website/docs: added Note about email_verified scope mapping is set to false by default#17942
Merged
website/docs: added Note about email_verified scope mapping is set to false by default#17942
Conversation
✅ Deploy Preview for authentik-docs ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
✅ Deploy Preview for authentik-integrations ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
✅ Deploy Preview for authentik-storybook canceled.
|
dominic-r
approved these changes
Nov 4, 2025
dominic-r
reviewed
Nov 4, 2025
website/docs/add-secure-apps/providers/property-mappings/index.md
Outdated
Show resolved
Hide resolved
dominic-r
reviewed
Nov 4, 2025
website/docs/add-secure-apps/providers/property-mappings/index.md
Outdated
Show resolved
Hide resolved
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #17942 +/- ##
==========================================
- Coverage 92.98% 92.97% -0.01%
==========================================
Files 869 869
Lines 48016 48016
==========================================
- Hits 44646 44642 -4
- Misses 3370 3374 +4
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
fheisler
reviewed
Nov 4, 2025
website/docs/add-secure-apps/providers/property-mappings/index.md
Outdated
Show resolved
Hide resolved
Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
dominic-r
reviewed
Nov 4, 2025
website/docs/add-secure-apps/providers/property-mappings/index.md
Outdated
Show resolved
Hide resolved
dominic-r
reviewed
Nov 4, 2025
| :::info Default value for `email_verified` | ||
| By default, authentik sets the `email_verified` claim to `false`, since it has no way to confirm whether a user's email is verified. Setting this claim to `true` by default could introduce unintended security risks. | ||
|
|
||
| Be aware that some applications might require this claim to be true to successfully authenticate users. In this case you should create a custom email scope mapping that returns `email_verified` as `True`, using the following expression: |
Member
There was a problem hiding this comment.
Suggested change
| Be aware that some applications might require this claim to be true to successfully authenticate users. In this case you should create a custom email scope mapping that returns `email_verified` as `True`, using the following expression: | |
| Some applications might require this claim to be true to successfully authenticate users. In this case, you should create a custom email scope mapping that returns `email_verified` as `True`, using the following expression: |
eh; a preference
Contributor
|
authentik PR Installation instructions Instructions for docker-composeAdd the following block to your AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-a6583b3bb67fa5eb596e3755cbe99e04b9f98884
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)sAfterwards, run the upgrade commands from the latest release notes. Instructions for KubernetesAdd the following block to your authentik:
outposts:
container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
image:
repository: ghcr.io/goauthentik/dev-server
tag: gh-a6583b3bb67fa5eb596e3755cbe99e04b9f98884Afterwards, run the upgrade commands from the latest release notes. |
Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com>
authentik-automation bot
pushed a commit
that referenced
this pull request
Nov 5, 2025
… false by default (#17942) * added Note about email_verified set to false * Update website/docs/add-secure-apps/providers/property-mappings/index.md Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> * edits * more edits * Update website/docs/add-secure-apps/providers/property-mappings/index.md Co-authored-by: Dominic R <dominic@sdko.org> Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Dominic R <dominic@sdko.org>
Contributor
|
🍒 Cherry-pick to |
tanberry
added a commit
that referenced
this pull request
Nov 5, 2025
… false by default (cherry-pick #17942 to version-2025.10) (#17961) website/docs: added Note about email_verified scope mapping is set to false by default (#17942) * added Note about email_verified set to false * Update website/docs/add-secure-apps/providers/property-mappings/index.md * edits * more edits * Update website/docs/add-secure-apps/providers/property-mappings/index.md --------- Signed-off-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Tana M Berry <tanamarieberry@yahoo.com> Co-authored-by: Dominic R <dominic@sdko.org>
kensternberg-authentik
added a commit
that referenced
this pull request
Nov 10, 2025
* main: webiste/docs: remove broken info box and fix sentence (#17963) web/admin: fixes capitalization in application wizard title (#17959) website/docs: added Note about email_verified scope mapping is set to false by default (#17942) crypto: update certificate api and component (#17921) core: bump openapitools/openapi-diff from 2.1.4 to 2.1.5 in /scripts/api (#17929) ci: bump getsentry/action-release from 3.3.0 to 3.4.0 (#17931) ci: bump helm/kind-action from 1.12.0 to 1.13.0 (#17930) tasks/schedules: fix rel obj not being associated or updated (#17934) core, web: update translations (#17807) brands: sort matched brand by match length (#17920) web: bump the storybook group across 1 directory with 5 updates (#17787) brands: add more matching tests (#16185)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
In response to Discord chat, thanks @melizeche for seeing it!