authentik

Archived

Author	SHA1	Message	Date
Jens Langhammer	109283b189	web: use ak-label for boolean values Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-28 21:12:53 +01:00
Jens Langhammer	813c13ce45	web/admin: fix display of banners on provider pages Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-26 20:48:06 +01:00
Jens Langhammer	629a0e1a4d	web/admin: make object view pages more consistent Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-26 19:40:40 +01:00
Jens Langhammer	03e0eecb1d	web/admin: redesign provider pages to provide more info Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-26 14:08:45 +01:00
Jens Langhammer	0ad1392632	web/admin: use more natural default ordering for objects Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-11 22:47:10 +01:00
Jens Langhammer	0a413fe21a	web/admin: show warnings above tab bar Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-10 10:05:35 +01:00
Jens Langhammer	4380f37a77	web/admin: fix missing values for LDAP Provider form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 11:42:09 +01:00
Jens L	5a8c66d325	providers/ldap: memory Query (#1681 ) * outposts/ldap: modularise ldap outpost, to allow different searchers and binders Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/ldap: add basic in-memory searcher Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/ldap: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: add search mode field Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 10:37:30 +01:00
Jens Langhammer	abcf515a69	web/admin: also show note for SAML provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 01:21:10 +01:00
Jens Langhammer	3005ca17bd	web/admin: show warning on provider when not used with outpost Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-05 01:15:33 +01:00
Jens Langhammer	e587c53e18	web: remove deprecated rollup-plugin-node-resolve Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-11-04 22:34:48 +01:00
Jens Langhammer	f861737b85	web/admin: fix formatting Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-31 23:04:26 +01:00
Jens Langhammer	6036d88392	providers/proxy: allow configuring of additional scope mappings for proxy closes #1255 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-31 22:25:51 +01:00
dependabot[bot]	73733b20b6	build(deps): bump @trivago/prettier-plugin-sort-imports from 2.0.4 to 3.0.0 in /web (#1684 ) * build(deps): bump @trivago/prettier-plugin-sort-imports in /web Bumps [@trivago/prettier-plugin-sort-imports](https://github.com/trivago/prettier-plugin-sort-imports) from 2.0.4 to 3.0.0. - [Release notes](https://github.com/trivago/prettier-plugin-sort-imports/releases) - [Changelog](https://github.com/trivago/prettier-plugin-sort-imports/blob/master/CHANGELOG.md) - [Commits](https://github.com/trivago/prettier-plugin-sort-imports/commits) --- updated-dependencies: - dependency-name: "@trivago/prettier-plugin-sort-imports" dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * web: update prettier config Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-28 09:48:51 +02:00
Jens Langhammer	f9b6b1dd3f	web/admin: improve visibility of oauth rsa key Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-17 14:15:36 +02:00
Jens Langhammer	f341479732	web: make table pagination size user-configurable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-14 12:48:52 +02:00
Jens Langhammer	a4418a83f8	web/admin: fix search group label Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-04 09:41:16 +02:00
Jens Langhammer	62cfb76b39	website/docs: fix order of steps on bookstack integration Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-10-03 18:46:47 +02:00
Jens Langhammer	e9bb8c896b	web/admin: fix LDAP Source form not exposing syncParentGroup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-30 18:10:56 +02:00
Jens Langhammer	79b92e764e	*: fix typos in code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-25 00:01:11 +02:00
Jens Langhammer	da7635ae5c	web: sort imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-21 11:33:51 +02:00
Jens Langhammer	a92a0fb60a	web: migrate to lit 2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-21 11:19:26 +02:00
Jens Langhammer	f6e0f0282d	core: fix tokens not being viewable but superusers Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-19 16:11:20 +02:00
Jens Langhammer	3f42067a8f	web: improve display of action buttons with non-primary classes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-19 15:57:12 +02:00
Jens Langhammer	916530f0d8	providers/oauth2: use access_code_validity for id_tokens generated when using an implicit flow, improve wording in web ui closes #1369 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-15 17:14:53 +02:00
Jens L	3c1b70c355	outposts/proxyv2 (#1365 ) * outposts/proxyv2: initial commit Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add rs256 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> more stuff Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add forward auth an sign_out Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> match cookie name Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> re-add support for rs256 for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add error handler Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> ensure unique user-agent is used Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> set cookie duration based on id_token expiry Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> build proxy v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add ssl Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add basic auth and custom header support Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add application cert loading Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> implement whitelist Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add redis Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> migrate embedded outpost to v2 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> remove old proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> providers/proxy: make token expiration configurable Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> add metrics Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> fix tests Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only allow one redirect URI Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix docker build for proxy Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove default port offset Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add AUTHENTIK_HOST_BROWSER Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * tests: fix e2e/integration tests not using proper tags Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * remove references of old port Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * fix user_attributes not being loaded correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup dependencies Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-08 18:04:56 +00:00
Jens Langhammer	3cf5794b96	web/admin: increase default expiry for refresh tokens Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-09-08 00:12:18 +02:00
Jens Langhammer	b74681f22c	Merge branch 'master' into publish-api-to-npm Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # web/package-lock.json # web/src/pages/sources/oauth/OAuthSourceForm.ts	2021-08-23 09:40:52 +02:00
Jens Langhammer	33d5cd2973	web: add notice for Certificate for LDAP Provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-21 18:48:02 +02:00
Jens Langhammer	1d4b941a3b	web: migrate to @goauthentik/api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-15 21:32:28 +02:00
Jens Langhammer	d1403f6f7d	web: implement bulk-delete form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-12 23:21:29 +02:00
Jens Langhammer	1a17ce24f9	web: use single delete button with checkbox and icon-based action buttons Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-05 12:30:43 +02:00
Jens Langhammer	ddd5047cc3	web: better label table actions Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-05 10:40:44 +02:00
Jens Langhammer	2c60ec50be	web: re-format with prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-08-03 17:52:21 +02:00
Jens Langhammer	9c0f7e0018	web/admin: fix LDAP Provider bind flow list being empty closes #1192 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-28 21:01:10 +02:00
Jens Langhammer	64c8ca9b5d	web/admin: default to authentication flow for LDAP provider Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-26 18:47:59 +02:00
Jens Langhammer	902378af53	providers/oauth2: fix redirect_uris not having blank set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-21 00:22:09 +02:00
Lukas Söder	7f39399c32	providers/ldap: Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. (#1138 ) * Added auto-generated uidNumber and guidNumber generated attributes for use with SSSD and similar software. The starting number for uid/gid can be configured iva environtment variables and is by default 2000 which should work fine for most instances unless there are more than 999 local accounts on the server/computer. The uidNumber is just the users Pk + the starting number. The guidNumber is calculated by the last couple of bytes in the uuid of the group + the starting number, this should have a low enough chance for collisions that it's going to be fine for most use cases. I have not added any interface stuff for configuring the environment variables as I couldn't really find my way around all the places I'd have to edit to add it and the default values should in my opinion be fine for 99% use cases. * Add a 'fake' primary group for each user * First attempt att adding config to interface * Updated API to support new fields * Refactor code, update documentation and remove obsolete comment Simplify `GetRIDForGroup`, was a bit overcomplicated before. Add an additional class/struct `LDAPGroup` which is the new argument for `pi.GroupEntry` and util functions to create `LDAPGroup` from api.Group and api.User Add proper support in the interface for changing gidNumber and uidNumber starting points * make lint-fix for the migration files	2021-07-14 09:17:01 +02:00
Jens L	7dfc621ae4	LDAP Provider: TLS support (#1137 )	2021-07-13 18:24:18 +02:00
Jens Langhammer	90fe1c2ce8	providers/oauth2: allow blank redirect_uris to allow any redirect_uri Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-07-08 19:28:35 +02:00
Jens Langhammer	9bd613a31d	stages/authenticator_duo: fix component not being set in API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-26 20:49:58 +02:00
Jens Langhammer	0832145a01	web: fix fields for new api schema Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-13 15:36:25 +02:00
Jens Langhammer	8ddcf99bf7	web: fix flow download link Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-10 21:47:40 +02:00
Jens Langhammer	d878d2140e	providers/saml: add metadata download link to api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-10 14:06:44 +02:00
Jens L	34ae9e6dab	API: add endpoint to show by what objects an object is used (#995 ) * core: add used_by API to show what objects are affected before deletion Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/elements: add support for used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: add authentik_used_by_shadows to shadow other models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: implement used_by API Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : fix duplicate imports Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add action field to used_by api Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add UI for used_by action Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: add notice to tenant form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix naming in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: check length for used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * core: fix used_by for non-pk models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * : improve __str__ on models Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> core: add support for many to many in used_by Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-10 11:58:12 +02:00
Jens L	dad24c03ff	outposts: set cookies for a domain to authenticate an entire domain (#971 ) * outposts: initial cookie domain implementation Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add cookie domain setting Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: replace forward_auth_mode with general mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: rebuild proxy provider form Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: re-add forward_auth_mode for backwards compat Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix data.mode not being set Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * root: always set log level to debug when testing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: use new mode attribute Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: only ingress /akprox on forward_domain Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * providers/proxy: fix lint error Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix error on ProxyProviderForm when not using proxy mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: fix default for outpost form's type missing Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/admin: add additional desc for proxy modes Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts: fix service account permissions not always being updated Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost/proxy: fix redirecting to incorrect host for domain mode Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: improve error handling for network errors Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outpost: fix image naming not matching main imaeg Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: fix redirects for domain mode and traefik Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web: fix colour for paragraphs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix consent stage not showing permissions correctly Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: add domain-level docs Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * website/docs: fix broken links Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * outposts/proxy: remove dead code Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * web/flows: fix missing id for #header-text Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-06-08 23:10:17 +02:00
Jens Langhammer	e295f18e78	web/admin: fix error when importing SAML Metadata closes #948 Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-31 22:26:24 +02:00
Jens Langhammer	11607622a3	web/admin: fix proxy provider's certificate not being optional Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-30 00:22:58 +02:00
Jens Langhammer	8183a51b72	stages/authenticator_duo: add missing duo device Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>	2021-05-24 22:16:29 +02:00
Jens Langhammer	9b57f0b81d	Merge branch 'version-2021.5' into next Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> # Conflicts: # web/src/locales/en.po # web/src/locales/pseudo-LOCALE.po	2021-05-22 20:01:16 +02:00

1 2 3

135 commits