authentik

authentik fork

authentication authentik authorization kubernetes oauth2 oauth2-client oauth2-server oidc oidc-client oidc-provider proxy reverse-proxy saml saml-idp saml-sp security sso

This repository has been archived on 2024-05-31. You can view files and clone it, but cannot push or open issues or pull requests.

Go to file

dependabot-preview[bot] 8b17e8be99 build(deps): bump codemirror in /passbook/static/static (#185 ) Bumps [codemirror](https://github.com/codemirror/CodeMirror) from 5.56.0 to 5.57.0. - [Release notes](https://github.com/codemirror/CodeMirror/releases) - [Changelog](https://github.com/codemirror/CodeMirror/blob/master/CHANGELOG.md) - [Commits](https://github.com/codemirror/CodeMirror/compare/5.56.0...5.57.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>		2020-08-21 10:52:03 +02:00
.github	root: fix sentry's being passed incorrectly	2020-08-20 23:12:54 +02:00
docker	docker: fix import order on wait_for_db	2020-05-16 22:56:14 +02:00
docs	root: when error_reporting is enabled, don't sent pii data by default	2020-08-20 22:19:49 +02:00
e2e	*: fix general Linting errors	2020-08-19 10:49:14 +02:00
gatekeeper	gatekeeper: fix non-existent templates being copied	2020-07-25 22:13:15 +02:00
helm	root: when error_reporting is enabled, don't sent pii data by default	2020-08-20 22:19:49 +02:00
passbook	build(deps): bump codemirror in /passbook/static/static (#185 )	2020-08-21 10:52:03 +02:00
scripts	OAuth Provider Rewrite (#182 )	2020-08-19 10:32:44 +02:00
.bumpversion.cfg	new release: 0.9.0-stable	2020-08-01 22:17:59 +02:00
.coveragerc	sources/ldap: improve unittests	2020-07-10 20:21:51 +02:00
.dockerignore	ui: update static docker image to download NPM modules	2020-02-21 15:33:54 +01:00
.editorconfig	repo cleanup, switch to new docker registry	2019-04-29 17:05:39 +02:00
.gitignore	e2e: Add denied tests for oauth and oidc provider	2020-07-02 21:55:02 +02:00
.isort.cfg	root: add process ID to logging output	2020-02-24 13:20:32 +01:00
.prospector.yaml	root: fix pylint not correctly ignoring migrations	2020-05-27 11:15:10 +02:00
.pylintrc	OAuth Provider Rewrite (#182 )	2020-08-19 10:32:44 +02:00
Dockerfile	root: rewrite bootstrap in python, remove management command	2020-05-16 22:46:17 +02:00
LICENSE	repo cleanup, switch to new docker registry	2019-04-29 17:05:39 +02:00
Pipfile	Replace Elastic APM with Sentry APM (#183 )	2020-08-20 20:39:21 +02:00
Pipfile.lock	build(deps): bump boto3 from 1.14.45 to 1.14.47 (#186 )	2020-08-21 10:34:16 +02:00
README.md	Replace Elastic APM with Sentry APM (#183 )	2020-08-20 20:39:21 +02:00
SECURITY.md	fix/Spelling error in SECURITY.md	2020-08-01 21:38:07 +01:00
azure-pipelines.yml	ci: fix database connections failing	2020-07-14 22:55:30 +02:00
docker-compose.yml	root: fix /favicon being routed to application server	2020-07-08 13:18:08 +02:00
docker.env.yml	e2e: add apply_default_data to load data from migrations after tables have been truncated	2020-06-07 19:31:16 +02:00
manage.py	e2e: add OIDC Provider test against grafana, more formatting, minor bug fixes	2020-06-19 19:45:27 +02:00
mkdocs.yml	*: make email naming consistent	2020-06-18 19:35:59 +02:00
pyrightconfig.json	stages/password: fix possibility of password in logs	2020-05-09 20:53:32 +02:00
setup.cfg	OAuth Provider Rewrite (#182 )	2020-08-19 10:32:44 +02:00
static.Dockerfile	providers/oidc: fix skip_authorization not being synced to oidc_client	2020-03-02 17:40:38 +01:00
swagger.yaml	OAuth Provider Rewrite (#182 )	2020-08-19 10:32:44 +02:00

README.md

passbook

What is passbook?

passbook is an open-source Identity Provider focused on flexibility and versatility. You can use passbook in an existing environment to add support for new protocols. passbook is also a great solution for implementing signup/recovery/etc in your application, so you don't have to deal with it.

Installation

For small/test setups it is recommended to use docker-compose.

wget https://raw.githubusercontent.com/BeryJu/passbook/master/docker-compose.yml
# Optionally enable Error-reporting
# export PASSBOOK_ERROR_REPORTING=true
# Optionally deploy a different version
# export PASSBOOK_TAG=0.9.0-stable
# If this is a productive installation, set a different PostgreSQL Password
# export PG_PASS=$(pwgen 40 1)
docker-compose pull
docker-compose up -d
docker-compose exec server ./manage.py migrate

For bigger setups, there is a Helm Chart in the helm/ directory. This is documented here

Screenshots

Development

To develop on passbook, you need a system with Python 3.7+ (3.8 is recommended). passbook uses pipenv for managing dependencies.

To get started, run

python3 -m pip install pipenv
git clone https://github.com/BeryJu/passbook.git
cd passbook
pipenv shell
pipenv sync -d

Since passbook uses PostgreSQL-specific fields, you also need a local PostgreSQL instance to develop. passbook also uses redis for caching and message queueing. For these databases you can use Postgres.app and Redis.app on macOS or use it the docker-compose file in scripts/docker-compose.yml.

To tell passbook about these databases, create a file in the project root called local.env.yml with the following contents:

debug: true
postgresql:
  user: postgres

log_level: debug

Security

See SECURITY.md