authentik

authentik fork

authentication authentik authorization kubernetes oauth2 oauth2-client oauth2-server oidc oidc-client oidc-provider proxy reverse-proxy saml saml-idp saml-sp security sso

This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.

Go to file

Jens L 3c1b70c355 outposts/proxyv2 (#1365 ) * outposts/proxyv2: initial commit Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add rs256 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> more stuff Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add forward auth an sign_out Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> match cookie name Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> re-add support for rs256 for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add error handler Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> ensure unique user-agent is used Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> set cookie duration based on id_token expiry Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> build proxy v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add ssl Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add basic auth and custom header support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add application cert loading Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> implement whitelist Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add redis Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> migrate embedded outpost to v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> remove old proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> providers/proxy: make token expiration configurable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add metrics Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> fix tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only allow one redirect URI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix docker build for proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove default port offset Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add AUTHENTIK_HOST_BROWSER Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests: fix e2e/integration tests not using proper tags Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove references of old port Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix user_attributes not being loaded correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup dependencies Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>		2021-09-08 18:04:56 +00:00
.github	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
.vscode	root: add alias for akflow files	2021-08-23 17:29:12 +02:00
authentik	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
cmd	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
internal	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
lifecycle	lifecycle: rename to ak	2021-08-23 14:54:02 +02:00
scripts	ci: attempt to cache pipenv (#1347 )	2021-09-04 14:55:54 +02:00
tests	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
web	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
website	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
xml	*/saml: test against SAML Schema	2020-12-13 19:53:16 +01:00
.bumpversion.cfg	release: 2021.8.4	2021-09-02 20:21:21 +02:00
.dockerignore	root: add bundled docs	2021-07-13 11:06:51 +02:00
.editorconfig	repo cleanup, switch to new docker registry	2019-04-29 17:05:39 +02:00
.gitignore	website: add docs for making schema changes	2021-08-23 10:32:37 +02:00
CODE_OF_CONDUCT.md	root: add code of conduct and PR template	2021-07-26 22:49:17 +02:00
CONTRIBUTING.md	root: Fix table of contents for CONTRIBUTING.md (#1302 )	2021-08-26 10:08:07 +02:00
Dockerfile	events: remove authentik_events gauge	2021-09-03 18:04:26 +02:00
LICENSE	root: update license	2020-12-24 16:01:55 +01:00
Makefile	ci: use native kind action to test integration	2021-09-04 16:06:44 +02:00
Pipfile	build(deps): bump twisted from 20.3.0 to 21.7.0 (#1198 )	2021-07-29 09:22:44 +02:00
Pipfile.lock	build(deps): bump boto3 from 1.18.36 to 1.18.37 (#1364 )	2021-09-08 08:36:12 +02:00
README.md	root: update badges	2021-09-03 18:11:13 +02:00
SECURITY.md	root: update security.md	2021-09-03 17:26:10 +02:00
docker-compose.yml	release: 2021.8.4	2021-09-02 20:21:21 +02:00
go.mod	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
go.sum	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
ldap.Dockerfile	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
manage.py	root: ignore known warnings	2021-08-09 00:27:29 +02:00
proxy.Dockerfile	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00
pyproject.toml	root: reformat to 100 line width	2021-08-03 17:45:16 +02:00
pyrightconfig.json	Proxy v2 (#189 )	2020-09-03 00:04:12 +02:00
schema.yml	outposts/proxyv2 (#1365 )	2021-09-08 18:04:56 +00:00

README.md

authentik logo

What is authentik?

authentik is an open-source Identity Provider focused on flexibility and versatility. You can use authentik in an existing environment to add support for new protocols. authentik is also a great solution for implementing signup/recovery/etc in your application, so you don't have to deal with it.

Installation

For small/test setups it is recommended to use docker-compose, see the documentation

For bigger setups, there is a Helm Chart here. This is documented here

Screenshots

Light	Dark

Development

See Development Documentation

Security

See SECURITY.md