dependabot[bot]
00258cfbcc
web: bump globals from 17.2.0 to 17.3.0 in /web ( #19928 )
...
Bumps [globals](https://github.com/sindresorhus/globals ) from 17.2.0 to 17.3.0.
- [Release notes](https://github.com/sindresorhus/globals/releases )
- [Commits](https://github.com/sindresorhus/globals/compare/v17.2.0...v17.3.0 )
---
updated-dependencies:
- dependency-name: globals
dependency-version: 17.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:23:19 +01:00
dependabot[bot]
131c746028
ci: bump astral-sh/setup-uv from 7.2.0 to 7.2.1 in /.github/actions/setup ( #19929 )
...
ci: bump astral-sh/setup-uv in /.github/actions/setup
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv ) from 7.2.0 to 7.2.1.
- [Release notes](https://github.com/astral-sh/setup-uv/releases )
- [Commits](61cb8a9741...803947b9bdsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:22:14 +01:00
Teffen Ellis
3812823c07
website/docs: Color Palette Test Page ( #19879 )
...
* Flesh out.
* Flesh out.
* Remove outdated version.
2026-02-01 22:03:55 +01:00
Jens L.
71d4ac864e
ci: fix cherry-pick assignee ( #19905 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-02-01 16:29:27 +01:00
dependabot[bot]
4491dad215
core: bump protobuf from 6.33.4 to 6.33.5 ( #19886 )
...
Bumps [protobuf](https://github.com/protocolbuffers/protobuf ) from 6.33.4 to 6.33.5.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases )
- [Commits](https://github.com/protocolbuffers/protobuf/commits )
---
updated-dependencies:
- dependency-name: protobuf
dependency-version: 6.33.5
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-01 16:01:21 +01:00
authentik-automation[bot]
a82b443176
stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs ( #19897 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-02-01 16:00:49 +01:00
Mmx233
54fad67e11
web: fix Brand CSS not applied to nested Shadow DOM components ( #19892 )
...
* web: fix Brand CSS not applied to nested Shadow DOM components
After PR #17444 , Brand CSS was only applied when ThemeChangeEvent fired.
Components created after the initial event never received the custom styles.
This fix immediately applies Brand CSS when a style root is set, ensuring
all nested Shadow DOM components (like flow stages) receive brand styling
regardless of when they are created.
* Update web/src/elements/Base.ts
Signed-off-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
* Clarify.
---------
Signed-off-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
2026-02-01 07:51:34 +01:00
Teffen Ellis
469bc0b6b4
website/docs: Remove stale 2024 version directives ( #19888 )
...
Remove outdated version.
2026-02-01 04:57:16 +01:00
Teffen Ellis
64b08f77a8
website: QL Search keyboard interactions docs, examples. ( #16259 )
...
* website: Flesh out keyboard interactions docs, examples.
* Update doc
* Fix links and apply suggestions
---------
Co-authored-by: dewi-tik <dewi@goauthentik.io >
2026-01-30 16:49:23 +00:00
Dewi Roberts
e12f4360a7
website/integrations: immich: add signing algorithm ( #19187 )
...
* Adds signing algorithm
* Fixed name
* Update to comment
* Update index.md
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
2026-01-30 16:24:29 +00:00
Dewi Roberts
4259012548
website/docs: endpoint devices: add version command ( #19767 )
...
* Add version command
* Add version command to install docs
2026-01-30 16:09:12 +00:00
Jens L.
e90c249274
common: introduce common ( #19852 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-01-30 16:27:41 +01:00
dependabot[bot]
25c7e6ed33
web: bump @sentry/browser from 10.37.0 to 10.38.0 in /web in the sentry group across 1 directory ( #19871 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.37.0 to 10.38.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.37.0...10.38.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.38.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:26:55 +01:00
dependabot[bot]
f62d6aef16
core: bump debugpy from 1.8.19 to 1.8.20 ( #19872 )
...
Bumps [debugpy](https://github.com/microsoft/debugpy ) from 1.8.19 to 1.8.20.
- [Release notes](https://github.com/microsoft/debugpy/releases )
- [Commits](https://github.com/microsoft/debugpy/compare/v1.8.19...v1.8.20 )
---
updated-dependencies:
- dependency-name: debugpy
dependency-version: 1.8.20
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:26:23 +01:00
dependabot[bot]
1f6c479169
ci: bump actions/cache from 5.0.2 to 5.0.3 ( #19873 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](8b402f58fb...cdf6c1fa76support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:25:17 +01:00
dependabot[bot]
ca4cc3d985
web: bump chromedriver from 144.0.1 to 145.0.0 in /web ( #19874 )
...
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 144.0.1 to 145.0.0.
- [Commits](https://github.com/giggio/node-chromedriver/compare/144.0.1...145.0.0 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 145.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:22:59 +01:00
Teffen Ellis
388f4262b5
web: Captcha Refinements, Part 2 ( #19757 )
...
* Move inline styles into separate file.
* Fix preferred order of captcha vendor discovery.
* Clean up mutation and resize observer lifecycle.
* Flesh out controllers.
* Tidy refresh.
* Fix incompatibilities with Storybook.
* Flesh out captcha stories.
* Bump package.
* Flesh out stories.
* Move inline styles into separate file.
* Fix preferred order of captcha vendor discovery.
* Clean up mutation and resize observer lifecycle.
* Flesh out controllers.
* Tidy refresh.
* Remove unused.
* Bump package.
2026-01-30 16:18:24 +01:00
Marcelo Elizeche Landó
da95a6b1e5
root: assign cherry-pick PRs to original author ( #19858 )
...
assign cherry-pick PRs to original author
2026-01-30 11:40:15 -03:00
Teffen Ellis
e56ab5aa9e
web: Lit Development Mode, performance fixes. ( #19825 )
2026-01-30 01:56:10 +01:00
Teffen Ellis
299dde1915
web: Fix development theme overrides ( #19826 )
...
web: Fix development theme overrides.
2026-01-30 01:52:22 +01:00
Dominic R
f268858d33
website/docs: add tip for recovering from accidental main branch work ( #19865 )
...
Overview:
Add a tip to the contributing guide explaining how to recover if you accidentally started making changes on `main` instead of a feature branch.
Testing:
n/a
Motivation:
Closes: https://github.com/goauthentik/authentik/issues/18740
2026-01-29 21:49:04 +00:00
authentik-automation[bot]
fc8a67c1a1
web: bump API Client version ( #19857 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-29 18:51:56 +00:00
Simonyi Gergő
1b9653901c
rbac: clean up roles and permissions ( #19588 )
...
* clean up roles and permissions
This was purposefully not included in `2025.12` to split the changes up.
The main content of this patch is in the migrations. Everything else
follows more or less automatically.
* add breaking change warning to release notes
* add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* add configuration warning to default notifications blueprint
* add rudimentary tests for User.ak_groups
* remove no longer used permissions
* clarify deprecation
Co-authored-by: Jens L. <jens@goauthentik.io >
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
* remove integration changes
These will be included in a separate PR once this is released.
---------
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
Co-authored-by: Jens L. <jens@goauthentik.io >
2026-01-29 19:12:38 +01:00
authentik-automation[bot]
387a3ef08d
web: bump API Client version ( #19851 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-29 16:55:57 +00:00
Dewi Roberts
95d2c213e1
website/docs: add more info to entra id scim doc ( #19849 )
...
* Add info
* Spelling
2026-01-29 16:51:37 +00:00
Anduin Xue
e01d7f20b3
sources/oauth: Fix an issue where wechat may crash duing login. ( #18973 )
...
* Fix an issue where wechat may crash duing login.
The WeChatOAuth2Client.get_access_token method was defined with a signature that required redirect_uri and code arguments, but the generic OAuth callback handler calls this method without any arguments (expecting the client to retrieve them from the request context).
I have fixed
authentik/sources/oauth/types/wechat.py
by:
Updating
get_access_token
signature: It now accepts **request_kwargs instead of mandatory positional arguments, matching the base
OAuth2Client
.
Retrieving code correctly: It now looks for code in the request parameters using self.get_request_arg, just like standard OAuth clients.
Adding State Validation: I added self.check_application_state() to ensure the
state
parameter matches, preventing CSRF attacks.
Improving Error Handling: Both
get_access_token
and
get_profile_info
now return None (or error dicts) instead of raising exceptions when API calls fail. This prevents the "Server Error" (500) crashes you were seeing and allows Authentik to handle login failures gracefully.
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Update wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Update wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Remove unnecessary blank lines in wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Fix linting issues in wechat.py
---------
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-01-29 16:48:19 +00:00
Jens L.
9570de276e
providers/scim: fix email validation mismatch ( #19848 )
...
* providers/scim: fix email validation mismatch
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix wrong type of email
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-01-29 17:24:43 +01:00
Immanuel von Neumann
6ca26b501b
providers/scim: modify user- and group syncing behavior ( #13947 )
...
* providers/scim: modify user- and group syncing behavior
rename filtergroup to groupfilters and allow multiple values
only sync groups which are in the scimprovider's attribute \"group_filters\"
only sync users which are entitled to view the scimprovider's application
* Update authentik/providers/scim/api/providers.py
Signed-off-by: Immanuel von Neumann <45020096+ImmanuelVonNeumann@users.noreply.github.com >
* fix(authentik/scim): update schema.yml and test name
* merge migrations
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* providers/scim: fix linting
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* filter eagerly
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Immanuel von Neumann <45020096+ImmanuelVonNeumann@users.noreply.github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-01-29 17:07:58 +01:00
Pavel Pavel
fd209eeff9
providers/scim: import SCIM groups ( #19846 )
...
Add import for SCIM groups
Co-authored-by: Pavel Sinkevych <pavelsinkevych@gmail.com >
2026-01-29 15:10:23 +01:00
dependabot[bot]
1d2babb31a
lifecycle/aws: bump aws-cdk from 2.1103.0 to 2.1104.0 in /lifecycle/aws ( #19830 )
...
Bumps [aws-cdk](https://github.com/aws/aws-cdk-cli/tree/HEAD/packages/aws-cdk ) from 2.1103.0 to 2.1104.0.
- [Release notes](https://github.com/aws/aws-cdk-cli/releases )
- [Commits](https://github.com/aws/aws-cdk-cli/commits/aws-cdk@v2.1104.0/packages/aws-cdk )
---
updated-dependencies:
- dependency-name: aws-cdk
dependency-version: 2.1104.0
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:23:02 +01:00
dependabot[bot]
cedc45087e
core: bump github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1 ( #19829 )
...
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt ) from 5.3.0 to 5.3.1.
- [Release notes](https://github.com/golang-jwt/jwt/releases )
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1 )
---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
dependency-version: 5.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:16:27 +01:00
authentik-automation[bot]
ccd1709980
core, web: update translations ( #19824 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-29 13:16:10 +01:00
dependabot[bot]
f5de9eb6c2
core: bump goauthentik/selenium from 144.0-ak-0.35.8 to 144.0-ak-0.35.9 in /tests/e2e ( #19832 )
...
core: bump goauthentik/selenium in /tests/e2e
Bumps [goauthentik/selenium](https://github.com/SeleniumHQ/docker-selenium ) from 144.0-ak-0.35.8 to 144.0-ak-0.35.9.
- [Release notes](https://github.com/SeleniumHQ/docker-selenium/releases )
- [Commits](https://github.com/SeleniumHQ/docker-selenium/commits )
---
updated-dependencies:
- dependency-name: goauthentik/selenium
dependency-version: 144.0-ak-0.35.9
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:12:55 +01:00
dependabot[bot]
270c10bd75
core: bump pyrad from 2.4 to 2.5.2 ( #19831 )
...
Bumps [pyrad](https://github.com/pyradius/pyrad ) from 2.4 to 2.5.2.
- [Release notes](https://github.com/pyradius/pyrad/releases )
- [Changelog](https://github.com/pyradius/pyrad/blob/master/CHANGES.rst )
- [Commits](https://github.com/pyradius/pyrad/compare/2.4...2.5.2 )
---
updated-dependencies:
- dependency-name: pyrad
dependency-version: 2.5.2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:06:52 +01:00
dependabot[bot]
cf354b6897
ci: bump docker/login-action from 3.6.0 to 3.7.0 ( #19835 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](5e57cd1181...c94ce9fb46support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:05:51 +01:00
dependabot[bot]
712c2006d6
core: bump sentry-sdk from 2.50.0 to 2.51.0 ( #19833 )
...
Bumps [sentry-sdk](https://github.com/getsentry/sentry-python ) from 2.50.0 to 2.51.0.
- [Release notes](https://github.com/getsentry/sentry-python/releases )
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-python/compare/2.50.0...2.51.0 )
---
updated-dependencies:
- dependency-name: sentry-sdk
dependency-version: 2.51.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 13:03:50 +01:00
dependabot[bot]
53abe5bc3e
web: bump @goauthentik/api from 2026.2.0-rc1-1769523342 to 2026.2.0-rc1-1769650973 in /web in the goauthentik group across 1 directory ( #19834 )
...
web: bump @goauthentik/api
Bumps the goauthentik group with 1 update in the /web directory: [@goauthentik/api](https://github.com/goauthentik/authentik ).
Updates `@goauthentik/api` from 2026.2.0-rc1-1769523342 to 2026.2.0-rc1-1769650973
- [Release notes](https://github.com/goauthentik/authentik/releases )
- [Commits](https://github.com/goauthentik/authentik/commits )
---
updated-dependencies:
- dependency-name: "@goauthentik/api"
dependency-version: 2026.2.0-rc1-1769650973
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: goauthentik
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 07:45:17 +01:00
dependabot[bot]
601edb2933
web: bump country-flag-icons from 1.6.9 to 1.6.12 in /web ( #19836 )
...
Bumps [country-flag-icons](https://gitlab.com/catamphetamine/country-flag-icons ) from 1.6.9 to 1.6.12.
- [Changelog](https://gitlab.com/catamphetamine/country-flag-icons/blob/master/CHANGELOG.md )
- [Commits](https://gitlab.com/catamphetamine/country-flag-icons/compare/v1.6.9...v1.6.12 )
---
updated-dependencies:
- dependency-name: country-flag-icons
dependency-version: 1.6.12
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 07:44:47 +01:00
dependabot[bot]
a7c8765eac
web: bump chromedriver from 144.0.0 to 144.0.1 in /web ( #19837 )
...
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 144.0.0 to 144.0.1.
- [Commits](https://github.com/giggio/node-chromedriver/compare/144.0.0...144.0.1 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 144.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 07:44:22 +01:00
dependabot[bot]
f193aaac6d
web: bump @types/node from 25.0.10 to 25.1.0 in /web ( #19838 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 25.0.10 to 25.1.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-version: 25.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-29 07:44:03 +01:00
Dominic R
5834f43a8b
web: display custom attributes on admin view pages ( #19720 )
...
* web: display custom attributes on admin view pages
Overview:
Add a reusable ak-object-attributes-card component that displays custom attributes on User, Group, and Device admin view pages.
This allows admins to see custom attributes directly on the overview tab without needing to open the edit form.
The component:
- Filters out system attributes (goauthentik.io/* prefixed keys)
- Optionally excludes the notes attribute
- Renders values based on type: booleans as status labels, arrays as comma-separated lists, objects as formatted JSON
Testing:
1. Navigate to Admin > Identity > Users > [any user]
2. Verify "Custom Attributes" card appears below Changelog
3. Add custom attributes via Edit form:
```
{
"department": "Engineering",
"employee_id": 12345,
"is_contractor": false,
"is_manager": true,
"skills": ["Python", "TypeScript", "Go"],
"office_location": {
"building": "HQ",
"floor": 3,
"desk": "A-42"
},
"notes": "This should NOT appear in Custom Attributes card",
"goauthentik.io/user/sources": ["should-be-filtered"]
}
```
4. Confirm they appear in the card, system attributes are hidden
5. Repeat for Groups and Devices
Screenshot:
<!-- todo -->
Motivation:
Admins frequently need to view custom attributes on users, groups, and devices. Currently this requires clicking Edit and scrolling to the attributes field.
Closes: https://github.com/goauthentik/authentik/issues/18625
* web: Ken's suggestion
2026-01-29 01:42:43 +00:00
Marcelo Elizeche Landó
66342972ef
core: add CC and BCC support to ak_send_email and TemplateEmailMessage ( #19633 )
...
* Add cc and bcc options to TemplateEmailMessage
* Add cc and bcc arguments to ak_send_email
* Add tests and update docs
* better flow
* fix anchor link
2026-01-28 18:28:30 -03:00
Jens L.
dcb35b1a23
web/admin: fix toggle-group for bindings now showing up ( #19820 )
...
* web/admin: fix toggle-group for bindings now showing up
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually dont use object.values
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* actually even cleaner
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-01-28 19:09:35 +01:00
Teffen Ellis
6d18f91a6c
web: Session UI Config Lifecycle ( #19788 )
2026-01-28 18:52:39 +01:00
Jens L.
d1fb7dde14
enterprise/providers: WS-Federation ( #19583 )
...
* init
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix metadata
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* aight
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* progress
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix timedelta
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* start testing metadata
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add some more tests and schemas
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* test signature
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* attempt to fix signed xml linebreak
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/issues/1258
https://github.com/robrichards/xmlseclibs/issues/28
https://github.com/xmlsec/python-xmlsec/issues/196
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* format + gen
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* update web
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* more validation
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* hmm
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add e2e test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* qol fix in wait_for_url
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add UI
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* acs -> reply url
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* sign_out
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix some XML typing
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* remove verification_kp as its not used
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix reply url
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add ws-fed to tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add logout test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add SAMLSession
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* refactor
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* unrelated type fixes
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add backchannel logout
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* delete import_metadata in wsfed
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include generated realm
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Update web/src/admin/providers/wsfed/WSFederationProviderViewPage.ts
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
Signed-off-by: Jens L. <jens@beryju.org >
* include wtrealm in ui
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
2026-01-28 17:43:16 +01:00
dependabot[bot]
586ccf3aa3
web: bump @floating-ui/dom from 1.7.4 to 1.7.5 in /web ( #19812 )
...
Bumps [@floating-ui/dom](https://github.com/floating-ui/floating-ui/tree/HEAD/packages/dom ) from 1.7.4 to 1.7.5.
- [Release notes](https://github.com/floating-ui/floating-ui/releases )
- [Changelog](https://github.com/floating-ui/floating-ui/blob/master/packages/dom/CHANGELOG.md )
- [Commits](https://github.com/floating-ui/floating-ui/commits/HEAD/packages/dom )
---
updated-dependencies:
- dependency-name: "@floating-ui/dom"
dependency-version: 1.7.5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-28 17:16:32 +01:00
dependabot[bot]
6df3db0d20
web: bump @sentry/browser from 10.36.0 to 10.37.0 in /web in the sentry group across 1 directory ( #19802 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.36.0 to 10.37.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.36.0...10.37.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.37.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-28 17:12:55 +01:00
authentik-automation[bot]
b10fe9c18a
core, web: update translations ( #19799 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-28 14:50:54 +01:00
dependabot[bot]
80f2f83806
core: bump github.com/getsentry/sentry-go from 0.41.0 to 0.42.0 ( #19800 )
...
Bumps [github.com/getsentry/sentry-go](https://github.com/getsentry/sentry-go ) from 0.41.0 to 0.42.0.
- [Release notes](https://github.com/getsentry/sentry-go/releases )
- [Changelog](https://github.com/getsentry/sentry-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-go/compare/v0.41.0...v0.42.0 )
---
updated-dependencies:
- dependency-name: github.com/getsentry/sentry-go
dependency-version: 0.42.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-28 14:45:38 +01:00
dependabot[bot]
be63b121de
core: bump cryptography from 46.0.3 to 46.0.4 ( #19801 )
...
Bumps [cryptography](https://github.com/pyca/cryptography ) from 46.0.3 to 46.0.4.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/46.0.3...46.0.4 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 46.0.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-28 14:45:34 +01:00
