enterprise/endpoints/connectors/agent: fix Apple JWE encryption when FIPS is enabled

[BeryJu]

Without this change, with FIPS enabled, we'd get this error

Unknown OpenSSL error. This error is commonly encountered
                    when another library is not cleaning up the OpenSSL error
                    stack. If you are using cryptography with another library
                    that uses OpenSSL try disabling it before reporting a bug.
                    Otherwise please file an issue at
                    https://github.com/pyca/cryptography/issues with
                    information on how to reproduce this. (error:030000BE:digital envelope routines:EVP_CIPHER_CTX_copy:not able to copy ctx:../crypto/evp/evp_enc.c:1787:)

This can apparently be caused by OpenSSL version mismatches, which checks out since we run OpenSSL 3.5 with OpenSSL FIPS 3.1.2

this accomplishes the same but doesn't fail...?

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	e38e026
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-docs/deploys/692d84ef8c24190007912621
😎 Deploy Preview	https://deploy-preview-18464--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for authentik-storybook canceled.

Name	Link
🔨 Latest commit	e38e026
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-storybook/deploys/692d84ef76d9910008a7de9c

[netlify]

✅ Deploy Preview for authentik-integrations canceled.

Name	Link
🔨 Latest commit	e38e026
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-integrations/deploys/692d84effb88490008c5e87b

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.97%. Comparing base (2bb86f6) to head (e38e026).
⚠️ Report is 6 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #18464      +/-   ##
==========================================
- Coverage   93.02%   92.97%   -0.05%     
==========================================
  Files         911      911              
  Lines       49752    49756       +4     
==========================================
- Hits        46281    46261      -20     
- Misses       3471     3495      +24     

Flag	Coverage Δ
e2e	45.38% <25.00%> (+0.04%)	⬆️
integration	22.87% <0.00%> (-0.06%)	⬇️
unit	91.19% <100.00%> (+<0.01%)	⬆️
unit-migrate	91.24% <100.00%> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-e38e026dda90ba4f51fe17ec11da9604a221cbd3
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
    image:
        repository: ghcr.io/goauthentik/dev-server
        tag: gh-e38e026dda90ba4f51fe17ec11da9604a221cbd3

Afterwards, run the upgrade commands from the latest release notes.