Jens Langhammer
|
a302a72379
|
crypto: fallback when no SAN values are given
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-18 19:40:24 +01:00 |
|
|
Jens Langhammer
|
60189ce9ca
|
add tests to prevent empty SAN
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-18 18:59:10 +01:00 |
|
|
Jens Langhammer
|
fdc445e6a1
|
ensure we don't generate an empty SAN certificate
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-18 18:44:41 +01:00 |
|
Jens L
|
9568f4dbd6
|
root: improve code style (#4436)
* cleanup pylint comments
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* remove more
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* fix url name
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
* *: use ExtractHour instead of ExtractDay
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
|
2023-01-15 17:02:31 +01:00 |
|
|
Jens Langhammer
|
47aba4a996
|
crypto: prevent creation of duplicate self-signed default certs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-06 16:51:07 +01:00 |
|
|
Jens Langhammer
|
960a2aab74
|
crypto: fix type for has_key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2023-01-01 23:14:19 +01:00 |
|
|
Jens Langhammer
|
f0e121c064
|
api: add filter backend for secret key to allow access to tenants and certificates
closes #4182
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-12-28 18:59:25 +01:00 |
|
|
Jens L
|
b85be12567
|
providers/oauth2: fix issues with es256 and add tests (#3808)
fix issues with es256 and add tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-18 22:01:29 +02:00 |
|
|
Jens Langhammer
|
a3cc844e25
|
crypto: fix cert_expiry not having the correct format
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-15 23:32:02 +02:00 |
|
|
Jens Langhammer
|
93e90f8f50
|
crypto: fix import_certificate checking private key as certificate
closes #3713
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-10-02 00:31:14 +02:00 |
|
|
Jens L
|
44e4f2e561
|
crypto: make certificate parsing optional for crypto api (#3711)
|
2022-10-01 00:06:00 +02:00 |
|
|
Jens L
|
62f93c83d4
|
ci: update pyright (#3546)
|
2022-09-07 00:23:25 +02:00 |
|
|
Jens Langhammer
|
03a3f1bd6f
|
crypto: add command to import certificates
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#3544
|
2022-09-06 19:39:10 +02:00 |
|
|
Jens L
|
54ba3e9616
|
blueprints: add meta model to apply blueprint within blueprint for dependencies (#3486)
* add meta model to apply blueprint within blueprint for dependencies
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* use custom registry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix again
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* move ManagedAppConfig to apps.py
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* rename manager to registry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* ci: use full tag in comment
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-08-29 21:20:58 +02:00 |
|
|
Jens L
|
d1004e3798
|
blueprints: webui (#3356)
|
2022-08-03 00:05:49 +02:00 |
|
|
Jens L
|
a023eee9bf
|
blueprints: migrate from managed (#3338)
* test all bundled blueprints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix empty title
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix default blueprints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add script to generate dev config
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* migrate managed to blueprints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add more to blueprint instance
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* migrated away from ObjectManager
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix lint errors
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* migrate things
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* migrate tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix some tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix a bit more
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix more tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* whops
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix missing name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *sigh*
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix more tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add tasks
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* scheduled
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* run discovery on start
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* oops this test should stay
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-08-01 23:05:58 +02:00 |
|
|
Jens L
|
89c84f10d0
|
blueprints: v1 (#1573)
* managed: move flowexporter to managed
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: implement SerializerModel in all models
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* managed: add initial api
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* managed: start blueprint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* managed: spec
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* version blueprint
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* yep
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove v2, improve v1
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* start custom tag, more rebrand
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add default flows
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* move blueprints out of website
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* try new things
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add !lookup, fix web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* update and cleanup default
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix tags in lists
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* don't save field if its set to default value
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* more flow cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* format web
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix missing serializer for sms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* ignore _set fields
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove custom file extension
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* migrate default flow to tenant
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* include blueprints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-07-31 17:11:44 +02:00 |
|
|
Jens L
|
0cad56ec73
|
providers/oauth2: if a redirect_uri cannot be parsed as regex, compare strict (#3070)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-06-10 23:32:57 +02:00 |
|
|
Jens Langhammer
|
63dc8fe7dc
|
crypto: set SAN in default generated Certificate to semi-random domain
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2462
|
2022-05-22 23:22:06 +02:00 |
|
|
Jens Langhammer
|
0b4ac54363
|
*: default to max 60 for fqdn_rand
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-04-20 20:07:25 +02:00 |
|
|
Jens Langhammer
|
1a1434bfda
|
*: decrease frequency of background tasks, smear tasks based on name and fqdn
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2159
|
2022-04-20 18:43:40 +02:00 |
|
|
Jens Langhammer
|
993c6472db
|
crypto: only count discovered when cert was loaded successfully
|
2022-03-28 08:58:23 +00:00 |
|
Angel Nunez Mencias
|
8b95e9f97a
|
crypto: open files in read-only mode for importing (#2536)
closes #2535
|
2022-03-21 10:46:09 +01:00 |
|
|
Jens Langhammer
|
11e25617bd
|
crypto: fully parse certificate on validation in serializer to prevent invalid certificates from being saved
closes #2082
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2022-01-10 20:36:50 +01:00 |
|
|
Jens Langhammer
|
c249b55ff5
|
*: use py3.10 syntax for unions, remove old Type[] import when possible
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-30 14:59:01 +01:00 |
|
|
Jens Langhammer
|
b19da6d774
|
crypto: return private key's type (required for some oauth2 providers)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-25 16:51:28 +01:00 |
|
|
Jens Langhammer
|
457e17fec3
|
website/docs: add small let's encrypt docs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-23 00:59:06 +01:00 |
|
|
Jens Langhammer
|
f557b2129f
|
*: fix random typos
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 23:13:18 +01:00 |
|
|
Jens Langhammer
|
2bde43e5dc
|
crypto: use older syntax for type union
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 22:22:45 +01:00 |
|
|
Jens Langhammer
|
2f3026084e
|
providers/oauth2: remove jwt_alg field and set algorithm based on selected keypair, select HS256 when no keypair is selected
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 22:09:49 +01:00 |
|
|
Jens Langhammer
|
c1f0833c09
|
crypto: improve support for non-rsa private keys (discovery)
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 21:46:22 +01:00 |
|
|
Jens Langhammer
|
34b11524f1
|
tenants: add web certificate field, make authentik's core certificate configurable based on keypair
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-22 11:43:45 +01:00 |
|
|
Jens Langhammer
|
2ca115285c
|
crypto: fix private keys not being imported correctly
closes #1945
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-16 21:14:15 +01:00 |
|
|
Jens Langhammer
|
32ace1bece
|
crypto: add additional validation before importing a certificate
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-14 14:49:25 +01:00 |
|
|
Jens Langhammer
|
a9bd34f3c5
|
events: revert to @prefill_task decorator since base class doesn't get executed until task runs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-09 10:18:00 +01:00 |
|
|
Jens Langhammer
|
2b78c4ba86
|
*: use request.query_params instead of accessing the django request
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-05 11:14:20 +01:00 |
|
|
Jens Langhammer
|
426cef998f
|
sources/ldap: make task names more consistent
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-03 18:39:42 +01:00 |
|
|
Jens Langhammer
|
572f6d4ea0
|
crypto: add certificate discovery to automatically import certificates from lets encrypt
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#1835
|
2021-12-03 18:27:36 +01:00 |
|
|
Jens Langhammer
|
20c738c384
|
crypto: fix default API not having an ordering
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-12-02 13:00:41 +01:00 |
|
Jens L
|
9bb0d04aeb
|
root: Random tests (#1825)
* root: add pytest-randomly to randomise tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: generate flows for testing instead of relying on existing ones
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: generate users for testing instead of relying on existing ones
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: use generated certificate
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: keep containers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: use websockets test case
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-22 22:56:02 +01:00 |
|
|
Jens Langhammer
|
4b8b800648
|
stages/*: add more tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-15 20:58:34 +01:00 |
|
|
Jens Langhammer
|
6f9ed001a1
|
crypto: add more tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-11-15 20:38:03 +01:00 |
|
|
Jens Langhammer
|
72a93c0959
|
root: pin node images to v16
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-28 10:29:48 +02:00 |
|
|
Jens Langhammer
|
dff0613b3d
|
crypto: add managed field, prepare managed JWT cert
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-10-09 19:14:39 +02:00 |
|
|
Jens Langhammer
|
ba6849f29c
|
*: remove string.format()
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-14 12:06:47 +02:00 |
|
|
Jens L
|
859cf2bd8f
|
lib: move id and key generators to lib (#1286)
* lib: move generators to lib
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* core: bump default token key size
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: fix split being used for http basic auth instead of partition
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/elements: don't rethrow error in ActionButton
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-23 20:27:38 +02:00 |
|
|
Jens Langhammer
|
9d392931df
|
root: fix lint errors from re-format
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-03 18:09:16 +02:00 |
|
|
Jens Langhammer
|
77ed25ae34
|
root: reformat to 100 line width
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-03 17:45:16 +02:00 |
|
|
Jens Langhammer
|
bf0141acc6
|
crypto: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-03 19:57:25 +02:00 |
|
|
Jens Langhammer
|
d07704fdf1
|
crypto: show both sha1 and sha256 fingerprints
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-03 19:25:27 +02:00 |
|