Marcelo Elizeche Landó
aaad609a2f
docs/release notes: Add changes in 2025.12.2 and 2025.12.3 to the release notes ( #19949 )
...
Add changes in 2025.12.2 and 2025.12.3 to the release notes
2026-02-02 18:51:26 +00:00
Teffen Ellis
df1383b81b
website/docs: Add NODE_ENV: production to workflow. ( #19889 )
2026-02-02 17:08:03 +00:00
Jens L.
fa8b3d5b1f
web/admin: fix default binding order ( #19943 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-02-02 17:30:04 +01:00
Marc 'risson' Schmitt
fa61a969a9
ci: fix test_docker.sh ( #19944 )
2026-02-02 16:16:05 +00:00
Sergey Popov
85ceaa6c74
lib: Add ssh/sftp schemas in to DomainlessFormattedURLValidator ( #19881 )
...
Add ssh/sftp schemas in application URL
Signed-off-by: Sergey Popov <37712288+PopovSergeyS@users.noreply.github.com >
2026-02-02 16:49:55 +01:00
Dominic R
12ebd3b574
core: fix non-expiring service accounts and app passwords ( #19913 )
...
core: fix datetime (de)?serialization
We aim to fix
https://github.com/goauthentik/authentik/issues/19911 in the next patch
release, so this commit shouldn't include an API change, which is why we
do it a bit awkwardly. Additionally, `serializeForm` has no typechecking
for its return value (`return json as unknown as T`), and should be
refactored for type safety if at all possible.
There are at least two bugs we're solving in this commit:
1. Type checking fails on `serializeForm`, which results in
`expires: null` POSTed in a `UserServiceAccountRequest`, where it is not
allowed. The backend "correctly" returns a 400. For now we address this
by returning `undefined` from `serializeForm` on a `datetime-local`
input element when it is unset.
2. The schema allows for `expires: null` in `TokenModel`, but fails with
a 500 when that is actually sent. For now we address this with a `None`
check. (Note: this bug will not be encountered by the frontend after the
change from `null` to `undefined`, but it's still nice to fix.)
Both of these issues should eventually be solved by the backend handling
`ExpiringModel` in an `ExpiringModelSerializer` instead of the current
ad hoc way.
Introduced by https://github.com/goauthentik/authentik/pull/19561
Co-authored-by: Simonyi Gergő <gergo@goauthentik.io >
2026-02-02 09:59:29 -05:00
Marc 'risson' Schmitt
7d473d7622
lifecycle/ak: make sure /data has the correct permissions ( #19935 )
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-02-02 14:25:58 +00:00
Marc 'risson' Schmitt
a7fb30a389
lifecycle/aws: add /data volume ( #19936 )
2026-02-02 15:15:12 +01:00
Dominic R
20f5875784
website/docs: Update location of media storage and outdated references ( #19885 )
...
* website/docs: Update location of media storage and outdated references
* lint
* Add content-type header info
* Apply suggestion from @dominic-r
Signed-off-by: Dominic R <dominic@sdko.org >
---------
Signed-off-by: Dominic R <dominic@sdko.org >
Co-authored-by: dewi-tik <dewi@goauthentik.io >
2026-02-02 14:02:37 +00:00
dependabot[bot]
db638736d0
web: bump @types/node from 25.1.0 to 25.2.0 in /web ( #19923 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 25.1.0 to 25.2.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-version: 25.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 14:11:49 +01:00
dependabot[bot]
174edff901
web: bump @playwright/test from 1.58.0 to 1.58.1 in /web ( #19926 )
...
Bumps [@playwright/test](https://github.com/microsoft/playwright ) from 1.58.0 to 1.58.1.
- [Release notes](https://github.com/microsoft/playwright/releases )
- [Commits](https://github.com/microsoft/playwright/compare/v1.58.0...v1.58.1 )
---
updated-dependencies:
- dependency-name: "@playwright/test"
dependency-version: 1.58.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 14:11:36 +01:00
dependabot[bot]
2516f03141
web: bump the rollup group across 1 directory with 4 updates ( #19922 )
...
Bumps the rollup group with 4 updates in the /web directory: [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup ), [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup ), [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup ) and [rollup](https://github.com/rollup/rollup ).
Updates `@rollup/rollup-darwin-arm64` from 4.57.0 to 4.57.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.57.0...v4.57.1 )
Updates `@rollup/rollup-linux-arm64-gnu` from 4.57.0 to 4.57.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.57.0...v4.57.1 )
Updates `@rollup/rollup-linux-x64-gnu` from 4.57.0 to 4.57.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.57.0...v4.57.1 )
Updates `rollup` from 4.57.0 to 4.57.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.57.0...v4.57.1 )
---
updated-dependencies:
- dependency-name: "@rollup/rollup-darwin-arm64"
dependency-version: 4.57.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
- dependency-name: "@rollup/rollup-linux-arm64-gnu"
dependency-version: 4.57.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
- dependency-name: "@rollup/rollup-linux-x64-gnu"
dependency-version: 4.57.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
- dependency-name: rollup
dependency-version: 4.57.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 14:11:22 +01:00
Jens L.
de1c59b402
ci: always generate API clients ( #19906 )
...
* ci: always generate API clients
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix missing respective actions
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix flaky test
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* mount generated client
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-02-02 13:38:21 +01:00
Jens L.
7ef7535316
providers/scim: add configuration warning for migration ( #19859 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-02-02 13:29:54 +01:00
authentik-automation[bot]
a31c9db1cb
core, web: update translations ( #19868 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-02-02 13:29:17 +01:00
dependabot[bot]
7502816175
core: bump gunicorn from 24.1.1 to 25.0.0 ( #19916 )
...
Bumps [gunicorn](https://github.com/benoitc/gunicorn ) from 24.1.1 to 25.0.0.
- [Release notes](https://github.com/benoitc/gunicorn/releases )
- [Commits](https://github.com/benoitc/gunicorn/compare/24.1.1...25.0.0 )
---
updated-dependencies:
- dependency-name: gunicorn
dependency-version: 25.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:26:19 +01:00
dependabot[bot]
209758dcde
core: bump pyjwt from 2.10.1 to 2.11.0 ( #19920 )
...
Bumps [pyjwt](https://github.com/jpadilla/pyjwt ) from 2.10.1 to 2.11.0.
- [Release notes](https://github.com/jpadilla/pyjwt/releases )
- [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst )
- [Commits](https://github.com/jpadilla/pyjwt/compare/2.10.1...2.11.0 )
---
updated-dependencies:
- dependency-name: pyjwt
dependency-version: 2.11.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:25:47 +01:00
dependabot[bot]
2b5f4be33e
core: bump cachetools from 6.2.6 to 7.0.0 ( #19919 )
...
Bumps [cachetools](https://github.com/tkem/cachetools ) from 6.2.6 to 7.0.0.
- [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst )
- [Commits](https://github.com/tkem/cachetools/compare/v6.2.6...v7.0.0 )
---
updated-dependencies:
- dependency-name: cachetools
dependency-version: 7.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:25:22 +01:00
dependabot[bot]
fe1240e7a6
web: bump @formatjs/intl-listformat from 8.2.0 to 8.2.1 in /web ( #19924 )
...
Bumps [@formatjs/intl-listformat](https://github.com/formatjs/formatjs ) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/formatjs/formatjs/releases )
- [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-listformat@8.2.0...@formatjs/intl-listformat@8.2.1 )
---
updated-dependencies:
- dependency-name: "@formatjs/intl-listformat"
dependency-version: 8.2.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:24:51 +01:00
dependabot[bot]
edce0a62a3
web: bump the storybook group across 1 directory with 5 updates ( #19921 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.2.1 to 10.2.3
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.3/code/addons/docs )
Updates `@storybook/addon-links` from 10.2.1 to 10.2.3
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.3/code/addons/links )
Updates `@storybook/web-components` from 10.2.1 to 10.2.3
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.3/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.2.1 to 10.2.3
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.3/code/frameworks/web-components-vite )
Updates `storybook` from 10.2.1 to 10.2.3
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.3/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:24:19 +01:00
dependabot[bot]
f85c127e82
core: bump axllent/mailpit from v1.28.4 to v1.29.0 in /tests/e2e ( #19918 )
...
Bumps axllent/mailpit from v1.28.4 to v1.29.0.
---
updated-dependencies:
- dependency-name: axllent/mailpit
dependency-version: v1.29.0
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:24:09 +01:00
dependabot[bot]
a8e28216ea
core: bump goauthentik/selenium from 144.0-ak-0.35.9 to 144.0-ak-0.40.0 in /tests/e2e ( #19917 )
...
core: bump goauthentik/selenium in /tests/e2e
Bumps [goauthentik/selenium](https://github.com/SeleniumHQ/docker-selenium ) from 144.0-ak-0.35.9 to 144.0-ak-0.40.0.
- [Release notes](https://github.com/SeleniumHQ/docker-selenium/releases )
- [Commits](https://github.com/SeleniumHQ/docker-selenium/commits )
---
updated-dependencies:
- dependency-name: goauthentik/selenium
dependency-version: 144.0-ak-0.40.0
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:23:56 +01:00
dependabot[bot]
d3b2dc11e6
web: bump playwright from 1.58.0 to 1.58.1 in /web ( #19925 )
...
Bumps [playwright](https://github.com/microsoft/playwright ) from 1.58.0 to 1.58.1.
- [Release notes](https://github.com/microsoft/playwright/releases )
- [Commits](https://github.com/microsoft/playwright/compare/v1.58.0...v1.58.1 )
---
updated-dependencies:
- dependency-name: playwright
dependency-version: 1.58.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:23:42 +01:00
dependabot[bot]
6deca5eb31
web: bump type-fest from 5.4.2 to 5.4.3 in /web ( #19927 )
...
Bumps [type-fest](https://github.com/sindresorhus/type-fest ) from 5.4.2 to 5.4.3.
- [Release notes](https://github.com/sindresorhus/type-fest/releases )
- [Commits](https://github.com/sindresorhus/type-fest/compare/v5.4.2...v5.4.3 )
---
updated-dependencies:
- dependency-name: type-fest
dependency-version: 5.4.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:23:31 +01:00
dependabot[bot]
00258cfbcc
web: bump globals from 17.2.0 to 17.3.0 in /web ( #19928 )
...
Bumps [globals](https://github.com/sindresorhus/globals ) from 17.2.0 to 17.3.0.
- [Release notes](https://github.com/sindresorhus/globals/releases )
- [Commits](https://github.com/sindresorhus/globals/compare/v17.2.0...v17.3.0 )
---
updated-dependencies:
- dependency-name: globals
dependency-version: 17.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:23:19 +01:00
dependabot[bot]
131c746028
ci: bump astral-sh/setup-uv from 7.2.0 to 7.2.1 in /.github/actions/setup ( #19929 )
...
ci: bump astral-sh/setup-uv in /.github/actions/setup
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv ) from 7.2.0 to 7.2.1.
- [Release notes](https://github.com/astral-sh/setup-uv/releases )
- [Commits](61cb8a9741...803947b9bdsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-02 13:22:14 +01:00
Teffen Ellis
3812823c07
website/docs: Color Palette Test Page ( #19879 )
...
* Flesh out.
* Flesh out.
* Remove outdated version.
2026-02-01 22:03:55 +01:00
Jens L.
71d4ac864e
ci: fix cherry-pick assignee ( #19905 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-02-01 16:29:27 +01:00
dependabot[bot]
4491dad215
core: bump protobuf from 6.33.4 to 6.33.5 ( #19886 )
...
Bumps [protobuf](https://github.com/protocolbuffers/protobuf ) from 6.33.4 to 6.33.5.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases )
- [Commits](https://github.com/protocolbuffers/protobuf/commits )
---
updated-dependencies:
- dependency-name: protobuf
dependency-version: 6.33.5
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-01 16:01:21 +01:00
authentik-automation[bot]
a82b443176
stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs ( #19897 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-02-01 16:00:49 +01:00
Mmx233
54fad67e11
web: fix Brand CSS not applied to nested Shadow DOM components ( #19892 )
...
* web: fix Brand CSS not applied to nested Shadow DOM components
After PR #17444 , Brand CSS was only applied when ThemeChangeEvent fired.
Components created after the initial event never received the custom styles.
This fix immediately applies Brand CSS when a style root is set, ensuring
all nested Shadow DOM components (like flow stages) receive brand styling
regardless of when they are created.
* Update web/src/elements/Base.ts
Signed-off-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
* Clarify.
---------
Signed-off-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
2026-02-01 07:51:34 +01:00
Teffen Ellis
469bc0b6b4
website/docs: Remove stale 2024 version directives ( #19888 )
...
Remove outdated version.
2026-02-01 04:57:16 +01:00
Teffen Ellis
64b08f77a8
website: QL Search keyboard interactions docs, examples. ( #16259 )
...
* website: Flesh out keyboard interactions docs, examples.
* Update doc
* Fix links and apply suggestions
---------
Co-authored-by: dewi-tik <dewi@goauthentik.io >
2026-01-30 16:49:23 +00:00
Dewi Roberts
e12f4360a7
website/integrations: immich: add signing algorithm ( #19187 )
...
* Adds signing algorithm
* Fixed name
* Update to comment
* Update index.md
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
2026-01-30 16:24:29 +00:00
Dewi Roberts
4259012548
website/docs: endpoint devices: add version command ( #19767 )
...
* Add version command
* Add version command to install docs
2026-01-30 16:09:12 +00:00
Jens L.
e90c249274
common: introduce common ( #19852 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-01-30 16:27:41 +01:00
dependabot[bot]
25c7e6ed33
web: bump @sentry/browser from 10.37.0 to 10.38.0 in /web in the sentry group across 1 directory ( #19871 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.37.0 to 10.38.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.37.0...10.38.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.38.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:26:55 +01:00
dependabot[bot]
f62d6aef16
core: bump debugpy from 1.8.19 to 1.8.20 ( #19872 )
...
Bumps [debugpy](https://github.com/microsoft/debugpy ) from 1.8.19 to 1.8.20.
- [Release notes](https://github.com/microsoft/debugpy/releases )
- [Commits](https://github.com/microsoft/debugpy/compare/v1.8.19...v1.8.20 )
---
updated-dependencies:
- dependency-name: debugpy
dependency-version: 1.8.20
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:26:23 +01:00
dependabot[bot]
1f6c479169
ci: bump actions/cache from 5.0.2 to 5.0.3 ( #19873 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](8b402f58fb...cdf6c1fa76support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:25:17 +01:00
dependabot[bot]
ca4cc3d985
web: bump chromedriver from 144.0.1 to 145.0.0 in /web ( #19874 )
...
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 144.0.1 to 145.0.0.
- [Commits](https://github.com/giggio/node-chromedriver/compare/144.0.1...145.0.0 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 145.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-30 16:22:59 +01:00
Teffen Ellis
388f4262b5
web: Captcha Refinements, Part 2 ( #19757 )
...
* Move inline styles into separate file.
* Fix preferred order of captcha vendor discovery.
* Clean up mutation and resize observer lifecycle.
* Flesh out controllers.
* Tidy refresh.
* Fix incompatibilities with Storybook.
* Flesh out captcha stories.
* Bump package.
* Flesh out stories.
* Move inline styles into separate file.
* Fix preferred order of captcha vendor discovery.
* Clean up mutation and resize observer lifecycle.
* Flesh out controllers.
* Tidy refresh.
* Remove unused.
* Bump package.
2026-01-30 16:18:24 +01:00
Marcelo Elizeche Landó
da95a6b1e5
root: assign cherry-pick PRs to original author ( #19858 )
...
assign cherry-pick PRs to original author
2026-01-30 11:40:15 -03:00
Teffen Ellis
e56ab5aa9e
web: Lit Development Mode, performance fixes. ( #19825 )
2026-01-30 01:56:10 +01:00
Teffen Ellis
299dde1915
web: Fix development theme overrides ( #19826 )
...
web: Fix development theme overrides.
2026-01-30 01:52:22 +01:00
Dominic R
f268858d33
website/docs: add tip for recovering from accidental main branch work ( #19865 )
...
Overview:
Add a tip to the contributing guide explaining how to recover if you accidentally started making changes on `main` instead of a feature branch.
Testing:
n/a
Motivation:
Closes: https://github.com/goauthentik/authentik/issues/18740
2026-01-29 21:49:04 +00:00
authentik-automation[bot]
fc8a67c1a1
web: bump API Client version ( #19857 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-29 18:51:56 +00:00
Simonyi Gergő
1b9653901c
rbac: clean up roles and permissions ( #19588 )
...
* clean up roles and permissions
This was purposefully not included in `2025.12` to split the changes up.
The main content of this patch is in the migrations. Everything else
follows more or less automatically.
* add breaking change warning to release notes
* add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* fixup! add `ak_groups` --> `groups` deprecated proxy
* add configuration warning to default notifications blueprint
* add rudimentary tests for User.ak_groups
* remove no longer used permissions
* clarify deprecation
Co-authored-by: Jens L. <jens@goauthentik.io >
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
* remove integration changes
These will be included in a separate PR once this is released.
---------
Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
Co-authored-by: Jens L. <jens@goauthentik.io >
2026-01-29 19:12:38 +01:00
authentik-automation[bot]
387a3ef08d
web: bump API Client version ( #19851 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-01-29 16:55:57 +00:00
Dewi Roberts
95d2c213e1
website/docs: add more info to entra id scim doc ( #19849 )
...
* Add info
* Spelling
2026-01-29 16:51:37 +00:00
Anduin Xue
e01d7f20b3
sources/oauth: Fix an issue where wechat may crash duing login. ( #18973 )
...
* Fix an issue where wechat may crash duing login.
The WeChatOAuth2Client.get_access_token method was defined with a signature that required redirect_uri and code arguments, but the generic OAuth callback handler calls this method without any arguments (expecting the client to retrieve them from the request context).
I have fixed
authentik/sources/oauth/types/wechat.py
by:
Updating
get_access_token
signature: It now accepts **request_kwargs instead of mandatory positional arguments, matching the base
OAuth2Client
.
Retrieving code correctly: It now looks for code in the request parameters using self.get_request_arg, just like standard OAuth clients.
Adding State Validation: I added self.check_application_state() to ensure the
state
parameter matches, preventing CSRF attacks.
Improving Error Handling: Both
get_access_token
and
get_profile_info
now return None (or error dicts) instead of raising exceptions when API calls fail. This prevents the "Server Error" (500) crashes you were seeing and allows Authentik to handle login failures gracefully.
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Update wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Update wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Remove unnecessary blank lines in wechat.py
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
* Fix linting issues in wechat.py
---------
Signed-off-by: Anduin Xue <anduin@aiursoft.com >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-01-29 16:48:19 +00:00
