205hlab-mirrors/authentik
2
0
Fork 0
mirror of https://github.com/goauthentik/authentik.git synced 2026-06-17 19:09:11 +03:00
Code Issues Packages Projects Releases Wiki Activity
22,260 Commits 384 Branches 449 Tags
ci/qa-npm-signatures
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Teffen Ellis 2dd6d9379d ci: add qa-npm-signatures workflow 
Adds a dedicated CI workflow that runs `npm audit signatures` against
each workspace lockfile (root, web, website, lifecycle/aws).

`npm audit signatures` verifies that every package in the lockfile has
a valid Sigstore provenance attestation from the npm registry, catching
the cases where a published version is tampered with after the fact or
where a package's signature suddenly disappears between resolution and
audit. It is run:

  - on PRs that touch any package.json / package-lock.json
  - on pushes to main that touch the same paths
  - daily on a schedule, so retroactive unpublishes/signature changes
    surface even without a dependency-touching PR

The audit does not require `node_modules` to be populated, so the
workflow skips `npm ci` entirely and runs only against the lockfile —
keeping it fast and isolated from build-time concerns.

Co-authored-by: Agent <279763771+playpen-agent@users.noreply.github.com>
2026-06-02 16:50:50 +02:00
.cargo
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
.github
ci: add qa-npm-signatures workflow
2026-06-02 16:50:50 +02:00
.vscode
ci: Consistent NPM versions via Corepack (#20400)
2026-05-13 22:05:07 +00:00
authentik
security: automated internal backport of patch GHSA-c3m2-jqmq-pvp3.sec.patch to authentik-main (#22732)
2026-05-28 16:43:35 +02:00
blueprints
root: fix schema and API clients (#22735)
2026-06-01 18:42:06 +02:00
cmd
root: introduce allinone mode (#21990)
2026-05-04 16:43:11 +02:00
internal
providers/radius: fix eap debug logging (#22551)
2026-05-22 14:16:36 +02:00
lifecycle
lifecycle/aws: bump aws-cdk from 2.1122.0 to 2.1123.0 in /lifecycle/aws (#22665)
2026-05-26 22:05:53 +02:00
locale
security: automated internal backport of patch GHSA-c3m2-jqmq-pvp3.sec.patch to authentik-main (#22732)
2026-05-28 16:43:35 +02:00
packages
root: fix schema and API clients (#22735)
2026-06-01 18:42:06 +02:00
schemas
enterprise/providers: WS-Federation (#19583)
2026-01-28 17:43:16 +01:00
scripts
root: fix make gen-diff command (#22548)
2026-05-27 05:37:19 -05:00
src
root: introduce allinone mode (#21990)
2026-05-04 16:43:11 +02:00
tests
tests/e2e: fix proxy tests failing due to in-use port (#22785)
2026-06-02 14:09:47 +02:00
web
translate: Updates for project authentik and language no_NO (#22643)
2026-05-27 10:30:13 +00:00
website
website/integrations: Elastic Cloud: cleanup (#22707)
2026-06-02 13:23:51 +00:00
.dockerignore
packages/ak-lib: init (#21257)
2026-03-31 11:33:46 +02:00
.editorconfig
.gitattributes
packages/django-dramatiq-postgres: fix default value for HTTPServerThread (#21216)
2026-03-28 20:57:46 +01:00
.gitignore
root: fix gitignore binary paths (#22445)
2026-05-19 17:49:43 +00:00
.npmrc
core: harden npm install against supply-chain attacks (#22245)
2026-05-13 12:20:36 +00:00
.prettierignore
core, web: Vendored client follow-ups (#21174)
2026-03-26 18:33:24 +01:00
build.rs
root: fix rust build with uv-installed Python (#21858)
2026-04-28 18:11:22 +02:00
Cargo.lock
core: bump reqwest-middleware from 0.5.1 to 0.5.2 (#22631)
2026-05-26 11:21:30 +02:00
Cargo.toml
core: bump reqwest-middleware from 0.5.1 to 0.5.2 (#22631)
2026-05-26 11:21:30 +02:00
CODE_OF_CONDUCT.md
CODEOWNERS
root: Update CODEOWNERS for spellcheck dictionaries (#22408)
2026-05-18 16:14:18 +02:00
CONTRIBUTING.md
cspell.config.jsonc
policies/event_matcher: Add query option to filter events (#21618)
2026-04-16 01:52:11 +02:00
go.mod
core: bump github.com/go-openapi/runtime from 0.30.0 to 0.31.0 (#22615)
2026-05-26 11:35:06 +02:00
go.sum
core: bump github.com/go-openapi/runtime from 0.30.0 to 0.31.0 (#22615)
2026-05-26 11:35:06 +02:00
LICENSE
Makefile
root: make tests run when running make all (#22186)
2026-05-27 13:13:09 +02:00
manage.py
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
package-lock.json
web: bump tmp from 0.2.5 to 0.2.6 (#22682)
2026-05-27 23:32:50 +02:00
package.json
ci: Consistent NPM versions via Corepack (#20400)
2026-05-13 22:05:07 +00:00
pyproject.toml
core: bump aws-cdk-lib from 2.255.0 to 2.256.0 (#22675)
2026-05-27 22:47:29 +02:00
README.md
website: Docs and README new screenshots (#22341)
2026-05-18 16:15:38 +02:00
rust-toolchain.toml
core: bump rust-toolchain from 1.94.1 to 1.95.0 (#21660)
2026-04-17 23:48:49 +01:00
schema.yml
root: fix schema and API clients (#22735)
2026-06-01 18:42:06 +02:00
SECURITY.md
root: update security release versions (#22583)
2026-05-22 22:44:44 -05:00
tsconfig.json
core, web: Vendored client follow-ups (#21174)
2026-03-26 18:33:24 +01:00
uv.lock
core: bump aws-cdk-lib from 2.255.0 to 2.256.0 (#22675)
2026-05-27 22:47:29 +02:00

README.md

authentik logo

Join Discord GitHub Workflow Status GitHub Workflow Status GitHub Workflow Status Code Coverage Latest version

What is authentik?

authentik is an open-source Identity Provider (IdP) for modern SSO. It supports SAML, OAuth2/OIDC, LDAP, RADIUS, and more, designed for self-hosting from small labs to large production clusters.

Our enterprise offering is available for organizations to securely replace existing IdPs such as Okta, Auth0, Entra ID, and Ping Identity for robust, large-scale identity management.

Installation

  • Docker Compose: recommended for small/test setups. See the documentation.
  • Kubernetes (Helm Chart): recommended for larger setups. See the documentation and the Helm chart repository.
  • AWS CloudFormation: deploy on AWS using our official templates. See the documentation.
  • DigitalOcean Marketplace: one-click deployment via the official Marketplace app. See the app listing.

Screenshots

Light Dark

Development and contributions

See the Developer Documentation for information about setting up local build environments, testing your contributions, and our contribution process.

When you contribute documentation, either to accompany a code change or as a standalone contribution, please be sure to follow our documentation Style Guide.

Security

Please see SECURITY.md.

Adoption

Using authentik? We'd love to hear your story and feature your logo. Email us at hello@goauthentik.io or open a GitHub Issue/PR!

License

MIT License CC BY-SA 4.0 authentik EE License

Reference in New Issue View Git Blame Copy Permalink
S
Description
The authentication glue you need.
authenticationauthentikauthorizationkubernetesoauth2oauth2-clientoauth2-serveroidcoidc-clientoidc-providerproxyreverse-proxysamlsaml-idpsaml-spsecuritysso
Readme MIT 1 GiB
Languages
Python 54.4%
TypeScript 34.9%
Go 4.2%
CSS 2.2%
Rust 1.9%
Other 2.3%