17 Commits

Author	SHA1	Message	Date
Marc 'risson' Schmitt	2f70351c90	packages/client-go: init (#21139) ... * packages/client-go: init Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * format Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove mod/sum Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix translate Signed-off-by: Jens Langhammer <jens@goauthentik.io> * no go replace Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update rust makefile with pwd Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> * fix build Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't need a version ig? Signed-off-by: Jens Langhammer <jens@goauthentik.io> * exclude go client from cspell Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix main docker build Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>	2026-03-25 15:26:50 +01:00
Simonyi Gergő	f7e23295ed	core: add digraph group hierarchy (#17050) ... * move imports * core: add digraph group hierarchy * move to permissions from Group or User to Role * set group parents on frontend * do not serialize `GroupParentageNode` directly * core: enforce unique group name on database level Signed-off-by: Jens Langhammer <jens@goauthentik.io> * use group parents in LDAP provider * add user-role relationship control to frontend * move materialized view to be more discoverable * add guardian to mypy exceptions * make `Role` a `ManagedModel` * fixup! make `Role` a `ManagedModel` * simplify `get_objects_for_user` * fix flaky unit test * rename `django-guardian` fork to `ak-guardian` * add tests around users/groups/roles * remove unused guardian config variable * simplify guardian file structure * clean up frontend * initial docs * remove `mode` from `InitialPermissions` This is no longer needed, since users no longer directly have permissions. * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * clean up docs for managing permissions * addendums from docs review * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * tweaks * dewi and tana edits to docs * tweak * truly final tweaks, for now * relabel Role Permissions table * clarify button label * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy * merge migrations * fixup! Merge branch 'main' into core/add-digraph-group-hierarchy --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Tana M Berry <tana@goauthentik.io>	2025-12-08 12:04:04 +01:00
Daniel Adu-Gyan	ab1f87cfd6	core, providers/ldap: add parent/child groups to api and ldap results (#14974)	2025-08-04 14:29:16 +02:00
Marc 'risson' Schmitt	64ca5d42be	outposts/ldap: allow overriding gidNumber for a user (#8003) ... Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>	2023-12-28 14:21:08 +01:00
Jens Langhammer	51194cbf42	outposts/ldap: use backend group num_pk ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-03-22 23:54:50 +01:00
Jens Langhammer	62a939b91d	internal: bump api client to v3 ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2022-03-03 10:40:07 +01:00
Jens L	5a8c66d325	providers/ldap: memory Query (#1681) ... * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 10:37:30 +01:00
Ilya Kogan	9ed236f7ab	outposts/ldap: Support hard coded uidNumber and gidNumber. (#1582)	2021-10-10 23:43:36 +02:00
Jens Langhammer	c2f3ce11b0	outposts/ldap: fix potential panic when converting attributes ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-26 14:52:25 +02:00
Jens Langhammer	ebc06f1abe	outposts/ldap: fix logic error ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-22 13:19:50 +02:00
Jens Langhammer	1f97420207	outposts/ldap: allow custom attributes to shadow built-in attributes ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-21 21:59:39 +02:00
Jens Langhammer	294d70ae4d	outposts/ldap: move virtual groups to other OU for lookups, conditionally skip requests based on search filter ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 17:53:09 +02:00
Jens Langhammer	93de363c86	website/developer-docs: add notice for translation requirements ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-10 21:42:59 +02:00
Jens Langhammer	b3159a74e5	Merge branch 'master' into inbuilt-proxy ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # Dockerfile # internal/outpost/ak/api.go # internal/outpost/ak/api_uag.go # internal/outpost/ak/global.go # internal/outpost/ldap/api_tls.go # internal/outpost/ldap/instance_bind.go # internal/outpost/ldap/utils.go # internal/outpost/proxy/api_bundle.go # outpost/go.mod # outpost/go.sum # outpost/pkg/ak/cert.go	2021-07-17 12:49:38 +02:00
Jens Langhammer	3dc9e247d5	Merge branch 'master' into inbuilt-proxy ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # internal/constants/constants.go # outpost/pkg/version.go	2021-07-02 16:23:30 +02:00
Jens Langhammer	ff42663d3c	root: more code merging ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-29 16:21:00 +02:00
Jens Langhammer	690b7be1d8	root: initial merging of outpost and main project ... Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-16 12:02:02 +02:00