205hlab-mirrors/authentik
2
0
Fork 0
mirror of https://github.com/goauthentik/authentik.git synced 2026-06-17 19:09:11 +03:00
Code Issues Packages Projects Releases Wiki Activity
22,343 Commits 384 Branches 449 Tags
df3dbbef9ee3a1287740e7e1752abe710e3ae10b
Commit Graph

3519 Commits

Author SHA1 Message Date
NiceDevil df3dbbef9e website/integrations: FortiAnalyzer (#22610) 
* website/integrations: FortiAnalyzer

Add an integration guide for FortiAnalyzer with SAML SSO against authentik,
covering the SAML provider configuration, a `username` property mapping, and
the FortiAnalyzer Single Sign-On settings (tested with FortiAnalyzer 8.0).

Also add ADOM to the integrations spell-check dictionary because the term is
used by multiple Fortinet products (FortiAnalyzer, FortiManager, FortiGate)
and will likely appear in future guides as well.

* website/integrations: FortiAnalyzer: cleanup

Update the FortiAnalyzer SAML guide to match the current integration template and verified Fortinet/authentik behavior.

Agent-thread: https://sdko.org/internal/threads/019e6120-ca6e-7301-a10f-669607e5ac61
Co-authored-by: Agent <agent@svc.sdko.net>

* trigger ci???

Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dominic R <dominic@sdko.org>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-05 13:05:21 +00:00
Teffen Ellis f4b9b0aa77 website: fix British spellings flagged by cspell (#22818) 
* website: fix British spellings flagged by cspell

Apply American spellings (behaviour->behavior, colour->color, organise->organize, etc.) across release notes, integration docs, and security docs. Part of enabling cspell's British-spelling rule; the rule itself lands in a separate PR once all areas are clean.

Co-Authored-By: Playpen Agent <279763771+playpen-agent@users.noreply.github.com>

* Update website/docs/developer-docs/docs/style-guide.mdx

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

---------

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Playpen Agent <279763771+playpen-agent@users.noreply.github.com>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Dominic R <dominic@goauthentik.io>
 2026-06-05 12:17:39 +00:00
Dominic R 813b51ddf8 website/integrations: fix Node-RED OIDC username docs (#22868) 
Remove the custom Node-RED verify callback so Passport and Node-RED use the parsed OpenID Connect profile normally.

Closes: #22689

Agent-thread: https://sdko.org/internal/threads/019e9486-cd54-7a70-bd09-f2d9e4d06e6e

A7k-product: product

A7k-product-repo: 4

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-05 12:49:10 +01:00
Dominic R eb919510f2 website/integrations: 1Password: cleanup (#22699) 
Agent-thread: https://sdko.org/internal/threads/019e6b51-dbe5-74f1-88e6-f3548914f8e0
A7k-product: product
A7k-product-repo: 1

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-05 07:12:17 -04:00
Dominic R 63ed60bdab website/docs: improve service account docs (#22145) 
* website/docs: improve service account docs

* website/docs: title service account warning

---------

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-05 08:54:15 +01:00
Dominic R 4e5c8171d1 website/docs: update binding wizard labels (#22869) 
Refresh binding instructions to match the current Create or bind wizard labels across application, policy, event, and RAC docs.

Closes: #22272

Agent-thread: https://sdko.org/internal/threads/019e948f-6a16-7181-ba2e-3c539bec06e7

A7k-product: product

A7k-product-repo: 2

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 23:05:07 -04:00
powerquell c4968a9c56 website/docs: add launch URL in Komodo docs (#22866) 
* Update index.mdx

Add launch URL

Signed-off-by: powerquell <67701236+powerquell@users.noreply.github.com>

* Apply suggestion from @dominic-r

Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: powerquell <67701236+powerquell@users.noreply.github.com>
Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Dominic R <dominic@goauthentik.io>
 2026-06-04 21:21:20 +00:00
4www 26e7078ae9 website/docs: add GitLab social login source guide (#22764) 
* website/docs: add GitLab social login source guide

* website/docs: clean up GitLab social login guide

Restructure the GitLab source guide so GitLab.com and self-hosted setup are handled in one flow.

Agent-thread: https://sdko.org/internal/threads/019e9445-5367-7973-8c2e-9a6be0cedfb3
A7k-product: product
A7k-product-repo: 4
Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 17:07:02 -04:00
Dewi Roberts 986d961c6b website/integrations: add email verified info to Mailcow (#22783) 
* Add email verified info

* website/integrations: address Mailcow review feedback

Agent-thread: https://sdko.org/internal/threads/019e9434-7d09-7b71-a974-d3d0924c06d4

A7k-product: product

A7k-product-repo: 3

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 20:25:38 +00:00
Simonyi Gergő d307e200c5 website/docs: mark cves CVE-2026-49443 and CVE-2026-49448 (#22808) 
* mark cves

* Ignore spellcheck on redirects, headers.

---------

Co-authored-by: Jens L. <jens@goauthentik.io>
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com>
 2026-06-04 20:01:33 +00:00
NiceDevil 0837df6704 website/integrations: add Icinga Web 2 (#22767) 
* website/integrations: Icinga Web 2

Add an integration guide for Icinga Web 2 with OIDC SSO against
authentik via the third-party RISE-GmbH oidc module
(github.com/RISE-GmbH/icingaweb2-module-oidc). Covers the OAuth2/
OpenID Connect provider configuration in authentik (including the
module-specific redirect URI under /icingaweb2/oidc/authentication/
realm?name=<name>), the New Provider dialog in the Icinga Web 2 OIDC
module (Name, Url, Secret, Appname, Groups to sync, Enabled, Enforce
Https on redirect urls), an explicit hint to scope Groups to sync to
the few groups actually used for Icinga, and a pointer to assign
roles to the imported users and groups under Configuration >
Authentication > Roles. Tested with Icinga Web 2 2.13 and authentik
2026.5.2.

Also add Icinga to the integrations spell-check dictionary.

* website/integrations: Icinga Web 2: cleanup

Agent-thread: https://sdko.org/internal/threads/019e93e4-7da8-7432-81c3-dd7dca5f8590

A7k-product: product

A7k-product-repo: 2

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 19:57:03 +00:00
Connor Peshek b35219e23a website/docs: Add improved akql docs (#22693) 2026-06-04 21:32:16 +02:00
Nerdy Technician af79cdd1ec website/integrations: add Nexterm (#22768) 
* Added Guide for Setting up Authentik on Nexterm - http://nexterm.dev/

* website/integrations: Nexterm: cleanup

Agent-thread: https://sdko.org/internal/threads/019e93e4-1ce3-7360-89dd-77ddace35e77
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 19:30:46 +00:00
Blue 6f0c765a5e website/docs: clarify Google Workspace signed response setting (#22812) 
docs: clarify Google Workspace signed response setting #22811
 2026-06-04 15:10:54 -04:00
Dominic R 93f19fcfd3 website/integrations: WordPress: cleanup (#22702) 
* website/integrations: WordPress: cleanup

Update the WordPress integration guide to match the current template and current OpenID Connect Generic Client behavior.

Agent-thread: https://sdko.org/internal/threads/019e6b52-8487-7133-9c46-7f120cc905dd
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <agent@svc.sdko.net>

* Update website/integrations/platforms/wordpress/index.md

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

---------

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-04 17:58:16 +00:00
Dominic R 4bc9b9eece website/integrations: add Productive integration (#22769) 
* website/integrations: add Productive integration

Agent-thread: https://sdko.org/internal/threads/019e808e-70a3-7b02-ade4-839d9c259456
A7k-product: product
A7k-product-repo: 3
Co-authored-by: Agent <agent@svc.sdko.net>

* change config verification step

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

---------

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-04 17:44:49 +00:00
Dominic R f7b380ca76 website/integrations: PocketBase: cleanup (#22705) 
* website/integrations: PocketBase: cleanup

Agent-thread: https://sdko.org/internal/threads/019e6b67-aedf-7992-8101-7bc4b4a0c7c7
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net>

* Update website/integrations/platforms/pocketbase/index.md

Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-04 17:37:19 +00:00
Dominic R 0b1dc626c9 website/docs: Document flow planner (#22660) 2026-06-04 17:14:10 +00:00
Dominic R 5ad73a0f6a website/docs: clarify OAuth2 provider overview (#22144) 2026-06-04 17:05:04 +00:00
Dominic R 313eb26ac4 website/integrations: Zoho: cleanup (#22701) 
* website/integrations: Zoho: cleanup

Refresh the Zoho SAML guide to match the current integration template and documented Zoho/authentik flows.

Agent-thread: https://sdko.org/internal/threads/019e6b52-1f5f-7892-9ffd-229f764096a7
A7k-product: product
A7k-product-repo: 2
Co-authored-by: Agent <agent@svc.sdko.net>

* Update website/integrations/platforms/zoho/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

* Update website/integrations/platforms/zoho/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-04 17:04:18 +00:00
Dominic R b6c9b0a316 website/integrations: Stripe: cleanup (#22703) 
* website/integrations: Stripe: cleanup

Agent-thread: https://sdko.org/internal/threads/019e6b53-1b1a-74e1-a11e-c68fdf728ce5
A7k-product: product
A7k-product-repo: 4
Co-authored-by: Agent <agent@svc.sdko.net>

* Update website/integrations/platforms/stripe/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

* Update website/integrations/platforms/stripe/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

* Update website/integrations/platforms/stripe/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

* Update website/integrations/platforms/stripe/index.mdx

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-04 16:58:49 +00:00
Dominic R 1bf4d34543 website/integrations: HashiCorp Vault: cleanup (#22695) 
* website/integrations: HashiCorp Vault: cleanup

Refresh the HashiCorp Vault integration guide to match the current template and Vault OIDC behavior.

Agent-thread: https://sdko.org/internal/threads/019e6b1e-bcda-7e61-98f5-3408adc799c9

Co-authored-by: Agent <agent@svc.sdko.net>

* minor changes

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

---------

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-04 16:58:02 +00:00
Lars b06e6620d4 website/integrations: update Joplin launch URL (#22862) 
Update Joplin integration launch URL in documentation

Updated the application configuration steps for Joplin integration with a new launch URL.

Signed-off-by: Lars <66955841+lm-gh@users.noreply.github.com>
 2026-06-04 16:22:00 +00:00
dependabot[bot] d7ea7f80af core: bump library/node from 26.2.0-trixie to 26.3.0-trixie in /website (#22845) 
Bumps library/node from 26.2.0-trixie to 26.3.0-trixie.

---
updated-dependencies:
- dependency-name: library/node
  dependency-version: 26.3.0-trixie
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-06-04 15:06:15 +02:00
Connor Peshek 6cdae9a86e website/docs: add oidc issuer information (#22556) 
* website/docs: add oidc issuer information

* Update website/docs/add-secure-apps/providers/oauth2/index.mdx

Co-authored-by: Dominic R <dominic@goauthentik.io>
Signed-off-by: Connor Peshek <connor@connorpeshek.me>

* Update website/docs/add-secure-apps/providers/oauth2/index.mdx

Co-authored-by: Dominic R <dominic@goauthentik.io>
Signed-off-by: Connor Peshek <connor@connorpeshek.me>

* Update website/docs/add-secure-apps/providers/oauth2/index.mdx

Co-authored-by: Dominic R <dominic@goauthentik.io>
Signed-off-by: Connor Peshek <connor@connorpeshek.me>

* Apply suggestion from @dominic-r

Signed-off-by: Dominic R <dominic@goauthentik.io>

* update warning to info

* Update language throughout the doc, fix punctuation and spelling

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

* update typos

* fix wording

* lint

---------

Signed-off-by: Connor Peshek <connor@connorpeshek.me>
Signed-off-by: Dominic R <dominic@goauthentik.io>
Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-02 18:08:08 +00:00
dependabot[bot] 11af3f4030 website: bump the build group across 1 directory with 9 updates (#22669) 
* website: bump the build group across 1 directory with 9 updates

Bumps the build group with 9 updates in the /website directory:

| Package | From | To |
| --- | --- | --- |
| [@rspack/binding-darwin-arm64](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack) | `2.0.0` | `2.0.4` |
| [@rspack/binding-linux-arm64-gnu](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack) | `2.0.0` | `2.0.4` |
| [@rspack/binding-linux-x64-gnu](https://github.com/web-infra-dev/rspack/tree/HEAD/packages/rspack) | `2.0.0` | `2.0.4` |
| [@swc/core-darwin-arm64](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |
| [@swc/core-linux-arm64-gnu](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |
| [@swc/core-linux-x64-gnu](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |
| [@swc/html-darwin-arm64](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |
| [@swc/html-linux-arm64-gnu](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |
| [@swc/html-linux-x64-gnu](https://github.com/swc-project/swc) | `1.15.33` | `1.15.40` |



Updates `@rspack/binding-darwin-arm64` from 2.0.0 to 2.0.4
- [Release notes](https://github.com/web-infra-dev/rspack/releases)
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.4/packages/rspack)

Updates `@rspack/binding-linux-arm64-gnu` from 2.0.0 to 2.0.4
- [Release notes](https://github.com/web-infra-dev/rspack/releases)
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.4/packages/rspack)

Updates `@rspack/binding-linux-x64-gnu` from 2.0.0 to 2.0.4
- [Release notes](https://github.com/web-infra-dev/rspack/releases)
- [Commits](https://github.com/web-infra-dev/rspack/commits/v2.0.4/packages/rspack)

Updates `@swc/core-darwin-arm64` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

Updates `@swc/core-linux-arm64-gnu` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

Updates `@swc/core-linux-x64-gnu` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

Updates `@swc/html-darwin-arm64` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

Updates `@swc/html-linux-arm64-gnu` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

Updates `@swc/html-linux-x64-gnu` from 1.15.33 to 1.15.40
- [Release notes](https://github.com/swc-project/swc/releases)
- [Changelog](https://github.com/swc-project/swc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/swc-project/swc/compare/v1.15.33...v1.15.40)

---
updated-dependencies:
- dependency-name: "@rspack/binding-darwin-arm64"
  dependency-version: 2.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@rspack/binding-linux-arm64-gnu"
  dependency-version: 2.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@rspack/binding-linux-x64-gnu"
  dependency-version: 2.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/core-darwin-arm64"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/core-linux-arm64-gnu"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/core-linux-x64-gnu"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/html-darwin-arm64"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/html-linux-arm64-gnu"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
- dependency-name: "@swc/html-linux-x64-gnu"
  dependency-version: 1.15.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: build
...

Signed-off-by: dependabot[bot] <support@github.com>

* sigh

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
 2026-06-02 19:54:02 +02:00
Dominic R 13243fdcb4 website/integrations: Elastic Cloud: cleanup (#22707) 
Agent-thread: https://sdko.org/internal/threads/019e6b68-45f2-7542-be4f-d5f66dc30675
A7k-product: product
A7k-product-repo: 4

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-02 13:23:51 +00:00
Dominic R 044ca286ab website/integrations: Microsoft 365: cleanup (#22706) 
Align the Microsoft 365 guide with current authentik labels and Microsoft SAML federation requirements.

Agent-thread: https://sdko.org/internal/threads/019e6b67-f02e-7f40-8f0c-1b70655a68b8

A7k-product: product

A7k-product-repo: 3

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-02 13:19:16 +00:00
Dominic R a058248d43 website/integrations: Salesforce: cleanup (#22708) 
* website/integrations: Salesforce: cleanup

Agent-thread: https://sdko.org/internal/threads/019e6b86-c95f-72e2-888c-9104fb34d9e0
A7k-product: product
A7k-product-repo: 1
Co-authored-by: Agent <agent@svc.sdko.net>

* fix

---------

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-06-02 12:54:55 +00:00
Jens L. 1f3856f862 website/docs: update endpoint SSH docs (#22759) 
* website/docs: update endpoint SSH docs

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* Apply suggestion from @dewi-tik

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>

* Apply suggestion from @dewi-tik

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>

* Apply suggestion from @dewi-tik

Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>

* re-fix

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Jens L. <jens@beryju.org>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-06-02 14:10:08 +02:00
Marc 'risson' Schmitt 9e75f62c0d website/docs: 2025.12.6 release notes (#22719) 
* website/docs: 2025.12.6 release notes

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* Apply suggestions from code review

Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* spellcheck

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* spellcheck

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* fixup

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

---------

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
 2026-05-28 17:48:06 +02:00
Marc 'risson' Schmitt d4ff4ca9d5 website/docs: 2026.2.4 release notes (#22720) 
* website/docs: 2026.2.4 release notes

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* spellcheck

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* fixup

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

---------

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
 2026-05-28 17:47:37 +02:00
Marc 'risson' Schmitt 43100a4eb9 website/docs: 2026.5.2 release notes (#22721) 
* website/docs: 2026.5.1 release notes

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* spellcheck

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* fixup

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* whoops

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

---------

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
 2026-05-28 17:46:58 +02:00
authentik-automation[bot] a370d76d23 security: automated internal backport of patch GHSA-c3m2-jqmq-pvp3.sec.patch to authentik-main (#22732) 
* Automated internal backport of patch GHSA-c3m2-jqmq-pvp3.sec.patch to authentik-main

* fix spellcheck

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

---------

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
 2026-05-28 16:43:35 +02:00
authentik-automation[bot] 8830a712b0 security: automated internal backport of patch GHSA-xp7f-xjjx-gwm8.sec.patch to authentik-main (#22734) 
Automated internal backport of patch GHSA-xp7f-xjjx-gwm8.sec.patch to authentik-main

Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
 2026-05-28 16:39:26 +02:00
authentik-automation[bot] 3243c974b2 security: automated internal backport of patch GHSA-wr38-7xg8-fqxr.sec.patch to authentik-main (#22733) 
Automated internal backport of patch GHSA-wr38-7xg8-fqxr.sec.patch to authentik-main

Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
 2026-05-28 16:38:49 +02:00
Dominic R f5fed833da website/integrations: Knocknoc: cleanup (#22405) 
* website/integrations: Knocknoc: cleanup

Refresh the Knocknoc SAML integration guide to match the current template and provider setup.

Agent-thread: https://sdko.org/internal/threads/019e33f8-d810-72f1-b980-bf216058c56b
Co-authored-by: Agent <agent@svc.sdko.net>

* website/integrations: Knocknoc: address review comments

Clarify the Knocknoc setup steps and metadata instructions so the guide preserves the reviewer-requested context for readers.

Agent-thread: https://sdko.org/internal/threads/019e4ca5-9bf4-76b2-a56a-868aa18e76bf

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
 2026-05-27 20:20:26 +02:00
dependabot[bot] 4d5d7bf135 ci: bump taiki-e/install-action from 2.79.5 to 2.79.6 in /.github/actions/setup (#22655) 
* ci: bump taiki-e/install-action in /.github/actions/setup

Bumps [taiki-e/install-action](https://github.com/taiki-e/install-action) from 2.79.5 to 2.79.6.
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/taiki-e/install-action/compare/6c1f7cf125e42770ff087ea443901b487cc5471a...f48d2f8ba2b452934c948b7be1a768079c3632ff)

---
updated-dependencies:
- dependency-name: taiki-e/install-action
  dependency-version: 2.79.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* re-lock

* sigh

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
 2026-05-26 17:06:53 +02:00
NiceDevil 181c0a2a4b website/integrations: Personio (#22634) 
* website/integrations: Personio

Add an integration guide for Personio with OIDC SSO against authentik,
covering the confidential OAuth2/OpenID Connect provider configuration
in authentik and the Personio OIDC settings (issuer, authorization,
token, userinfo, and JWKS endpoints, scopes, client credentials, and
the email claim mapping). Tested with Personio (SaaS) and authentik
2026.5.0.

Also add Personio to the integrations spell-check dictionary.

* website/integrations: Personio: cleanup

Refresh the Personio OIDC guide to match the integration template and current Personio setup flow.

Agent-thread: https://sdko.org/internal/threads/019e610a-5c59-7050-88e7-3c9569491cf2

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-26 13:02:38 +02:00
dependabot[bot] 9c6315f691 website: bump semver from 7.8.0 to 7.8.1 in /website (#22613) 
Bumps [semver](https://github.com/npm/node-semver) from 7.8.0 to 7.8.1.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v7.8.0...v7.8.1)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 7.8.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-26 11:35:18 +02:00
dependabot[bot] 9258f6ae0d core: bump library/nginx from 1.31-trixie to 1.31.1-trixie in /website (#22622) 
Bumps library/nginx from 1.31-trixie to 1.31.1-trixie.

---
updated-dependencies:
- dependency-name: library/nginx
  dependency-version: 1.31.1-trixie
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
 2026-05-26 11:18:48 +02:00
NiceDevil 47542149e4 website/integrations: Omnissa Workspace ONE Access (#22636) 
* website/integrations: Omnissa Workspace ONE Access

Add an integration guide for Omnissa Workspace ONE Access with OIDC SSO
against authentik, covering the OAuth2/OpenID Connect provider
configuration in authentik (with both the web and the awgb://oauth2
mobile redirect URIs), the OpenID Connect IDP setup under
Integrations > Identity Providers in Omnissa Workspace ONE Access
(manual endpoint configuration, client credentials, user lookup
attribute mapping, directories, network ranges, authentication method
name), and a short pointer to wiring the new authentication method
into the relevant access policies. Tested with Omnissa Workspace ONE
Access (SaaS) and authentik 2026.5.0.

Also add Omnissa to the integrations spell-check dictionary.

* website/integrations: Omnissa Workspace ONE Access: cleanup

Clean up the Omnissa Workspace ONE Access integration guide to match current OIDC guidance and template structure.

Agent-thread: https://sdko.org/internal/threads/019e6109-22aa-74a0-a539-ee3f017da7af

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-25 22:47:07 +00:00
NiceDevil 740af3aa5e website/integrations: Veeam Backup & Replication (#22635) 
* website/integrations: Veeam Backup & Replication

Add an integration guide for Veeam Backup & Replication with SAML SSO
against authentik, covering the Users and Roles > Identity Provider
configuration in the VBR console, the SAML Provider from Metadata
setup in authentik, the metadata exchange between both sides, and the
External Group role mapping. Tested with Veeam Backup & Replication
13.0.1 and authentik 2026.5.0.

* website/integrations: Veeam Backup & Replication: cleanup

Update the Veeam Backup & Replication SAML guide to match the current integration template and verified Veeam/authentik terminology.

Agent-thread: https://sdko.org/internal/threads/019e6109-a3c8-76b3-a443-02ca7927a08f

Co-authored-by: Agent <agent@svc.sdko.net>

* Apply suggestion from @dominic-r

Signed-off-by: Dominic R <dominic@goauthentik.io>

---------

Signed-off-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dominic R <dominic@sdko.org>
 2026-05-25 22:40:21 +00:00
NiceDevil 5e9a295631 website/integrations: Dashy (#22633) 
* website/integrations: Dashy

Add an integration guide for Dashy with OIDC SSO against authentik,
covering the public OAuth2/OpenID Connect provider configuration in
authentik and the Dashy OIDC settings (web UI and conf.yml). Tested
with Dashy 4.1.15 and authentik 2026.5.0.

* website/integrations: Dashy: cleanup

Clean up the Dashy integration guide to match the current template and OIDC behavior.

Agent-thread: https://sdko.org/internal/threads/019e611f-c782-7741-8b53-a83e0b658006

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-25 22:32:58 +00:00
NiceDevil 659d009f32 website/integrations: mailcow Logs Viewer (#22632) 
* website/integrations: mailcow Logs Viewer

Add an integration guide for mailcow Logs Viewer with OAuth2/OIDC SSO
against authentik, covering the application/provider creation and the
OAuth2 environment variables on the mailcow Logs Viewer side. Tested
with mailcow Logs Viewer 2.6.1 and authentik 2026.5.0.

* website/integrations: mailcow Logs Viewer: cleanup

Align the mailcow Logs Viewer guide with the integration template and remove default-only OAuth settings.

Agent-thread: https://sdko.org/internal/threads/019e6120-481a-7892-9720-e2b9ff002e6e

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: nicedevil007 <nicedevil007@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-25 22:31:09 +00:00
Fletcher Heisler 8c40db3c71 docs: Americanize and minor fixes (#22600) 
* typo fixes

* americanize

* made docs
 2026-05-24 10:12:35 -04:00
Dominic R ba18b107ef website/integrations: Semgrep: cleanup (#22403) 
* website/integrations: Semgrep: cleanup

Update the Semgrep SAML guide to match the current integration template and Semgrep's guided SSO setup.

Refresh the authentik provider flow, attribute mappings, verification steps, and external resources.

Agent-thread: https://sdko.org/internal/threads/019e33e7-be1f-7793-8587-acd5cbf80225

Co-authored-by: Agent <agent@svc.sdko.net>

* website/integrations: Semgrep: address review comments

Apply review feedback for the Semgrep integration wording and current application wizard button label.

Agent-thread: https://sdko.org/internal/threads/019e4ca5-9bf4-76b2-a56a-868aa18e76bf
Co-authored-by: Agent <agent@svc.sdko.net>

* website/integrations: Semgrep: update example domain

Use a neutral placeholder email domain in the Semgrep guide so the preparation and setup steps match.

Agent-thread: https://sdko.org/internal/threads/019e4ca5-9bf4-76b2-a56a-868aa18e76bf
Co-authored-by: Agent <agent@svc.sdko.net>

* Update website/integrations/security/semgrep/index.md

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>

---------

Signed-off-by: Dewi Roberts <dewi@goauthentik.io>
Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
 2026-05-22 14:15:44 +00:00
Dominic R 3214a0ae98 website/integrations: Vaultwarden: cleanup (#22401) 
Clean up the Vaultwarden integration guide to match current template ordering and clarify OIDC environment settings.

Agent-thread: https://sdko.org/internal/threads/019e33e7-57be-7093-9484-d7bde9fba941

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-22 09:50:50 -04:00
Dominic R ee323565b8 website/integrations: KnowBe4: cleanup (#22406) 
* website/integrations: KnowBe4: cleanup

Refresh the KnowBe4 SAML integration guide to match the current template and provider guidance.

Agent-thread: https://sdko.org/internal/threads/019e33f8-9301-7b33-83b8-4e9fb0f47a83

Co-authored-by: Agent <agent@svc.sdko.net>

* website/integrations: KnowBe4: address review comments

Clarify the optional KnowBe4 SAML settings and apply the reviewer’s verification wording so the cleanup keeps the policy choices visible.

Agent-thread: https://sdko.org/internal/threads/019e4ca5-9bf4-76b2-a56a-868aa18e76bf

Co-authored-by: Agent <agent@svc.sdko.net>

---------

Co-authored-by: Agent <agent@svc.sdko.net>
 2026-05-22 09:46:08 -04:00
Dominic R 227d7520f0 website/integrations: macmon NAC: cleanup (#22407) 
Update the macmon NAC guide to match the integration template and document the required SAML response settings.

Agent-thread: https://sdko.org/internal/threads/019e33f8-5c40-7c31-9e3c-eb15fc7c0f68

Co-authored-by: Agent <agent@svc.sdko.net>
Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com>
 2026-05-22 09:45:24 -04:00