls 2021-02-23 22:55:01 +01:00
Jens Langhammer 66e5958283 core: fix user-settings not loading sources 2021-02-23 22:53:17 +01:00
Jens Langhammer 9db445c3ee admin: fix success_urls 2021-02-23 22:53:05 +01:00
Jens Langhammer 8878fac4e7 stages/authenticator_validate: send challenge for each device 2021-02-23 18:25:58 +01:00
Jens Langhammer 3894895d32 stages/authenticator_validate: start rewrite to SPA 2021-02-23 13:50:47 +01:00
Jens Langhammer 451c117ea4 stages/authenticator_webauthn: fix incorrect response being sent 2021-02-22 19:54:05 +01:00
Jens Langhammer 5904070bb2 flows: add ensure_csrf_cookie() to flow shell view 2021-02-22 18:42:15 +01:00
Jens Langhammer 217595bb01 tests: start fixing selenium tests 2021-02-21 23:39:02 +01:00
Jens Langhammer 20e0fe3941 web: move ak-form-element to separate file 2021-02-21 23:09:08 +01:00
Jens Langhammer fb9880bff4 web: add loading animation to flowexecutor 2021-02-21 22:01:35 +01:00
Jens Langhammer 76c572cf7c stages/authenticator_webauthn: migrate to SPA 2021-02-21 20:53:23 +01:00
Jens Langhammer 0904fea109 flows: fix migration for e2e tests 2021-02-21 20:47:23 +01:00
Jens Langhammer 6df89e7abf stages/authenticator_static: migrate to SPA 2021-02-21 19:34:49 +01:00
Jens Langhammer 21afda6dc2 stages/authenticator_totp: migrate to SPA 2021-02-21 19:10:50 +01:00
Jens Langhammer dc680a3385 flows: set pending_user in ChallengeStageView 2021-02-21 18:58:08 +01:00
Jens Langhammer 88e5b22d16 flows: add get_pending_user() for WithUserInfoChallenge 2021-02-21 18:35:21 +01:00
Jens Langhammer 27cd10e072 stages/prompt: migrate to SPA 2021-02-21 18:27:34 +01:00
Jens Langhammer d35f524865 core: remove old templates 2021-02-21 14:59:37 +01:00
Jens Langhammer ca223fa4df providers/saml: migrate to challenge for submit 2021-02-21 14:36:22 +01:00
Jens Langhammer 14962eb6cc stages/email: migrate to SPA 2021-02-21 13:42:55 +01:00
Jens Langhammer b9f409d6d9 stages/consent: migrate to SPA 2021-02-21 13:15:45 +01:00
Jens Langhammer a8681ac88f root: fix typo 2021-02-21 00:22:14 +01:00
Jens Langhammer c1e6786ea1 stages/password: Migrate to SPA 2021-02-21 00:14:42 +01:00
Jens Langhammer 1c8d101fc3 stages/identification: remove templates 2021-02-20 23:47:18 +01:00
Jens Langhammer 7a9140bdcd core: move UILoginButtonSerializer into core 2021-02-20 23:42:35 +01:00
Jens Langhammer 511f94fc7f *: cleanup code, return errors in challenge_invalid, fixup rendering 2021-02-20 23:34:10 +01:00
Jens Langhammer 548b1ead2f flows: challenge error response in challenge format 2021-02-20 20:28:57 +01:00
Jens Langhammer 33f67140f2 stages/identification: move user validation to serializer 2021-02-20 20:16:20 +01:00
Jens Langhammer e0ae92ccc7 stages/*: update tests for new response 2021-02-20 19:41:48 +01:00
Jens Langhammer bdb86d7119 *: replace shortcuts.reverse with urls.reverse 2021-02-20 19:13:50 +01:00
Jens Langhammer a1a3d316e3 stages/identification: implement challenge 2021-02-20 18:28:11 +01:00
Jens Langhammer 0e975757b8 core: remove UILoginButton's icon_path 2021-02-20 18:26:43 +01:00
Jens Langhammer 391ee10cb8 Merge branch 'master' into stage-challenge
# Conflicts:
#	authentik/api/v2/urls.py
2021-02-20 12:51:10 +01:00
Jens Langhammer dde303f13a admin: remove dead code 2021-02-20 00:27:22 +01:00
Jens Langhammer 264c678eaa web: migrate user token list to web 2021-02-20 00:20:01 +01:00
Jens Langhammer 854d94056e web: migrate remaining list views to web 2021-02-20 00:19:53 +01:00
Jens Langhammer 9d4c22c706 web: show header while loading application info 2021-02-19 23:34:06 +01:00
Jens Langhammer 9b12895fab admin: remove unneeded code 2021-02-19 19:32:46 +01:00
Jens Langhammer 93478a55d7 web: migrate Stage List to web 2021-02-19 19:29:17 +01:00
Jens Langhammer a76cbf8b70 flows: separate flows api into smaller files 2021-02-19 19:14:16 +01:00
Jens Langhammer 6597d5bd28 web: migrate Token List to web 2021-02-19 19:09:30 +01:00
Jens Langhammer fd28f37c0d web: migrate User list to web 2021-02-19 18:43:57 +01:00
Jens Langhammer d219f65e7a web: migrate System Task list to web 2021-02-19 18:12:23 +01:00
Jens Langhammer 865f652476 web: migrate Outpost Service Connection to web 2021-02-19 17:49:34 +01:00
Jens Langhammer 8008918d8b admin: remove PolicyBinding list 2021-02-19 17:37:19 +01:00
Jens Langhammer 75d0bd01c2 admin: remove StageBinding list 2021-02-19 17:19:48 +01:00
Jens Langhammer 029c6cd182 web: migrate Group list to web 2021-02-19 17:18:09 +01:00
Jens Langhammer 71f771c22c core: add types API to propertymapping 2021-02-19 17:10:30 +01:00
Jens Langhammer 38bd05867d web: migrate Policy list to web 2021-02-19 17:05:02 +01:00
Jens Langhammer 79089d8981 policies: add bound count to api 2021-02-19 16:53:30 +01:00
Jens Langhammer 47bde052ca policies: add types action to policy API, use MetaNameSerializer 2021-02-19 16:34:33 +01:00
Jens Langhammer bd6a473d4f flows: add cached as action to flow API 2021-02-19 16:34:12 +01:00
Jens Langhammer 277b4336d3 stages/authenticator_validate: update autocomplete for code input 2021-02-19 16:00:59 +01:00
Jens Langhammer b229b2f40d Merge branch 'master' into stage-challenge
# Conflicts:
#	authentik/stages/authenticator_validate/stage.py
#	authentik/stages/identification/stage.py
2021-02-18 14:04:35 +01:00
Jens Langhammer e4f0613fab *: replace tuple and set from typing with normal 2021-02-18 13:53:57 +01:00
Jens Langhammer ecff810021 *: replace List from typing with normal list 2021-02-18 13:45:46 +01:00
Jens Langhammer fdde97cbbf *: replace Dict from typing with normal dict 2021-02-18 13:41:03 +01:00
Jens Langhammer eb01b42425 flows: mount executor under api, implement initial challenge design 2021-02-17 23:52:49 +01:00
Jens L 8708e487ae
stages: add WebAuthn stage (#550)
* core: add User.uid for globally unique user ID

* admin: fix ?next for Flow list

* stages: add initial webauthn implementation

* web: add ak-flow-submit event to submit flow stage

* web: show error message for webauthn registration

* admin: fix next param not redirecting correctly

* stages/webauthn: remove form

* stages/webauthn: add API

* web: update flow diagram on ak-refresh

* stages/webauthn: add initial authentication

* stages/webauthn: initial authentication implementation

* web: cleanup webauthn utils

* stages: rename otp_* to authenticator and move webauthn to authenticator

* docs: fix broken links

* stages/authenticator_*: fix template paths

* stages/authenticator_validate: add device classes

* stages/authenticator_webauthn: implement django_otp.devices

* stages/authenticator_*: update default stage names

* web: add button to create stage on flow page

* web: don't minify HTML, remove nbsp

* admin: fix typo in stage list

* stages/*: use common base class for stage serializer

* stages/authenticator_*: create default objects after rename

* tests/e2e: adjust stage order
2021-02-17 20:49:58 +01:00
Jens Langhammer 4cfcc48b23 admin: migrate certificate-keypair list to web 2021-02-16 23:16:52 +01:00
Jens Langhammer 60c244c31d core: add User.uid for globally unique user ID 2021-02-16 23:04:48 +01:00
Jens Langhammer 69e6221906 web: port flow list 2021-02-16 22:52:54 +01:00
Jens Langhammer 68eefd083e web: fix linting errors 2021-02-16 22:35:55 +01:00
Jens Langhammer a647917074 providers/saml: use redirect binding first 2021-02-16 21:35:19 +01:00
Jens Langhammer 099197ba8c providers/saml: fix AuthnRequestsSigned and WantAssertionsSigned not loaded correctly 2021-02-16 21:30:15 +01:00
Jens Langhammer baa2ed5ecc web: fix download button for SAML Metadata download 2021-02-16 21:04:03 +01:00
Jens Langhammer f8ba623fc1 web: add more related links, add policy/user/group support for bindings 2021-02-16 20:52:59 +01:00
Jens Langhammer 6bcdf36ca6 admin: add ?provider for ApplicationCreateView 2021-02-16 20:00:52 +01:00
Jens Langhammer 0b75a0028b providers/saml: fix error when getting metadata of provider with no application 2021-02-16 19:58:04 +01:00
Jens Langhammer 0901d7461e providers/saml: fix redirect error 2021-02-16 19:28:18 +01:00
Jens Langhammer 61772b75ff providers/saml: fix managed mappings not being set on import 2021-02-16 19:20:52 +01:00
Jens Langhammer 61604adf9a root: fix request_id not being logged for actual asgi requests 2021-02-16 19:14:08 +01:00
Jens Langhammer 5ae030997a providers/saml: fix missing import 2021-02-15 09:25:22 +01:00
Jens Langhammer 35e8a0c374 admin: fix ?next for Flow list 2021-02-14 18:39:36 +01:00
Jens Langhammer bbd088a957 events: fix geoip case when not configured 2021-02-12 10:43:00 +01:00
Jens Langhammer 5417d0a90c *: bump pyright version 2021-02-12 10:19:38 +01:00
Jens Langhammer 417b5d61a4 root: add initial geoip implementation 2021-02-12 09:52:14 +01:00
Jens Langhammer e550216f85 events: fix user QuerySet being passed 2021-02-11 23:36:22 +01:00
Jens Langhammer 1afb4a7a76 policies: add ability to directly assign groups in bindings 2021-02-11 20:36:48 +01:00
Jens Langhammer 391eb9d469 admin: fix policy list not having a refresh button 2021-02-11 20:17:45 +01:00
Jens Langhammer 494f094fa1 events: pass Event's user to Notification policy engine when present 2021-02-11 19:56:39 +01:00
Jens Langhammer aa0f5df218 policies/*: cleanup api and forms, use correct inheritance 2021-02-11 19:50:02 +01:00
Jens Langhammer 7da90ff7e4 release: 2021.2.3-stable 2021-02-10 20:47:33 +01:00
Jens Langhammer 61b5714652 docs: update release notes 2021-02-10 20:47:06 +01:00
Jens Langhammer d2df426489 core: fix tokens using wrong lookup 2021-02-10 20:32:54 +01:00
Jens Langhammer a367d8515f core: add source endpoint 2021-02-10 20:12:07 +01:00
Jens Langhammer 2b7a22a29a core: add providers/types endpoint 2021-02-10 20:11:54 +01:00
Jens Langhammer c621f62d92 release: 2021.2.2-stable 2021-02-10 13:33:23 +01:00
Jens Langhammer d15e50025c root: log runtime in milliseconds 2021-02-09 23:33:25 +01:00
Jens Langhammer 0af66a26ab crypto: move certificate and key data to separate api calls to create events 2021-02-09 21:47:00 +01:00
Jens Langhammer bf754369d9 providers/proxy: fix certificates without key being selectable 2021-02-09 21:11:44 +01:00
Jens Langhammer 02dc112f8f outposts: fix ProxyProvider update not triggering outpost update 2021-02-09 20:59:39 +01:00
Jens Langhammer 2d4e7ebab5 admin: remove unnecessary success_urls 2021-02-09 20:58:46 +01:00
Jens Langhammer a7d0a50859 events: rename context.token to context.secret 2021-02-09 20:10:43 +01:00
Jens Langhammer 71c9108f89 events: rename token_view to secret_view 2021-02-09 18:20:28 +01:00
Jens Langhammer 45f1d95bf9 sources/oauth: add callback URL to api 2021-02-09 16:58:19 +01:00
Jens Langhammer 5dab198c47 web: add new sources view 2021-02-09 16:24:27 +01:00
Jens Langhammer ad91abe9de admin: remove old sources view 2021-02-09 16:17:48 +01:00
Jens Langhammer fa30755241 web: make ActionButton's method configurable 2021-02-09 16:14:51 +01:00
Jens Langhammer 552f8c6a9a sources/*: switch API to use slug in URL 2021-02-09 16:08:30 +01:00
Jens Langhammer 2acdcf74e1 sources/ldap: add API for sync status 2021-02-09 10:21:59 +01:00
Jens Langhammer 52016e0806 policies: skip cache on debug request 2021-02-08 22:14:23 +01:00
Jens Langhammer e555bdd42b lib: fix stacktrace for general expressions 2021-02-08 22:14:13 +01:00
Jens Langhammer b3bd979ecd release: 2021.2.1-stable 2021-02-08 21:34:05 +01:00
Jens Langhammer db113c5e8f Merge branch 'master' into version-2021.2 2021-02-08 21:33:58 +01:00
Jens Langhammer 78bcb90a1e outposts: ensure Outpost API is backwards compatible 2021-02-08 19:51:46 +01:00
Jens Langhammer 43bab840ec web: fix sidebar being active when stage prompts is selected 2021-02-08 19:08:39 +01:00
Jens Langhammer f020b79384 admin: remove old code 2021-02-08 19:07:25 +01:00
Jens Langhammer 820f658b49 web: add outpost list page 2021-02-08 19:04:19 +01:00
Jens Langhammer 5d460a2537 admin: remove outposts list 2021-02-08 19:02:39 +01:00
Jens Langhammer efc46f52e6 outposts: move health to API 2021-02-08 19:01:10 +01:00
Jens Langhammer fe4b2d1a34 providers/oauth2: add authorized scopes to AUTHORIZE_APPLICATION event 2021-02-08 11:51:38 +01:00
Jens Langhammer f8abe3e210 providers/oauth2: add unofficial groups attribute to default profile claim 2021-02-08 11:50:26 +01:00
Jens Langhammer 3ced67b151 sources/*: simplify source api 2021-02-08 10:25:59 +01:00
Jens Langhammer cd5631ec76 admin: fix link in source list 2021-02-08 10:25:59 +01:00
Jens Langhammer 1e934aa5d5 release: 2021.2.1-rc2 2021-02-07 19:04:43 +01:00
Jens Langhammer d93927755a Merge branch 'master' into version-2021.2 2021-02-07 19:04:37 +01:00
Jens Langhammer bf9826873e web: fix outpost item in sidebar being active on service connection views 2021-02-07 18:21:13 +01:00
Jens Langhammer 6869b3c16a admin: add button to generate certificate-key pair 2021-02-07 16:15:55 +01:00
Jens Langhammer bfc8e9200f providers/saml: split views into separate files 2021-02-07 13:39:33 +01:00
Jens Langhammer c4311abc9f web: fix link to provider list on overview page 2021-02-06 22:46:09 +01:00
Jens Langhammer ec42869e00 policies: add debug flag to PolicyRequest to prevent alerts from testing policies 2021-02-06 21:45:38 +01:00
Jens Langhammer 45963c2ffc admin: improve layout for policy testing 2021-02-06 21:43:14 +01:00
Jens Langhammer 7af883d80c root: add dedicated live and readiness views 2021-02-06 21:07:05 +01:00
Jens Langhammer 4a5374d03f admin: remove provider list view 2021-02-06 20:54:50 +01:00
Jens Langhammer 3b536f6e55 admin: fix property-mapping views redirecting to invalid URL 2021-02-06 20:54:12 +01:00
Jens Langhammer 6aa13a8666 providers/saml: force-set friendly_name to empty string for managed mappings 2021-02-06 20:52:52 +01:00
Jens Langhammer 33cdbd7776 release: 2021.2.1-rc1 2021-02-06 20:10:50 +01:00
Jens Langhammer db7e9f9b95 sources/ldap: set default group property mapping 2021-02-06 19:17:39 +01:00
Jens Langhammer 91282c7bd8 web: add page for Proxy Provider 2021-02-06 18:57:25 +01:00
Jens Langhammer 830b8bcd5b web: add page for OAuth2 Provider 2021-02-06 18:39:15 +01:00
Jens Langhammer 0f5e6d0d8c api: add dark theme for API Browser 2021-02-06 18:09:24 +01:00
Jens Langhammer 6aa6615608 web: add view page for SAML Provider 2021-02-06 18:07:13 +01:00
Jens Langhammer 91d6a3c8c7 providers/*: simplify provider API 2021-02-06 17:31:29 +01:00
Jens L a6ac82c492
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00
Jens Langhammer 32cf960053 sources/ldap: add property_mappings_group to make group mapping more customisable 2021-02-06 15:27:07 +01:00
Jens Langhammer 83bf639926 sources/ldap: use both entryDN and dn (for active-directory) 2021-02-05 15:17:57 +01:00
Jens Langhammer 2717742bd2 sources/ldap: don't remove users from group which were not synced from AD 2021-02-05 15:17:20 +01:00
Jens Langhammer ef70e93bbd Merge branch 'master' into ldap-groupOfNames 2021-02-05 14:52:39 +01:00
Jens Langhammer 478d3430eb sources/ldap: use openldap tests for entire sync 2021-02-05 14:29:22 +01:00
Jens Langhammer 9c1ade59e9 sources/ldap: add more flatten to user sync, start adding tests for OpenLDAP 2021-02-05 13:36:27 +01:00
Jens Langhammer fadf746234 managed: allow for matching on multiple interfaces 2021-02-05 13:18:44 +01:00
Jens Langhammer 397dfc29f1 sources/ldap: change default object filters to use objectClass= instead of objectCategory 2021-02-05 11:43:39 +01:00
Jens Langhammer b0e3b8b39d sources/ldap: use entryDN attribute from ldap3 as opposed to implicit DN attribute 2021-02-05 11:43:13 +01:00
Jens Langhammer 1f8130e685 events: improve information sent in notification emails 2021-02-04 21:44:59 +01:00
Jens Langhammer e639d8ab56 sources/ldap: add case when group does not have uniqueness attribute 2021-02-04 21:18:49 +01:00
Jens Langhammer 005b4d8dda sources/ldap: fix linting issues 2021-02-04 20:36:05 +01:00
Jens Langhammer de2d8b2d85 providers/oauth2: pass application to configuration error event 2021-02-04 20:35:37 +01:00
Jens Langhammer 7d107991a2 sources/ldap: fix count for membership, fix wrong attribute being searched 2021-02-04 20:22:28 +01:00
Jens Langhammer 14dc420747 sources/ldap: rewrite group membership syncing 2021-02-04 20:06:42 +01:00
Jens L 89dc4db30b
sources/ldap: load operational attributes (#526) 2021-02-04 12:37:55 +01:00
Jens Langhammer cc3fccb27e sources/ldap: use dn attribute for distinguishedName, ignore users with no distinguishedName
closes #527
2021-02-04 12:10:57 +01:00
Jens Langhammer add20de8de providers/*: fix api linting issues 2021-02-04 10:27:55 +01:00
Jens Langhammer 53f002a123 events: allow searching by event id 2021-02-04 10:09:19 +01:00
Jens Langhammer c7c387eb38 providers/*: add assigned application name and slug 2021-02-04 10:09:19 +01:00
Jens Langhammer 1b3760a4b7 events: don't log successful system tasks 2021-02-04 10:09:18 +01:00
Jens Langhammer 1101810fea admin: show more details for policy testing 2021-02-03 22:09:46 +01:00
Jens Langhammer 1ab5289e2e admin: add test view for property mappings 2021-02-03 21:58:56 +01:00
Jens Langhammer 4b24b185f2 admin: fix context not being passed correctly to policy test view 2021-02-03 21:40:03 +01:00
Jens Langhammer ea0ba5ae30 stages/password: use form.add_error 2021-02-03 21:39:03 +01:00
Jens Langhammer b74c08620a admin: add link to changelog to update events 2021-02-03 21:19:51 +01:00
Jens L e25d03d8f4
Managed objects (#519)
* managed: add base manager and Ops

* core: use ManagedModel for Token and PropertyMapping

* providers/saml: implement managed objects for SAML Provider

* sources/ldap: migrate to managed

* providers/oauth2: migrate to managed

* providers/proxy: migrate to managed

* *: load .managed in apps

* managed: add reconcile task, run on startup

* providers/oauth2: fix import path for managed

* providers/saml: don't set FriendlyName when mapping is none

* *: use ObjectManager in tests to ensure objects exist

* ci: use vmImage ubuntu-latest

* providers/saml: add new mapping for username and user id

* tests: remove docker proxy

* tests/e2e: use updated attribute names

* docs: update SAML docs

* tests/e2e: fix remaining saml cases

* outposts: make tokens as managed

* *: make PropertyMapping SerializerModel

* web: add page for property-mappings

* web: add codemirror to common_styles because codemirror

* docs: fix member-of in nextcloud

* docs: nextcloud add admin

* web: fix refresh reloading data two times

* web: add loading lock to table to prevent double loads

* web: add ability to use null in QueryArgs (value will be skipped)

* web: add hide option to property mappings

* web: fix linting
2021-02-03 21:18:31 +01:00
Jens Langhammer cfed41439e events: add send_once flag to send webhooks only once 2021-02-02 19:34:55 +01:00
Jens Langhammer 3ac148d01c events: only title for slack webhook 2021-02-02 19:18:51 +01:00
Jens Langhammer 3e696d6ac8 flows: use global logger for stored plans 2021-02-02 17:29:03 +01:00
Jens Langhammer 0114bc0d6a flows: fix lint errors 2021-02-02 17:02:02 +01:00
Jens Langhammer c60934f9b1 flows: fix benchmark using wrong context 2021-02-02 16:27:21 +01:00
Jens Langhammer 09bdcfaab0 flows: optimise logging 2021-02-02 16:27:03 +01:00
Jens Langhammer 624206281e policies: optimise logging 2021-02-02 16:12:41 +01:00
Jens Langhammer 3d112e7688 root: use filtering_bound_logger for speed improvements 2021-02-02 15:43:44 +01:00
Jens Langhammer 3c4ff65a01 stages/consent: fix wrong widget for expire 2021-02-02 15:01:33 +01:00
Jens Langhammer 3926ee9eb6 core: clear application cache upon application creation 2021-01-30 18:12:14 +01:00
Jens Langhammer 7fbf915e0a policies: fix application cached not being cleared correctly 2021-01-30 18:12:01 +01:00
Jens Langhammer 5af9e8c05d core: improve application caching 2021-01-30 18:03:44 +01:00
Jens Langhammer d8ae56ed19 providers/saml: fix imported provider not saving properties correctly 2021-01-30 12:33:27 +01:00
Jens Langhammer 3e3f29973b release: 2021.1.4-stable 2021-01-29 10:29:06 +01:00
Jens Langhammer 2f3a086f29 docs: update veeam docs for group mapping 2021-01-28 23:34:51 +01:00
Jens Langhammer 239af7048a providers/saml: import SAML Provider with all autogenerated mappings 2021-01-28 23:32:36 +01:00
Jens Langhammer 188ef0f58f core: only cache Applications API when no filtering is done 2021-01-28 23:16:51 +01:00
Jens Langhammer 5ef4354723 providers/saml: make NameID configurable using a Property Mapping 2021-01-28 22:50:13 +01:00
Jens Langhammer 66a8b52c7c providers/saml: update default OIDs for default property mappings 2021-01-28 22:44:44 +01:00
Jens Langhammer c1563f4cff lib: fix ak_is_group_member checking wrong groups 2021-01-28 22:30:59 +01:00
Jens Langhammer da37b42bcf admin: fix providers not showing SAML Import on empty state 2021-01-28 22:16:50 +01:00
Jens Langhammer f4bb22138c providers/saml: add support for WindowsDomainQualifiedName, add docs for NameID 2021-01-28 22:00:40 +01:00
Jens Langhammer c0199933c8 events: fix email template for notifications 2021-01-27 13:22:43 +01:00
Jens Langhammer 5c3f410016 release: 2021.1.3-stable 2021-01-27 10:50:48 +01:00
Jens Langhammer b1591618ae admin: handle FlowNonApplicableException during flow plan 2021-01-27 09:57:26 +01:00
Jens Langhammer 55bcc254c1 flows: fix FlowNonApplicableException not being Sentry Ignored 2021-01-27 09:57:18 +01:00
Jens Langhammer 7d844d1821 release: 2021.1.2-stable 2021-01-18 11:15:11 +01:00
Jens Langhammer 3d3a0cd9e3 events: create event when system task fails 2021-01-18 10:09:14 +01:00
Jens Langhammer 204792b750 stages/email: fix email task not falling back to use_global_settings 2021-01-17 23:31:58 +01:00
Jens Langhammer 8ffa3e5885 policies: fix logic error for sync mode 2021-01-17 23:31:34 +01:00
Jens Langhammer 677a181b9c release: 2021.1.1-stable 2021-01-17 22:36:16 +01:00
Jens Langhammer 4b551add1a stages/password: catch importerror during authentic() 2021-01-17 20:23:22 +01:00
Jens Langhammer e6f897c7e6 policies: detect when running in a daemon process and run policies sync 2021-01-17 20:09:53 +01:00
Jens Langhammer 65c9d4bf4c policies: use custom context for fork instead of changing global context 2021-01-17 20:09:53 +01:00
Jens Langhammer 6e88e52d78 outposts: add message to outpost_service_connection_monitor task 2021-01-17 20:09:53 +01:00
Jens Langhammer 6e69edf1af core: increase application cache duration
# Conflicts:
#	authentik/core/api/applications.py
2021-01-17 19:17:47 +01:00
Jens Langhammer 08e7ef3c1e core: increase application cache duration 2021-01-17 19:04:54 +01:00
Jens Langhammer cf76652a4c release: 2021.1.1-rc2 2021-01-17 17:40:43 +01:00
Jens Langhammer 49d40d4337 admin: fix linting 2021-01-17 17:35:00 +01:00
Jens Langhammer 94182f88a4 release: 2021.1.1-rc1 2021-01-17 17:25:47 +01:00
Jens Langhammer 1c25f4f09b core: use tabs for user settings 2021-01-17 17:25:15 +01:00
Jens Langhammer aad3b43ac3 core: cache applications API 2021-01-16 22:38:09 +01:00
Jens Langhammer 60f52f102a outposts: optimise signals to not always trigger 2021-01-16 22:14:37 +01:00
Jens Langhammer f3ccb5341d outpost: improve logging 2021-01-16 22:13:57 +01:00
Jens Langhammer cb73210447 events: don't log permission creation 2021-01-16 22:03:06 +01:00
Jens Langhammer f959212692 events: make notifications filterable 2021-01-16 19:08:07 +01:00
Jens Langhammer 2d2a404028 providers/oauth2: improve error handling and event creation 2021-01-16 18:27:10 +01:00
Jens Langhammer 4baf9e4a22 web: fix unread count, use white-space pre 2021-01-16 18:04:09 +01:00
Jens Langhammer 4f28a89e63 policies: improve recording of error messages during policy process 2021-01-16 16:38:57 +01:00
Jens Langhammer f8b4b92e8d policies: pass direct exception from expression policies 2021-01-16 15:41:59 +01:00
Jens Langhammer c1fbfc63ab core: use version in qs for static files to ensure latest are loaded 2021-01-16 14:15:42 +01:00
Jens Langhammer 192dbe05c4 events: triggers -> rules 2021-01-16 14:15:23 +01:00
Jens Langhammer d637bd0bf9 events: improve infinite loop detection 2021-01-15 11:27:18 +01:00
Jens Langhammer a2bddc6d91 policies: fix engine tests checking wrong key 2021-01-15 11:27:07 +01:00
Jens Langhammer 2e42da11ea policies/event_matcher: simplify validity checking 2021-01-15 11:26:55 +01:00
Jens Langhammer f297d1256d events: fix linting 2021-01-15 11:19:56 +01:00
Jens Langhammer da59e7c4a7 events: fix infinite loop in unittests 2021-01-15 00:32:59 +01:00
Jens Langhammer 8684d106d5 events: fix default transport for successive migrations 2021-01-14 23:50:18 +01:00
Jens Langhammer 7f5caf901d expressions: set exception as message field 2021-01-14 21:58:10 +01:00
Jens Langhammer 1c686e19b5 policies: set message instead of error for Event 2021-01-14 20:17:21 +01:00
Jens Langhammer 3cc92f6c97 events: ensure created field is timestamp 2021-01-14 20:16:54 +01:00
Jens Langhammer 4447345345 policies: fix display of stacktrace in events 2021-01-14 18:07:41 +01:00
Jens Langhammer 42c6401ba7 events: add event context to slack webhook 2021-01-14 17:40:19 +01:00
Jens Langhammer eef111bcfd events: disable policy cache for trigger 2021-01-14 17:39:59 +01:00
Jens Langhammer 6192b2787f events: notifications: send entire event in API 2021-01-14 17:22:02 +01:00
Jens Langhammer c7d28f8ca9 events: attach default transport to default triggers 2021-01-14 17:22:02 +01:00
Jens Langhammer 1342266368 events: include full group in event notification 2021-01-14 17:22:02 +01:00
Jens Langhammer 7ff679b1a3 policies: fix error when error occurs during policy process with no target 2021-01-14 17:22:02 +01:00
Jens Langhammer 8beddcddb0 events: set severity for default triggers 2021-01-14 17:22:02 +01:00
Jens Langhammer 9fe8554f28 events: make notification read/update only 2021-01-14 17:22:02 +01:00
Jens Langhammer 308896719d docs: add docs for events and notifications 2021-01-13 00:26:33 +01:00
Jens Langhammer 95c1473dd2 events: assign default triggers to default admin group, create default transport 2021-01-12 23:28:17 +01:00
Jens Langhammer b14c5039ed events: set default admin group to receive default triggers 2021-01-12 23:06:42 +01:00
Jens Langhammer b6948334f2 policies/event_matcher: fix verbose_name 2021-01-12 23:06:24 +01:00
Jens Langhammer 29e08e7477 stages/otp_*: fix app's verbose_name 2021-01-12 22:59:46 +01:00
Jens Langhammer 36bc1dc020 events: record source when user is using source to authenticate 2021-01-12 22:48:55 +01:00
Jens Langhammer 61d1407804 sources/*: Set PLAN_CONTEXT_SOURCE when logging in with a source 2021-01-12 22:37:33 +01:00
Jens Langhammer 47ddf0d7f2 web: add UI for notification triggers 2021-01-12 22:26:57 +01:00
Jens Langhammer cac94792fa admin: add event transport forms 2021-01-12 22:03:33 +01:00
Jens Langhammer 8369fa16ae events: add mode_verbose to transport, return string on send error 2021-01-12 21:51:55 +01:00
Jens Langhammer f30bdbecd6 events: catch errors during send and re-raise as custom type 2021-01-12 21:48:16 +01:00
Jens L c727c845df
policies: add and/or mode (#463)
* policies: add mode to PolicyEngine for AND and OR modes

* events: use PolicyEngine in OR mode
2021-01-12 18:22:25 +01:00
Jens L 1ccf6dcf6f
events: Notifications (#418)
* events: initial alerting implementation

* policies: move error handling to process, ensure policy UUID is saved

* policies: add tests for error handling in PolicyProcess

* events: improve loop detection

* events: add API for action and trigger

* policies: ensure http_request is not used in context

* events: adjust unittests for user handling

* policies/event_matcher: add policy type

* events: add API tests

* events: add middleware tests

* core: make application's provider not required

* outposts: allow blank kubeconfig

* outposts: validate kubeconfig before saving

* api: fix formatting

* stages/invitation: remove invitation_created signal as model_created functions the same

* stages/invitation: ensure created_by is set when creating from API

* events: rebase migrations on master

* events: fix missing Alerts from API

* policies: fix unittests

* events: add tests for alerts

* events: rename from alerting to notifications

* events: add ability to specify severity of notification created

* policies/event_matcher: Add app field to match on event app

* policies/event_matcher: fix EventMatcher not being included in API

* core: use objects.none() when get_queryset is used

* events: use m2m for multiple transports, create notification object in task

* events: add default triggers

* events: fix migrations return value

* events: fix notification_transport not being in the correct queue

* stages/email: allow sending of email without backend

* events: implement sending via webhook + slack/discord + email
2021-01-11 18:43:59 +01:00
Jens Langhammer 4743e72e18 policies: ensure binding has a target during unittests 2021-01-05 12:37:52 +01:00
Jens Langhammer 9fb5ce2a1a policies: add binding to policy_execution context 2021-01-05 11:51:05 +01:00
Jens L 82bb179bc2
root: global email settings (#448)
* root: make global email settings configurable

* stages/email: add use_global_settings

* stages/email: add test_email command to test email sending

* stages/email: update email template

* stages/email: simplify email template path

* stages/email: add support for user-supplied email templates

* stages/email: add tests for sending and templates

* stages/email: only add custom template if permissions are correct

* docs: add custom email template docs

* root: add /templates volume in docker-compose by default

* stages/email: fix form not allowing custom templates

* stages/email: use relative path for custom templates

* stages/email: check if all templates exist on startup, reset

* docs: add global email docs for docker-compose

* helm: add email config to helm chart

* helm: load all secrets with env prefix

* helm: move s3 and smtp secret to secret

* stages/email: fix test for relative name

* stages/email: add argument to send email from existing stage

* stages/email: set uid using slug of message id

* stages/email: ensure template validation ignores migration runs

* docs: add email troubleshooting docs

* stages/email: fix long task_name breaking task list
2021-01-05 00:41:10 +01:00
Jens Langhammer 6ed78830a0 providers/proxy: check ingress annotations we manage 2021-01-02 01:48:39 +01:00
Jens Langhammer 6fe323f1a7 outposts: by default only check labels 2021-01-02 01:08:05 +01:00
Jens Langhammer 85c2db018e outposts: ensure field_manager is also used for updates 2021-01-02 00:52:42 +01:00
dependabot[bot] bc9e7e8b93
build(deps): bump structlog from 20.1.0 to 20.2.0 (#445)
* build(deps): bump structlog from 20.1.0 to 20.2.0

Bumps [structlog](https://github.com/hynek/structlog) from 20.1.0 to 20.2.0.
- [Release notes](https://github.com/hynek/structlog/releases)
- [Changelog](https://github.com/hynek/structlog/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/hynek/structlog/compare/20.1.0...20.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* *: use structlog.stdlib instead of structlog for type-hints

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
2021-01-01 15:39:43 +01:00
Jens Langhammer 2e69efe699 providers/saml: sign metadata when signing is enabled 2020-12-31 15:02:21 +01:00
Jens Langhammer a85b8a65c0 release: 0.14.2-stable 2020-12-31 12:00:31 +01:00
Jens Langhammer be54ba4fe2 policies: catch error in process to not hang requests 2020-12-31 11:16:17 +01:00
Jens Langhammer 68b9c34f78 policies: fix obj not being set 2020-12-31 11:16:01 +01:00
Jens Langhammer 3584bdf530 events: fix error when creating an even from policyrequests 2020-12-31 11:15:42 +01:00
Jens Langhammer e712719333 admin: fix reverse urls for application forms 2020-12-31 10:13:06 +01:00
Jens Langhammer 4fde1b7365 providers/saml: allow audience to be empty 2020-12-30 22:15:28 +01:00
Jens Langhammer 412f5b9210 providers/saml: fix signing and verification kp not being set correctly 2020-12-30 22:11:24 +01:00
Jens Langhammer a9e53cd52a providers/saml: fix string being passed to lxml 2020-12-30 22:03:01 +01:00
Jens Langhammer d0ee7908ab providers/saml: force user to select authz flow for import 2020-12-30 22:02:41 +01:00
Jens Langhammer e69834dec4 providers/saml: show error message why import failed 2020-12-30 22:02:28 +01:00
Jens Langhammer 16d5e1d9ff release: 0.14.1-stable 2020-12-29 21:25:49 +01:00
Jens Langhammer 765ae80698 providers/oauth2: fix error when creating RefreshToken 2020-12-29 21:22:49 +01:00
Jens Langhammer 540c22ce15 release: 0.14.0-stable 2020-12-28 17:49:45 +01:00
Jens Langhammer 8c3008abce release: 0.14.0-rc2 2020-12-28 17:49:39 +01:00
Jens Langhammer 8a22c86aaa release: 0.14.0-rc1 2020-12-28 17:49:35 +01:00
Jens Langhammer 22ce142cb8 outposts: include protocol in outpost deployment ports 2020-12-28 17:21:02 +01:00
Jens Langhammer 1a292feebb outposts: always check metadata on reconcile 2020-12-28 17:11:37 +01:00
Jens Langhammer 09f4d812b3 outposts: set field_manager 2020-12-28 17:11:33 +01:00
Jens Langhammer 2bab4ebfe8 core: fix library url pattern not matching SPA 2020-12-28 15:06:25 +01:00
Jens Langhammer 590597caf6 events: replace list view with SPA Page 2020-12-28 14:32:34 +01:00
Jens Langhammer 5f9c1e229c root: return API dates as timestamp 2020-12-28 13:07:49 +01:00
Jens Langhammer 0e1587bc1a providers/oauth2: don't write authorization code to event log 2020-12-28 01:07:18 +01:00
Jens Langhammer dc16a8a4c9 providers/proxy: set proxy-size for nginx for larger response 2020-12-28 00:45:58 +01:00
Jens L a6d0c8c26c
providers/saml: Metadata Import (#432)
* providers/saml: add basic metadata parser

* providers/saml: add importer for Singing certificate, validate signature, add tests

* providers/saml: add provider name to form,

* web: don't use trailing slash for spa URLs

* providers/saml: formatting fixes

* sources/*: add verbose_name to source serializers

* admin: add button launch import modal
2020-12-27 22:38:04 +01:00
Jens Langhammer e216efb6ec providers/oauth2: create access tokens as JWT 2020-12-27 19:36:17 +01:00
Jens Langhammer 378fe38b12 providers/oauth2: ensure response is URL fragment only when implicit or hybrid 2020-12-27 19:07:42 +01:00
Jens Langhammer ce9fb8801c providers/oauth2: ensure nonce is validated on all OIDC flows 2020-12-27 18:13:41 +01:00
Jens Langhammer 67ca83c228 providers/oauth2: add c_hash field 2020-12-27 18:13:13 +01:00
Jens Langhammer ee2e737782 providers/oauth2: remove response_type field as spec doesn't require validation 2020-12-27 18:12:47 +01:00
Jens Langhammer b04c9a2098 providers/oauth2: check redirect_uri before request object 2020-12-27 17:15:36 +01:00
Jens Langhammer e7c96eb70d providers/oauth2: Make AuthorizeError's state parameter requireed 2020-12-27 15:33:29 +01:00
Jens Langhammer e8debce9c8 providers/oauth2: fix infinite loops when prompt=login 2020-12-27 15:23:26 +01:00
Jens Langhammer bcd0686a33 providers/oauth2: redirect back correctly with state on AuthorizationError 2020-12-27 15:22:53 +01:00
Jens Langhammer 55322995a1 providers/oauth2: make iss field configurable 2020-12-27 15:02:12 +01:00
Jens Langhammer dff5eb69c8 providers/oauth2: fix token endpoint creating invalid token when no scopes are passed 2020-12-27 14:48:44 +01:00
Jens Langhammer b747022bc1 providers/oauth2: fix old id_token being sent when using token endpoint with grant_type=refresh_token 2020-12-27 14:33:51 +01:00
Jens Langhammer 885fcff495 providers/oauth2: add grant_types_supported to discovery endpoint 2020-12-27 14:17:40 +01:00
Jens Langhammer 5b18e28753 providers/oauth2: fix include_claims_in_id_token not being shown in form/API 2020-12-27 14:05:10 +01:00
Jens Langhammer 9848c5f3eb providers/oauth2: implement discovery's scopes_supported better 2020-12-27 13:36:14 +01:00
Jens Langhammer fc98c3934a providers/*: implement configuration_error 2020-12-27 13:15:31 +01:00
Jens Langhammer 7964061466 events: add configuration_error action 2020-12-27 13:11:38 +01:00
Jens Langhammer 5f90f54195 stages/invitation: ensure created_by is set when creating from API 2020-12-27 13:11:28 +01:00
Jens Langhammer 49eb568d3c stages/invitation: remove invitation_created signal as model_created functions the same 2020-12-27 13:00:52 +01:00
Jens Langhammer d17b2b0d1b providers/oauth2: add request_parameter_supported 2020-12-27 12:18:23 +01:00
Jens Langhammer f17d809219 providers/oauth2: add scopes_supported to discovery endpoint 2020-12-26 21:18:16 +01:00
Jens Langhammer 6c8e9fb553 providers/oauth2: add ACR support 2020-12-26 20:16:50 +01:00
Jens Langhammer 43bb29e16a providers/oauth2: implement max_age param 2020-12-26 20:05:31 +01:00
Jens Langhammer 29edbb0357 providers/oauth2: use auth_time from LOGIN event 2020-12-26 19:05:02 +01:00
Jens Langhammer 12ae867759 providers/oauth2: redirect back on prompt=none error instead of showing message 2020-12-26 18:58:18 +01:00
Jens Langhammer a20ca9136b providers/oauth2: use in for prompt check 2020-12-26 18:53:47 +01:00
Jens Langhammer 3759e96e7d providers/oauth2: ensure interaction_required is raised when prompt=none and user not logged in 2020-12-26 18:45:23 +01:00
Jens Langhammer 480d882a82 policies: add pre_permission_check to PolicyAccessView for request validity checks 2020-12-26 18:43:45 +01:00
Jens Langhammer e5e1e3737d providers/oauth2: fix query using user model not dict 2020-12-26 18:20:34 +01:00
Jens Langhammer 8dddcf891e providers/oauth2: fix "auth_time" being based on user.last_login 2020-12-26 18:11:29 +01:00
Jens Langhammer 319104c39b providers/oauth2: improve error handling, ensure correct message is shown to user 2020-12-26 17:50:16 +01:00
Jens L a9336f069c
flows: add diagrams (#415)
* flows: initial diagram implementation

* web: install flowchart.js, add flow diagram page

* web: adjust diagram colours for dark mode

* flows: add permission checks for diagram

* flows: fix formatting

* web: fix formatting for web

* flows: add fix when last stage has policy

* flows: add test for diagram

* web: flows/diagram: add support for light mode

* flows: make Flows's Diagram API return json, add more tests and fix swagger response
2020-12-26 17:05:11 +01:00
Jens Langhammer 33f5169f36 core: fix formatting 2020-12-26 15:28:29 +01:00
Jens Langhammer 4c690a20ef core: fix token update/delete not working 2020-12-26 01:23:34 +01:00
Jens Langhammer f68c8f7d90 core: fix User's token creation not working 2020-12-26 01:23:18 +01:00
Jens Langhammer 95b56a0005 release: 0.13.5-stable 2020-12-26 00:52:42 +01:00
Jens Langhammer 811c569b54 core: show multi-select notice for SelectMultiple Widgets 2020-12-26 00:43:40 +01:00
Jens Langhammer 3ac3a8eebe core: fix error during migrations 2020-12-25 23:51:40 +01:00
Jens Langhammer 6a5a243dac stages/invitation: fix optional field being required 2020-12-25 23:41:34 +01:00
Jens Langhammer ee916a68a4 stages/password: fix PasswordStageForm not showing backends 2020-12-25 23:34:26 +01:00
Jens Langhammer f192ee5052 core: fix anonymous user being included in User API 2020-12-25 22:42:53 +01:00
Jens Langhammer c95f8e8418 api: fix formatting 2020-12-24 16:26:01 +01:00
Jens Langhammer 4998ccbe41 root: update license 2020-12-24 16:01:55 +01:00
Jens Langhammer a56ddb2b8e release: 0.13.4-stable 2020-12-24 15:46:08 +01:00
Jens Langhammer 927ab509a1 outposts: validate kubeconfig before saving 2020-12-24 13:23:19 +01:00
Jens Langhammer c85506f43c outposts: allow blank kubeconfig 2020-12-24 13:23:14 +01:00
Jens Langhammer 4157a0780d core: make application's provider not required 2020-12-24 13:23:10 +01:00
Jens L 79da2bf698
web: Table parity (#427)
* core: fix application API always being sorted by name

* web: add sorting to tables

* web: add search to TablePage

* core: add search to applications API

* core: add MetaNameSerializer

* *: fix signature for non-modal serializers

* providers/*: implement MetaNameSerializer

* web: implement full app list page, use as default in sidebar

* web: fix linting errors

* admin: remove old application list

* web: fix default sorting for application list

* web: fix spacing for search element in toolbar
2020-12-24 09:56:05 +01:00
Jens Langhammer 001de38d85 docs: add nextcloud docs 2020-12-22 20:09:15 +01:00
Jens Langhammer 23f61e6b4f admin: fix policy test button in dark theme 2020-12-20 22:29:20 +01:00
Jens Langhammer db135a6dbc policies/expression: fix missing ak_logger 2020-12-20 22:18:13 +01:00
Jens L a4dc6d13b5
events: rename audit to events and use for more metrics (#397)
* events: rename audit to events

* policies/expression: log expression exceptions as event

* policies/expression: add ExpressionPolicy Model to event when possible

* lib/expressions: ensure syntax errors are logged too

* lib: fix lint error

* policies: add execution_logging field

* core: add property mapping tests

* policies/expression: add full test

* policies/expression: fix attribute name

* policies: add execution_logging

* web: fix imports

* root: update swagger

* policies: use dataclass instead of dict for types

* events: add support for dataclass as event param

* events: add special keys which are never cleaned

* policies: add tests for process, don't clean full cache

* admin: create event when new version is seen

* events: move utils to separate file

* admin: add tests for admin tasks

* events: add .set_user method to ensure users have correct attributes set

* core: add test for property_mapping errors with user and request
2020-12-20 22:04:29 +01:00
Jens Langhammer 6a835ad192 policies: add simple test-case 2020-12-19 23:41:24 +01:00
Jens Langhammer efc849e760 policies/engine: Add sanity test to ensure result count matches policy count 2020-12-19 23:40:55 +01:00
Jens Langhammer e23afd18e4 release: 0.13.3-stable 2020-12-19 16:55:07 +01:00
Jens L 6e24856d45
flows: fix redirect when un-authenticated user uses external authentication (#416)
* flows: add PLAN_CONTEXT_REDIRECT so final redirect can be set from within flow

* sources/*: use PLAN_CONTEXT_REDIRECT

* flows: fallback when flow plan is empty
2020-12-19 16:42:39 +01:00
Jens Langhammer 98a58b74e3 core: ensure generic error template fills screen 2020-12-19 14:28:20 +01:00
Jens Langhammer 5f3ab22bea providers/oauth2: fix incorrect background set on end session screen 2020-12-19 14:24:28 +01:00
Jens Langhammer e4b66d991c release: 0.13.2-stable 2020-12-17 20:20:47 +01:00
Jens Langhammer 68adc2d5a5 admin: fix warning during swagger generation 2020-12-17 19:49:35 +01:00
Jens Langhammer 349a3a67d5 flows: use to_stage_response in _flow_done() 2020-12-17 19:34:15 +01:00
Jens Langhammer e1394207e7 flows: fix inconsistent behaviour when flow is empty 2020-12-17 19:22:24 +01:00
Jens Langhammer f265c1f10b admin: fix cache clean views erroring 2020-12-17 19:03:32 +01:00
Jens Langhammer 0b36aad5c8 admin: ensure clean_expired_models is called during tests 2020-12-17 00:17:20 +01:00
Jens Langhammer a5e5e140d6 admin: add full api tests 2020-12-16 23:42:44 +01:00
Jens Langhammer 29f98abd00 root: update swagger 2020-12-16 23:32:14 +01:00
Jens Langhammer d7fa52ebf3 admin: remove old admin overview 2020-12-16 23:21:38 +01:00
Jens Langhammer 48438e28fd admin: separate overview API into WorkerAPI and VersionAPI 2020-12-16 22:53:53 +01:00
Jens Langhammer 885a2f0a58 web: add flow and policy cache card 2020-12-16 22:30:37 +01:00
Jens Langhammer cf46ee06b7 api: create dedicated api for cached flows and policies 2020-12-16 22:18:36 +01:00
Jens Langhammer 1179ba4ef2 api: remove counters from overview api and allow filtering on object apis 2020-12-16 22:00:29 +01:00
Jens Langhammer 3c12c8b3ff core: make Provider SerializerModel 2020-12-16 21:38:40 +01:00