goauthentik
core: add flag for future default behaviour of requiring a binding to access an application
Details
closes #2245 closes #3732
This adds a flag to early opt in to the new behaviour which will make applications not accessible by default, and require a binding to be in place to explicitly grant access
Checklist
- [ ] Local tests pass (
ak test authentik/) - [ ] The code has been formatted (
make lint-fix)
If an API change has been made
- [ ] The API schema has been updated (
make gen-build)
If changes to the frontend have been made
- [ ] The code has been formatted (
make web)
If applicable
- [ ] The documentation has been updated
- [ ] The documentation has been formatted (
make docs)
Deploy Preview for authentik-docs canceled.
| Name | Link |
|---|---|
| Latest commit | 379fa8085a005a33f56d20753492e99a846a6346 |
| Latest deploy log | https://app.netlify.com/projects/authentik-docs/deploys/69344b8d763ecf00088df905 |
![netlify[bot] avatar](https://avatars.githubusercontent.com/in/13473?v=4 "Published by a pub.dev verified publisher"){kind=small}
Deploy Preview for authentik-storybook ready!
| Name | Link |
|---|---|
| Latest commit | 166029d1e87bac6af3e60d4a76ed9d717560cc9e |
| Latest deploy log | https://app.netlify.com/projects/authentik-storybook/deploys/6942db2ca46c8d00080ddc5d |
| Deploy Preview | https://deploy-preview-16247--authentik-storybook.netlify.app |
| Preview on mobile | Toggle QR Code...Use your smartphone camera to open QR code link. |
To edit notification comments on pull requests, go to your Netlify project configuration.
Deploy Preview for authentik-integrations canceled.
| Name | Link |
|---|---|
| Latest commit | 379fa8085a005a33f56d20753492e99a846a6346 |
| Latest deploy log | https://app.netlify.com/projects/authentik-integrations/deploys/69344b8d502500000878da38 |
Codecov Report
:white_check_mark: All modified and coverable lines are covered by tests.
:white_check_mark: Project coverage is 93.22%. Comparing base (859a753) to head (379fa80).
:warning: Report is 21 commits behind head on main.
:white_check_mark: All tests successful. No failed tests found.
Additional details and impacted files
@@ Coverage Diff @@
## main #16247 +/- ##
=======================================
Coverage 93.22% 93.22%
=======================================
Files 933 933
Lines 51227 51243 +16
=======================================
+ Hits 47757 47772 +15
- Misses 3470 3471 +1
| Flag | Coverage Δ | |
|---|---|---|
| e2e | 44.75% <68.75%> (+<0.01%) |
:arrow_up: |
| integration | 22.81% <18.75%> (+<0.01%) |
:arrow_up: |
| unit | 91.44% <87.50%> (+<0.01%) |
:arrow_up: |
| unit-migrate | 91.49% <87.50%> (+<0.01%) |
:arrow_up: |
Flags with carried forward coverage won't be shown. Click here to find out more.
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
authentik PR Installation instructions
Instructions for docker-compose
Add the following block to your .env file:
AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-379fa8085a005a33f56d20753492e99a846a6346
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
Afterwards, run the upgrade commands from the latest release notes.
Instructions for Kubernetes
Add the following block to your values.yml file:
authentik:
outposts:
container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
image:
repository: ghcr.io/goauthentik/dev-server
tag: gh-379fa8085a005a33f56d20753492e99a846a6346
Afterwards, run the upgrade commands from the latest release notes.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}