Jens L
|
3c1b70c355
|
outposts/proxyv2 (#1365)
* outposts/proxyv2: initial commit
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add rs256
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
more stuff
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add forward auth an sign_out
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
match cookie name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
re-add support for rs256 for backwards compat
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add error handler
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
ensure unique user-agent is used
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
set cookie duration based on id_token expiry
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
build proxy v2
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add ssl
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add basic auth and custom header support
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add application cert loading
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
implement whitelist
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add redis
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
migrate embedded outpost to v2
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
remove old proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
providers/proxy: make token expiration configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
add metrics
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
fix tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* providers/proxy: only allow one redirect URI
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix docker build for proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove default port offset
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* add AUTHENTIK_HOST_BROWSER
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests: fix e2e/integration tests not using proper tags
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* remove references of old port
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* fix user_attributes not being loaded correctly
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup dependencies
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* cleanup
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-09-08 18:04:56 +00:00 |
Jens L
|
859cf2bd8f
|
lib: move id and key generators to lib (#1286)
* lib: move generators to lib
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* core: bump default token key size
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* *: fix split being used for http basic auth instead of partition
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/elements: don't rethrow error in ActionButton
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-23 20:27:38 +02:00 |
dependabot[bot]
|
7efec281be
|
build(deps-dev): bump pylint from 2.9.6 to 2.10.2 (#1280)
* build(deps-dev): bump pylint from 2.9.6 to 2.10.2
Bumps [pylint](https://github.com/PyCQA/pylint) from 2.9.6 to 2.10.2.
- [Release notes](https://github.com/PyCQA/pylint/releases)
- [Changelog](https://github.com/PyCQA/pylint/blob/main/ChangeLog)
- [Commits](https://github.com/PyCQA/pylint/compare/v2.9.6...v2.10.2)
---
updated-dependencies:
- dependency-name: pylint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* *: add missing encoding to open() calls
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-23 10:10:31 +02:00 |
Jens Langhammer
|
b003e8e1e8
|
sources/oauth: fix openidconnect provider name
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-21 18:36:06 +02:00 |
Jens Langhammer
|
0c9c3153b5
|
tests/e2e: fix LDAP provider tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-10 14:10:06 +02:00 |
Jens Langhammer
|
77ed25ae34
|
root: reformat to 100 line width
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-08-03 17:45:16 +02:00 |
Jens Langhammer
|
acbc0ee5cc
|
Revert "tests: re-add firefox e2e tests"
This reverts commit a60f6e426f .
|
2021-07-29 19:45:12 +02:00 |
Jens Langhammer
|
a60f6e426f
|
tests: re-add firefox e2e tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 18:52:59 +02:00 |
Jens Langhammer
|
6fd86aa357
|
e2e: fix broken selenium by locking images
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 18:49:08 +02:00 |
Jens Langhammer
|
f1e32b989d
|
Revert "tests: add firefox e2e tests"
This reverts commit 5693a794b4 .
|
2021-07-29 18:02:46 +02:00 |
Jens Langhammer
|
6aebbec270
|
Revert "tests/e2e: remove chrome requirement"
This reverts commit b86fd7b716 .
|
2021-07-29 18:02:42 +02:00 |
Jens Langhammer
|
b86fd7b716
|
tests/e2e: remove chrome requirement
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 15:24:54 +02:00 |
Jens Langhammer
|
5693a794b4
|
tests: add firefox e2e tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 15:07:13 +02:00 |
Jens L
|
f01bc20d44
|
Embedded outpost (#1193)
* api: allow API requests as managed outpost's account when using secret_key
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: load secret key from env
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outposts: make listener IP configurable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost/proxy: run outpost in background and pass requests conditionally
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* outpost: unify branding to embedded
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: fix embedded outpost not being editable
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: fix mismatched host detection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: fix LDAP test not including user for embedded outpost
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* tests/e2e: fix user matching
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* api: add tests for secret_key auth
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* root: load environment variables using github.com/Netflix/go-env
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-29 11:30:30 +02:00 |
Jens Langhammer
|
148194e12b
|
tests/e2e: add LDAPS bind tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-19 13:26:36 +02:00 |
Jens Langhammer
|
83d2c442a5
|
tests/e2e: fix ldap tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-18 22:43:35 +02:00 |
Jens Langhammer
|
4fe0bd4b6c
|
tests/e2e: fix e2e tests for ldap provider
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-14 10:10:11 +02:00 |
Jens Langhammer
|
df92111296
|
outposts: update outpost permissions on m2m change
closes #1105
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-04 19:37:12 +02:00 |
Jens Langhammer
|
4709dca33c
|
outposts/proxy: always redirect to session-end interface on sign_out
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-01 16:51:36 +02:00 |
Jens Langhammer
|
3979b0bde7
|
tests/e2e: ensure superuser group is created
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-01 12:16:58 +02:00 |
Jens Langhammer
|
4280847bcc
|
tests/e2e: add LDAP bind and search tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-07-01 11:51:07 +02:00 |
Jens Langhammer
|
ef77a4b64e
|
tests/e2e: fix provider test image
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-19 22:11:09 +02:00 |
Jens Langhammer
|
405c690193
|
tests/e2e: test additionalHeaders with proxy
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-19 12:40:24 +02:00 |
Jens Langhammer
|
ae8cf00a21
|
tests/e2e: switch to ghcr images
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-08 15:32:23 +02:00 |
Jens Langhammer
|
9180d448df
|
core: move end-session to core
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-06 13:56:38 +02:00 |
Jens Langhammer
|
f996f9d4e3
|
tests/e2e: ensure outpost service account has correct permissions
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-04 09:46:31 +02:00 |
Jens Langhammer
|
e9621bae06
|
tests: show logs for containers on failed e2e tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-03 22:17:18 +02:00 |
Jens Langhammer
|
5e3628bea6
|
core: add fallback URLs for websocket to cleanup test logs
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-06-03 17:26:18 +02:00 |
Jens Langhammer
|
02411bb543
|
tests/e2e: fix IdentificationStage not having sources set
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-25 17:35:24 +02:00 |
Jens Langhammer
|
6893948fa0
|
tests/e2e: fix invalid flows
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-25 11:18:47 +02:00 |
Jens Langhammer
|
bc39320f86
|
tests/e2e: fix flow titles not being set
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-25 09:50:03 +02:00 |
Jens Langhammer
|
c6bb6709fd
|
flows: add default challenge response
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-24 20:27:50 +02:00 |
Jens Langhammer
|
9bdd6f23a4
|
website/docs: add ldap example, use ghcr
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-14 11:19:09 +02:00 |
Jens Langhammer
|
919f293fc7
|
tests/e2e: fix redirect_uri
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-13 13:09:30 +02:00 |
Jens Langhammer
|
be21a5d172
|
sources/plex: add general tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-03 21:55:55 +02:00 |
Jens Langhammer
|
ea2f623955
|
tests/e2e: update e2e tests for new source login button
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-03 21:40:45 +02:00 |
Jens Langhammer
|
2507c0eec9
|
stages/invitation: fix linting
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-05-03 12:44:19 +02:00 |
Jens Langhammer
|
b8a566f4a0
|
outposts: move local connection check to task, run every 60 minutes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-21 11:34:48 +02:00 |
Jens Langhammer
|
76131e40ec
|
tests/e2e: monkey patch OAuth1 test instead of setting URLs manually
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-20 20:03:20 +02:00 |
Jens Langhammer
|
05cc8e2b51
|
tests: only create selenium_screenshots/ on error
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-02 23:23:09 +02:00 |
Jens Langhammer
|
b299451cab
|
providers/saml: fix metadata download not being unauthenticated
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-04-01 20:16:07 +02:00 |
Jens Langhammer
|
bfa0c46588
|
tests/e2e: fix source tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-30 11:05:31 +02:00 |
Jens Langhammer
|
69ee18e13d
|
Merge branch 'master' into new-forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
# Conflicts:
# Pipfile.lock
# authentik/api/decorators.py
# authentik/core/api/applications.py
# authentik/core/api/users.py
# authentik/events/api/event.py
# authentik/events/api/notification_transport.py
# authentik/flows/api/flows.py
# swagger.yaml
|
2021-03-30 10:26:18 +02:00 |
dependabot[bot]
|
c180a521ec
|
build(deps-dev): bump pylint from 2.7.2 to 2.7.3 (#674)
* build(deps-dev): bump pylint from 2.7.2 to 2.7.3
Bumps [pylint](https://github.com/PyCQA/pylint) from 2.7.2 to 2.7.3.
- [Release notes](https://github.com/PyCQA/pylint/releases)
- [Changelog](https://github.com/PyCQA/pylint/blob/master/ChangeLog)
- [Commits](https://github.com/PyCQA/pylint/compare/pylint-2.7.2...pylint-2.7.3)
Signed-off-by: dependabot[bot] <support@github.com>
* sources/saml: fix linting for SAMLBindingTypes.Redirect
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* sources/oauth: Fix linting for RequestKind
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* flows: fix linting for ChallengeTypes
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-30 10:05:14 +02:00 |
Jens Langhammer
|
fe4791c216
|
web: initial implementation of new forms
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-25 00:05:11 +01:00 |
Jens Langhammer
|
533a719914
|
sources/oauth: migrate to webcomponents
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-24 20:35:00 +01:00 |
Jens Langhammer
|
17f7a97ef3
|
sources/oauth2: add API For UserSourceConnection
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-24 14:46:08 +01:00 |
Jens Langhammer
|
dce869b566
|
flows: fix post-email continuation not working
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-24 12:46:54 +01:00 |
Jens Langhammer
|
4612cea970
|
sources/saml: replace server-side pre-auth views for pre_auth flow
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-24 09:22:15 +01:00 |
Jens Langhammer
|
80cc0fcc61
|
tests: use dex from ghcr
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
|
2021-03-22 22:27:57 +01:00 |