web: Form Modal Independence: Part 1

[GirlBossRush]

Details

This PR allows modal-dependent forms to render in other contexts, the first step towards de-modalizing forms. The changes here cover two backwards-compatible refactors:

FormProxy replaced with StrictUnsafe

The FormProxy component allows API-driven components to dynamically render forms with previously registered tag names. For the most part, <ak-form-proxy> performs this task by side-stepping Lit's renderer, using document.createElement to create the form element, synchronously setting its properties, and appending it to the DOM. This approach has a few downsides:

• Type safety is difficult as properties are set dynamically.
• Dynamic form elements skip Lit's sanitation and rendering optimizations.
• Form proxy adds an additional layer of indirection to ModalForm, ModelForm, etc.

StrictUnsafe is a new utility component that uses Lit's unsafeStatic directive to render dynamic tag names, preserving type safety and Lit's optimizations. StrictUnsafe is a more general-purpose utility that can be used in other contexts beyond forms. Ironically, our experiments in JSX-ification use a similar technique to applying properties and attributes in a type-safe manner.

Form decoupled from ModalForm

Previously, ModalForm expected a <span slot="header"> and <span slot="submit"> to determine the modal's title and submit button text, an arrangement that made it difficult to render fully-functional forms outside of modals. With this PR, ModalForm now queries its slotted form element for its heading and submitLabel properties, allowing the form to define these values itself.
ModalForm's ability to use slotted header and submit elements is left intact, allowing for backwards compatibility.

The opposite logic is also implemented. If a form element is rendered outside of an assigned slot, it will render the heading and submit elements itself, allowing it to render itself independently of a modal. This functionality is not yet used, but is available for future use.

What's Next

The next step is refactoring our ModalForm to include screen-reader support for modals. This is feature is tracked in #18916 and depends on this PR.

[netlify]

✅ Deploy Preview for authentik-storybook ready!

Name	Link
🔨 Latest commit	943aa5d
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-storybook/deploys/6972cce8251ced00083f3c9e
😎 Deploy Preview	https://deploy-preview-19395--authentik-storybook.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for authentik-integrations ready!

Name	Link
🔨 Latest commit	48bf558
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-integrations/deploys/69725de94886dc000817173e
😎 Deploy Preview	https://deploy-preview-19395--authentik-integrations.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	48bf558
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-docs/deploys/69725de9f12414000930ce83
😎 Deploy Preview	https://deploy-preview-19395--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 93.27%. Comparing base (20bd928) to head (943aa5d).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #19395      +/-   ##
==========================================
+ Coverage   93.26%   93.27%   +0.01%     
==========================================
  Files         949      949              
  Lines       52187    52187              
==========================================
+ Hits        48671    48678       +7     
+ Misses       3516     3509       -7     

Flag	Coverage Δ
conformance	38.25% <ø> (+<0.01%)	⬆️
e2e	44.09% <ø> (+<0.01%)	⬆️
integration	23.19% <ø> (+<0.01%)	⬆️
unit	91.51% <ø> (+0.02%)	⬆️
unit-migrate	91.55% <ø> (+0.03%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[kensternberg-authentik]

The unsafe folder is full of fun.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-943aa5d5b3526f0bf617a97d4355f51ef07efc4e
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
    image:
        repository: ghcr.io/goauthentik/dev-server
        tag: gh-943aa5d5b3526f0bf617a97d4355f51ef07efc4e

Afterwards, run the upgrade commands from the latest release notes.