205hlab-mirrors/authentik
2
0
Fork 0
mirror of https://github.com/goauthentik/authentik.git synced 2026-06-17 19:09:11 +03:00
Code Issues Packages Projects Releases Wiki Activity
21,839 Commits 384 Branches 449 Tags
8963d29ab480d1c8a50961badc5d1e12eee9128c
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Alexander Tereshkin 8963d29ab4 enterprise/lifecycle: remove one review per object limitation (#21046) 
* enterprise/lifecycle: allow multiple rules to apply to a single object (and thus, multiple concurrent reviews)

* enterprise/lifecyle: add missing migration to allow multiple lifecycle rules per object, add tests, update documentation

* enterprise/lifecycle: add a bit of padding to individual review iterations on Review tab for better visual separation

* enterprise/lifecycle: remove validation preventing the creation of multiple lifecycle rules for one object type

* enterprise/lifecycle: change the approach to querying the list of reviews with user_is_reviewer annotation to prevent duplicate rows

* enterprise/lifecycle: add custom per-type logic to get object name for use in a notification to prevent texts like "Review is due for Group Group X"

* enterprise/lifecycle: updated wording on lifecycle rule form and preview banner padding

* enterprise/lifecycle: remove task list from lifecycle rules and switch to using per-rule schedules

* enterprise/lifecycle: add a title to the lifecycle tab

* Revert "enterprise/lifecycle: remove task list from lifecycle rules and switch to using per-rule schedules"

This reverts commit 8a060015b693f65f651a71bdb0c47092d3463af1.

* enterprise/lifecycle: remove task list from the lifecycle rule list page and attach the tasks to the schedule

* enterprise/lifecycle: add proper caption when there are no reviews for an object

* enterprise/lifecycle: attach individual apply_lifecycle_rule tasks to the schedule when launched from apply_lifecycle_rules

* enterprise/lifecycle: update generated API clients

* enterprise/lifecycle: update wording

* enterprise/lifecycle: fix ts issues after rebase

* Update website/docs/sys-mgmt/object-lifecycle-management.md

Co-authored-by: Dominic R <dominic@sdko.org>
Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com>

* enterprise/lifecycle: remove fmall code artifact

---------

Signed-off-by: Alexander Tereshkin <96586+atereshkin@users.noreply.github.com>
Co-authored-by: Dominic R <dominic@sdko.org>
2026-04-30 14:11:07 -05:00
.cargo
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
.github
ci: bump taiki-e/install-action from 2.75.22 to 2.75.23 in /.github/actions/setup (#21982)
2026-04-30 13:40:21 +02:00
.vscode
core, web: Vendored client follow-ups (#21174)
2026-03-26 18:33:24 +01:00
authentik
enterprise/lifecycle: remove one review per object limitation (#21046)
2026-04-30 14:11:07 -05:00
blueprints
core: support hashed password in users API + automated install (#18686)
2026-04-29 06:27:59 +02:00
cmd
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
internal
providers/radius: fix message authenticator validation (#21824)
2026-04-25 20:53:29 +02:00
lifecycle
root: fix rust build with uv-installed Python (#21858)
2026-04-28 18:11:22 +02:00
locale
core, web: update translations (#21966)
2026-04-30 13:41:38 +02:00
packages
enterprise/lifecycle: remove one review per object limitation (#21046)
2026-04-30 14:11:07 -05:00
schemas
enterprise/providers: WS-Federation (#19583)
2026-01-28 17:43:16 +01:00
scripts
scripts/api_filter_schema: fix authentication (#21644)
2026-04-16 16:19:32 +00:00
src
root: only allow listen failure in dev (#21987)
2026-04-30 14:17:48 +02:00
tests
providers/saml: generate issuer url when provider is set on app (#18022)
2026-04-28 17:31:12 -05:00
web
enterprise/lifecycle: remove one review per object limitation (#21046)
2026-04-30 14:11:07 -05:00
website
enterprise/lifecycle: remove one review per object limitation (#21046)
2026-04-30 14:11:07 -05:00
.dockerignore
packages/ak-lib: init (#21257)
2026-03-31 11:33:46 +02:00
.editorconfig
website: add netlify cache plugin (#15113)
2025-06-18 15:07:15 +02:00
.gitattributes
packages/django-dramatiq-postgres: fix default value for HTTPServerThread (#21216)
2026-03-28 20:57:46 +01:00
.gitignore
root: cleanup API generation (#21172)
2026-03-26 13:48:01 +00:00
.prettierignore
core, web: Vendored client follow-ups (#21174)
2026-03-26 18:33:24 +01:00
build.rs
root: fix rust build with uv-installed Python (#21858)
2026-04-28 18:11:22 +02:00
Cargo.lock
core: bump rustls from 0.23.39 to 0.23.40 (#21958)
2026-04-29 12:34:27 +02:00
Cargo.toml
core: bump rustls from 0.23.39 to 0.23.40 (#21958)
2026-04-29 12:34:27 +02:00
CODE_OF_CONDUCT.md
CODEOWNERS
root: fix rust build with uv-installed Python (#21858)
2026-04-28 18:11:22 +02:00
CONTRIBUTING.md
root: clean up README (#16286)
2025-09-02 21:38:53 +00:00
cspell.config.jsonc
policies/event_matcher: Add query option to filter events (#21618)
2026-04-16 01:52:11 +02:00
go.mod
core: bump github.com/getsentry/sentry-go from 0.45.1 to 0.46.0 (#21955)
2026-04-29 12:36:43 +02:00
go.sum
core: bump github.com/getsentry/sentry-go from 0.45.1 to 0.46.0 (#21955)
2026-04-29 12:36:43 +02:00
LICENSE
Makefile
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
manage.py
root: init rust worker (#21324)
2026-04-27 01:08:32 +02:00
package-lock.json
web: bump brace-expansion from 1.1.13 to 1.1.14 (#21820)
2026-04-25 11:27:27 +02:00
package.json
web: bump cspell from 9.7.0 to 10.0.0 (#21427)
2026-04-07 15:15:53 +01:00
pyproject.toml
core: bump uvicorn[standard] from 0.44.0 to 0.45.0 (#21956)
2026-04-29 12:35:09 +02:00
README.md
root: Fix transifex link (#17696)
2025-10-24 19:01:42 +02:00
rust-toolchain.toml
core: bump rust-toolchain from 1.94.1 to 1.95.0 (#21660)
2026-04-17 23:48:49 +01:00
schema.yml
enterprise/lifecycle: remove one review per object limitation (#21046)
2026-04-30 14:11:07 -05:00
SECURITY.md
security: add item to intended behavior section of security policy (#21430)
2026-04-07 13:00:26 +02:00
tsconfig.json
core, web: Vendored client follow-ups (#21174)
2026-03-26 18:33:24 +01:00
uv.lock
core: bump uvicorn[standard] from 0.44.0 to 0.45.0 (#21956)
2026-04-29 12:35:09 +02:00

README.md

authentik logo

Join Discord GitHub Workflow Status GitHub Workflow Status GitHub Workflow Status Code Coverage Latest version

What is authentik?

authentik is an open-source Identity Provider (IdP) for modern SSO. It supports SAML, OAuth2/OIDC, LDAP, RADIUS, and more, designed for self-hosting from small labs to large production clusters.

Our enterprise offering is available for organizations to securely replace existing IdPs such as Okta, Auth0, Entra ID, and Ping Identity for robust, large-scale identity management.

Installation

  • Docker Compose: recommended for small/test setups. See the documentation.
  • Kubernetes (Helm Chart): recommended for larger setups. See the documentation and the Helm chart repository.
  • AWS CloudFormation: deploy on AWS using our official templates. See the documentation.
  • DigitalOcean Marketplace: one-click deployment via the official Marketplace app. See the app listing.

Screenshots

Light Dark

Development and contributions

See the Developer Documentation for information about setting up local build environments, testing your contributions, and our contribution process.

Security

Please see SECURITY.md.

Adoption

Using authentik? We'd love to hear your story and feature your logo. Email us at hello@goauthentik.io or open a GitHub Issue/PR!

License

MIT License CC BY-SA 4.0 authentik EE License

Reference in New Issue View Git Blame Copy Permalink
S
Description
The authentication glue you need.
authenticationauthentikauthorizationkubernetesoauth2oauth2-clientoauth2-serveroidcoidc-clientoidc-providerproxyreverse-proxysamlsaml-idpsaml-spsecuritysso
Readme MIT 1 GiB
Languages
Python 54.4%
TypeScript 34.9%
Go 4.2%
CSS 2.2%
Rust 1.9%
Other 2.3%