ab8b37a899
events: fix ignored instances not being a tuple
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-25 11:19:58 +02:00
9077eff34d
root: add silk and debugging views
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-21 22:38:32 +02:00
2399fa456b
policies: fix current user not being set in server-side policy deny
...
closes #2039
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-21 22:30:27 +02:00
0b4ac54363
*: default to max 60 for fqdn_rand
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-20 20:07:25 +02:00
1a1434bfda
*: decrease frequency of background tasks, smear tasks based on name and fqdn
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2159
2022-04-20 18:43:40 +02:00
d283a5236c
core: add custom shell command which imports all models and creates events for model events
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-17 18:14:57 +02:00
e4486b98fc
web: Update Web API Client version ( #2733 )
...
Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: BeryJu <BeryJu@users.noreply.github.com>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-17 17:05:43 +02:00
778065f468
core: add flag to globally disable impersonation
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-17 16:52:55 +02:00
70794d79dd
sources/oauth: Fix wording for OAuth source names ( #2732 )
2022-04-17 16:40:10 +02:00
a3bb5d89cc
events: fix created events only being logged as debug level
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-14 22:37:30 +02:00
f4f9f525d7
providers/oauth2: include application in login event
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-14 22:36:45 +02:00
4c14e88a25
flows: pin dependency in migration
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-14 22:28:26 +02:00
7561ea15de
providers/oauth2: add additional tracing to token view
2022-04-14 16:48:17 +00:00
8242b09394
flows: handle flow title formatting error better, add user to flow title context
2022-04-14 13:56:20 +00:00
9b9c0fe663
release: 2022.4.1
2022-04-12 22:07:34 +02:00
5a58f6ee64
providers/oauth2: remove test for non sa user
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-12 20:35:13 +02:00
e84b17d550
providers/oauth2: don't force service accounts for client_credentials flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-12 10:23:25 +02:00
9da439623b
stages/authenticator_duo: fix bad request being sent to duo when calling enrollment_status outside a flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2666
2022-04-11 21:02:32 +02:00
957bb1c5ef
core: make generated token length configurable
...
closes #2574
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-11 20:57:16 +02:00
2303a97bb9
core: add method to set key of token
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2574
2022-04-11 20:43:39 +02:00
8be04cc013
providers/oauth2: fix elliptic curve keys attempting to use EC256 instead of ES256
...
closes #2703
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-11 20:05:58 +02:00
cca33a74b6
core: fix error when checking generated users with no expiry
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-10 17:53:46 +02:00
f977bf61eb
providers/oauth2: make exp optional on jwt client_credentials flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-10 17:25:35 +02:00
f8f8a9bbb9
providers/oauth2: give keypairs private key preference over certificate in client_credentials jwt flow
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-10 16:27:53 +02:00
e64ca4ab04
core: fix lint error
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-08 10:10:30 +02:00
e2f0a76309
outposts: check if docker ports should be mapped before comparing ports
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-07 17:30:33 +02:00
5861d41ad3
tenants: add tenant-level attributes, applied to users based on request
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-06 10:41:35 +02:00
20262f3f4b
core: mark provider_obj as read_only
...
closes #2637
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-04 10:17:59 +02:00
633296503d
core: add grouping to applications ( #2648 )
...
* core: add grouping to applications
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* core: add new field to tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-02 23:08:58 +02:00
508cec2fd5
web: migrate dropdowns to wizards ( #2633 )
...
* web/admin: add basic wizards for providers
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web: add dark mode for wizard
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* web/admin: migrate policies to wizard
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* start source
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* policies: sanitze_dict when returning log messages during tests
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
* Revert "web/admin: migrate policies to wizard"
This reverts commit d8b7f62d3e
2022-04-02 19:48:17 +02:00
7a93614e4b
policies: fix tests
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-02 18:31:02 +02:00
4f319eaa4f
policies/dummy: bump to info to always get message
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-02 17:28:51 +02:00
86a8d00b3f
policies: sanitze_dict when returning log messages during tests
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-02 17:15:44 +02:00
5fe8c1f3d7
policies: fix missing default for log_messages
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-02 16:44:49 +02:00
d84ff2bbca
policies: add policy log messages to test endpoints
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-04-01 22:07:35 +02:00
4be238018b
providers/oauth2: pass scope and other parameters to access policy request context
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2641
2022-04-01 21:39:05 +02:00
99008252f8
providers/oauth2: fix verification_keys being required
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-31 20:19:13 +02:00
8689444954
providers/oauth2: add password grant support (treated as client_credentials)
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-31 18:02:17 +02:00
bb8af2f19b
providers/oauth2: add client_assertion_type jwt bearer support ( #2618 )
2022-03-31 00:30:55 +02:00
996bd05ba6
api: fix API header auth not passing to next auth method
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-31 00:06:01 +02:00
a1a64e25ee
api: remove legacy http basic auth
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-30 23:39:08 +02:00
993c6472db
crypto: only count discovered when cert was loaded successfully
2022-03-28 08:58:23 +00:00
123b0b2f05
core: fix pylint renamed variable
2022-03-28 08:58:13 +00:00
7cbd5174f0
stages/invitation: fix tests
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-26 19:12:22 +01:00
c7a83e6182
stages/invitation: add invitation name
...
closes #2583
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-26 18:32:59 +01:00
74ff9d04dd
stages/prompt: set field default based on placeholder, fix duplicate fields
...
closes #2572
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-23 22:26:06 +01:00
969902f503
stages/prompt: filter rest_framework.fields.empty when field is not required
...
closes #2572
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
2022-03-23 20:21:12 +01:00
04372e21dd
events: handle types in event contexts
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2572
2022-03-23 19:49:55 +01:00
d75a864f0e
providers/oauth2: map internal groups to GitHub teams in GHE OAuth emulation ( #2497 )
...
* providers/oauth2: impl `/user/teams` endpoint for Github OAuth2
This commit adds a functional `/user/teams` endpoint for the emulated Github OAuth2 service.
The teams a user is part of are based on the user's groups in Authentik.
* providers/oauth2: Move org template inside loop; Change slug to use Django slugify
* providers/oauth2: Remove placeholder replacement
* Possibly fix complaints from the linters
* Update github.py
* Change organization name
* Update github.py
2022-03-23 12:05:20 +01:00
0c2b32da31
core: add num_pk to group for applications that need a numerical group id
...
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
#2497
2022-03-22 21:37:11 +01:00
Jens Langhammer
github-actions[bot]
Behn
Adam G