trustchain-oc1-orchestral/authentik
Archived
10
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.
authentik/authentik/api
History
Jens L 80f4fccd35
providers/oauth2: OpenID conformance (#4758) 
* don't open inspector by default when debug is enabled

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* encode error in fragment when using hybrid grant_type

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* require nonce for all response_types that get an id_token from the authorization endpoint

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* don't set empty family_name

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* only set at_hash when response has token

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* cleaner way to get login time

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove authentication requirement from authentication flow

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* use wrapper

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix auth_time not being handled correctly

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* minor cleanup

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add test files

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix tests

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove USER_LOGIN_AUTHENTICATED

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* rework prompt=login handling

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* also set last login uid for max_age check to prevent double login when max_age and prompt=login is set

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2023-02-23 15:26:41 +01:00
..
templates/api web: ensure img tags have alt attributes 2023-01-06 12:44:51 +01:00
tests providers/oauth2: OpenID conformance (#4758) 2023-02-23 15:26:41 +01:00
v3 providers/oauth2: rework OAuth2 Provider (#4652) 2023-02-09 20:19:48 +01:00
__init__.py wip: rename to authentik (#361) 2020-12-05 22:08:42 +01:00
apps.py api: fix missing scheme in securitySchemes 2022-10-29 18:50:34 +02:00
authentication.py providers/oauth2: rework OAuth2 Provider (#4652) 2023-02-09 20:19:48 +01:00
authorization.py api: add filter backend for secret key to allow access to tenants and certificates 2022-12-28 18:59:25 +01:00
decorators.py core: fix tokens not being viewable but superusers 2021-09-19 16:11:20 +02:00
pagination.py core: make filefields readonly 2021-05-16 17:34:55 +02:00
schema.py api: fix schema not referencing errors correctly 2022-09-11 23:01:26 +02:00
urls.py root: remove old api path 2022-01-06 22:21:21 +01:00
views.py *: linting pass, rename from swagger to schema 2021-05-16 15:22:57 +02:00