authentik

Archived

Author	SHA1	Message	Date
Jens Langhammer	3c8bbc2621	sources/*: only allow superusers to directly create source connections Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-06 12:22:40 +01:00
Jens Langhammer	b694816e7b	sources/*: Allow creation of source connections via API closes #1888 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-06 10:05:42 +01:00
Jens Langhammer	426cef998f	sources/ldap: make task names more consistent Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-03 18:39:42 +01:00
Jens Langhammer	8ddb62ed0f	sources/plex: fix plex token being included in event log Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-03 18:37:40 +01:00
Jens Langhammer	f1b9021e3e	sources/ldap: add optional tls verification certificate closes #1875 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-03 10:09:13 +01:00
Jens Langhammer	2e2b491ec7	source/ldap: fix hanging unittests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-03 09:41:13 +01:00
Jens Langhammer	ac432e78e2	sources/ldap: don't cache LDAP Connection, use random server Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-02 21:18:20 +01:00
Jens Langhammer	2eb5a5cc76	sources/ldap: handle typeerror during creation of objects when using wrong kwargs params Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-02 20:24:24 +01:00
Jens Langhammer	75051687e6	sources/ldap: allow multiple server URIs for loadbalancing and failover closes #1874 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-02 20:15:11 +01:00
Jens Langhammer	cf78c89830	events: replace @prefill_task with custom base class to prefill Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-02 13:47:35 +01:00
Jens Langhammer	f0d7edb963	*: fix @prefill_task Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-12-02 10:05:51 +01:00
Jens Langhammer	0b8cfd437b	*: fix typo'd signing pair name Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-24 09:55:10 +01:00
Jens L	9bb0d04aeb	root: Random tests (#1825 ) * root: add pytest-randomly to randomise tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : generate flows for testing instead of relying on existing ones Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> : generate users for testing instead of relying on existing ones Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> : use generated certificate Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> tests/e2e: keep containers Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests/e2e: use websockets test case Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-22 22:56:02 +01:00
Jens Langhammer	638e8d741f	*: fix multiple tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-16 10:38:21 +01:00
Rizwan Ahmed	e4a5e86c93	sources/oauth: Fixed the incorrect padding issue in apple.py (#1773 ) * Fixed the incorrect padding issue in apple.py Fixed the incorrect padding issue in apple.py by adding proper padding to the raw_payload. * Fixed the incorrect encoding of client_secret in apple.py In the get_client_secret() method, the "sub" in the payload must be only the client ID. So I have changed self.source.consumer_key to parts[0] * Added the decode method for the id_token Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-12 12:10:29 +01:00
Jens Langhammer	4a773b2b4f	sources/ldap: set connect/receive timeout (default to 15s) Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-09 22:27:58 +01:00
Jens Langhammer	8003d67844	sources/ldap: fix typo Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-09 22:24:33 +01:00
Jens Langhammer	51783c1cbb	sorces/ldap: fix user/group sync overwriting attributes instead of merging them Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-09 21:16:59 +01:00
dependabot[bot]	8de13d3f67	build(deps): bump goauthentik.io/api from 0.2021102.2 to 0.2021102.4 (#1738 ) Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 09:33:26 +01:00
Jens Langhammer	7798292aa8	sources/plex: use exception_to_string in tasks Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 01:16:36 +01:00
Jens Langhammer	023b97aa69	sources/ldap: remove deprecated default Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-04 22:13:47 +01:00
Jens Langhammer	5374352411	sources/plex: allow users to connect their plex account without login flow Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-03 21:09:02 +01:00
Jens Langhammer	08eff4cc5d	sources/plex: fix missing ordering Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-03 20:21:33 +01:00
Jens Langhammer	8f6d700aa8	sources/oauth: set prompt=none for Discord provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-03 15:48:59 +01:00
Jens Langhammer	f5dc81907a	core: add created field to source connection Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-30 15:02:41 +02:00
Jens Langhammer	fa6324ab1d	sources/ldap: prevent key `users` from being set as this is an M2M relation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-27 15:43:56 +02:00
Jens Langhammer	9e0daf2bcf	sources/ldap: skip values which are of type bytes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-27 15:43:38 +02:00
Jens Langhammer	61fab497cf	core: add user flag to prevent users from changing their usernames closes #1590 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-20 16:17:19 +02:00
Jens Langhammer	2df4322ecf	sources/oauth: add choices to oauth provider_type Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-20 00:11:19 +02:00
Jens Langhammer	03369e2338	sources/ldap: check for existence of vendor fields before falling back Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> #1521	2021-10-19 15:40:40 +02:00
Jens Langhammer	89bb27b95c	sources/ldap: fix missing arguments? Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-18 22:04:58 +02:00
Jens Langhammer	2b155964c2	sources/ldap: extract vendor-specific functions #1521 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-18 21:44:10 +02:00
Jens L	922fc9b8d5	sources/oauth: add Sign in with Apple (#1635 ) * sources/oauth: add apple sign in support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: apple sign in docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: fix missing apple in sidebar Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * sources/oauth: add fallback values for name and slug Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-18 16:35:12 +02:00
Jens Langhammer	4b7399f454	*: add @prefill_task() decorator to "pre-fill" tasks in cache, so they can be executed even before their schedule would do so Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-14 12:21:28 +02:00
Jens L	e4f141c6c0	: Squash Migrations (#1593 ) : first squash pass Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> sources/saml: squash less Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts: fix docker controller not correctly checking image Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests/e2e: fix old migration reference Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-11 21:39:35 +02:00
Steven Armstrong	ab5981836d	providers/ldap: use RDN when using posixGroup's memberUid attribute (#1514 ) Use the RDN instead of the FDN when establishing group memberships based on posixGroup's 'memberUid' attribute. fixes #1436 Signed-off-by: Steven Armstrong <steven@armstrong.cc>	2021-10-04 10:56:06 +02:00
Jens Langhammer	1c52836060	web: fix package lock Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-03 01:17:41 +02:00
Jens Langhammer	8dd77793a0	sources/ldap: fix logic error in Active Directory account disabled status Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-03 00:30:35 +02:00
Jens Langhammer	53e15bfbca	sources/ldap: add support for Active Directory `userAccountControl` attribute Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-30 19:13:48 +02:00
Jens Langhammer	8bce16e6b4	sources/ldap: don't sync ldap source when no property mappings are set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-30 18:49:18 +02:00
Jens L	f9ad102915	flows: inspector (#1469 ) * flows: add initial inspector Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: change naming a bit Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flow: add inspector frame Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: don't use shadydom when inspecting Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: add current stage to api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * stages/: fix imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> flows: deep-copy plan instead of just adding Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: ui Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: restrict inspector to admin Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add buttons to launch flow with inspector Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: don't automatically follow redirects when inspector is open Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: make current_plan optional, only require historry Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: handle error messages in inspector Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: improve UI when flow is done Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: add is_completed flag to inspector Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: fix monkeypatches for tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * flows: add inspector tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ci: re-enable cache Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-28 09:36:48 +02:00
Jens Langhammer	79b92e764e	*: fix typos in code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-25 00:01:11 +02:00
Jens Langhammer	d900a2b6a9	*: fix lookup_fields Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-20 19:19:36 +02:00
Jens Langhammer	b5c857aff4	api: add explicit lookup_value_regex, disable include_format_suffixes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-20 13:42:56 +02:00
Jens Langhammer	ed6f5b98df	sources/ldap: improve messages of sync tasks in UI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-19 15:54:22 +02:00
Jens Langhammer	8279690a8f	sources/ldap: prevent error when retrying old system task with no arguments Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-17 16:49:26 +02:00
Jens Langhammer	06af306e8a	sources/ldap: bump timeout, run each sync component in its own task closes #1411 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-17 12:42:20 +02:00
Jens L	13e2eea72f	web/user: new end-user interface (#1404 ) * web/user: migrate to top navbar Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/user: prepare config from server Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * re-sort Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove old interface Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * update issue template Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * use notification badge Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/user: re-add go-to-admin button Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : fix remaining redirects directly to admin Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> make settings better Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * api: ensure sources and stages are sorted Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/user: add sessions and consent Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/oauth2: add post wrapper to stage Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: add new interface to release notes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-16 22:17:05 +02:00
Denis Teyssier	37346763dc	sources/oauth: Updating token url to new google url (#1397 ) the present url goes to a 404 google openid (https://accounts.google.com/.well-known/openid-configuration) says the new url is `https://oauth2.googleapis.com/token` not using the new url makes authentik fallback on the default auth flow	2021-09-15 09:15:19 +02:00
Jens Langhammer	3ddf2d6f85	sources/oauth: fix type lookup for openid not matching Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-14 14:38:35 +02:00

1 2 3 4 5

222 commits