authentik

mirror of https://github.com/goauthentik/authentik synced 2026-05-12 18:06:21 +02:00

Author	SHA1	Message	Date
Jens L.	874a20b908	enterprise: Apple Platform SSO (#15318 ) * init Signed-off-by: Jens Langhammer <jens@goauthentik.io> * snap Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * it works Signed-off-by: Jens Langhammer <jens@goauthentik.io> * give session Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix session Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better endpoint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * attempt endpoint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * refactor into endpoints system Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start reworking Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make it work more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-add user data Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add jwks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add rest of the endpoints Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lookup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix device group selection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix incorrect device id Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix register Signed-off-by: Jens Langhammer <jens@goauthentik.io> * implement the thing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix issuer Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix fully Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add test for apple JWE Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add token tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make auth session duration configurable, merge migrations Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update api & ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix enterprise Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include platform sso in generated mdm config Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-12-01 00:28:09 +01:00
Jens L.	1fb71371cb	endpoints: AuthN and AuthZ (#18350 ) * start agent auth Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also check windows system disk (hardcode C: for now) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add process table Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include jwks Signed-off-by: Jens Langhammer <jens@goauthentik.io> * nonce Signed-off-by: Jens Langhammer <jens@goauthentik.io> * snap Signed-off-by: Jens Langhammer <jens@goauthentik.io> * missing exp and username (temp values) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing meta Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework auth and migrations Signed-off-by: Jens Langhammer <jens@goauthentik.io> * include system config in agent config Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix a bunch of broken stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add device to login event Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ssh Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start adding tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * policies Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove domain name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix leftover Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add device to flow context Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dont allow access without policies Signed-off-by: Jens Langhammer <jens@goauthentik.io> * some ui changes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-invent the wheel again Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start updating tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * t Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Revert "t" This reverts commit `b74db5f5d4`. * Revert "start updating tests" This reverts commit `b2524c00b2`. * Revert "re-invent the wheel again" This reverts commit `c7cdf4c018`. * fixup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-migrate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web build Signed-off-by: Jens Langhammer <jens@goauthentik.io> * f Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add device users and device groups Signed-off-by: Jens Langhammer <jens@goauthentik.io> * expand users Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-11-27 19:05:57 +01:00
Marc 'risson' Schmitt	9621082f06	: convert slugfields to textfields (#17411 ) : convert slugfields to textfields Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> update migrations Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2025-11-25 17:56:36 +00:00
Dominic R	b8dee0c0c3	web/sources: Add promoted source (#18334 ) * web/sources: Add promoted source * fix some css * fix test	2025-11-25 10:54:07 -05:00
Dominic R	c18f6d2f21	root: regen schema (#18327 )	2025-11-24 14:31:41 +01:00
Jens L.	e9c2e10828	endpoints: initial data structure + agent (#11499 ) * endpoints: initial data structure Signed-off-by: Jens Langhammer <jens@goauthentik.io> * some moving Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework models a bit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * small QOL Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more structure, early UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start agent connector Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix IDs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * init fleet Signed-off-by: Jens Langhammer <jens@goauthentik.io> * t Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more pages Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * stage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start challenge Signed-off-by: Jens Langhammer <jens@goauthentik.io> * t Signed-off-by: Jens Langhammer <jens@goauthentik.io> * I had an idea Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more stuf Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more frontend plumbing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * keep original gdtc for now Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move agent to non enterprise Signed-off-by: Jens Langhammer <jens@goauthentik.io> * small stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add last_update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework common facts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add processes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add last_update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * very basic UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add path Signed-off-by: Jens Langhammer <jens@goauthentik.io> * capacity in int64 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support for multiple versions of data Signed-off-by: Jens Langhammer <jens@goauthentik.io> * expiring snapshots Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better structure and query and fleet Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add more metrics Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more device data Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * correct task schedule Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ignore device snapshot Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix more things, agent connector form Signed-off-by: Jens Langhammer <jens@goauthentik.io> * connector edit Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some api stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix build Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add preview banner Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add percentage Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start agent view page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add enrollment token api Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start agent connector view page Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * small fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ephemeral devices Signed-off-by: Jens Langhammer <jens@goauthentik.io> * less hardcoded Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add refresh interval Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix fleet os family, os family label Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix some things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start writing tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rework auth to be more rest-framework like Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move enterprise parts to enterprise Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove chrome from this PR Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove fleet from this PR Signed-off-by: Jens Langhammer <jens@goauthentik.io> * optimise API to use cached facts on list Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename some things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use hostname Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-migrate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup unused things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove stage for now Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * save connector related to user binding of device Signed-off-by: Jens Langhammer <jens@goauthentik.io> * device attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add device group selector Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix expandable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix missing device group obj Signed-off-by: Jens Langhammer <jens@goauthentik.io> * purge through cache if we get a snapshot from a new connection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * dont log devicetoken Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make device deletable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * handle no facts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add device form Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix device group not assigned Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests for facts merging Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start setup, generate mdm config Signed-off-by: Jens Langhammer <jens@goauthentik.io> * connector -> controller to avoid duplicate names Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add full how to Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * enable search Signed-off-by: Jens Langhammer <jens@goauthentik.io> * more things Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support on type create page for above form text Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix enrollment token expiry (list and form) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add token copy Signed-off-by: Jens Langhammer <jens@goauthentik.io> * annotate mdm config correctly Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix config download Signed-off-by: Jens Langhammer <jens@goauthentik.io> * decent design Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove placeholders Signed-off-by: Jens Langhammer <jens@goauthentik.io> * pre-add fields for apple platform sso Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-11-20 22:31:30 +01:00
Marcelo Elizeche Landó	9802d4bcdd	core: Add example invitation blueprint (#17661 ) * Add flows-invitation-enrollment.yaml blueprint example, make serializer add default anonymous user in blueprint context * Add tests * fix linting * Update invitations docs * Use custom attributes instead of fixed_data * remove clutter * Reworks the invitations doc to new styling standards * Apply suggestions * fix field Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Add manual steps for invitation creation * add both options at the beginning * use serializer.context in InvitationViewSet.perform_create * Apply suggestions from code review Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Marcelo Elizeche Landó <marce@melizeche.com> * add description to bluprint * Apply suggestions from code review Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Marcelo Elizeche Landó <marce@melizeche.com> * tweaks to structure and formatting * Optimised images with calibre/image-actions * Update website/docs/users-sources/user/invitations.md Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Marcelo Elizeche Landó <marce@melizeche.com> * fix linting * imports Signed-off-by: Jens Langhammer <jens@goauthentik.io> * less branch Signed-off-by: Jens Langhammer <jens@goauthentik.io> * gen Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Marcelo Elizeche Landó <marce@melizeche.com> Co-authored-by: dewi-tik <dewi@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Dominic R <dominic@sdko.org> Co-authored-by: Tana M Berry <tana@goauthentik.io> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2025-11-06 20:29:04 +01:00
Marc 'risson' Schmitt	e593933bca	lib/sync/outgoing: store sync settings in database (#17630 )	2025-10-22 17:15:37 +02:00
authentik-automation[bot]	db213a8944	root: bump version to 2025.12.0-rc1 (#17603 ) Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2025-10-21 01:10:16 +02:00
Jens L.	2484f28bb6	sources/oauth: configurable PKCE mode (#17487 ) * sources/oauth: configurable PKCE mode Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * common function for pkce s256 Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-10-16 13:32:03 +02:00
Connor Peshek	48797c6d35	providers/saml: add frontchannel idp slo, backchannel post idp slo (#15863 ) * providers/saml: add frontchannel idp slo, backchannel post idp slo * move signal to user_logout stage * split logic for injection of stages into proper providers signals * cleanup data structures * scope stages Signed-off-by: Jens Langhammer <jens@goauthentik.io> * uuid pk Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format, again Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update tasks.py * Update pyproject.toml --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: connor peshek <connorpeshek@connors-MacBook-Pro.local> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2025-10-10 12:01:39 +00:00
Dominic R	87a0001a5d	blueprints: regenerate schema (#17365 ) * blueprints: regenerate schema * idk	2025-10-10 13:02:02 +02:00
Jens L.	bbf77002d5	api: Clean schema up more (#17055 ) * api: better filtering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * revamp prompt Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add common query param to dedupe Signed-off-by: Jens Langhammer <jens@goauthentik.io> * simplify paginated results Signed-off-by: Jens Langhammer <jens@goauthentik.io> * simplify error responses Signed-off-by: Jens Langhammer <jens@goauthentik.io> * keep error schemas Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better structure Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * ok simplifying too far Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix web Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove unused optimization Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-gen Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-10-08 22:35:10 +02:00
Marc 'risson' Schmitt	907ccd63a0	tasks: add preprocess, running and postprocess statuses (#17297 )	2025-10-07 14:19:03 +00:00
Alexander Tereshkin	eeb5cb08cd	sources: add Telegram source (#15749 ) * sources: add Telegram source (#2232) * sources/telegram: put telegram user info into policy context (#2232) * sources/telegram: replace regular input for bot token with a "secret" one (#2232) * sources/telegram: fix typo on Telegram source form * sources/telegram: added UserSourceConnection/GroupSourceConnection and SourceFlowManager subclasses for Telegram source * sources/telegram: improved code layout * sources/telegram: collapsed migrations * sources/telegram: fix lint errors * sources/telegram: fixed lint errors in docs * sources/telegram: fix app config * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * Update website/docs/users-sources/sources/social-logins/telegram/index.md Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> * sources/telegram: add user source settings UI so that the users can disconnect Telegram source from their account * sources/telegram: clean up code per @risson's suggestions * sources/telegram: improve docs based on @tanberry's suggestions * sources/telegram: fix minor docs formatting issue * sources/teleram: add tests for views * sources/telegram: update serielizer field types references to be in line with convention * sources/telegram: add missing type annotations * sources/telegram: add check for source.enabled in the redirect view * sources/telegram: add pre-authentication flow to telegram source * sources: add Telegram source (#2232) * sources/telegram: added UserSourceConnection/GroupSourceConnection and SourceFlowManager subclasses for Telegram source * sources/telegram: collapsed migrations * sources/telegram: fix lint errors * sources/telegram: clean up code per @risson's suggestions * sources/teregram: fix merge errors * sources/telegram: improve docs wording * Standardized documentation * sources/telegram: added telegram source package to the list of ignored modules for mypy * sources/telegram: fix TS lint errors * sources/telegram: improve test coverage * web: bump @types/node from 22.15.19 to 24.5.2 in /web (#16989) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.15.19 to 24.5.2. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-version: 24.5.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: dewi-tik <dewi@goauthentik.io> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-10-01 17:03:38 +02:00
Jens L.	1028c962c7	providers/oauth2: only issue new refresh token if old one is about to expire (#16905 ) * providers/oauth2: only issue new refresh token if old one is about to expire Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make configurable Signed-off-by: Jens Langhammer <jens@goauthentik.io> * tests and fixes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sigh Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-09-27 00:18:14 +02:00
Connor Peshek	87a28d63ed	sources/saml: add location selection for Signature node (#15626 ) * sources/saml: add location selection for Signature node --------- Signed-off-by: Connor Peshek <connor@connorpeshek.me> Co-authored-by: connor <connor@connors-MacBook-Pro.local> Co-authored-by: Dominic R <dominic@sdko.org> Co-authored-by: connor peshek <connorpeshek@connors-MacBook-Pro.local> Co-authored-by: Katsushi Kobayashi < ikob@acm.org>	2025-09-26 11:07:51 -05:00
Jens L.	53308295a2	providers/scim: add salesforce support (#16976 ) * providers/scim: add salesforce support Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix lint Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-09-25 14:36:23 +02:00
Jared Harrison	44c01f88c4	blueprints: fix typo in sources-google-ldap-mappings (#16955 )	2025-09-24 00:29:03 +02:00
Jens L.	1f81d234cb	enterprise/providers/radius: add EAP-TLS support (#15702 ) * implement with library (backend) Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add outpost Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add basic docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add enterprise notice to certificate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * clearer enterprise stuff Signed-off-by: Jens Langhammer <jens@goauthentik.io> * idk Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-09-23 23:54:09 +02:00
Jens L.	2e56082066	enterprise/providers/scim: Add SCIM OAuth support (#16903 ) * sources/oauth: add expires field to user source connection Signed-off-by: Jens Langhammer <jens@goauthentik.io> * providers/scim: add support for other auth methods Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rest of the owl Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow specifying any params Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * delete user when token Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests and fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * sigh Signed-off-by: Jens Langhammer <jens@goauthentik.io> * gen Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better API validation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix sentry Signed-off-by: Jens Langhammer <jens@goauthentik.io> * one more test and fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-09-23 17:52:02 +02:00
Connor Peshek	1636707dcd	blueprints: exclude exporting UserConsent (#16640 ) The blueprint exporter would error when attempting to export a blueprint containing UserConsent. UserConsent no longer exports when exporting a blueprint	2025-09-19 11:15:45 -05:00
Connor Peshek	d94f743124	stages: update friendly_name model from null to blank (#16672 ) authentik/stages: update friendly_name model from null to blank	2025-09-16 12:06:42 -05:00
Jonas Bernard	cca57718ca	blueprints: fix email address verified by default (#16206 )	2025-09-03 14:20:14 +00:00
Dominic R	359fa5d5df	*: Fix dead doc link (#16288 )	2025-08-21 14:09:20 +02:00
Marcelo Elizeche Landó	17ff12f68f	core: Add email template selector (#16170 ) * Unify all email templates under stages.email.models.EmailTemplates * Add template selector to Email Authenticator Stage * fix tests * Add email_template field to events.notificationtransport * update schemas * Make email_template default as None, add UI to notif transports * Add showEmail and fix default selection in TransportForm * fix required field for emailtemplate and webhookurl in TransportForm * use switch because typescript is whinning * Add email_subject_prefix to NotificationTransport * Add tests, update migration * remove duplicate API Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rename template name Signed-off-by: Jens Langhammer <jens@goauthentik.io> * move send_once up Signed-off-by: Jens Langhammer <jens@goauthentik.io> * better defaults Signed-off-by: Jens Langhammer <jens@goauthentik.io> * no null Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update test for email templates endpoint * fix test url Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2025-08-15 11:44:18 +01:00
authentik-automation[bot]	130fe4cac7	root: bump version to 2025.10.0-rc1 (#16149 ) Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>	2025-08-12 21:17:14 +00:00
Marc 'risson' Schmitt	a4c7e7ba2e	root: bump version to 2025.8.0-rc1 (#16135 )	2025-08-12 15:24:23 +00:00
Jens L.	e771bb74ee	policies: buffered policy access view for concurrent authorization attempts when unauthenticated (#15034 ) Co-authored-by: Marcelo Elizeche Landó <marcelo@goauthentik.io> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2025-08-10 16:22:05 +00:00
dechen-authentik	cfe113b36a	stages/email: implement rate limiting for account verification (#15531 ) Co-authored-by: Marcelo Elizeche Landó <marcelo@goauthentik.io>	2025-08-06 16:44:35 +02:00
Marcelo Elizeche Landó	30670bb547	providers/oauth2: backchannel logout (#15401 ) Co-authored-by: Dewi Roberts <dewi@goauthentik.io> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2025-08-05 14:16:02 +02:00
Daniel Adu-Gyan	ab1f87cfd6	core, providers/ldap: add parent/child groups to api and ldap results (#14974 )	2025-08-04 14:29:16 +02:00
Jens L.	8b1240ff0b	providers/saml: configuration for default NameID Policy (#15109 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-08-03 18:24:12 +01:00
Marc 'risson' Schmitt	29f20a4829	*: replace Celery with Dramatiq (#13492 )	2025-07-28 17:00:09 +02:00
Jens L.	6d68844270	root: backport release 2025.6.4 (#15723 ) release: 2025.6.4	2025-07-22 15:38:16 +02:00
Jens L.	6c939341b0	sources/oauth: add entra ID source and move logic over (#15538 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-07-14 15:44:07 +02:00
Jens L.	d0127d83c9	stages/user_login: unknown device (#14459 ) * unrelated: add tests for session binding Signed-off-by: Jens Langhammer <jens@goauthentik.io> * initial implementation Signed-off-by: Jens Langhammer <jens@goauthentik.io> * also check currently authenticated sessions Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow other stages to set known_device, and if set don't override it Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add options Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-07-04 21:12:09 +02:00
Jens L.	8c3397e5f2	enterprise/search: fix schema once again (#15392 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-07-04 11:48:25 +02:00
Jens L.	e87bc94b95	release: backport 2025.6.3 (#15292 ) release: 2025.6.3	2025-06-27 16:21:18 +02:00
Jens L.	ff966d763b	providers/oauth2: add conformance tools (#15228 ) add conformance tools Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-06-25 00:43:15 +02:00
Jens L.	53d8f9bd8c	stages/authenticator_webauthn: add option to configure max attempts (#15041 ) * house keeping - migrate to session part 1 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * cleanup v2 Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add max_attempts Signed-off-by: Jens Langhammer <jens@goauthentik.io> * teeny tiny cleanup Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add ui Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-06-23 01:49:07 +02:00
Jens L.	36c9929e1f	events: add option to send notifications to event user (#15083 ) * events: add option to send notifications to event user Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-06-18 13:39:56 +02:00
Jens L.	f025d0d1d5	enterprise/search: ability to use more precise search queries (#7698 ) * api: use DjangoQL for searches Signed-off-by: Jens Langhammer <jens@goauthentik.io> * expand search input and use textarea for multiline Signed-off-by: Jens Langhammer <jens@goauthentik.io> * start implementing autocomplete Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only use ql for events Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make QL search opt in Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make pretend json relation work Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix schema Signed-off-by: Jens Langhammer <jens@goauthentik.io> * test Signed-off-by: Jens Langhammer <jens@goauthentik.io> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make autocomplete l1 work Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use forked js lib with types, separate QL Signed-off-by: Jens Langhammer <jens@goauthentik.io> * first attempt at making it fit our UI Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make dark theme somewhat work, fix search Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make more parts work Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make auto complete box be under cursor Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: ripplefcl <github@ripple.contact> * remove django autocomplete for now Signed-off-by: Jens Langhammer <jens@goauthentik.io> * re-add event filtering Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix search when no ql is enabled Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make meta+enter submit, fix colour Signed-off-by: Jens Langhammer <jens@goauthentik.io> * make dark theme Signed-off-by: Jens Langhammer <jens@goauthentik.io> * formatting Signed-off-by: Jens Langhammer <jens@goauthentik.io> * enterprise Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * Update authentik/enterprise/search/apps.py Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens L. <jens@beryju.org> * add json element autocomplete Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Co-authored-by: ripplefcl <github@ripple.contact> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix query Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix search reset Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix dark theme Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Signed-off-by: Jens L. <jens@beryju.org> Co-authored-by: ripplefcl <github@ripple.contact> Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2025-06-18 12:23:00 +02:00
Simonyi Gergő	da6d4ede51	root: backport version bump `2025.6.2` (#15078 ) release: 2025.6.2	2025-06-17 00:21:39 +02:00
Jens L.	260800c60b	blueprints: add section support for organisation (#15045 ) Signed-off-by: Jens Langhammer <jens@goauthentik.io>	2025-06-15 20:49:21 +02:00
Marc 'risson' Schmitt	7aa6593760	blueprints: sort schema items (#15022 )	2025-06-13 13:34:49 +00:00
Jens L.	c60a145f95	root: backport 2025.6.1 bump (#14970 ) release: 2025.6.1 Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2025-06-09 04:15:33 +02:00
Simonyi Gergő	7a8c2e7ad9	root: backport version bump `2025.6.0` (#14904 ) * release: 2025.6.0-rc1 * release: 2025.6.0	2025-06-04 18:28:52 +02:00
Simonyi Gergő	59e686c8b9	sources/ldap: add `user_membership_attribute` (#14784 )	2025-05-30 18:34:13 +02:00
Simonyi Gergő	c4bb19051d	sources/ldap: add forward deletion option (#14718 ) * sources/ldap: add forward deletion option * remove unnecessary `blank=True` * clarify `validated_by` `help_text` * add indices to `validated_by` * factor out `get_identifier` everywhere and `get_attributes` I don't know what that additional `in` check is for, but I'm not about to find out. * add tests for known good user and group * fixup! add tests for known good user and group * fixup! add tests for known good user and group	2025-05-28 13:22:59 +02:00

1 2 3 4 5 ...

255 Commits