e2d8239581
web: bump yaml from 2.8.2 to 2.8.3 in /web ( #21071 )
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.8.2 to 2.8.3.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.8.2...v2.8.3 )
---
updated-dependencies:
- dependency-name: yaml
dependency-version: 2.8.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-23 18:49:05 +01:00
d1ed30b6e0
core: add flag for future default behaviour of requiring a binding to access an application ( #16247 )
...
* core: add flag to configure if apps without bindings should be accessible to everyone or not
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# authentik/policies/views.py
# schema.yml
* add description
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* fix
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# web/src/admin/admin-settings/AdminSettingsForm.ts
* fix flag check
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* include scim
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add description
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-03-23 18:14:00 +01:00
2a90a049db
translate: Updates for project authentik and language fr_FR ( #21056 )
...
Co-authored-by: transifex-integration[bot] <43880903+transifex-integration[bot]@users.noreply.github.com>
2026-03-23 13:42:13 +01:00
1236b231f6
web: bump the storybook group across 1 directory with 5 updates ( #21031 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.3.0 to 10.3.1
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.1/code/addons/docs )
Updates `@storybook/addon-links` from 10.3.0 to 10.3.1
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.1/code/addons/links )
Updates `@storybook/web-components` from 10.3.0 to 10.3.1
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.1/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.3.0 to 10.3.1
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.1/code/frameworks/web-components-vite )
Updates `storybook` from 10.3.0 to 10.3.1
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.1/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 23:57:42 +01:00
9dd018f1fe
web: bump knip from 5.88.0 to 5.88.1 in /web ( #21033 )
...
Bumps [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip ) from 5.88.0 to 5.88.1.
- [Release notes](https://github.com/webpro-nl/knip/releases )
- [Commits](https://github.com/webpro-nl/knip/commits/knip@5.88.1/packages/knip )
---
updated-dependencies:
- dependency-name: knip
dependency-version: 5.88.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 23:57:37 +01:00
89b03526d4
web: bump type-fest from 5.4.4 to 5.5.0 in /web ( #21032 )
...
Bumps [type-fest](https://github.com/sindresorhus/type-fest ) from 5.4.4 to 5.5.0.
- [Release notes](https://github.com/sindresorhus/type-fest/releases )
- [Commits](https://github.com/sindresorhus/type-fest/compare/v5.4.4...v5.5.0 )
---
updated-dependencies:
- dependency-name: type-fest
dependency-version: 5.5.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 23:56:43 +01:00
82111d7f9d
web/admin: handle non-string values in formatUUID to prevent Event Log crash ( #20804 )
...
fix(web): handle non-string values in formatUUID to prevent Event Log crash
When event context contains a device with a non-string pk value,
formatUUID crashes with TypeError: s.substring is not a function,
preventing the entire Event Log page from loading.
Add a type guard to coerce non-string values to their string
representation instead of crashing.
Fixes #20803
2026-03-20 22:05:30 +01:00
4de503056f
web: bump chromedriver from 146.0.4 to 146.0.5 in /web ( #21035 )
2026-03-20 20:30:25 +01:00
93bf83c981
core, web: update translations ( #21021 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-03-20 12:50:21 +00:00
5f57c6077d
web: bump flatted from 3.4.1 to 3.4.2 in /web ( #21037 )
...
Bumps [flatted](https://github.com/WebReflection/flatted ) from 3.4.1 to 3.4.2.
- [Commits](https://github.com/WebReflection/flatted/compare/v3.4.1...v3.4.2 )
---
updated-dependencies:
- dependency-name: flatted
dependency-version: 3.4.2
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 13:49:29 +01:00
bda6a262d1
web: bump @sentry/browser from 10.44.0 to 10.45.0 in /web in the sentry group across 1 directory ( #21022 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.44.0 to 10.45.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.44.0...10.45.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.45.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 13:49:20 +01:00
763f7f9e64
web: link file picker to docs ( #20995 )
2026-03-19 10:58:37 -04:00
a10ec34aec
web/flow: reset stale authenticator selection between consecutive validate stages ( #20802 )
...
* fix(web): reset stale MFA challenge selection across stages
* Surface API errors in plucked details.
* Clean up error messages, lifecycle, cancel states.
* Address review feedback on base host property and tag resolver
Fix lint and typing for authenticator component resolver
Format authenticator resolver signature
chore: trigger CI rerun after transient npm network failure
* Tidy return value.
---------
Co-authored-by: Teffen Ellis <592134+GirlBossRush@users.noreply.github.com >
2026-03-19 15:49:49 +01:00
810a479242
web: bump the storybook group across 1 directory with 5 updates ( #21005 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.2.19 to 10.3.0
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.0/code/addons/docs )
Updates `@storybook/addon-links` from 10.2.19 to 10.3.0
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.0/code/addons/links )
Updates `@storybook/web-components` from 10.2.19 to 10.3.0
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.0/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.2.19 to 10.3.0
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.0/code/frameworks/web-components-vite )
Updates `storybook` from 10.2.19 to 10.3.0
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.3.0/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-19 12:58:11 +01:00
94cd66dd24
web: bump knip from 5.87.0 to 5.88.0 in /web ( #21006 )
...
Bumps [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip ) from 5.87.0 to 5.88.0.
- [Release notes](https://github.com/webpro-nl/knip/releases )
- [Commits](https://github.com/webpro-nl/knip/commits/knip@5.88.0/packages/knip )
---
updated-dependencies:
- dependency-name: knip
dependency-version: 5.88.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-19 12:57:48 +01:00
0e60d0a235
web: bump @formatjs/intl-listformat from 8.2.3 to 8.3.1 in /web ( #21007 )
...
Bumps [@formatjs/intl-listformat](https://github.com/formatjs/formatjs ) from 8.2.3 to 8.3.1.
- [Release notes](https://github.com/formatjs/formatjs/releases )
- [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-listformat@8.2.3...@formatjs/intl-listformat@8.3.1 )
---
updated-dependencies:
- dependency-name: "@formatjs/intl-listformat"
dependency-version: 8.3.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-19 12:57:37 +01:00
046bc8ac98
web/admin: fix missing OSM referrerPolicy header ( #20984 )
...
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-03-18 23:09:22 +01:00
585266b551
web: bump @sentry/browser from 10.43.0 to 10.44.0 in /web in the sentry group across 1 directory ( #20965 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.43.0 to 10.44.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.43.0...10.44.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.44.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-18 10:02:02 +01:00
056119f901
web: Fix admin table horizontal scrolling ( #20960 )
2026-03-17 23:40:04 +00:00
a897535998
web: Supply our font and color choices to rapidoc. ( #20775 )
...
* Supply our font and color choices to rapidoc.
* Of course prettier has opinions, but one extra linefeed?
2026-03-17 17:26:36 +01:00
5fae44ff5b
web/flow: separate out independent behavior tracks from IdentificationStage (autoredirect, webauthn, captcha, rememberme) ( #20578 )
...
* Another attempt.
* Reconstruction the separation-of-concerns build using the newest version of 'main', since the merge was getting weird.
* Added the Flow Executor event handling; stages can now send events to trigger challenge updates or submissions, rather than Demeter violations.
* Captcha Controller is in. Autoredirect is in and passing.
* Add webauthn; modernize RememberMe
* Webauthn hooked up.
* Prettier has 🚽 opinions sometimes.
* Don't look at me like that, prettier.
* Added comments describing the controllers.
* ## What
At a reviewer’s request, analyzed variable use and moved as many as possible into the JavaScript private (`#`) space. The analysis also showed that the rememberMe function `isValidChallenge` was no longer being used.
Also, for consistency, and to eliminate the confusion that an IdentificationChallenge might also be a PasskeyChallenge, the only place where that abstraction “leaked” was in `IdentificationStage.renderInput()`; by adding an `live` flag to the Webauthn controller I was able to:
- const autocomplete: AutoFill = passkeyChallenge ? "username webauthn" : "username";
+ const autocomplete: AutoFill = this.#webauthn.live ? "username webauthn" : "username";
… and eliminate any PasskeyChallenge typecasting entirely from the IdentificationStage. While this only loosens the coupling a little bit, it emphasizes that the IdentificationStage treats PasskeyChallenge as a peripheral system with its own responsibilities and business logic.
The actual logic is unchanged.
* A ONE LETTER fix
* Typos in comments are embarrassing.
2026-03-17 07:24:44 -07:00
3cd982750f
web: bump the storybook group across 1 directory with 5 updates ( #20944 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.2.17 to 10.2.19
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.19/code/addons/docs )
Updates `@storybook/addon-links` from 10.2.17 to 10.2.19
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.19/code/addons/links )
Updates `@storybook/web-components` from 10.2.17 to 10.2.19
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.19/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.2.17 to 10.2.19
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.19/code/frameworks/web-components-vite )
Updates `storybook` from 10.2.17 to 10.2.19
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.19/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.2.19
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.2.19
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.2.19
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.2.19
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.2.19
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-17 14:36:15 +01:00
9497f503f8
web: bump chromedriver from 146.0.3 to 146.0.4 in /web ( #20945 )
...
* web: bump chromedriver from 146.0.3 to 146.0.4 in /web
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 146.0.3 to 146.0.4.
- [Commits](https://github.com/giggio/node-chromedriver/compare/146.0.3...146.0.4 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 146.0.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
* sigh
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-03-17 13:37:29 +01:00
da5f5419e5
web: bump knip from 5.86.0 to 5.87.0 in /web ( #20948 )
...
Bumps [knip](https://github.com/webpro-nl/knip/tree/HEAD/packages/knip ) from 5.86.0 to 5.87.0.
- [Release notes](https://github.com/webpro-nl/knip/releases )
- [Commits](https://github.com/webpro-nl/knip/commits/knip@5.87.0/packages/knip )
---
updated-dependencies:
- dependency-name: knip
dependency-version: 5.87.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-17 12:34:47 +01:00
9376dd45c1
web: bump @formatjs/intl-listformat from 8.2.2 to 8.2.3 in /web ( #20946 )
...
Bumps [@formatjs/intl-listformat](https://github.com/formatjs/formatjs ) from 8.2.2 to 8.2.3.
- [Release notes](https://github.com/formatjs/formatjs/releases )
- [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-listformat@8.2.2...@formatjs/intl-listformat@8.2.3 )
---
updated-dependencies:
- dependency-name: "@formatjs/intl-listformat"
dependency-version: 8.2.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-17 12:15:41 +01:00
1c7094b723
web: bump core-js from 3.48.0 to 3.49.0 in /web ( #20947 )
...
Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js ) from 3.48.0 to 3.49.0.
- [Release notes](https://github.com/zloirock/core-js/releases )
- [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md )
- [Commits](https://github.com/zloirock/core-js/commits/v3.49.0/packages/core-js )
---
updated-dependencies:
- dependency-name: core-js
dependency-version: 3.49.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-17 12:15:14 +01:00
c2445d6f9b
core, web: update translations ( #20935 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-03-17 12:14:07 +01:00
15613c3eff
web: rename SCIM provider "User filtering" section to "Filtering" ( #20879 )
...
The section contains both user and group filter controls, so a generic
label is more accurate.
2026-03-16 18:29:42 +01:00
270cf0b1d8
web/admin: Fix SCIM 'page_size' UI issue ( #20890 )
...
Fix SCIM page size UI issue
Co-authored-by: Pavel Sinkevych <pavelsinkevych@gmail.com >
2026-03-16 18:28:29 +01:00
378f7c67a5
web: bump prettier-plugin-packagejson from 3.0.0 to 3.0.2 in /web ( #20759 )
...
Bumps [prettier-plugin-packagejson](https://github.com/matzkoh/prettier-plugin-packagejson ) from 3.0.0 to 3.0.2.
- [Release notes](https://github.com/matzkoh/prettier-plugin-packagejson/releases )
- [Commits](https://github.com/matzkoh/prettier-plugin-packagejson/compare/v3.0.0...v3.0.2 )
---
updated-dependencies:
- dependency-name: prettier-plugin-packagejson
dependency-version: 3.0.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 18:20:58 +01:00
6268da3007
web: bump @sentry/browser from 10.42.0 to 10.43.0 in /web in the sentry group across 1 directory ( #20839 )
...
web: bump @sentry/browser in /web in the sentry group across 1 directory
Bumps the sentry group with 1 update in the /web directory: [@sentry/browser](https://github.com/getsentry/sentry-javascript ).
Updates `@sentry/browser` from 10.42.0 to 10.43.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases )
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md )
- [Commits](https://github.com/getsentry/sentry-javascript/compare/10.42.0...10.43.0 )
---
updated-dependencies:
- dependency-name: "@sentry/browser"
dependency-version: 10.43.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: sentry
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 18:20:36 +01:00
db9081e7dc
policies: remove BufferedPolicyAccessView ( #20521 )
...
* policies: remove BufferedPolicyAccessView
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
# Conflicts:
# authentik/policies/views.py
# authentik/providers/oauth2/views/authorize.py
# schema.yml
# tests/e2e/test_provider_saml.py
* format
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
2026-03-16 18:19:15 +01:00
060766f16e
web: bump dompurify from 3.3.2 to 3.3.3 in /web ( #20856 )
...
Bumps [dompurify](https://github.com/cure53/DOMPurify ) from 3.3.2 to 3.3.3.
- [Release notes](https://github.com/cure53/DOMPurify/releases )
- [Commits](https://github.com/cure53/DOMPurify/compare/3.3.2...3.3.3 )
---
updated-dependencies:
- dependency-name: dompurify
dependency-version: 3.3.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 18:18:33 +01:00
669d54a768
web: bump chromedriver from 145.0.6 to 146.0.3 in /web ( #20916 )
...
* web: bump chromedriver from 145.0.6 to 146.0.3 in /web
Bumps [chromedriver](https://github.com/giggio/node-chromedriver ) from 145.0.6 to 146.0.3.
- [Commits](https://github.com/giggio/node-chromedriver/compare/145.0.6...146.0.3 )
---
updated-dependencies:
- dependency-name: chromedriver
dependency-version: 146.0.3
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
* ts ts ts dependabot
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
---------
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io >
2026-03-16 18:15:18 +01:00
3e23e4f58b
web: bump the bundler group across 1 directory with 7 updates ( #20876 )
...
Bumps the bundler group with 2 updates in the /web directory: [@vitest/browser](https://github.com/vitest-dev/vitest/tree/HEAD/packages/browser ) and [esbuild](https://github.com/evanw/esbuild ).
Updates `@vitest/browser` from 4.0.18 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases )
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/browser )
Updates `@vitest/browser-playwright` from 4.0.18 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases )
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/browser-playwright )
Updates `esbuild` from 0.27.3 to 0.27.4
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.27.3...v0.27.4 )
Updates `vitest` from 4.0.18 to 4.1.0
- [Release notes](https://github.com/vitest-dev/vitest/releases )
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/vitest )
Updates `@esbuild/darwin-arm64` from 0.27.3 to 0.27.4
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.27.3...v0.27.4 )
Updates `@esbuild/linux-arm64` from 0.27.3 to 0.27.4
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.27.3...v0.27.4 )
Updates `@esbuild/linux-x64` from 0.27.3 to 0.27.4
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.27.3...v0.27.4 )
---
updated-dependencies:
- dependency-name: "@vitest/browser"
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: bundler
- dependency-name: "@vitest/browser-playwright"
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: bundler
- dependency-name: esbuild
dependency-version: 0.27.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: vitest
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: bundler
- dependency-name: "@esbuild/darwin-arm64"
dependency-version: 0.27.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: "@esbuild/linux-arm64"
dependency-version: 0.27.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
- dependency-name: "@esbuild/linux-x64"
dependency-version: 0.27.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: bundler
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 17:34:37 +01:00
a2e99d4030
web: bump @types/node from 25.4.0 to 25.5.0 in /web ( #20878 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 25.4.0 to 25.5.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-version: 25.5.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 17:34:18 +01:00
c78c8e4fd5
web: bump flatted from 3.3.3 to 3.4.1 in /web ( #20923 )
...
Bumps [flatted](https://github.com/WebReflection/flatted ) from 3.3.3 to 3.4.1.
- [Commits](https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.1 )
---
updated-dependencies:
- dependency-name: flatted
dependency-version: 3.4.1
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-16 17:32:56 +01:00
45dcef8e9d
core, web: update translations ( #20899 )
...
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-03-16 13:51:23 +00:00
59263ae678
events: add option to configure webhook CA ( #20823 )
...
* events: add option to configure webhook CA
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add tests
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* add docs
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
* Update website/docs/sys-mgmt/events/transports.md
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
---------
Signed-off-by: Jens Langhammer <jens@goauthentik.io >
Signed-off-by: Jens L. <jens@beryju.org >
Co-authored-by: Dewi Roberts <dewi@goauthentik.io >
2026-03-14 21:01:01 +01:00
e9b33be694
stages/authenticator_webauthn: Add WebAuthn client hints support ( #20700 )
...
* Add webauthn_hints to models
* Add migrations
* Add webauthn_hints to the API
* Add enum to settings.py
* Add webauthn client hints to configuration forms in authenticator_webauthn and authenticator_validate
* Add compatability for older user agents auto infering authenticatorAttachment
* Rewording
* Fix capitalization
* Add tests
* Use ak-dual-select instead of checkboxes for hints
* Add preserve-order, no-search and no-status properties to ak-dual-select
* add no-search and no-status to ak-dual-select in AuthenticatorValidateStageForm.ts
2026-03-13 20:36:28 -03:00
0ff3869ea3
web/elements: Add preserve-order, no-search and no-status attributes to ak-dual-select ( #20749 )
...
* Add preserve-order, no-search and no-status properties to ak-dual-select
* fix linting
2026-03-13 17:11:28 -03:00
e1b6c19b21
web/flow/stages: permit the form handler to look in the light or shadowDOM for controls ( #20832 )
...
web/core/templates: permit the form handler to look in the light or shadow DOM for controls
## What
Every stage has its own form handler, inherited from `flows/stages/base.ts`. This change allows stages to place their controls in either the shadowDOM or the lightDOM (but not both), and still have them work correctly.
## Why
This makes Flow more open to the planned changes for compatibility mode while changing no current functionality. No behavioral changes should be observed with this change.
2026-03-11 09:34:20 -07:00
69628863ae
web/style/flow: flow css barrel file ( #20833 )
...
* web/core/templates: make it possible for interfaces to designate alternative stylesheets
## What
Moves the stylesheet invocation in `theme.html` to `skeleton.html`, give it a block and a block name so that pages using `skeleton.html` can override or extend it as needed.
## Why
The biggest wall we’re hitting right now is the lack of flexibility at the very top of the CSS. We simply use the same CSS file for *too much*, when really we should be thinking in terms of leaner, more targeted top-level CSS for some things, and more rich and expressive CSS when it’s necessary.
The style sheet was being loaded unconditionally in `theme.html`; it’s not in a conditional statement or overridable where it was; `skeleton` just loads it blindly. This change lets `theme.html` be what it is meant to be, an isolated container for the JavaScript logic for discerning the color mode, while enabling CSS developers to elide the stylesheet, provide alternative stylesheets, or (using `{{ block.super}}`) amend or extend the default stylesheet.
* Isolated flows to have their own CSS barrel file.
* Missed a spot.
2026-03-11 09:33:30 -07:00
f9a1e534c1
web/flow: provide labels for the stage import-and-invoke table ( #20834 )
...
## What
Provide labels for the different parts of a stage import-and-invoke record. @BeryJu found the table-oriented set-up hard to read and, having revised the code, I think he was right. This is still more explicit: ‘switch/case/break’ statements are machinery, the *how* and not the *what*; these labels are all the “what” and the “how” is neatly tucked away in the constructor.
2026-03-11 08:12:48 -07:00
f043a38bc3
core, web: update translations ( #20809 )
...
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>
2026-03-10 08:41:16 +00:00
13b74a8084
web: bump the storybook group across 1 directory with 5 updates ( #20816 )
...
Bumps the storybook group with 4 updates in the /web directory: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs ), [@storybook/addon-links](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/links ), [@storybook/web-components](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/web-components ) and [@storybook/web-components-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/web-components-vite ).
Updates `@storybook/addon-docs` from 10.2.16 to 10.2.17
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.17/code/addons/docs )
Updates `@storybook/addon-links` from 10.2.16 to 10.2.17
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.17/code/addons/links )
Updates `@storybook/web-components` from 10.2.16 to 10.2.17
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.17/code/renderers/web-components )
Updates `@storybook/web-components-vite` from 10.2.16 to 10.2.17
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.17/code/frameworks/web-components-vite )
Updates `storybook` from 10.2.16 to 10.2.17
- [Release notes](https://github.com/storybookjs/storybook/releases )
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md )
- [Commits](https://github.com/storybookjs/storybook/commits/v10.2.17/code/core )
---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
dependency-version: 10.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/addon-links"
dependency-version: 10.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components"
dependency-version: 10.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: "@storybook/web-components-vite"
dependency-version: 10.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
- dependency-name: storybook
dependency-version: 10.2.17
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: storybook
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-10 08:40:56 +00:00
c383285e01
web: bump @formatjs/intl-listformat from 8.2.1 to 8.2.2 in /web ( #20818 )
...
Bumps [@formatjs/intl-listformat](https://github.com/formatjs/formatjs ) from 8.2.1 to 8.2.2.
- [Release notes](https://github.com/formatjs/formatjs/releases )
- [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-listformat@8.2.1...@formatjs/intl-listformat@8.2.2 )
---
updated-dependencies:
- dependency-name: "@formatjs/intl-listformat"
dependency-version: 8.2.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-10 08:40:49 +00:00
333c42447c
web: bump mermaid from 11.12.3 to 11.13.0 in /web ( #20819 )
...
Bumps [mermaid](https://github.com/mermaid-js/mermaid ) from 11.12.3 to 11.13.0.
- [Release notes](https://github.com/mermaid-js/mermaid/releases )
- [Commits](https://github.com/mermaid-js/mermaid/compare/mermaid@11.12.3...mermaid@11.13.0 )
---
updated-dependencies:
- dependency-name: mermaid
dependency-version: 11.13.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-10 08:40:46 +00:00
2dbe937789
web: bump @types/node from 25.3.5 to 25.4.0 in /web ( #20820 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 25.3.5 to 25.4.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-version: 25.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-10 08:40:42 +00:00
df7bba3c8e
web/rbac: disambiguate duplicate permission names in initial permissions ( #20786 )
2026-03-09 20:14:35 +01:00
dependabot[bot]
Jens L.
transifex-integration[bot]
Tyson Cung
authentik-automation[bot]
Dominic R
Oluwatobi Mustapha
Ken Sternberg
Connor Peshek
Pavel Pavel
Marcelo Elizeche Landó