trustchain-oc1-orchestral/authentik
Archived
10
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
10232 commits 95 branches 330 tags 336 MiB
Commit graph

277 commits

Author SHA1 Message Date
Jens Langhammer 32934fcd38 outpost/ldap: check access based on Group Membership 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-05 00:03:19 +02:00
Jens Langhammer 08451c15f4 outposts/ldap: save user DN to determine who can search 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-05-04 21:49:15 +02:00
Jens Langhammer c317efa14c Merge branch 'master' into outpost-ldap 2021-05-01 00:26:55 +02:00
Jens Langhammer 3e666de91d outposts: fix formatting of image name 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-30 16:52:28 +02:00
Jens Langhammer b55cb2b40c Merge branch 'master' into outpost-ldap 2021-04-29 20:13:47 +02:00
Jens Langhammer 25c001f2cd outposts: allow better configuration of outpost image name 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-29 20:07:53 +02:00
Jens Langhammer 9b70aaa717 outposts: only kill docker container if its running 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-28 18:32:16 +02:00
Jens Langhammer 4d858c64e0 Merge branch 'master' into outpost-ldap 2021-04-27 17:08:26 +02:00
Jens Langhammer ccef7b4233 *: make logger not use .error 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-27 15:43:26 +02:00
Jens Langhammer 3ce8b836dc outposts: allow outposts to have non-object specific permissions 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-26 23:28:26 +02:00
Jens Langhammer b35d9ae8b0 outposts: fix type not being configurable 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-26 14:45:14 +02:00
Jens Langhammer 302b047f1a outposts/ldap: add controllers 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-26 14:26:31 +02:00
Jens Langhammer f89479caf3 providers/ldap: add LDAP provider 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-26 11:52:42 +02:00
Jens Langhammer 820c9e7d06 Merge branch 'master' into outpost-ldap 2021-04-24 22:22:01 +02:00
Jens Langhammer b8a566f4a0 outposts: move local connection check to task, run every 60 minutes 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-21 11:34:48 +02:00
Jens Langhammer aa0e8edb8b *: make tasks run every 60 minutes not :00 every hour 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-21 11:26:17 +02:00
Jens Langhammer 4f5e1fb86b outposts: initial ldap outpost implementation 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-20 00:30:27 +02:00
Jens Langhammer b75feab709 outposts: don't run outpost_controller when no service connection is set 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-19 19:23:26 +02:00
Jens Langhammer 32c5bf04b8 *: fix linting errors 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-17 20:08:49 +02:00
Jens Langhammer 67240fb9ad *: add model_name to TypeCreate API to pass to forms 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-17 19:12:00 +02:00
Jens Langhammer 11b09c4ebd outposts: fix errors when creating multiple outposts 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-16 22:43:35 +02:00
Jens Langhammer 4f27a97e10 *: add validator to ensure JSON Fields only receive dicts 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-11 23:05:19 +02:00
Jens Langhammer 4054e6da8c helm: don't automount Service token when integration is not enabled, improve k8s detection 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-07 16:16:17 +02:00
Jens Langhammer eeb9449c11 lib: remove templatetags 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-03 12:37:32 +02:00
Jens Langhammer 42cb55d78a *: rename objectType to component to get rid of lookup tables 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-03 11:32:17 +02:00
Jens Langhammer 1dc01ef857 *: add API tests for types endpoints 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-02 23:11:53 +02:00
Jens Langhammer 83fc22005c *: remove swagger parameters from functions that don't accept them 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-04-02 13:39:22 +02:00
Jens Langhammer 656fe00302 outposts: migrate service connections to web 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-31 22:47:41 +02:00
Jens Langhammer 78a4a167ac outposts: remove outpost form 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-30 18:45:26 +02:00
Jens Langhammer 23d7ef36d2 core: remove provider and outpostserviceconnection base model create operations 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-30 18:35:06 +02:00
Jens Langhammer b1214f6c35 *: add new base class for non-model serializers 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-30 15:50:00 +02:00
Jens Langhammer 09aa5d6350 web/admin: migrate outposts to web 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-29 23:12:31 +02:00
Jens Langhammer e5ff416c2d outposts: add API for default config 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-29 22:52:08 +02:00
Jens Langhammer 7d74e1d2c4 *: revert to drf-yasg upstream 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-29 21:04:54 +02:00
Jens Langhammer e202fd988b root: update to isort 5 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-22 19:53:10 +01:00
Jens Langhammer a8d411a77b outposts: fix integration test failing occasionally 
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-03-17 22:02:13 +01:00
Jens Langhammer d99451b45c outposts: improve logs for outpost connection 2021-03-11 17:50:57 +01:00
Jens Langhammer 3319547a0e outposts: improve error handling for kubernetes outpost 2021-03-03 20:27:38 +01:00
Jens Langhammer 7f65ae3f92 Merge branch 'master' into stage-challenge 
# Conflicts:
#	web/package-lock.json
 2021-02-28 00:47:18 +01:00
Jens Langhammer bdb86d7119 *: replace shortcuts.reverse with urls.reverse 2021-02-20 19:13:50 +01:00
Jens Langhammer 6597d5bd28 web: migrate Token List to web 2021-02-19 19:09:30 +01:00
Jens Langhammer 865f652476 web: migrate Outpost Service Connection to web 2021-02-19 17:49:34 +01:00
Jens Langhammer e4f0613fab *: replace tuple and set from typing with normal 2021-02-18 13:53:57 +01:00
Jens Langhammer ecff810021 *: replace List from typing with normal list 2021-02-18 13:45:46 +01:00
Jens Langhammer fdde97cbbf *: replace Dict from typing with normal dict 2021-02-18 13:41:03 +01:00
Jens Langhammer 5417d0a90c *: bump pyright version 2021-02-12 10:19:38 +01:00
Jens Langhammer 02dc112f8f outposts: fix ProxyProvider update not triggering outpost update 2021-02-09 20:59:39 +01:00
Jens Langhammer 78bcb90a1e outposts: ensure Outpost API is backwards compatible 2021-02-08 19:51:46 +01:00
Jens Langhammer 820f658b49 web: add outpost list page 2021-02-08 19:04:19 +01:00
Jens Langhammer efc46f52e6 outposts: move health to API 2021-02-08 19:01:10 +01:00
Jens L a6ac82c492
*: rewrite managed objects, use nullable text flag instead of boolean as uid (#533) 2021-02-06 15:56:21 +00:00
Jens L e25d03d8f4
Managed objects (#519) 
* managed: add base manager and Ops

* core: use ManagedModel for Token and PropertyMapping

* providers/saml: implement managed objects for SAML Provider

* sources/ldap: migrate to managed

* providers/oauth2: migrate to managed

* providers/proxy: migrate to managed

* *: load .managed in apps

* managed: add reconcile task, run on startup

* providers/oauth2: fix import path for managed

* providers/saml: don't set FriendlyName when mapping is none

* *: use ObjectManager in tests to ensure objects exist

* ci: use vmImage ubuntu-latest

* providers/saml: add new mapping for username and user id

* tests: remove docker proxy

* tests/e2e: use updated attribute names

* docs: update SAML docs

* tests/e2e: fix remaining saml cases

* outposts: make tokens as managed

* *: make PropertyMapping SerializerModel

* web: add page for property-mappings

* web: add codemirror to common_styles because codemirror

* docs: fix member-of in nextcloud

* docs: nextcloud add admin

* web: fix refresh reloading data two times

* web: add loading lock to table to prevent double loads

* web: add ability to use null in QueryArgs (value will be skipped)

* web: add hide option to property mappings

* web: fix linting
 2021-02-03 21:18:31 +01:00
Jens Langhammer 3d3a0cd9e3 events: create event when system task fails 2021-01-18 10:09:14 +01:00
Jens Langhammer 222cece3e1 outposts: add message to outpost_service_connection_monitor task 2021-01-17 19:22:01 +01:00
Jens Langhammer aad3b43ac3 core: cache applications API 2021-01-16 22:38:09 +01:00
Jens Langhammer 60f52f102a outposts: optimise signals to not always trigger 2021-01-16 22:14:37 +01:00
Jens Langhammer 6fe323f1a7 outposts: by default only check labels 2021-01-02 01:08:05 +01:00
Jens Langhammer 85c2db018e outposts: ensure field_manager is also used for updates 2021-01-02 00:52:42 +01:00
dependabot[bot] bc9e7e8b93
build(deps): bump structlog from 20.1.0 to 20.2.0 (#445) 
* build(deps): bump structlog from 20.1.0 to 20.2.0

Bumps [structlog](https://github.com/hynek/structlog) from 20.1.0 to 20.2.0.
- [Release notes](https://github.com/hynek/structlog/releases)
- [Changelog](https://github.com/hynek/structlog/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/hynek/structlog/compare/20.1.0...20.2.0)

Signed-off-by: dependabot[bot] <support@github.com>

* *: use structlog.stdlib instead of structlog for type-hints

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
 2021-01-01 15:39:43 +01:00
Jens Langhammer 22ce142cb8 outposts: include protocol in outpost deployment ports 2020-12-28 17:21:02 +01:00
Jens Langhammer 1a292feebb outposts: always check metadata on reconcile 2020-12-28 17:11:37 +01:00
Jens Langhammer 09f4d812b3 outposts: set field_manager 2020-12-28 17:11:33 +01:00
Jens Langhammer dc16a8a4c9 providers/proxy: set proxy-size for nginx for larger response 2020-12-28 00:45:58 +01:00
Jens Langhammer 927ab509a1 outposts: validate kubeconfig before saving 2020-12-24 13:23:19 +01:00
Jens Langhammer c85506f43c outposts: allow blank kubeconfig 2020-12-24 13:23:14 +01:00
Jens Langhammer c24d1b6b84 outposts: fix incorrect timeout for state cache 2020-12-16 12:14:34 +01:00
Jens Langhammer 835a9aaaf2 outposts: fix circular import 2020-12-16 00:00:36 +01:00
Jens Langhammer 42005e7def outposts: ensure all Service Connection state updates are done by the task 2020-12-15 23:39:52 +01:00
Jens Langhammer d9956e1e9c outpost: fix invalid incluster config causing Outpost Service Connection list to fail 2020-12-15 21:17:33 +01:00
Jens Langhammer a3d361f500 outposts: fix controller not using token.key 2020-12-14 11:03:49 +01:00
Jens Langhammer 07082cb3aa tests/integration: add tests for Docker outpost using TLS connection 2020-12-13 21:30:33 +01:00
Jens Langhammer 426cb33fab outposts: remove unused views 2020-12-13 21:25:05 +01:00
Jens Langhammer 3b5e1c7b34 core: cleanup channels code, fix error when server side close 2020-12-13 17:46:34 +01:00
Jens Langhammer 3e49acf7ae outposts: regularly ensure that all outposts have a valid service account and token 2020-12-13 17:10:56 +01:00
Jens Langhammer 9f6f8e1b55 outposts: update keys in outpost config 2020-12-13 15:15:20 +01:00
Jens Langhammer e0bc4f1da5 lifecycle: fix outpost service connections not being migrated 2020-12-06 12:22:51 +01:00
Jens L 1cfe1aff13
wip: rename to authentik (#361) 
* root: initial rename

* web: rename custom element prefix

* root: rename external functions with pb_ prefix

* root: fix formatting

* root: replace domain with goauthentik.io

* proxy: update path

* root: rename remaining prefixes

* flows: rename file extension

* root: pbadmin -> akadmin

* docs: fix image filenames

* lifecycle: ignore migration files

* ci: copy default config from current source before loading last tagged

* *: new sentry dsn

* tests: fix missing python3.9-dev package

* root: add additional migrations for service accounts created by outposts

* core: mark system-created service accounts with attribute

* policies/expression: fix pb_ replacement not working

* web: fix last linting errors, add lit-analyse

* policies/expressions: fix lint errors

* web: fix sidebar display on screens where not all items fit

* proxy: attempt to fix proxy pipeline

* proxy: use go env GOPATH to get gopath

* lib: fix user_default naming inconsistency

* docs: add upgrade docs

* docs: update screenshots to use authentik

* admin: fix create button on empty-state of outpost

* web: fix modal submit not refreshing SiteShell and Table

* web: fix height of app-card and height of generic icon

* web: fix rendering of subtext

* admin: fix version check error not being caught

* web: fix worker count not being shown

* docs: update screenshots

* root: new icon

* web: fix lint error

* admin: fix linting error

* root: migrate coverage config to pyproject
 2020-12-05 22:08:42 +01:00