authentik-nix

Author	SHA1	Message	Date
Maximilian Bosch	04db807ac0	Merge pull request #35 from SuperSandro2000/patch-1 Fix indentation of markdown code blocks	2025-09-12 13:35:06 +02:00
Maximilian Bosch	22827e9a0c	terraform-provider-authentik: 2025.6.0 -> 2025.8.0	2025-09-05 10:53:16 +02:00
Maximilian Bosch	cfa634fd2d	Merge pull request #70 from nix-community/authentik-2025.8 update: 2025.6.4 -> 2025.8.1	2025-09-05 10:49:56 +02:00
Maximilian Bosch	6dc84faaec	update: 2025.6.4 -> 2025.8.1 See https://next.goauthentik.io/releases/2025.8/ ChangeLog: https://next.goauthentik.io/releases/2025.8/#fixed-in-202581 The following things changed: * We're blocked on going to NodeJS 24.x (which is the version upstream uses) because it breaks with napalm[1]. * The worker has been switched from celery to dramatiq. An automatic migration of the tasks doesn't exist, the operator must make sure to stop the server and let the queue drain[2]. While this eliminates the need of Redis for Celery, the tests fails without Redis. After inspecting the code, it looks like it's still needed for e.g. session management. [1] https://github.com/npm/cli/issues/8541 [2] https://next.goauthentik.io/releases/2025.8/#fixed-in-202581	2025-08-30 12:34:10 +02:00
Maximilian Bosch	a31bbcc1bf	Merge pull request #68 from quentinmit/ak-properties module: support additional properties in "ak"	2025-08-29 16:03:43 +02:00
Quentin Smith	940f49870b	module: support additional properties in "ak" This changes the "ak" script to contain all properties from the authentik.service unit except the Exec* and Restart* properties. This allows the script to work when the user has added additional properties to the unit (e.g. the `SupplementaryGroups` property to connect to Redis over a Unix socket).	2025-08-26 17:24:35 -04:00
Maximilian Bosch	1361d269fe	terraform-provider: 2025.4.0 -> 2025.6.0 https://github.com/goauthentik/terraform-provider-authentik/releases/tag/v2025.6.0	2025-07-24 16:59:22 +02:00
Maximilian Bosch	3634900731	Merge pull request #67 from xanderio/authentik-2025.06 update: 2025.4.4 -> 2025.6.4	2025-07-24 16:51:41 +02:00
Alexander Sieg	e155dd91f6	update: 2025.4.4 -> 2025.6.4 co-authored-by: Maximilian Bosch <maximilian@mbosch.me>	2025-07-24 15:00:27 +02:00
Maximilian Bosch	7bb4dfd067	update: 2025.4.3 -> 2025.4.4, fix CVE-2025-53942 See https://docs.goauthentik.io/docs/security/cves/CVE-2025-53942	2025-07-22 16:55:55 +02:00
Maximilian Bosch	1a4d6a5dd6	update: 2025.4.2 -> 2025.4.3, fix CVE-2025-52553 You're most likely not affected unless you override the Go part yourself to enable the RAC provider. See https://version-2025-4.goauthentik.io/docs/releases/2025.4#fixed-in-202543 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/bda30c5ad5838fea36dc0a06f8580cca437f0fc0' (2025-06-04) → 'github:goauthentik/authentik/b34665fabd8d938d81ce871a4e86ca528c5f253b' (2025-06-27)	2025-06-27 16:05:52 +02:00
Maximilian Bosch	79e3b86100	flake.lock: Update Flake lock file updates: • Updated input 'flake-parts': 'github:hercules-ci/flake-parts/49f0870db23e8c1ca0b5259734a02cd9e1e371a1' (2025-06-01) → 'github:hercules-ci/flake-parts/9305fe4e5c2a6fcf5ba6a3ff155720fbe4076569' (2025-06-08) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/c2a03962b8e24e669fb37b7df10e7c79531ff1a4' (2025-06-03) → 'github:NixOS/nixpkgs/30a61f056ac492e3b7cdcb69c1e6abdcf00e39cf' (2025-06-24) • Updated input 'pyproject-build-systems': 'github:pyproject-nix/build-system-pkgs/33bd58351957bb52dd1700ea7eeefe34de06a892' (2025-05-29) → 'github:pyproject-nix/build-system-pkgs/7c06967eca687f3482624250428cc12f43c92523' (2025-06-10) • Updated input 'pyproject-nix': 'github:pyproject-nix/pyproject.nix/e09c10c24ebb955125fda449939bfba664c467fd' (2025-05-06) → 'github:pyproject-nix/pyproject.nix/e824458bd917b44bf4c38795dea2650336b2f55d' (2025-06-21) • Updated input 'uv2nix': 'github:pyproject-nix/uv2nix/a4dd471de62b27928191908f57bfcd702ec2bfc9' (2025-06-03) → 'github:pyproject-nix/uv2nix/4b703d851b61e664a70238711a8ff0efa1aa2f52' (2025-06-27)	2025-06-27 13:33:24 +02:00
Maximilian Bosch	271a38f7c4	flake.lock: Update Flake lock file updates: • Updated input 'flake-parts': 'github:hercules-ci/flake-parts/c621e8422220273271f52058f618c94e405bb0f5' (2025-04-01) → 'github:hercules-ci/flake-parts/49f0870db23e8c1ca0b5259734a02cd9e1e371a1' (2025-06-01) • Updated input 'flake-parts/nixpkgs-lib': 'github:nix-community/nixpkgs.lib/e4822aea2a6d1cdd36653c134cacfd64c97ff4fa' (2025-03-30) → 'github:nix-community/nixpkgs.lib/656a64127e9d791a334452c6b6606d17539476e2' (2025-06-01) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/adaa24fbf46737f3f1b5497bf64bae750f82942e' (2025-05-13) → 'github:NixOS/nixpkgs/c2a03962b8e24e669fb37b7df10e7c79531ff1a4' (2025-06-03) • Updated input 'pyproject-build-systems': 'github:pyproject-nix/build-system-pkgs/7dba6dbc73120e15b558754c26024f6c93015dd7' (2025-04-14) → 'github:pyproject-nix/build-system-pkgs/33bd58351957bb52dd1700ea7eeefe34de06a892' (2025-05-29) • Updated input 'uv2nix': 'github:pyproject-nix/uv2nix/fe540e91c26f378c62bf6da365a97e848434d0cd' (2025-05-07) → 'github:pyproject-nix/uv2nix/a4dd471de62b27928191908f57bfcd702ec2bfc9' (2025-06-03)	2025-06-05 15:26:02 +02:00
Maximilian Bosch	4465579623	update: 2025.4.1 -> 2025.4.2 See https://docs.goauthentik.io/docs/releases/2025.4#fixed-in-202542 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/ae47624761f05040149d856d5e55a90cd7492740' (2025-05-15) → 'github:goauthentik/authentik/bda30c5ad5838fea36dc0a06f8580cca437f0fc0' (2025-06-04)	2025-06-05 15:03:01 +02:00
Maximilian Bosch	f204746603	flake.lock: Update Flake lock file updates: • Updated input 'flake-compat': 'github:edolstra/flake-compat/ff81ac966bb2cae68946d5ed5fc4994f96d0ffec' (2024-12-04) → 'github:edolstra/flake-compat/9100a0f413b0c601e0533d1d94ffd501ce2e7885' (2025-05-12) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/f02fddb8acef29a8b32f10a335d44828d7825b78' (2025-05-01) → 'github:NixOS/nixpkgs/adaa24fbf46737f3f1b5497bf64bae750f82942e' (2025-05-13) • Updated input 'pyproject-nix': 'github:pyproject-nix/pyproject.nix/3e9623bdd86a3c545e82b7f97cfdba5f07232d9a' (2025-05-02) → 'github:pyproject-nix/pyproject.nix/e09c10c24ebb955125fda449939bfba664c467fd' (2025-05-06) • Updated input 'uv2nix': 'github:pyproject-nix/uv2nix/680e2f8e637bc79b84268949d2f2b2f5e5f1d81c' (2025-04-30) → 'github:pyproject-nix/uv2nix/fe540e91c26f378c62bf6da365a97e848434d0cd' (2025-05-07)	2025-05-16 11:11:18 +02:00
Maximilian Bosch	9509c52f62	update: 2025.4.0 -> 2025.4.1 See https://docs.goauthentik.io/docs/releases/2025.4#fixed-in-202541 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/22412729e2379d645da2ac0c0270a0ac6147945e' (2025-04-29) → 'github:goauthentik/authentik/ae47624761f05040149d856d5e55a90cd7492740' (2025-05-15)	2025-05-16 11:07:49 +02:00
Maximilian Bosch	2ef24fac99	Merge pull request #46 from GeoffreyFrogeye/push-xklzwvrxluln module: add basic proxy outpost service	2025-05-10 12:54:52 +02:00
Maximilian Bosch	0b5a364838	Merge pull request #59 from Ma27/authentik-2025.04 update: 2025.2.4 -> 2025.4.0, switch to uv	2025-05-09 08:03:44 +02:00
Maximilian Bosch	c350e8655c	flake.lock: Update Flake lock file updates: • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/8a2f738d9d1f1d986b5a4cd2fd2061a7127237d7' (2025-04-23) → 'github:NixOS/nixpkgs/f02fddb8acef29a8b32f10a335d44828d7825b78' (2025-05-01) • Updated input 'pyproject-nix': 'github:pyproject-nix/pyproject.nix/2db2d95ddbc4ff5e29730cb82fdba6647be258a7' (2025-04-27) → 'github:pyproject-nix/pyproject.nix/3e9623bdd86a3c545e82b7f97cfdba5f07232d9a' (2025-05-02) • Updated input 'uv2nix': 'github:pyproject-nix/uv2nix/6d19baf0fcc7a013ae9c1c188bbf7cfe37b566e0' (2025-04-30) → 'github:pyproject-nix/uv2nix/680e2f8e637bc79b84268949d2f2b2f5e5f1d81c' (2025-04-30)	2025-05-03 16:26:07 +02:00
Maximilian Bosch	cfe34a4975	terraform-provider: 2025.2.0 -> 2025.4.0	2025-05-03 16:25:40 +02:00
Maximilian Bosch	893670fa74	update: 2025.2.4 -> 2025.4.0 See https://docs.goauthentik.io/docs/releases/2025.4	2025-05-03 16:22:32 +02:00
Maximilian Bosch	ce1abb8640	Merge pull request #58 from MarcelCoding/patch-1 Add NixOS support notice	2025-05-02 20:28:01 +02:00
Marcel	ca24576392	Update README.md	2025-05-01 19:22:01 +02:00
Marcel	73af54b0d6	Update README.md	2025-05-01 19:00:34 +02:00
Geoffrey “Frogeye” Preud'homme	794eb56bac	module: add basic proxy outpost service	2025-05-01 18:46:01 +02:00
Marcel	ac06ee0ecc	Update README.md	2025-05-01 18:40:48 +02:00
Maximilian Bosch	618330bee6	Merge pull request #51 from Ma27/path-type module: prohibit store-paths for environmentFile	2025-04-28 16:50:30 +02:00
Maximilian Bosch	e9bde1ace0	module: prohibit store-paths for environmentFile The store is world-readable, so secrets shouldn't end up there in the first place. On top, `types.path` has the following behavior: * `toString foo` returns the absolute path * `${foo}` copies the path silently into the store and returns the store-path. This happens without any real feedback, so this can be caused by an innocent looking change. To address this problem, `pathsWith` was introduced into <nixpkgs/lib> which allows absolute paths represented as string, but rejects things pointing to the store and path literals which may be copied later on.	2025-04-28 13:52:51 +02:00
Maximilian Bosch	a8a5de7890	Merge pull request #53 from fpletz/nixpkgs-libpq flake.lock: Update, fix psycopg build	2025-04-26 12:36:15 +02:00
Franz Pletz	ddf14710b7	flake.lock: Update, fix psycopg build Flake lock file updates: • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/c8cd81426f45942bb2906d5ed2fe21d2f19d95b7' (2025-04-08) → 'github:NixOS/nixpkgs/8a2f738d9d1f1d986b5a4cd2fd2061a7127237d7' (2025-04-23)	2025-04-24 19:21:57 +02:00
Maximilian Bosch	105b3b6c00	update: 2025.2.3 -> 2025.2.4 See https://docs.goauthentik.io/docs/releases/2025.2#fixed-in-202524 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/748a8e560f2eb93f7ec15d6762d4e5931fc1fa2a' (2025-03-28) → 'github:goauthentik/authentik/74eab55c615b156e4191ee98dc789e2d58c016f9' (2025-04-11)	2025-04-11 14:41:12 +02:00
Maximilian Bosch	5c674147fe	flake.lock: Update Flake lock file updates: • Updated input 'flake-parts': 'github:hercules-ci/flake-parts/32ea77a06711b758da0ad9bd6a844c5740a87abd' (2025-02-01) → 'github:hercules-ci/flake-parts/c621e8422220273271f52058f618c94e405bb0f5' (2025-04-01) • Updated input 'flake-parts/nixpkgs-lib': 'https://github.com/NixOS/nixpkgs/archive/072a6db25e947df2f31aab9eccd0ab75d5b2da11.tar.gz?narHash=sha256-vJzFZGaCpnmo7I6i416HaBLpC%2BhvcURh/BQwROcGIp8%3D' (2025-02-01) → 'github:nix-community/nixpkgs.lib/e4822aea2a6d1cdd36653c134cacfd64c97ff4fa' (2025-03-30) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/0196c0175e9191c474c26ab5548db27ef5d34b05' (2025-02-24) → 'github:NixOS/nixpkgs/c8cd81426f45942bb2906d5ed2fe21d2f19d95b7' (2025-04-08) • Updated input 'poetry2nix': 'github:nix-community/poetry2nix/d90f9db68a4bda31c346be16dfd8d3263be4547e' (2025-02-18) → 'github:nix-community/poetry2nix/ce2369db77f45688172384bbeb962bc6c2ea6f94' (2025-04-03)	2025-04-11 14:41:12 +02:00
Maximilian Bosch	ca765bc344	Merge pull request #52 from 0x5a4/fix-broken-cargo-fetch-tarball fix: use fetchCargoVendor for all poetry dependencies	2025-04-11 14:29:03 +02:00
0x5a4	f4202fabeb	fix: use fetchCargoVendor for all poetry dependencies	2025-04-08 19:35:23 +02:00
WilliButz	b4916a86d4	update: 2025.2.2 -> 2025.2.3 (security update) Fixes CVE-2025-29928 See https://docs.goauthentik.io/docs/releases/2025.2#fixed-in-202523 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/3adf79c4939276e108c25c719843b6174e9e22fd' (2025-03-17) → 'github:goauthentik/authentik/748a8e560f2eb93f7ec15d6762d4e5931fc1fa2a' (2025-03-28)	2025-03-28 15:35:44 +01:00
WilliButz	8268406ca9	terraform-provider: 2024.10.1 -> 2025.2.0	2025-03-28 15:25:43 +01:00
Maximilian Bosch	04f5e14643	update: 2025.2.1 -> 2025.2.2 See https://docs.goauthentik.io/docs/releases/2025.2#fixed-in-202522 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/31fe0e59234e487a42012510d1a4e4819b9aba26' (2025-02-26) → 'github:goauthentik/authentik/3adf79c4939276e108c25c719843b6174e9e22fd' (2025-03-17)	2025-03-17 21:15:10 +00:00
WilliButz	bfcad34bec	update: 2025.2.0 -> 2025.2.1 See https://docs.goauthentik.io/docs/releases/2025.2#fixed-in-202521 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/5c5cc1c7daa4248c5a2c29ac47f3639d4eaa8ff5' (2025-02-24) → 'github:goauthentik/authentik/31fe0e59234e487a42012510d1a4e4819b9aba26' (2025-02-26)	2025-02-26 21:29:00 +01:00
WilliButz	c79e9b7810	flake.lock: update nixpkgs, fix cryptography vendor hash Flake lock file updates: • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/2ff53fe64443980e139eaa286017f53f88336dd0' (2025-02-13) → 'github:NixOS/nixpkgs/0196c0175e9191c474c26ab5548db27ef5d34b05' (2025-02-24)	2025-02-24 19:13:31 +01:00
WilliButz	543e15bee6	update: 2024.12.3 -> 2025.2.0 See https://docs.goauthentik.io/docs/releases/2025.2 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/f1b7a9f934e6b58a1884ba753575eac6267f4b6e' (2025-01-29) → 'github:goauthentik/authentik/5c5cc1c7daa4248c5a2c29ac47f3639d4eaa8ff5' (2025-02-24) • Updated input 'poetry2nix': 'github:nix-community/poetry2nix/be1fe795035d3d36359ca9135b26dcc5321b31fb' (2025-02-05) → 'github:nix-community/poetry2nix/d90f9db68a4bda31c346be16dfd8d3263be4547e' (2025-02-18)	2025-02-24 17:45:30 +01:00
WilliButz	efd801f6fa	Merge pull request #44 from fpletz/flake-update/2025-02-15 flake.lock: Update, blueprint & fetchCargoVendor fixes	2025-02-15 10:38:44 +01:00
Franz Pletz	219e3fd2f5	python-overrides: fetchCargoTarball is deprecated `fetchCargoTarball` was deprecated and replaced with `fetchCargoVendor`. Newer cargo versions produce different output which changes `fetchCargoTarball` hashes.	2025-02-15 03:20:51 +01:00
Franz Pletz	74feeec4f1	docs: fix broken blueprints symlink Recent nixpkgs unstable added a symlink checker that discovered the blueprints symlink didn't point to the correct directory location.	2025-02-15 03:19:49 +01:00
Franz Pletz	6af7fb2623	flake.lock: Update Flake lock file updates: • Updated input 'flake-parts': 'github:hercules-ci/flake-parts/b905f6fc23a9051a6e1b741e1438dbfc0634c6de' (2025-01-06) → 'github:hercules-ci/flake-parts/32ea77a06711b758da0ad9bd6a844c5740a87abd' (2025-02-01) • Updated input 'flake-parts/nixpkgs-lib': 'https://github.com/NixOS/nixpkgs/archive/e9b51731911566bbf7e4895475a87fe06961de0b.tar.gz?narHash=sha256-CewEm1o2eVAnoqb6Ml%2BQi9Gg/EfNAxbRx1lANGVyoLI%3D' (2025-01-01) → 'https://github.com/NixOS/nixpkgs/archive/072a6db25e947df2f31aab9eccd0ab75d5b2da11.tar.gz?narHash=sha256-vJzFZGaCpnmo7I6i416HaBLpC%2BhvcURh/BQwROcGIp8%3D' (2025-02-01) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/0aa475546ed21629c4f5bbf90e38c846a99ec9e9' (2025-01-23) → 'github:NixOS/nixpkgs/2ff53fe64443980e139eaa286017f53f88336dd0' (2025-02-13) • Updated input 'poetry2nix': 'github:nix-community/poetry2nix/75d0515332b7ca269f6d7abfd2c44c47a7cbca7b' (2025-01-14) → 'github:nix-community/poetry2nix/be1fe795035d3d36359ca9135b26dcc5321b31fb' (2025-02-05)	2025-02-15 03:04:52 +01:00
WilliButz	bc62d55099	git-blame-ignore-revs: init after treewide nixfmt	2025-02-02 14:38:42 +01:00
WilliButz	dbfc2207df	treewide: nixfmt	2025-02-02 14:25:09 +01:00
WilliButz	d653af66b3	cleanup scope and re-enable override-scope test Based on the discussion from #27	2025-02-02 14:24:51 +01:00
WilliButz	e877502737	README: use same secret length in example as official docs Upstream documentation uses 60 bytes: https://docs.goauthentik.io/docs/install-config/install/docker-compose#preparation Originally the length here was taken from the upstream Makefile: https://github.com/goauthentik/authentik/blob/version/2023.5.1/Makefile#L29	2025-01-30 19:39:30 +01:00
WilliButz	48fda0cade	github/workflows: drop magic-nix-cache-action Evidently did not do much anyway, right now GitHub lists four caches, the largest is 23MB ¯\_(ツ)_/¯	2025-01-30 19:05:33 +01:00
WilliButz	f2b0754dce	update: 2024.12.2 -> 2024.12.3 See https://docs.goauthentik.io/docs/releases/2024.12#fixed-in-2024123 Flake lock file updates: • Updated input 'authentik-src': 'github:goauthentik/authentik/9d81f0598c7735e2b4616ee865ab896056a67408' (2025-01-09) → 'github:goauthentik/authentik/f1b7a9f934e6b58a1884ba753575eac6267f4b6e' (2025-01-29)	2025-01-29 22:25:38 +01:00

1 2 3 4 5

204 commits