core: fix logic for token expiration (cherry-pick #9426)

[gcp-cherry-pick-bot]

Cherry-picked core: fix logic for token expiration (#9426)

• core: fix logic for token expiration

Signed-off-by: Jens Langhammer jens@goauthentik.io

• bump default token expiration

Signed-off-by: Jens Langhammer jens@goauthentik.io

• fix frontend

Signed-off-by: Jens Langhammer jens@goauthentik.io

• fix

Signed-off-by: Jens Langhammer jens@goauthentik.io

---

Signed-off-by: Jens Langhammer jens@goauthentik.io

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	a52a347
🔍 Latest deploy log	https://app.netlify.com/sites/authentik-docs/deploys/662a5dec514201000850f493
😎 Deploy Preview	https://deploy-preview-9428--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[codecov]

Codecov Report

Attention: Patch coverage is 83.33333% with 1 lines in your changes are missing coverage. Please review.

Project coverage is 92.31%. Comparing base (f78adab) to head (a52a347).

Files	Patch %	Lines
authentik/core/api/tokens.py	75.00%	1 Missing ⚠️

Additional details and impacted files

@@                Coverage Diff                 @@
##           version-2024.4    #9428      +/-   ##
==================================================
- Coverage           92.42%   92.31%   -0.12%     
==================================================
  Files                 668      668              
  Lines               32667    32666       -1     
==================================================
- Hits                30193    30156      -37     
- Misses               2474     2510      +36     

Flag	Coverage Δ
e2e	50.00% <50.00%> (-0.68%)	⬇️
integration	26.02% <33.33%> (-0.01%)	⬇️
unit	89.69% <83.33%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-ghcr.io/goauthentik/dev-server:gh-a52a347cd3b6979ea69db996602dc26358c79688
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

For arm64, use these values:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-ghcr.io/goauthentik/dev-server:gh-a52a347cd3b6979ea69db996602dc26358c79688-arm64
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-ghcr.io/goauthentik/dev-server:gh-a52a347cd3b6979ea69db996602dc26358c79688

For arm64, use these values:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-ghcr.io/goauthentik/dev-server:gh-a52a347cd3b6979ea69db996602dc26358c79688-arm64

Afterwards, run the upgrade commands from the latest release notes.