root: deprecate :stable tag

#2439

we haven't released an -rc release in a while and I don't really see a need for them anymore, so lets simplify the release process

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>

.github/workflows/release-publish.yml

@@ -36,15 +36,6 @@ jobs:
             ghcr.io/goauthentik/server:latest
           platforms: linux/amd64,linux/arm64
           context: .
-      - name: Building Docker Image (stable)
-        if: ${{ github.event_name == 'release' && !contains('2022.2.1', 'rc') }}
-        run: |
-          docker pull beryju/authentik:latest
-          docker tag beryju/authentik:latest beryju/authentik:stable
-          docker push beryju/authentik:stable
-          docker pull ghcr.io/goauthentik/server:latest
-          docker tag ghcr.io/goauthentik/server:latest ghcr.io/goauthentik/server:stable
-          docker push ghcr.io/goauthentik/server:stable
   build-outpost:
     runs-on: ubuntu-latest
     strategy:
@@ -84,15 +75,6 @@ jobs:
             ghcr.io/goauthentik/${{ matrix.type }}:latest
           file: ${{ matrix.type }}.Dockerfile
           platforms: linux/amd64,linux/arm64
-      - name: Building Docker Image (stable)
-        if: ${{ github.event_name == 'release' && !contains('2022.2.1', 'rc') }}
-        run: |
-          docker pull beryju/authentik-${{ matrix.type }}:latest
-          docker tag beryju/authentik-${{ matrix.type }}:latest beryju/authentik-${{ matrix.type }}:stable
-          docker push beryju/authentik-${{ matrix.type }}:stable
-          docker pull ghcr.io/goauthentik/${{ matrix.type }}:latest
-          docker tag ghcr.io/goauthentik/${{ matrix.type }}:latest ghcr.io/goauthentik/${{ matrix.type }}:stable
-          docker push ghcr.io/goauthentik/${{ matrix.type }}:stable
   build-outpost-binary:
     timeout-minutes: 120
     runs-on: ubuntu-latest

website/docs/outposts/manual-deploy-docker-compose.md

@@ -13,7 +13,7 @@ version: "3.5"
 
 services:
   authentik_proxy:
-    image: ghcr.io/goauthentik/proxy:stable
+    image: ghcr.io/goauthentik/proxy
     # Optionally specify which networks the container should be
     # might be needed to reach the core authentik server
     # networks:
@@ -40,7 +40,7 @@ version: "3.5"
 
 services:
   authentik_ldap:
-    image: ghcr.io/goauthentik/ldap:stable
+    image: ghcr.io/goauthentik/ldap
     # Optionally specify which networks the container should be
     # might be needed to reach the core authentik server
     # networks:

website/docs/outposts/manual-deploy-kubernetes.md

@@ -88,7 +88,7 @@ spec:
               secretKeyRef:
                 key: authentik_host_insecure
                 name: authentik-outpost-api
-        image: ghcr.io/goauthentik/proxy:stable
+        image: ghcr.io/goauthentik/proxy
         name: proxy
         ports:
           - containerPort: 9000

website/docs/providers/proxy/_traefik_compose.md

@@ -16,7 +16,7 @@ services:
       - "--entrypoints.web.address=:80"
 
   authentik-proxy:
-    image: ghcr.io/goauthentik/proxy:stable
+    image: ghcr.io/goauthentik/proxy
     ports:
       - 9000:9000
       - 9443:9443

website/docs/releases/v2022.3.md

@@ -13,6 +13,12 @@ User settings are now configured using flows and stages, allowing administrators
 
 authentik now supports the OAuth `client_credentials` grant for machine-to-machine authentication. See [OAuth2 Provider](../providers/oauth2)
 
+## Deprecations
+
+### `:stable` tag
+
+To simplify the release process we don't publish explicitly tagged release-candidate versions anymore. With this change, the :latest tag will continue to point at the latest tagged release.
+
 ## Minor changes/fixes
 
 - core: add initial app launch url (#2367)