bd42e24cd5
start on handlers
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:20 +02:00
f094fce1c4
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:20 +02:00
d6a5a89c57
extract some logic from lookup app for future use with embedded outpost
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:20 +02:00
c8e9eba971
move to cert store
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:19 +02:00
a28bc6fbda
on start and signal, reload immediately, don't wait for reload offset
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:19 +02:00
c2e8494a9d
tls certificates
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:18 +02:00
db425f9628
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:02 +02:00
4abb136b44
start on application router
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:02 +02:00
b260aeed50
continue on handlers
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:02 +02:00
1df0de1662
wip
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:02 +02:00
890bb60877
add container
...
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:51:01 +02:00
9c4905bf5f
outpost basics and refresh logic
...
commit 04669c9f857ecb0b47a5303958bf02de196ba4e9
Merge: 7ff008d6d6 620387f294marc.schmitt@risson.space >
Date: Mon Apr 27 15:36:33 2026 +0200
Merge branch 'main' into rust-proxy
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 7ff008d6d6119d96dceb3d2491feabbfc2f19f26
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Fri Apr 24 16:47:38 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 5ad0150fe4e56a59acebd13a2b2915a727608761
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Fri Apr 24 15:19:32 2026 +0200
fix page size
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 4f52a79c6af382b61cc3e6d01a477f27fbf417ba
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Fri Apr 24 14:53:04 2026 +0200
application refresh
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit a8b8a81375ec642a43ff267e488e99ee3e063fc6
Merge: 31e7b1dc4b 0459568a96marc.schmitt@risson.space >
Date: Fri Apr 24 13:54:38 2026 +0200
Merge branch 'main' into rust-proxy
commit 31e7b1dc4b8ae5e922e889292f419dea066072e9
Merge: 2cb3df2a60 8bf7efecfdmarc.schmitt@risson.space >
Date: Thu Apr 23 15:46:53 2026 +0200
Merge branch 'rust-worker-2' into rust-proxy
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 8bf7efecfdmarc.schmitt@risson.space >
Date: Thu Apr 23 15:33:30 2026 +0200
fix lint
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit b1ceb28f711fec16b8e039e6c41566marc.schmitt@risson.space >
Date: Thu Apr 23 15:26:14 2026 +0200
Merge branch 'main' into rust-worker-2
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 2cb3df2a6003b9828829226a6fdae581a668637d
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 19:00:42 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 542688179737ea2ba2018fbc63189cc51a5364fd
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 19:00:26 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 3f703bb21b06950c786e6f50d19b112916b38901
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 18:23:54 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit b3c0a50f914aa87a7e36b76d38cd782249d31ce0
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 16:46:54 2026 +0200
metrics and logging
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 1fec16b8e0marc.schmitt@risson.space >
Date: Thu Apr 16 13:40:07 2026 +0200
run -> start
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 8657d74dc9marc.schmitt@risson.space >
Date: Thu Apr 2 13:22:10 2026 +0200
root: init rust worker
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 347df15f508a7e1422109a6b6315ad99a4eadb4b
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 14:00:28 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit cf2ed15ceda53604f8224554a77b27b80f753d2f
Merge: dc1d99288f b220e80a0d
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 13:42:43 2026 +0200
Merge branch 'rust-worker-2' into rust-proxy
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit b220e80a0d1c94552d5cbe8ad41f6c0b1ebba84a
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 16 13:40:07 2026 +0200
run -> start
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 54f6b5c73c0721770b812f09fc37ca8cfd9961ef
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 2 13:22:10 2026 +0200
root: init rust worker
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 9fad68bdada9bfb36607b05e79ec3fb8962e12cf
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:12:01 2026 +0200
packages/ak-common/tracing: get sentry config from API for outposts
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit dc1d99288f6c95dd3e9215fae121c16938c14d24
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:51:28 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 8fb795ec8963c47cd48e81046a7d7f88c33317ff
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:41:40 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit f8f84f5f0b15d1a5bee057effc949dc86d34c819
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:41:33 2026 +0200
fixup
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 58125584635dce8a940df2065c44d002b39d0ca8
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:38:06 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 513462f78df5e1bf99267ead7e10b5bf1a5e14e7
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:38:02 2026 +0200
fixup
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 833912b71241a72dec09981f0d3ad77e7ab4e541
Merge: 9fba928666 78a4b06ab3
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:32:31 2026 +0200
Merge branch 'rust-worker-2' into rust-proxy
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 78a4b06ab3e43f5d5c3c42d33b2a364e08e89136
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 2 13:22:10 2026 +0200
root: init rust worker
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit c38e3cbbcfc5ba7dc1ce906c3ff50aa34c2c94e1
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 17:12:01 2026 +0200
packages/ak-common/tracing: get sentry config from API for outposts
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 9fba928666d7f7990558ca0fa3b170ef77585386
Merge: ce8f33416e 668f37ea41marc.schmitt@risson.space >
Date: Wed Apr 15 17:16:50 2026 +0200
Merge branch 'main' into rust-proxy
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit ce8f33416ec479a745551cbdffe9ff133136d237
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Wed Apr 15 16:41:26 2026 +0200
ws
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 6308ec3360fa122856e94b383888ae83d979fee0
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Tue Apr 14 15:04:03 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit 915bf6942eda4b067fecd53651c17b9587578bb6
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Fri Apr 10 17:16:32 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit e63d2afb293d50d6b30e65387bfe07182cc57eb3
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Fri Apr 10 14:10:05 2026 +0200
wip
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
commit d103cea26a8115545edeab4a11b78f5fd37c2a7a
Author: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Date: Thu Apr 2 13:22:10 2026 +0200
root: init rust worker
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 14:50:46 +02:00
a321c69eb5
core: bump sqlx from 0.8.6 to 0.9.0 ( #22754 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
2026-06-17 12:27:24 +00:00
ca2cf8164a
core: bump goauthentik/fips-python from 5f8db05 to be4a3b1 in /lifecycle/container ( #23155 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-17 13:54:52 +02:00
91ef9e0d69
core, web: update translations ( #23150 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2026-06-17 13:54:46 +02:00
a7a8ad8880
core: bump axllent/mailpit from v1.30.1 to v1.30.2 in /tests/e2e ( #23154 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-17 13:54:36 +02:00
06b1038264
core: bump time from 0.3.47 to 0.3.49 ( #23157 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-17 13:54:31 +02:00
edc057264d
website/integrations: microsoft 365: add missing msgraph scope ( #23158 )
...
Add missing MS Graph Scope
Signed-off-by: Miha Frangež <miha.frangez@gmail.com >
2026-06-17 11:10:31 +00:00
ee40107cd9
web/i18n: Fix stale flow locale, unsynchronized locale selector options ( #23007 )
...
* Track local event, refresh on change.
* Fix stale language selector value when switching between non-English entries.
2026-06-17 01:48:49 +02:00
57530f5b33
website/integrations: gravity: cleanup ( #23109 )
...
* website/integrations: gravity: cleanup
Agent-thread: https://sdko.org/internal/thr/ak/019eccfc-671e-7660-9388-b64352317c6f
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <gptagent@svc.sdko.net >
* fix
---------
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 23:15:45 +01:00
093514f44d
website: bump the build group across 1 directory with 9 updates ( #23050 )
...
* website: bump the build group across 1 directory with 9 updates
Bumps the build group with 9 updates in the /website directory:
| Package | From | To |
| --- | --- | --- |
| [@rspack/binding-darwin-arm64](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack ) | `2.0.6` | `2.0.8` |
| [@rspack/binding-linux-arm64-gnu](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack ) | `2.0.6` | `2.0.8` |
| [@rspack/binding-linux-x64-gnu](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack ) | `2.0.6` | `2.0.8` |
| [@swc/core-darwin-arm64](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
| [@swc/core-linux-arm64-gnu](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
| [@swc/core-linux-x64-gnu](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
| [@swc/html-darwin-arm64](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
| [@swc/html-linux-arm64-gnu](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
| [@swc/html-linux-x64-gnu](https://github.com/swc-project/swc ) | `1.15.40` | `1.15.41` |
Updates `@rspack/binding-darwin-arm64` from 2.0.6 to 2.0.8
- [Release notes](https://github.com/web-infra-dev/rspack/releases )
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.8/packages/rspack )
Updates `@rspack/binding-linux-arm64-gnu` from 2.0.6 to 2.0.8
- [Release notes](https://github.com/web-infra-dev/rspack/releases )
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.8/packages/rspack )
Updates `@rspack/binding-linux-x64-gnu` from 2.0.6 to 2.0.8
- [Release notes](https://github.com/web-infra-dev/rspack/releases )
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.8/packages/rspack )
Updates `@swc/core-darwin-arm64` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
Updates `@swc/core-linux-arm64-gnu` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
Updates `@swc/core-linux-x64-gnu` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
Updates `@swc/html-darwin-arm64` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
Updates `@swc/html-linux-arm64-gnu` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
Updates `@swc/html-linux-x64-gnu` from 1.15.40 to 1.15.41
- [Release notes](https://github.com/swc-project/swc/releases )
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/swc-project/swc/compare/v1.15.40...v1.15.41 )
---
updated-dependencies:
- dependency-name: "@rspack/binding-darwin-arm64"
dependency-version: 2.0.8
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@rspack/binding-linux-arm64-gnu"
dependency-version: 2.0.8
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@rspack/binding-linux-x64-gnu"
dependency-version: 2.0.8
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/core-darwin-arm64"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/core-linux-arm64-gnu"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/core-linux-x64-gnu"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/html-darwin-arm64"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/html-linux-arm64-gnu"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
- dependency-name: "@swc/html-linux-x64-gnu"
dependency-version: 1.15.41
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: build
...
Signed-off-by: dependabot[bot] <support@github.com >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-06-16 22:13:55 +02:00
83a56d82ed
website: bump semver from 7.8.2 to 7.8.4 in /website ( #23051 )
...
* website: bump semver from 7.8.2 to 7.8.4 in /website
Bumps [semver](https://github.com/npm/node-semver ) from 7.8.2 to 7.8.4.
- [Release notes](https://github.com/npm/node-semver/releases )
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md )
- [Commits](https://github.com/npm/node-semver/compare/v7.8.2...v7.8.4 )
---
updated-dependencies:
- dependency-name: semver
dependency-version: 7.8.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-06-16 22:13:47 +02:00
6986cc7bab
web: bump the rollup group across 1 directory with 6 updates ( #23028 )
...
* web: bump the rollup group across 1 directory with 6 updates
Bumps the rollup group with 6 updates in the /web directory:
| Package | From | To |
| --- | --- | --- |
| [@rollup/rollup-darwin-arm64](https://github.com/rollup/rollup ) | `4.60.0` | `4.61.1` |
| [@rollup/rollup-linux-arm64-gnu](https://github.com/rollup/rollup ) | `4.60.0` | `4.61.1` |
| [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup ) | `4.60.0` | `4.61.1` |
| [@rollup/plugin-commonjs](https://github.com/rollup/plugins/tree/HEAD/packages/commonjs ) | `29.0.2` | `29.0.3` |
| [@rollup/plugin-swc](https://github.com/rollup/plugins/tree/HEAD/packages/swc ) | `0.4.0` | `0.4.1` |
| [rollup](https://github.com/rollup/rollup ) | `4.60.0` | `4.61.1` |
Updates `@rollup/rollup-darwin-arm64` from 4.60.0 to 4.61.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.60.0...v4.61.1 )
Updates `@rollup/rollup-linux-arm64-gnu` from 4.60.0 to 4.61.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.60.0...v4.61.1 )
Updates `@rollup/rollup-linux-x64-gnu` from 4.60.0 to 4.61.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.60.0...v4.61.1 )
Updates `@rollup/plugin-commonjs` from 29.0.2 to 29.0.3
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/commonjs/CHANGELOG.md )
- [Commits](https://github.com/rollup/plugins/commits/commonjs-v29.0.3/packages/commonjs )
Updates `@rollup/plugin-swc` from 0.4.0 to 0.4.1
- [Changelog](https://github.com/rollup/plugins/blob/master/packages/swc/CHANGELOG.md )
- [Commits](https://github.com/rollup/plugins/commits/swc-v0.4.1/packages/swc )
Updates `rollup` from 4.60.0 to 4.61.1
- [Release notes](https://github.com/rollup/rollup/releases )
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rollup/rollup/compare/v4.60.0...v4.61.1 )
---
updated-dependencies:
- dependency-name: "@rollup/plugin-commonjs"
dependency-version: 29.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
- dependency-name: "@rollup/plugin-swc"
dependency-version: 0.4.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: rollup
- dependency-name: "@rollup/rollup-darwin-arm64"
dependency-version: 4.61.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: rollup
- dependency-name: "@rollup/rollup-linux-arm64-gnu"
dependency-version: 4.61.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: rollup
- dependency-name: "@rollup/rollup-linux-x64-gnu"
dependency-version: 4.61.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: rollup
- dependency-name: rollup
dependency-version: 4.61.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: rollup
...
Signed-off-by: dependabot[bot] <support@github.com >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-06-16 22:13:24 +02:00
15b72cc757
Web/doc: add documentation and wc-analyzer tags to ak-secret-text-input ( #23134 )
...
* ## What
window.authentik.flow = {
"layout": "{{ flow.layout }}",
+ "background": "{{ flow.background }}",
+ "title": "{{ flow.title }}",
};
Amends the `flow.html` template and `GlobalAuthentik` parser to include new parameters, `background` and `title`, in the flow-specific part of the configuration written to the HTML `<head>` object, and to provide those parameters to client code.
## Why
The `layout` is start-up critical: it tells the Flow interface how the admin wants the Flow page to look, and allows the HTML and CSS to be pre-aligned to that condition. `layout` is determined on a per-Flow bases, not a per-Stage basis; Flows are derived from a tuple of `(Brand, Application?)`, where the opening policy *may* direct a user to a different flow if the user reached authentik via a redirect from a specific application, but will otherwise fall back to the default Flow for the Brand.
The `background` is a field that is required if the `Flow`’s layout is of type `frame_background`; in this case, the part of the viewport not dedicated to the FlowExecutor is reserved for an `<iframe>` that will be filled in with whatever the administrator specifies. Although this gives it the same priority as `layout` (whether it’s provided or undefined) for describing the [chrome](https://developer.mozilla.org/en-US/docs/Glossary/Chrome ) around a challenge, it is currently not provided to the application in the start-up config; it is provided in the `challenge` and renders the IFrame as part of the initial challenge.
This patch fixes that; if `layout` is provided, `background` ought to be as well, even if it’s empty. The execution of a Challenge ought not have any influence over the look and feel of the Flow-defined appearance *around* that Challenge.
I have added `title` as well; with that, all of the current theme-and-appearance related configuration details are placed into `<head>` and can be removed from the FlowExecutor.
Server-side, `background` is currently specified: `background = FileField(blank=True, default="")` which is … interesting since we also appear to store URLs in it. I don’t see anything in the FlowSerializer that would change that from a client’s point of view.
This patch furthers the effort to separate flow execution from flow presentation.
- \[🐰 \] The code has been formatted (`make web`)
* web/update: update `secret text` to enable password-like inputs
# What
Adds a flag to ak-secret-text-input so that most secret texts are more password-like than plain-text-with-hidden. plain-text-with-hidden can still be enabled.
# Why
Some customers were uncomfortable with fields named “password” showing input as plain text during object creation.
* web/update: update `secret text` to enable password-like inputs
# What
Adds a flag to ak-secret-text-input so that most secret texts are more password-like than plain-text-with-hidden. plain-text-with-hidden can still be enabled.
# Why
Some customers were uncomfortable with fields named “password” showing input as plain text during object creation.
* web/update: update `ak-secret-text-input` documentation
Enforcing (part of) my “If you touched it and it’s not documented, now you have to document it” rule.
2026-06-16 19:05:18 +00:00
fadc14eddc
web: Fix stale clipboard tokens, untranslated labels ( #23063 )
...
* web: Fix stale clipboard tokens, untranslated labels.
* Fix tooltip.
* Fix type error.
* Update types.
* Fix types. Clean up composite.
* Fix label names.
* Fix broken HTML.
* Fix labels, formatters.
* Clean up properties, lifecyle.
2026-06-16 18:58:23 +00:00
52674afa8a
web/fix: clarify some secrets remain secret ( #23132 )
...
* ## What
window.authentik.flow = {
"layout": "{{ flow.layout }}",
+ "background": "{{ flow.background }}",
+ "title": "{{ flow.title }}",
};
Amends the `flow.html` template and `GlobalAuthentik` parser to include new parameters, `background` and `title`, in the flow-specific part of the configuration written to the HTML `<head>` object, and to provide those parameters to client code.
## Why
The `layout` is start-up critical: it tells the Flow interface how the admin wants the Flow page to look, and allows the HTML and CSS to be pre-aligned to that condition. `layout` is determined on a per-Flow bases, not a per-Stage basis; Flows are derived from a tuple of `(Brand, Application?)`, where the opening policy *may* direct a user to a different flow if the user reached authentik via a redirect from a specific application, but will otherwise fall back to the default Flow for the Brand.
The `background` is a field that is required if the `Flow`’s layout is of type `frame_background`; in this case, the part of the viewport not dedicated to the FlowExecutor is reserved for an `<iframe>` that will be filled in with whatever the administrator specifies. Although this gives it the same priority as `layout` (whether it’s provided or undefined) for describing the [chrome](https://developer.mozilla.org/en-US/docs/Glossary/Chrome ) around a challenge, it is currently not provided to the application in the start-up config; it is provided in the `challenge` and renders the IFrame as part of the initial challenge.
This patch fixes that; if `layout` is provided, `background` ought to be as well, even if it’s empty. The execution of a Challenge ought not have any influence over the look and feel of the Flow-defined appearance *around* that Challenge.
I have added `title` as well; with that, all of the current theme-and-appearance related configuration details are placed into `<head>` and can be removed from the FlowExecutor.
Server-side, `background` is currently specified: `background = FileField(blank=True, default="")` which is … interesting since we also appear to store URLs in it. I don’t see anything in the FlowSerializer that would change that from a client’s point of view.
This patch furthers the effort to separate flow execution from flow presentation.
- \[🐰 \] The code has been formatted (`make web`)
* web/update: update `secret text` to enable password-like inputs
# What
Adds a flag to ak-secret-text-input so that most secret texts are more password-like than plain-text-with-hidden. plain-text-with-hidden can still be enabled.
# Why
Some customers were uncomfortable with fields named “password” showing input as plain text during object creation.
* web/update: update `secret text` to enable password-like inputs
# What
Adds a flag to ak-secret-text-input so that most secret texts are more password-like than plain-text-with-hidden. plain-text-with-hidden can still be enabled.
# Why
Some customers were uncomfortable with fields named “password” showing input as plain text during object creation.
2026-06-16 10:05:49 -07:00
63f14fe215
core: fix Invitation Emails Ignoring Selected Template ( #23122 )
...
fix Invitation Emails Ignoring Selected Template
2026-06-16 13:24:53 -03:00
f85ae49250
website/integrations: Headscale: cleanup ( #23107 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccd0-37eb-7b40-ab31-46609a646b53
A7k-product: product
A7k-product-repo: 4
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 11:54:29 -04:00
640885d629
website/integrations: Tailscale: cleanup ( #23074 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccc1-b497-7c22-96d8-e461943d1a72
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 11:43:36 -04:00
7bdbfade30
website/docs: add Splunk event forwarding docs ( #22938 )
...
* website/docs: add Splunk event forwarding docs
Add Splunk HEC event forwarding under system event docs and keep the Splunk integration guide focused on SAML.
Closes : #22223
Agent-thread: https://sdko.org/internal/thr/ak/019ea8d4-d4e4-7fc3-b3b6-aa8a16bd8d40
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <agent@svc.sdko.net >
* website/docs: move Splunk event forwarding guide
Move the Splunk event forwarding guide into integrations and add an Events log forwarding overview that links to it.
Agent-thread: https://sdko.org/internal/thr/ak/019eb29e-1b34-7681-b887-e03907dac184
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <agent@svc.sdko.net >
* website/integrations: remove Splunk HEC port
Use the generic splunk.company HEC endpoint in the Splunk event forwarding guide instead of hardcoding a deployment-specific port.
Agent-thread: https://sdko.org/internal/thr/ak/019eb29e-1b34-7681-b887-e03907dac184
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <agent@svc.sdko.net >
* Update website/docs/sys-mgmt/events/log-forwarding.mdx
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Agent <agent@svc.sdko.net >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-16 11:43:18 -04:00
ff7655d4cb
web: bump the react group across 1 directory with 3 updates ( #22997 )
...
Bumps the react group with 3 updates in the /web directory: [react](https://github.com/facebook/react/tree/HEAD/packages/react ), [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react ) and [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom ).
Updates `react` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react )
Updates `@types/react` from 19.2.14 to 19.2.17
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react )
Updates `react-dom` from 19.2.6 to 19.2.7
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/react/react/blob/main/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v19.2.7/packages/react-dom )
---
updated-dependencies:
- dependency-name: "@types/react"
dependency-version: 19.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: react
- dependency-name: react
dependency-version: 19.2.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: react
- dependency-name: react-dom
dependency-version: 19.2.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: react
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-16 17:34:34 +02:00
7f4a962095
web: bump form-data from 4.0.5 to 4.0.6 in /web ( #23128 )
...
Bumps [form-data](https://github.com/form-data/form-data ) from 4.0.5 to 4.0.6.
- [Release notes](https://github.com/form-data/form-data/releases )
- [Changelog](https://github.com/form-data/form-data/blob/master/CHANGELOG.md )
- [Commits](https://github.com/form-data/form-data/compare/v4.0.5...v4.0.6 )
---
updated-dependencies:
- dependency-name: form-data
dependency-version: 4.0.6
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-16 17:33:48 +02:00
ac1626a99a
website/integrations: pfSense: cleanup ( #23076 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccc1-ecfd-71d3-8a12-58b02d3a99a1
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 15:33:40 +00:00
a4e9f670d2
web: bump dompurify from 3.4.3 to 3.4.10 in /web ( #23130 )
...
Bumps [dompurify](https://github.com/cure53/DOMPurify ) from 3.4.3 to 3.4.10.
- [Release notes](https://github.com/cure53/DOMPurify/releases )
- [Commits](https://github.com/cure53/DOMPurify/compare/3.4.3...3.4.10 )
---
updated-dependencies:
- dependency-name: dompurify
dependency-version: 3.4.10
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-16 17:31:41 +02:00
abc4363e62
web: bump @babel/core from 7.29.0 to 7.29.7 ( #23131 )
...
Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core ) from 7.29.0 to 7.29.7.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.29.7/packages/babel-core )
---
updated-dependencies:
- dependency-name: "@babel/core"
dependency-version: 7.29.7
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-16 17:31:36 +02:00
aaf4a4e0fe
website/integrations: Anthropic Workload Identity Federation: cleanup ( #23072 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019ecc99-a704-70b0-9589-5d857f8ef7c4
A7k-product: product
A7k-product-repo: 4
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 15:56:30 +01:00
b658f7f6b8
website/integrations: Pangolin: cleanup ( #23075 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccc2-1f7d-79f0-b639-2f7e10eb0b3e
A7k-product: product
A7k-product-repo: 4
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 15:25:57 +01:00
40caedfbd0
web: Fix user list default paths. ( #23062 )
2026-06-16 15:57:08 +02:00
4104af4a45
core, web: update translations ( #23114 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2026-06-16 15:55:52 +02:00
81a3a544f0
core: bump sentry-sdk from 2.61.1 to 2.62.0 ( #23119 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-16 15:55:26 +02:00
fae37b08c8
core: bump library/golang from 3424c83 to bbf22dd in /lifecycle/container ( #23115 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-16 15:55:23 +02:00
9eeee3ffa7
core: bump library/nginx from 1df1a96 to 608a100 in /website ( #23117 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-16 15:55:19 +02:00
e032976eac
core: bump goauthentik/fips-python from 28d9ae4 to 5f8db05 in /lifecycle/container ( #23116 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-16 15:55:16 +02:00
fe8f3ea2f8
core: bump aws-cdk-lib from 2.258.0 to 2.258.1 ( #23120 )
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-16 15:55:06 +02:00
3ee427587c
website/integrations: GlobalProtect: cleanup ( #23112 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccfc-901d-76c3-b491-e3b1e6c581e5
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 11:51:15 +01:00
150df63432
website/integrations: FortiManager: cleanup ( #23110 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccfc-d6c2-7df3-ae39-4a4bd262c174
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 11:47:21 +01:00
720e819277
website/integrations: Atlassian Cloud: cleanup ( #23070 )
...
* website/integrations: Atlassian Cloud: cleanup
Agent-thread: https://sdko.org/internal/thr/ak/019ecc99-3a69-79d2-86fb-a145d7194b2a
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <gptagent@svc.sdko.net >
* Update website/integrations/platforms/atlassian/index.mdx
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Agent <gptagent@svc.sdko.net >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-16 09:25:51 +00:00
6df226188f
providers/scim: Add GitLab compatibility mode ( #22906 )
...
* providers/scim: Add GitLab compatibility mode
Add a GitLab SCIM compatibility mode that skips ServiceProviderConfig probing and document when to use it.
Also wrap non-JSON SCIM responses so providers that return HTML redirects fall back through the existing ServiceProviderConfig default path.
Agent-thread: https://sdko.org/internal/thr/per/019ea36a-92dd-7651-8a2d-0d838e724a7d
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <agent@svc.sdko.net >
* providers/scim: Fold GitLab mode into existing migration
Agent-thread: https://sdko.org/internal/thr/ak/019ea7bd-ce63-77a2-90d6-5dcc25d4402d
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net >
---------
Co-authored-by: Agent <agent@svc.sdko.net >
2026-06-15 16:30:07 -04:00
e2a49911a9
Web/bug/22387 device user bindings failing ( #23042 )
...
* ## What
window.authentik.flow = {
"layout": "{{ flow.layout }}",
+ "background": "{{ flow.background }}",
+ "title": "{{ flow.title }}",
};
Amends the `flow.html` template and `GlobalAuthentik` parser to include new parameters, `background` and `title`, in the flow-specific part of the configuration written to the HTML `<head>` object, and to provide those parameters to client code.
## Why
The `layout` is start-up critical: it tells the Flow interface how the admin wants the Flow page to look, and allows the HTML and CSS to be pre-aligned to that condition. `layout` is determined on a per-Flow bases, not a per-Stage basis; Flows are derived from a tuple of `(Brand, Application?)`, where the opening policy *may* direct a user to a different flow if the user reached authentik via a redirect from a specific application, but will otherwise fall back to the default Flow for the Brand.
The `background` is a field that is required if the `Flow`’s layout is of type `frame_background`; in this case, the part of the viewport not dedicated to the FlowExecutor is reserved for an `<iframe>` that will be filled in with whatever the administrator specifies. Although this gives it the same priority as `layout` (whether it’s provided or undefined) for describing the [chrome](https://developer.mozilla.org/en-US/docs/Glossary/Chrome ) around a challenge, it is currently not provided to the application in the start-up config; it is provided in the `challenge` and renders the IFrame as part of the initial challenge.
This patch fixes that; if `layout` is provided, `background` ought to be as well, even if it’s empty. The execution of a Challenge ought not have any influence over the look and feel of the Flow-defined appearance *around* that Challenge.
I have added `title` as well; with that, all of the current theme-and-appearance related configuration details are placed into `<head>` and can be removed from the FlowExecutor.
Server-side, `background` is currently specified: `background = FileField(blank=True, default="")` which is … interesting since we also appear to store URLs in it. I don’t see anything in the FlowSerializer that would change that from a client’s point of view.
This patch furthers the effort to separate flow execution from flow presentation.
- \[🐰 \] The code has been formatted (`make web`)
* web/bugfix: Device user/group/policy bindings not being recorded correctly
## [Issue 22387](https://github.com/goauthentik/authentik/issues/22387 )
> When manually binding a user to a device via Admin → Endpoints → Devices → \[Device\] → Users/Groups tab → Create or bind, the binding is incorrectly created as a PolicyBinding (authentik_policies) instead of a DeviceUserBinding (authentik_endpoints).
>
> As a result, the Users/Groups tabs on the Device detail page remain empty even after the binding is created.
## What has been changed:
A new flag, `no-wizard`, has been added to the attributes taken by `ak-bound-policies-list`; when set, this flag overrides the default behavior of offering `ak-policy-wizard`, and instead falls back to `ak-policy-binding-form`, which has the correct behavior. This limits the capability to create new policies for devices, but most of the time admins want to bind an existing User or Group, so this is probably not a large takeaway at the moment.
## Why
This is an annoying bug. As I understand the problem, `DeviceUserBindingForm` is the *only* feature that inherits from `PolicyBindingForm`. It is the `DeviceUserBindingForm`, not the wizard, that supports calling the `endpointsDeviceBindings(Update/Create)` method correctly. In the long term, we could do some sort of inheritance / endpoint override thing with the wizard, but for the moment that’s a bigger lift.
The simplest fix was to add a flag to *force* `BoundPoliciesList` to pick the (overridable) `*BindingForm` over the (not so overridable) wizard; this passes through the inheritance chain from `BoundDeviceUsersList` to trigger the correct behavior.
## Other fixes
We duplicate both the “validate policy type” and “clean binding to be sent” code in multiple places; I have de-duplicated them.
2026-06-15 08:03:35 -07:00
9bacaf984d
internal/outpost/ldap: remove Printf in MemberForGroup loop ( #22952 )
2026-06-15 16:50:05 +02:00
Marc 'risson' Schmitt
dependabot[bot]
authentik-automation[bot]
Miha Frangež
Teffen Ellis
Dominic R
Ken Sternberg
Marcelo Elizeche Landó
Jose D. Gomez R.