mirror of
https://github.com/goauthentik/authentik
synced 2026-04-25 17:15:26 +02:00
1b9653901c
* clean up roles and permissions This was purposefully not included in `2025.12` to split the changes up. The main content of this patch is in the migrations. Everything else follows more or less automatically. * add breaking change warning to release notes * add `ak_groups` --> `groups` deprecated proxy * fixup! add `ak_groups` --> `groups` deprecated proxy * fixup! add `ak_groups` --> `groups` deprecated proxy * fixup! add `ak_groups` --> `groups` deprecated proxy * add configuration warning to default notifications blueprint * add rudimentary tests for User.ak_groups * remove no longer used permissions * clarify deprecation Co-authored-by: Jens L. <jens@goauthentik.io> Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com> * remove integration changes These will be included in a separate PR once this is released. --------- Signed-off-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com> Co-authored-by: Jens L. <jens@goauthentik.io>
127 lines
3.6 KiB
YAML
127 lines
3.6 KiB
YAML
version: 1
|
|
metadata:
|
|
name: Default - Events Transport & Rules
|
|
entries:
|
|
# Run bootstrap blueprint first to ensure we have the group created
|
|
- model: authentik_blueprints.metaapplyblueprint
|
|
attrs:
|
|
identifiers:
|
|
path: system/bootstrap.yaml
|
|
required: false
|
|
- model: authentik_events.notificationtransport
|
|
id: default-email-transport
|
|
attrs:
|
|
mode: email
|
|
identifiers:
|
|
name: default-email-transport
|
|
- model: authentik_events.notificationtransport
|
|
id: default-local-transport
|
|
attrs:
|
|
mode: local
|
|
identifiers:
|
|
name: default-local-transport
|
|
- model: authentik_core.group
|
|
id: group
|
|
state: created
|
|
identifiers:
|
|
name: authentik Admins
|
|
|
|
- model: authentik_policies_event_matcher.eventmatcherpolicy
|
|
id: default-match-configuration-error
|
|
attrs:
|
|
action: configuration_error
|
|
identifiers:
|
|
name: default-match-configuration-error
|
|
- model: authentik_events.notificationrule
|
|
id: default-notify-configuration-error
|
|
identifiers:
|
|
name: default-notify-configuration-error
|
|
attrs:
|
|
severity: alert
|
|
group: !KeyOf group
|
|
transports:
|
|
- !KeyOf default-email-transport
|
|
- !KeyOf default-local-transport
|
|
- model: authentik_policies.policybinding
|
|
identifiers:
|
|
order: 0
|
|
policy: !KeyOf default-match-configuration-error
|
|
target: !KeyOf default-notify-configuration-error
|
|
|
|
- model: authentik_policies_event_matcher.eventmatcherpolicy
|
|
id: default-match-configuration-warning
|
|
attrs:
|
|
action: configuration_warning
|
|
identifiers:
|
|
name: default-match-configuration-warning
|
|
- model: authentik_events.notificationrule
|
|
id: default-notify-configuration-warning
|
|
identifiers:
|
|
name: default-notify-configuration-warning
|
|
attrs:
|
|
severity: warning
|
|
group: !KeyOf group
|
|
transports:
|
|
- !KeyOf default-email-transport
|
|
- !KeyOf default-local-transport
|
|
- model: authentik_policies.policybinding
|
|
identifiers:
|
|
order: 0
|
|
policy: !KeyOf default-match-configuration-warning
|
|
target: !KeyOf default-notify-configuration-warning
|
|
|
|
- model: authentik_policies_event_matcher.eventmatcherpolicy
|
|
id: default-match-update
|
|
attrs:
|
|
action: update_available
|
|
identifiers:
|
|
name: default-match-update
|
|
- model: authentik_events.notificationrule
|
|
id: default-notify-update
|
|
identifiers:
|
|
name: default-notify-update
|
|
attrs:
|
|
severity: alert
|
|
group: !KeyOf group
|
|
transports:
|
|
- !KeyOf default-email-transport
|
|
- !KeyOf default-local-transport
|
|
- model: authentik_policies.policybinding
|
|
identifiers:
|
|
order: 0
|
|
policy: !KeyOf default-match-update
|
|
target: !KeyOf default-notify-update
|
|
|
|
- model: authentik_policies_event_matcher.eventmatcherpolicy
|
|
id: default-match-policy-exception
|
|
attrs:
|
|
action: policy_exception
|
|
identifiers:
|
|
name: default-match-policy-exception
|
|
- model: authentik_policies_event_matcher.eventmatcherpolicy
|
|
id: default-match-property-mapping-exception
|
|
attrs:
|
|
action: property_mapping_exception
|
|
identifiers:
|
|
name: default-match-property-mapping-exception
|
|
- model: authentik_events.notificationrule
|
|
id: default-notify-exception
|
|
identifiers:
|
|
name: default-notify-exception
|
|
attrs:
|
|
severity: alert
|
|
group: !KeyOf group
|
|
transports:
|
|
- !KeyOf default-email-transport
|
|
- !KeyOf default-local-transport
|
|
- model: authentik_policies.policybinding
|
|
identifiers:
|
|
order: 0
|
|
policy: !KeyOf default-match-policy-exception
|
|
target: !KeyOf default-notify-exception
|
|
- model: authentik_policies.policybinding
|
|
identifiers:
|
|
order: 1
|
|
policy: !KeyOf default-match-property-mapping-exception
|
|
target: !KeyOf default-notify-exception
|