Skip to content

sources/oauth: include default JWKS URLs for OAuth sources#6992

Merged
BeryJu merged 2 commits intomainfrom
sources/oauth/default-jwks
Oct 20, 2023
Merged

sources/oauth: include default JWKS URLs for OAuth sources#6992
BeryJu merged 2 commits intomainfrom
sources/oauth/default-jwks

Conversation

@BeryJu
Copy link
Member

@BeryJu BeryJu commented Sep 26, 2023

Details

makes it easier to use pre-defined types like github, google, azure with JWT M2M instead of needing to create a generic OAuth Source

related to #6974 to improve the workflow

Checklist

  • Local tests pass (ak test authentik/)
  • The code has been formatted (make lint-fix)

If an API change has been made

  • The API schema has been updated (make gen-build)

If changes to the frontend have been made

  • The code has been formatted (make web)
  • The translation files have been updated (make i18n-extract)

If applicable

  • The documentation has been updated
  • The documentation has been formatted (make website)

@BeryJu BeryJu requested review from a team as code owners September 26, 2023 17:22
@netlify
Copy link

netlify bot commented Sep 26, 2023
edited
Loading

Deploy Preview for authentik-storybook ready!

Name Link
🔨 Latest commit a5a7014
🔍 Latest deploy log https://app.netlify.com/sites/authentik-storybook/deploys/653277916d0477000861b6b2
😎 Deploy Preview https://deploy-preview-6992--authentik-storybook.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@codecov
Copy link

codecov bot commented Sep 26, 2023
edited
Loading

Codecov Report

Attention: 7 lines in your changes are missing coverage. Please review.

Comparison is base (5e5bc5c) 91.18% compared to head (a5a7014) 52.03%.

Additional details and impacted files 
@@             Coverage Diff             @@
##             main    #6992       +/-   ##
===========================================
- Coverage   91.18%   52.03%   -39.15%     
===========================================
  Files         584      584               
  Lines       28766    28779       +13     
===========================================
- Hits        26230    14976    -11254     
- Misses       2536    13803    +11267
Flag Coverage Δ
e2e 50.39% <58.82%> (-0.68%) ⬇️
integration 26.09% <47.05%> (?)
unit ?

Flags with carried forward coverage won't be shown. Click here to find out more.

Files Coverage Δ
authentik/sources/oauth/types/azure_ad.py 92.00% <100.00%> (-8.00%) ⬇️
authentik/sources/oauth/types/github.py 55.81% <100.00%> (-34.43%) ⬇️
authentik/sources/oauth/types/google.py 94.73% <100.00%> (-5.27%) ⬇️
authentik/sources/oauth/types/registry.py 89.83% <100.00%> (-6.67%) ⬇️
authentik/sources/oauth/api/source.py 52.88% <22.22%> (-27.93%) ⬇️

... and 403 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@netlify
Copy link

netlify bot commented Oct 2, 2023
edited
Loading

Deploy Preview for authentik ready!

Name Link
🔨 Latest commit a5a7014
🔍 Latest deploy log https://app.netlify.com/sites/authentik/deploys/653277917b03140008e7051c
😎 Deploy Preview https://deploy-preview-6992--authentik.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.
Lighthouse
Lighthouse		 1 paths audited
Performance: 95 (🔴 down 1 from production)
Accessibility: 90 (no change from production)
Best Practices: 100 (no change from production)
SEO: 80 (no change from production)
PWA: -
View the detailed breakdown and full score reports

To edit notification comments on pull requests, go to your Netlify site configuration.

github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 2, 2023
View reviewed changes
authentik/sources/oauth/api/source.py
except RequestException as exc:
text = exc.response.text if exc.response else str(exc)
raise ValidationError({"jwks_url": text})
raise ValidationError({"oidc_jwks_url": text})

Check warning

Code scanning / CodeQL

Information exposure through an exception

[Stack trace information](1) flows to this location and may be exposed to an external user.
BeryJu added 2 commits October 20, 2023 14:50
@BeryJu
sources/oauth: include default JWKS URLs for OAuth sources
0169649 
makes it easier to use pre-defined types like github, google, azure with JWT M2M instead of needing to create a generic OAuth Source

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
@BeryJu
fix error
a5a7014 
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
@BeryJu BeryJu force-pushed the sources/oauth/default-jwks branch from 872e50b to a5a7014 Compare October 20, 2023 12:50
@BeryJu BeryJu merged commit 63426bc into main Oct 20, 2023
@BeryJu BeryJu deleted the sources/oauth/default-jwks branch October 20, 2023 14:54
kensternberg-authentik added a commit that referenced this pull request Oct 20, 2023
@kensternberg-authentik
Merge branch 'main' into web/improve-email-button-labels
aa0f5e4 
* main:
  web: bump API Client version (#7246)
  sources/oauth: include default JWKS URLs for OAuth sources (#6992)
  sources/oauth: periodically update OAuth sources' OIDC configuration (#7245)
  website/blogs: Fix sso blog to remove 3rd reason (#7230)
  lifecycle: fix otp_merge migration again (#7244)
  web: bump core-js from 3.33.0 to 3.33.1 in /web (#7243)
  core: bump node from 20 to 21 (#7237)
  web: fix bad comment that was confusing lit-analyze (#7234)
  translate: Updates for file web/xliff/en.xlf in zh_CN (#7235)
  core: bump ruff from 0.1.0 to 0.1.1 (#7238)
  core: bump twilio from 8.9.1 to 8.10.0 (#7239)
  web: bump the storybook group in /web with 5 updates (#7240)
  web: bump the wdio group in /tests/wdio with 4 updates (#7241)
  translate: Updates for file web/xliff/en.xlf in zh-Hans (#7236)
kensternberg-authentik added a commit that referenced this pull request Oct 20, 2023
@kensternberg-authentik
Merge branch 'main' into web/theme-controller-2
e8edbdb 
* main:
  web: bump API Client version (#7246)
  sources/oauth: include default JWKS URLs for OAuth sources (#6992)
  sources/oauth: periodically update OAuth sources' OIDC configuration (#7245)
  website/blogs: Fix sso blog to remove 3rd reason (#7230)
  lifecycle: fix otp_merge migration again (#7244)
  web: bump core-js from 3.33.0 to 3.33.1 in /web (#7243)
  core: bump node from 20 to 21 (#7237)
  web: fix bad comment that was confusing lit-analyze (#7234)
  translate: Updates for file web/xliff/en.xlf in zh_CN (#7235)
  core: bump ruff from 0.1.0 to 0.1.1 (#7238)
  core: bump twilio from 8.9.1 to 8.10.0 (#7239)
  web: bump the storybook group in /web with 5 updates (#7240)
  web: bump the wdio group in /tests/wdio with 4 updates (#7241)
  translate: Updates for file web/xliff/en.xlf in zh-Hans (#7236)
  web: isolate clipboard handling (#7229)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@BeryJu