150df63432
website/integrations: FortiManager: cleanup ( #23110 )
...
Agent-thread: https://sdko.org/internal/thr/ak/019eccfc-d6c2-7df3-ae39-4a4bd262c174
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <gptagent@svc.sdko.net >
2026-06-16 11:47:21 +01:00
720e819277
website/integrations: Atlassian Cloud: cleanup ( #23070 )
...
* website/integrations: Atlassian Cloud: cleanup
Agent-thread: https://sdko.org/internal/thr/ak/019ecc99-3a69-79d2-86fb-a145d7194b2a
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <gptagent@svc.sdko.net >
* Update website/integrations/platforms/atlassian/index.mdx
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Agent <gptagent@svc.sdko.net >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-16 09:25:51 +00:00
6df226188f
providers/scim: Add GitLab compatibility mode ( #22906 )
...
* providers/scim: Add GitLab compatibility mode
Add a GitLab SCIM compatibility mode that skips ServiceProviderConfig probing and document when to use it.
Also wrap non-JSON SCIM responses so providers that return HTML redirects fall back through the existing ServiceProviderConfig default path.
Agent-thread: https://sdko.org/internal/thr/per/019ea36a-92dd-7651-8a2d-0d838e724a7d
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <agent@svc.sdko.net >
* providers/scim: Fold GitLab mode into existing migration
Agent-thread: https://sdko.org/internal/thr/ak/019ea7bd-ce63-77a2-90d6-5dcc25d4402d
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net >
---------
Co-authored-by: Agent <agent@svc.sdko.net >
2026-06-15 16:30:07 -04:00
e2a49911a9
Web/bug/22387 device user bindings failing ( #23042 )
...
* ## What
window.authentik.flow = {
"layout": "{{ flow.layout }}",
+ "background": "{{ flow.background }}",
+ "title": "{{ flow.title }}",
};
Amends the `flow.html` template and `GlobalAuthentik` parser to include new parameters, `background` and `title`, in the flow-specific part of the configuration written to the HTML `<head>` object, and to provide those parameters to client code.
## Why
The `layout` is start-up critical: it tells the Flow interface how the admin wants the Flow page to look, and allows the HTML and CSS to be pre-aligned to that condition. `layout` is determined on a per-Flow bases, not a per-Stage basis; Flows are derived from a tuple of `(Brand, Application?)`, where the opening policy *may* direct a user to a different flow if the user reached authentik via a redirect from a specific application, but will otherwise fall back to the default Flow for the Brand.
The `background` is a field that is required if the `Flow`’s layout is of type `frame_background`; in this case, the part of the viewport not dedicated to the FlowExecutor is reserved for an `<iframe>` that will be filled in with whatever the administrator specifies. Although this gives it the same priority as `layout` (whether it’s provided or undefined) for describing the [chrome](https://developer.mozilla.org/en-US/docs/Glossary/Chrome ) around a challenge, it is currently not provided to the application in the start-up config; it is provided in the `challenge` and renders the IFrame as part of the initial challenge.
This patch fixes that; if `layout` is provided, `background` ought to be as well, even if it’s empty. The execution of a Challenge ought not have any influence over the look and feel of the Flow-defined appearance *around* that Challenge.
I have added `title` as well; with that, all of the current theme-and-appearance related configuration details are placed into `<head>` and can be removed from the FlowExecutor.
Server-side, `background` is currently specified: `background = FileField(blank=True, default="")` which is … interesting since we also appear to store URLs in it. I don’t see anything in the FlowSerializer that would change that from a client’s point of view.
This patch furthers the effort to separate flow execution from flow presentation.
- \[🐰 \] The code has been formatted (`make web`)
* web/bugfix: Device user/group/policy bindings not being recorded correctly
## [Issue 22387](https://github.com/goauthentik/authentik/issues/22387 )
> When manually binding a user to a device via Admin → Endpoints → Devices → \[Device\] → Users/Groups tab → Create or bind, the binding is incorrectly created as a PolicyBinding (authentik_policies) instead of a DeviceUserBinding (authentik_endpoints).
>
> As a result, the Users/Groups tabs on the Device detail page remain empty even after the binding is created.
## What has been changed:
A new flag, `no-wizard`, has been added to the attributes taken by `ak-bound-policies-list`; when set, this flag overrides the default behavior of offering `ak-policy-wizard`, and instead falls back to `ak-policy-binding-form`, which has the correct behavior. This limits the capability to create new policies for devices, but most of the time admins want to bind an existing User or Group, so this is probably not a large takeaway at the moment.
## Why
This is an annoying bug. As I understand the problem, `DeviceUserBindingForm` is the *only* feature that inherits from `PolicyBindingForm`. It is the `DeviceUserBindingForm`, not the wizard, that supports calling the `endpointsDeviceBindings(Update/Create)` method correctly. In the long term, we could do some sort of inheritance / endpoint override thing with the wizard, but for the moment that’s a bigger lift.
The simplest fix was to add a flag to *force* `BoundPoliciesList` to pick the (overridable) `*BindingForm` over the (not so overridable) wizard; this passes through the inheritance chain from `BoundDeviceUsersList` to trigger the correct behavior.
## Other fixes
We duplicate both the “validate policy type” and “clean binding to be sent” code in multiple places; I have de-duplicated them.
2026-06-15 08:03:35 -07:00
9bacaf984d
internal/outpost/ldap: remove Printf in MemberForGroup loop ( #22952 )
2026-06-15 16:50:05 +02:00
5cdee0b1c1
core: bump rust-toolchain from 1.95.0 to 1.96.0 ( #22752 )
...
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space >
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-15 16:03:20 +02:00
8a956a8d25
translate: Updates for project authentik and language hu_HU ( #23061 )
2026-06-15 15:41:47 +02:00
de03aa1801
core: bump aws-cdk-lib from 2.257.0 to 2.258.0 ( #23027 )
...
Co-authored-by: Jens L. <jens@goauthentik.io >
Signed-off-by: dependabot[bot] <support@github.com >
2026-06-15 15:41:33 +02:00
3762c2764c
root: flag British spellings in cspell ( #22821 )
...
cspell's bundled en_US dictionary accepts British spellings (colour, behaviour, organise, ...) even with language en-US. Add a flagWords list covering the common -our/-ise/-yse/-re/-ce families so they are reported as forbidden words with the American spelling offered as a fix, plus ignore entries for upstream-spelled exceptions (PatternFly pf-m-grey, lit-analyse, analyse-phase).
MERGE LAST: failFast is on, so this rule must land only after the docs/backend/frontend cleanup PRs have merged, otherwise CI fails on pre-existing British spellings.
Co-authored-by: Playpen Agent <279763771+playpen-agent@users.noreply.github.com >
2026-06-15 14:54:30 +02:00
d690ee591f
core: bump library/golang from 0dcba0d to 3424c83 in /lifecycle/container ( #23021 )
...
core: bump library/golang in /lifecycle/container
Bumps library/golang from `0dcba0d` to `3424c83`.
---
updated-dependencies:
- dependency-name: library/golang
dependency-version: 1.26.4-trixie
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:48:23 +02:00
59ccb20475
core: bump astral-sh/uv from 0.11.20 to 0.11.21 in /lifecycle/container ( #23022 )
...
Bumps [astral-sh/uv](https://github.com/astral-sh/uv ) from 0.11.20 to 0.11.21.
- [Release notes](https://github.com/astral-sh/uv/releases )
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/uv/compare/0.11.20...0.11.21 )
---
updated-dependencies:
- dependency-name: astral-sh/uv
dependency-version: 0.11.21
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:47:59 +02:00
e1f9e7ee85
core: bump library/node from aa27a5f to 95a34da in /lifecycle/container ( #23023 )
...
core: bump library/node in /lifecycle/container
Bumps library/node from `aa27a5f` to `95a34da`.
---
updated-dependencies:
- dependency-name: library/node
dependency-version: '26'
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:47:43 +02:00
a02a9bb098
web: bump cspell from 10.0.0 to 10.0.1 ( #23030 )
...
Bumps [cspell](https://github.com/streetsidesoftware/cspell/tree/HEAD/packages/cspell ) from 10.0.0 to 10.0.1.
- [Release notes](https://github.com/streetsidesoftware/cspell/releases )
- [Changelog](https://github.com/streetsidesoftware/cspell/blob/main/packages/cspell/CHANGELOG.md )
- [Commits](https://github.com/streetsidesoftware/cspell/commits/v10.0.1/packages/cspell )
---
updated-dependencies:
- dependency-name: cspell
dependency-version: 10.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:46:49 +02:00
778c4b4c16
web: bump the storybook group across 1 directory with 5 updates ( #23055 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.4.2 to 10.4.4
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.4.4/code/addons/docs )
Updates `@storybook/addon-links` from 10.4.2 to 10.4.4
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.4.4/code/addons/links )
Updates `@storybook/web-components` from 10.4.2 to 10.4.4
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.4.4/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.4.2 to 10.4.4
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.4.4/code/frameworks/web-components-vite )
Updates `storybook` from 10.4.2 to 10.4.4
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.4.4/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.4.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.4.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.4.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.4.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.4.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:42:14 +02:00
e32accfe7e
core: bump golang.org/x/sync from 0.20.0 to 0.21.0 ( #23019 )
...
Bumps [golang.org/x/sync](https://github.com/golang/sync ) from 0.20.0 to 0.21.0.
- [Commits](https://github.com/golang/sync/compare/v0.20.0...v0.21.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/sync
dependency-version: 0.21.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:41:29 +02:00
959ba246a8
core, web: update translations ( #23018 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-06-15 14:24:29 +02:00
1d61e6b4de
core: bump library/node from e3ffe0c to f9a1756 in /website ( #23025 )
...
Bumps library/node from `e3ffe0c` to `f9a1756`.
---
updated-dependencies:
- dependency-name: library/node
dependency-version: 26.3.0-trixie
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:23:02 +02:00
c69bd905a9
core: bump library/nginx from 5aca995 to 1df1a96 in /website ( #23026 )
...
Bumps library/nginx from `5aca995` to `1df1a96`.
---
updated-dependencies:
- dependency-name: library/nginx
dependency-version: 1.31.1-trixie
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:22:52 +02:00
3eac3dd922
core: bump serde_with from 3.20.0 to 3.21.0 ( #23029 )
...
Bumps [serde_with](https://github.com/jonasbb/serde_with ) from 3.20.0 to 3.21.0.
- [Release notes](https://github.com/jonasbb/serde_with/releases )
- [Commits](https://github.com/jonasbb/serde_with/compare/v3.20.0...v3.21.0 )
---
updated-dependencies:
- dependency-name: serde_with
dependency-version: 3.21.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:22:33 +02:00
b4c5fd164d
core: bump ruff from 0.15.16 to 0.15.17 ( #23052 )
...
Bumps [ruff](https://github.com/astral-sh/ruff ) from 0.15.16 to 0.15.17.
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.15.16...0.15.17 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.15.17
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:21:32 +02:00
c3e4e3bda2
core: bump service-identity from 24.2.0 to 26.1.0 ( #23053 )
...
Bumps [service-identity](https://github.com/pyca/service-identity ) from 24.2.0 to 26.1.0.
- [Release notes](https://github.com/pyca/service-identity/releases )
- [Changelog](https://github.com/pyca/service-identity/blob/main/CHANGELOG.md )
- [Commits](https://github.com/pyca/service-identity/compare/24.2.0...26.1.0 )
---
updated-dependencies:
- dependency-name: service-identity
dependency-version: 26.1.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:21:25 +02:00
64e13ba3fc
core: bump goauthentik/fips-python from 3.14.5-slim-trixie-fips to 3.14.6-slim-trixie-fips in /lifecycle/container ( #23054 )
...
core: bump goauthentik/fips-python in /lifecycle/container
Bumps goauthentik/fips-python from 3.14.5-slim-trixie-fips to 3.14.6-slim-trixie-fips.
---
updated-dependencies:
- dependency-name: goauthentik/fips-python
dependency-version: 3.14.6-slim-trixie-fips
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:20:51 +02:00
183c52be53
web: bump the bundler group across 1 directory with 4 updates ( #23056 )
...
Bumps the bundler group with 1 update in the /web directory: [esbuild](https://github.com/evanw/esbuild ).
Updates `esbuild` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.28.0...v0.28.1 )
Updates `@esbuild/darwin-arm64` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.28.0...v0.28.1 )
Updates `@esbuild/linux-arm64` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.28.0...v0.28.1 )
Updates `@esbuild/linux-x64` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.28.0...v0.28.1 )
---
updated-dependencies:
- dependency-name: esbuild
dependency-version: 0.28.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: "@esbuild/darwin-arm64"
dependency-version: 0.28.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: "@esbuild/linux-arm64"
dependency-version: 0.28.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: "@esbuild/linux-x64"
dependency-version: 0.28.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:20:33 +02:00
88ad093055
core: bump uuid from 1.23.2 to 1.23.3 ( #23057 )
...
Bumps [uuid](https://github.com/uuid-rs/uuid ) from 1.23.2 to 1.23.3.
- [Release notes](https://github.com/uuid-rs/uuid/releases )
- [Commits](https://github.com/uuid-rs/uuid/compare/v1.23.2...v1.23.3 )
---
updated-dependencies:
- dependency-name: uuid
dependency-version: 1.23.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:20:10 +02:00
ae1a764ffe
ci: bump taiki-e/install-action from 2.81.8 to 2.81.10 in /.github/actions/setup ( #23058 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.8 to 2.81.10.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/0631aa6515c7d545823c67cfae7ef4fc7f490154...7a79fe8c3a13344501c80d99cae481c1c9085912 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:19:58 +02:00
1117008a8d
core: bump regex from 1.12.3 to 1.12.4 ( #23059 )
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.12.3 to 1.12.4.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.12.3...1.12.4 )
---
updated-dependencies:
- dependency-name: regex
dependency-version: 1.12.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-15 14:19:49 +02:00
9457696385
root: bump pyo3 ( #23036 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-06-12 14:09:41 +02:00
783859d3c8
websites/integrations: specify redirect uri of type authorization or post logout ( #22981 )
...
* docs/integrations: Update docs to specify redirect uri of type authorization or post logout
* bold redirect uri
* improve wording
* update docs
* add banner for warning of redirect uri's
* Update website/integrations/_redirect-uri-2026-5-note.mdx
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Connor Peshek <connor@connorpeshek.me >
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-11 16:58:23 +00:00
ab1f8a0692
website/integrations: Update nextcloud to support post logout redirect uri ( #22989 )
2026-06-11 11:20:17 -05:00
fc8424ac50
stages/captcha: add Cap and JSON verification support ( #22373 )
...
* stages/captcha: add Cap and JSON verification support
Add a configurable verification request content type so CAPTCHA providers can use either form-encoded or JSON token verification.
Add Cap as a preset and flow controller, including module-script loading, interactive widget handling, generated API/client types, tests, and docs.
* web/admin: clarify Cap captcha configuration
Treat the Cap endpoint as a form-only alias for the existing public key field and document Cap alongside the other CAPTCHA providers.
Agent-thread: https://sdko.org/internal/threads/019e737a-314e-72d0-98ae-201cb855df3a
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net >
* stages/captcha: prefer self-hosted Cap widget URL
Default the Cap provider guidance to the self-hosted widget asset and keep CDN usage pinned to reviewed releases.
Agent-thread: https://sdko.org/internal/thr/ak/019ead31-2435-7e12-b933-e873155d6894
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net >
* floating
---------
Co-authored-by: Agent <agent@svc.sdko.net >
Co-authored-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
2026-06-11 16:15:21 +00:00
80e7dd0c62
web: bump @goauthentik/tsconfig from 1.0.9 to 2.0.0 in /web/packages/core in the goauthentik group across 1 directory ( #22996 )
...
* web: bump @goauthentik/tsconfig
Bumps the goauthentik group with 1 update in the /web/packages/core directory: [@goauthentik/tsconfig](https://github.com/goauthentik/authentik/tree/HEAD/packages/tsconfig ).
Updates `@goauthentik/tsconfig` from 1.0.9 to 2.0.0
- [Release notes](https://github.com/goauthentik/authentik/releases )
- [Commits](https://github.com/goauthentik/authentik/commits/HEAD/packages/tsconfig )
---
updated-dependencies:
- dependency-name: "@goauthentik/tsconfig"
dependency-version: 2.0.0
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: goauthentik
...
Signed-off-by: dependabot[bot] <support@github.com >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-06-11 17:43:07 +02:00
b12416a413
website/integrations: add kavita ( #23000 )
...
* website/integrations: add kavita
* add missing dashes
* Update index.md
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
---------
Signed-off-by: Dewi Roberts <dewi@goauthentik.io >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-11 11:03:04 -04:00
978abbd734
website/integrations: add post logout to audiobookshelf ( #22999 )
...
website/integrations: add post logout to abs
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-06-11 11:01:24 -04:00
884904e16f
website/docs: additional scim provider docs ( #22135 )
...
* Add create scim provider doc, add info about oauth interactive mode, update sidebar
* Spelling
---------
Co-authored-by: Dominic R <dominic@goauthentik.io >
2026-06-11 14:29:43 +00:00
21666c8c1c
translate: Updates for project authentik and language fr_FR ( #22986 )
...
translate: Translate django.po in fr_FR
100% translated source file: 'django.po'
on 'fr_FR'.
Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
2026-06-11 12:54:48 +02:00
7767075b04
translate: Updates for project authentik and language hu_HU ( #22987 )
...
translate: Translate django.po in hu_HU
100% translated source file: 'django.po'
on 'hu_HU'.
Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
2026-06-11 12:54:43 +02:00
f40c538034
translate: Updates for project authentik and language no_NO ( #22988 )
...
translate: Translate django.po in no_NO
100% translated source file: 'django.po'
on 'no_NO'.
Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
2026-06-11 12:54:39 +02:00
9cc9cac13b
lifecycle/aws: bump aws-cdk from 2.1125.0 to 2.1126.0 in /lifecycle/aws ( #22990 )
...
Bumps [aws-cdk](https://github.com/aws/aws-cdk-cli/tree/HEAD/packages/aws-cdk ) from 2.1125.0 to 2.1126.0.
- [Release notes](https://github.com/aws/aws-cdk-cli/releases )
- [Commits](https://github.com/aws/aws-cdk-cli/commits/aws-cdk@v2.1126.0/packages/aws-cdk )
---
updated-dependencies:
- dependency-name: aws-cdk
dependency-version: 2.1126.0
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:35 +02:00
4881c3f337
core: bump astral-sh/uv from 0.11.19 to 0.11.20 in /lifecycle/container ( #22991 )
...
Bumps [astral-sh/uv](https://github.com/astral-sh/uv ) from 0.11.19 to 0.11.20.
- [Release notes](https://github.com/astral-sh/uv/releases )
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/uv/compare/0.11.19...0.11.20 )
---
updated-dependencies:
- dependency-name: astral-sh/uv
dependency-version: 0.11.20
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:30 +02:00
798bc77f42
core: bump goauthentik/fips-python from ede0a00 to 94d8805 in /lifecycle/container ( #22992 )
...
core: bump goauthentik/fips-python in /lifecycle/container
Bumps goauthentik/fips-python from `ede0a00` to `94d8805`.
---
updated-dependencies:
- dependency-name: goauthentik/fips-python
dependency-version: 3.14.5-slim-trixie-fips
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:27 +02:00
4889d047f0
core: bump uvicorn[standard] from 0.48.0 to 0.49.0 ( #22993 )
...
Bumps [uvicorn[standard]](https://github.com/Kludex/uvicorn ) from 0.48.0 to 0.49.0.
- [Release notes](https://github.com/Kludex/uvicorn/releases )
- [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md )
- [Commits](https://github.com/Kludex/uvicorn/compare/0.48.0...0.49.0 )
---
updated-dependencies:
- dependency-name: uvicorn[standard]
dependency-version: 0.49.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:22 +02:00
bfe104bb69
core: bump which from 8.0.2 to 8.0.3 ( #22994 )
...
Bumps [which](https://github.com/harryfei/which-rs ) from 8.0.2 to 8.0.3.
- [Release notes](https://github.com/harryfei/which-rs/releases )
- [Changelog](https://github.com/harryfei/which-rs/blob/master/CHANGELOG.md )
- [Commits](https://github.com/harryfei/which-rs/compare/8.0.2...8.0.3 )
---
updated-dependencies:
- dependency-name: which
dependency-version: 8.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:18 +02:00
453a49d954
ci: bump taiki-e/install-action from 2.81.7 to 2.81.8 in /.github/actions/setup ( #22995 )
...
ci: bump taiki-e/install-action in /.github/actions/setup
Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action ) from 2.81.7 to 2.81.8.
- [Release notes](https://github.com/taiki-e/install-action/releases )
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/taiki-e/install-action/compare/56545b37b57562edd73171cb6c62cc509db4c34e...0631aa6515c7d545823c67cfae7ef4fc7f490154 )
---
updated-dependencies:
- dependency-name: taiki-e/install-action
dependency-version: 2.81.8
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-11 12:54:14 +02:00
269a89708c
web/elements: extract mermaid runtime, modernize <ak-diagram> ( #22980 )
...
* web: Clean up diagram behavior.
* Add accessor.
* Fix import.
* Fix theme colors, consistent patternfly colors.
* Fix spelling.
2026-06-11 04:10:36 +00:00
8554427d3f
core, web: update translations ( #22983 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-06-11 05:35:35 +02:00
929a65c1b5
website/integrations: dokuwiki: add post logout and logout urls ( #22984 )
...
* docs/integrations: update dokuwiki with post logout and logout url
* update oauth config screenshot
* Optimised images with calibre/image-actions
---------
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-06-11 02:32:15 +00:00
d9af3ab85c
website/integrations: Bitwarden: cleanup ( #22698 )
...
Clean up the Bitwarden integration guide to match the current template and verified SSO settings.
Agent-thread: https://sdko.org/internal/threads/019e6b1f-ead2-7471-8d76-55c57b09a495
Co-authored-by: Agent <agent@svc.sdko.net >
2026-06-10 13:41:36 -04:00
d1ade08e24
website/docs: add release notes for 2026.5.3 ( #22976 )
...
update release notes for 2026.5.3
2026-06-10 17:33:06 +00:00
f54840d460
website/integrations: add Box integration ( #22932 )
...
Document Box SAML SSO setup with authentik, including metadata submission and optional SAML group support.
Closes : #22911
Agent-thread: https://sdko.org/internal/thr/ak/019ea7e8-d5ff-7131-a39b-e30219873e8a
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <agent@svc.sdko.net >
2026-06-10 17:21:26 +00:00
226c69d213
core, web: Remove stale compatibility paths ( #22192 )
...
* Remove stale compatibility paths
* fix schema
* should have vibecoded this
---------
Co-authored-by: Simonyi Gergő <28359278+gergosimonyi@users.noreply.github.com >
2026-06-10 12:31:48 -04:00
Dominic R
Ken Sternberg
Jose D. Gomez R.
dependabot[bot]
transifex-integration[bot]
Teffen Ellis
authentik-automation[bot]
Jens L.
Connor Peshek
Dewi Roberts