authentik-api 2026.2.2 → 2026.5.0.rc1

data/lib/authentik/api/models/authenticator_validate_stage_request.rb

@@ -26,8 +26,18 @@ module Authentik::Api
     # Enforce user verification for WebAuthn devices.
     attr_accessor :webauthn_user_verification
 
+    attr_accessor :webauthn_hints
+
     attr_accessor :webauthn_allowed_device_types
 
+    attr_accessor :email_otp_throttling_factor
+
+    attr_accessor :sms_otp_throttling_factor
+
+    attr_accessor :totp_otp_throttling_factor
+
+    attr_accessor :static_otp_throttling_factor
+
     class EnumAttributeValidator
       attr_reader :datatype
       attr_reader :allowable_values
@@ -59,7 +69,12 @@ module Authentik::Api
         :'configuration_stages' => :'configuration_stages',
         :'last_auth_threshold' => :'last_auth_threshold',
         :'webauthn_user_verification' => :'webauthn_user_verification',
-        :'webauthn_allowed_device_types' => :'webauthn_allowed_device_types'
+        :'webauthn_hints' => :'webauthn_hints',
+        :'webauthn_allowed_device_types' => :'webauthn_allowed_device_types',
+        :'email_otp_throttling_factor' => :'email_otp_throttling_factor',
+        :'sms_otp_throttling_factor' => :'sms_otp_throttling_factor',
+        :'totp_otp_throttling_factor' => :'totp_otp_throttling_factor',
+        :'static_otp_throttling_factor' => :'static_otp_throttling_factor'
       }
     end
 
@@ -82,7 +97,12 @@ module Authentik::Api
         :'configuration_stages' => :'Array<String>',
         :'last_auth_threshold' => :'String',
         :'webauthn_user_verification' => :'UserVerificationEnum',
-        :'webauthn_allowed_device_types' => :'Array<String>'
+        :'webauthn_hints' => :'Array<WebAuthnHintEnum>',
+        :'webauthn_allowed_device_types' => :'Array<String>',
+        :'email_otp_throttling_factor' => :'Float',
+        :'sms_otp_throttling_factor' => :'Float',
+        :'totp_otp_throttling_factor' => :'Float',
+        :'static_otp_throttling_factor' => :'Float'
       }
     end
 
@@ -138,11 +158,33 @@ module Authentik::Api
         self.webauthn_user_verification = attributes[:'webauthn_user_verification']
       end
 
+      if attributes.key?(:'webauthn_hints')
+        if (value = attributes[:'webauthn_hints']).is_a?(Array)
+          self.webauthn_hints = value
+        end
+      end
+
       if attributes.key?(:'webauthn_allowed_device_types')
         if (value = attributes[:'webauthn_allowed_device_types']).is_a?(Array)
           self.webauthn_allowed_device_types = value
         end
       end
+
+      if attributes.key?(:'email_otp_throttling_factor')
+        self.email_otp_throttling_factor = attributes[:'email_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'sms_otp_throttling_factor')
+        self.sms_otp_throttling_factor = attributes[:'sms_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'totp_otp_throttling_factor')
+        self.totp_otp_throttling_factor = attributes[:'totp_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'static_otp_throttling_factor')
+        self.static_otp_throttling_factor = attributes[:'static_otp_throttling_factor']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -214,7 +256,12 @@ module Authentik::Api
           configuration_stages == o.configuration_stages &&
           last_auth_threshold == o.last_auth_threshold &&
           webauthn_user_verification == o.webauthn_user_verification &&
-          webauthn_allowed_device_types == o.webauthn_allowed_device_types
+          webauthn_hints == o.webauthn_hints &&
+          webauthn_allowed_device_types == o.webauthn_allowed_device_types &&
+          email_otp_throttling_factor == o.email_otp_throttling_factor &&
+          sms_otp_throttling_factor == o.sms_otp_throttling_factor &&
+          totp_otp_throttling_factor == o.totp_otp_throttling_factor &&
+          static_otp_throttling_factor == o.static_otp_throttling_factor
     end
 
     # @see the `==` method
@@ -226,7 +273,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [name, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_allowed_device_types].hash
+      [name, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_hints, webauthn_allowed_device_types, email_otp_throttling_factor, sms_otp_throttling_factor, totp_otp_throttling_factor, static_otp_throttling_factor].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/authenticator_web_authn_stage.rb

@@ -39,10 +39,15 @@ module Authentik::Api
 
     attr_accessor :resident_key_requirement
 
+    attr_accessor :hints
+
     attr_accessor :device_type_restrictions
 
     attr_accessor :device_type_restrictions_obj
 
+    # When enabled, a given device can only be registered once.
+    attr_accessor :prevent_duplicate_devices
+
     attr_accessor :max_attempts
 
     class EnumAttributeValidator
@@ -82,8 +87,10 @@ module Authentik::Api
         :'user_verification' => :'user_verification',
         :'authenticator_attachment' => :'authenticator_attachment',
         :'resident_key_requirement' => :'resident_key_requirement',
+        :'hints' => :'hints',
         :'device_type_restrictions' => :'device_type_restrictions',
         :'device_type_restrictions_obj' => :'device_type_restrictions_obj',
+        :'prevent_duplicate_devices' => :'prevent_duplicate_devices',
         :'max_attempts' => :'max_attempts'
       }
     end
@@ -112,9 +119,11 @@ module Authentik::Api
         :'friendly_name' => :'String',
         :'user_verification' => :'UserVerificationEnum',
         :'authenticator_attachment' => :'AuthenticatorAttachmentEnum',
-        :'resident_key_requirement' => :'ResidentKeyRequirementEnum',
+        :'resident_key_requirement' => :'UserVerificationEnum',
+        :'hints' => :'Array<WebAuthnHintEnum>',
         :'device_type_restrictions' => :'Array<String>',
         :'device_type_restrictions_obj' => :'Array<WebAuthnDeviceType>',
+        :'prevent_duplicate_devices' => :'Boolean',
         :'max_attempts' => :'Integer'
       }
     end
@@ -207,6 +216,12 @@ module Authentik::Api
         self.resident_key_requirement = attributes[:'resident_key_requirement']
       end
 
+      if attributes.key?(:'hints')
+        if (value = attributes[:'hints']).is_a?(Array)
+          self.hints = value
+        end
+      end
+
       if attributes.key?(:'device_type_restrictions')
         if (value = attributes[:'device_type_restrictions']).is_a?(Array)
           self.device_type_restrictions = value
@@ -221,6 +236,10 @@ module Authentik::Api
         self.device_type_restrictions_obj = nil
       end
 
+      if attributes.key?(:'prevent_duplicate_devices')
+        self.prevent_duplicate_devices = attributes[:'prevent_duplicate_devices']
+      end
+
       if attributes.key?(:'max_attempts')
         self.max_attempts = attributes[:'max_attempts']
       end
@@ -406,8 +425,10 @@ module Authentik::Api
           user_verification == o.user_verification &&
           authenticator_attachment == o.authenticator_attachment &&
           resident_key_requirement == o.resident_key_requirement &&
+          hints == o.hints &&
           device_type_restrictions == o.device_type_restrictions &&
           device_type_restrictions_obj == o.device_type_restrictions_obj &&
+          prevent_duplicate_devices == o.prevent_duplicate_devices &&
           max_attempts == o.max_attempts
     end
 
@@ -420,7 +441,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, device_type_restrictions, device_type_restrictions_obj, max_attempts].hash
+      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, hints, device_type_restrictions, device_type_restrictions_obj, prevent_duplicate_devices, max_attempts].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/authenticator_web_authn_stage_request.rb

@@ -23,8 +23,13 @@ module Authentik::Api
 
     attr_accessor :resident_key_requirement
 
+    attr_accessor :hints
+
     attr_accessor :device_type_restrictions
 
+    # When enabled, a given device can only be registered once.
+    attr_accessor :prevent_duplicate_devices
+
     attr_accessor :max_attempts
 
     class EnumAttributeValidator
@@ -58,7 +63,9 @@ module Authentik::Api
         :'user_verification' => :'user_verification',
         :'authenticator_attachment' => :'authenticator_attachment',
         :'resident_key_requirement' => :'resident_key_requirement',
+        :'hints' => :'hints',
         :'device_type_restrictions' => :'device_type_restrictions',
+        :'prevent_duplicate_devices' => :'prevent_duplicate_devices',
         :'max_attempts' => :'max_attempts'
       }
     end
@@ -81,8 +88,10 @@ module Authentik::Api
         :'friendly_name' => :'String',
         :'user_verification' => :'UserVerificationEnum',
         :'authenticator_attachment' => :'AuthenticatorAttachmentEnum',
-        :'resident_key_requirement' => :'ResidentKeyRequirementEnum',
+        :'resident_key_requirement' => :'UserVerificationEnum',
+        :'hints' => :'Array<WebAuthnHintEnum>',
         :'device_type_restrictions' => :'Array<String>',
+        :'prevent_duplicate_devices' => :'Boolean',
         :'max_attempts' => :'Integer'
       }
     end
@@ -137,12 +146,22 @@ module Authentik::Api
         self.resident_key_requirement = attributes[:'resident_key_requirement']
       end
 
+      if attributes.key?(:'hints')
+        if (value = attributes[:'hints']).is_a?(Array)
+          self.hints = value
+        end
+      end
+
       if attributes.key?(:'device_type_restrictions')
         if (value = attributes[:'device_type_restrictions']).is_a?(Array)
           self.device_type_restrictions = value
         end
       end
 
+      if attributes.key?(:'prevent_duplicate_devices')
+        self.prevent_duplicate_devices = attributes[:'prevent_duplicate_devices']
+      end
+
       if attributes.key?(:'max_attempts')
         self.max_attempts = attributes[:'max_attempts']
       end
@@ -226,7 +245,9 @@ module Authentik::Api
           user_verification == o.user_verification &&
           authenticator_attachment == o.authenticator_attachment &&
           resident_key_requirement == o.resident_key_requirement &&
+          hints == o.hints &&
           device_type_restrictions == o.device_type_restrictions &&
+          prevent_duplicate_devices == o.prevent_duplicate_devices &&
           max_attempts == o.max_attempts
     end
 
@@ -239,7 +260,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [name, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, device_type_restrictions, max_attempts].hash
+      [name, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, hints, device_type_restrictions, prevent_duplicate_devices, max_attempts].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/{flow_import_result.rb → blueprint_import_result.rb}

@@ -8,8 +8,8 @@ require 'date'
 require 'time'
 
 module Authentik::Api
-  # Logs of an attempted flow import
-  class FlowImportResult < ApiModelBase
+  # Logs of an attempted blueprint import
+  class BlueprintImportResult < ApiModelBase
     attr_accessor :logs
 
     attr_accessor :success
@@ -50,14 +50,14 @@ module Authentik::Api
     # @param [Hash] attributes Model attributes in the form of hash
     def initialize(attributes = {})
       if (!attributes.is_a?(Hash))
-        fail ArgumentError, "The input argument (attributes) must be a hash in `Authentik::Api::FlowImportResult` initialize method"
+        fail ArgumentError, "The input argument (attributes) must be a hash in `Authentik::Api::BlueprintImportResult` initialize method"
       end
 
       # check to see if the attribute exists and convert string to symbol for hash key
       acceptable_attribute_map = self.class.acceptable_attribute_map
       attributes = attributes.each_with_object({}) { |(k, v), h|
         if (!acceptable_attribute_map.key?(k.to_sym))
-          fail ArgumentError, "`#{k}` is not a valid attribute in `Authentik::Api::FlowImportResult`. Please check the name to make sure it's valid. List of attributes: " + acceptable_attribute_map.keys.inspect
+          fail ArgumentError, "`#{k}` is not a valid attribute in `Authentik::Api::BlueprintImportResult`. Please check the name to make sure it's valid. List of attributes: " + acceptable_attribute_map.keys.inspect
         end
         h[k.to_sym] = v
       }

data/lib/authentik/api/models/brand.rb

@@ -39,6 +39,8 @@ module Authentik::Api
 
     attr_accessor :flow_device_code
 
+    attr_accessor :flow_lockdown
+
     # When set, external users will be redirected to this application after authenticating.
     attr_accessor :default_application
 
@@ -67,6 +69,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'flow_unenrollment',
         :'flow_user_settings' => :'flow_user_settings',
         :'flow_device_code' => :'flow_device_code',
+        :'flow_lockdown' => :'flow_lockdown',
         :'default_application' => :'default_application',
         :'web_certificate' => :'web_certificate',
         :'client_certificates' => :'client_certificates',
@@ -101,6 +104,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'String',
         :'flow_user_settings' => :'String',
         :'flow_device_code' => :'String',
+        :'flow_lockdown' => :'String',
         :'default_application' => :'String',
         :'web_certificate' => :'String',
         :'client_certificates' => :'Array<String>',
@@ -117,6 +121,7 @@ module Authentik::Api
         :'flow_unenrollment',
         :'flow_user_settings',
         :'flow_device_code',
+        :'flow_lockdown',
         :'default_application',
         :'web_certificate',
       ])
@@ -198,6 +203,10 @@ module Authentik::Api
         self.flow_device_code = attributes[:'flow_device_code']
       end
 
+      if attributes.key?(:'flow_lockdown')
+        self.flow_lockdown = attributes[:'flow_lockdown']
+      end
+
       if attributes.key?(:'default_application')
         self.default_application = attributes[:'default_application']
       end
@@ -283,6 +292,7 @@ module Authentik::Api
           flow_unenrollment == o.flow_unenrollment &&
           flow_user_settings == o.flow_user_settings &&
           flow_device_code == o.flow_device_code &&
+          flow_lockdown == o.flow_lockdown &&
           default_application == o.default_application &&
           web_certificate == o.web_certificate &&
           client_certificates == o.client_certificates &&
@@ -298,7 +308,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [brand_uuid, domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, default_application, web_certificate, client_certificates, attributes].hash
+      [brand_uuid, domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, flow_lockdown, default_application, web_certificate, client_certificates, attributes].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/brand_request.rb

@@ -37,6 +37,8 @@ module Authentik::Api
 
     attr_accessor :flow_device_code
 
+    attr_accessor :flow_lockdown
+
     # When set, external users will be redirected to this application after authenticating.
     attr_accessor :default_application
 
@@ -64,6 +66,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'flow_unenrollment',
         :'flow_user_settings' => :'flow_user_settings',
         :'flow_device_code' => :'flow_device_code',
+        :'flow_lockdown' => :'flow_lockdown',
         :'default_application' => :'default_application',
         :'web_certificate' => :'web_certificate',
         :'client_certificates' => :'client_certificates',
@@ -97,6 +100,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'String',
         :'flow_user_settings' => :'String',
         :'flow_device_code' => :'String',
+        :'flow_lockdown' => :'String',
         :'default_application' => :'String',
         :'web_certificate' => :'String',
         :'client_certificates' => :'Array<String>',
@@ -113,6 +117,7 @@ module Authentik::Api
         :'flow_unenrollment',
         :'flow_user_settings',
         :'flow_device_code',
+        :'flow_lockdown',
         :'default_application',
         :'web_certificate',
       ])
@@ -188,6 +193,10 @@ module Authentik::Api
         self.flow_device_code = attributes[:'flow_device_code']
       end
 
+      if attributes.key?(:'flow_lockdown')
+        self.flow_lockdown = attributes[:'flow_lockdown']
+      end
+
       if attributes.key?(:'default_application')
         self.default_application = attributes[:'default_application']
       end
@@ -342,6 +351,7 @@ module Authentik::Api
           flow_unenrollment == o.flow_unenrollment &&
           flow_user_settings == o.flow_user_settings &&
           flow_device_code == o.flow_device_code &&
+          flow_lockdown == o.flow_lockdown &&
           default_application == o.default_application &&
           web_certificate == o.web_certificate &&
           client_certificates == o.client_certificates &&
@@ -357,7 +367,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, default_application, web_certificate, client_certificates, attributes].hash
+      [domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, flow_lockdown, default_application, web_certificate, client_certificates, attributes].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/certificate_key_pair.rb

@@ -100,7 +100,7 @@ module Authentik::Api
         :'cert_expiry' => :'Time',
         :'cert_subject' => :'String',
         :'private_key_available' => :'Boolean',
-        :'key_type' => :'KeyTypeEnum',
+        :'key_type' => :'CertificateKeyPairKeyTypeEnum',
         :'certificate_download_url' => :'String',
         :'private_key_download_url' => :'String',
         :'managed' => :'String'

data/lib/authentik/api/models/certificate_key_pair_key_type_enum.rb

@@ -0,0 +1,37 @@
+=begin
+This file is automatically generated by: https://openapi-generator.tech.
+Any manual changes will be lost when the OpenAPI scheme changes.
+
+=end
+
+require 'date'
+require 'time'
+
+module Authentik::Api
+  class CertificateKeyPairKeyTypeEnum
+    RSA = "rsa".freeze
+    EC = "ec".freeze
+    DSA = "dsa".freeze
+    ED25519 = "ed25519".freeze
+    ED448 = "ed448".freeze
+
+    def self.all_vars
+      @all_vars ||= [RSA, EC, DSA, ED25519, ED448].freeze
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def self.build_from_hash(value)
+      new.build_from_hash(value)
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def build_from_hash(value)
+      return value if CertificateKeyPairKeyTypeEnum.all_vars.include?(value)
+      raise "Invalid ENUM value #{value} for class #CertificateKeyPairKeyTypeEnum"
+    end
+  end
+end

data/lib/authentik/api/models/compatibility_mode_enum.rb

@@ -13,9 +13,11 @@ module Authentik::Api
     AWS = "aws".freeze
     SLACK = "slack".freeze
     SFDC = "sfdc".freeze
+    WEBEX = "webex".freeze
+    VCENTER = "vcenter".freeze
 
     def self.all_vars
-      @all_vars ||= [DEFAULT, AWS, SLACK, SFDC].freeze
+      @all_vars ||= [DEFAULT, AWS, SLACK, SFDC, WEBEX, VCENTER].freeze
     end
 
     # Builds the enum from string

data/lib/authentik/api/models/{consent_stage_mode_enum.rb → consent_mode_enum.rb}

@@ -8,7 +8,7 @@ require 'date'
 require 'time'
 
 module Authentik::Api
-  class ConsentStageModeEnum
+  class ConsentModeEnum
     ALWAYS_REQUIRE = "always_require".freeze
     PERMANENT = "permanent".freeze
     EXPIRING = "expiring".freeze
@@ -28,8 +28,8 @@ module Authentik::Api
     # @param [String] The enum value in the form of the string
     # @return [String] The enum value
     def build_from_hash(value)
-      return value if ConsentStageModeEnum.all_vars.include?(value)
-      raise "Invalid ENUM value #{value} for class #ConsentStageModeEnum"
+      return value if ConsentModeEnum.all_vars.include?(value)
+      raise "Invalid ENUM value #{value} for class #ConsentModeEnum"
     end
   end
 end

data/lib/authentik/api/models/consent_stage.rb

@@ -90,7 +90,7 @@ module Authentik::Api
         :'verbose_name_plural' => :'String',
         :'meta_model_name' => :'String',
         :'flow_set' => :'Array<FlowSet>',
-        :'mode' => :'ConsentStageModeEnum',
+        :'mode' => :'ConsentModeEnum',
         :'consent_expire_in' => :'String'
       }
     end

data/lib/authentik/api/models/consent_stage_request.rb

@@ -62,7 +62,7 @@ module Authentik::Api
     def self.openapi_types
       {
         :'name' => :'String',
-        :'mode' => :'ConsentStageModeEnum',
+        :'mode' => :'ConsentModeEnum',
         :'consent_expire_in' => :'String'
       }
     end

data/lib/authentik/api/models/country_code_enum.rb

@@ -60,7 +60,6 @@ module Authentik::Api
     CO = "CO".freeze
     KM = "KM".freeze
     CG = "CG".freeze
-    CD = "CD".freeze
     CK = "CK".freeze
     CR = "CR".freeze
     CI = "CI".freeze
@@ -69,6 +68,7 @@ module Authentik::Api
     CW = "CW".freeze
     CY = "CY".freeze
     CZ = "CZ".freeze
+    CD = "CD".freeze
     DK = "DK".freeze
     DJ = "DJ".freeze
     DM = "DM".freeze
@@ -107,7 +107,6 @@ module Authentik::Api
     GY = "GY".freeze
     HT = "HT".freeze
     HM = "HM".freeze
-    VA = "VA".freeze
     HN = "HN".freeze
     HK = "HK".freeze
     HU = "HU".freeze
@@ -249,6 +248,7 @@ module Authentik::Api
     UY = "UY".freeze
     UZ = "UZ".freeze
     VU = "VU".freeze
+    VA = "VA".freeze
     VE = "VE".freeze
     VN = "VN".freeze
     VG = "VG".freeze
@@ -260,7 +260,7 @@ module Authentik::Api
     ZW = "ZW".freeze
 
     def self.all_vars
-      @all_vars ||= [AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, CV, KH, CM, CA, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CD, CK, CR, CI, HR, CU, CW, CY, CZ, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, SZ, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, VA, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, KP, MK, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, KR, SS, ES, LK, SD, SR, SJ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, UM, US, UY, UZ, VU, VE, VN, VG, VI, WF, EH, YE, ZM, ZW].freeze
+      @all_vars ||= [AF, AX, AL, DZ, AS, AD, AO, AI, AQ, AG, AR, AM, AW, AU, AT, AZ, BS, BH, BD, BB, BY, BE, BZ, BJ, BM, BT, BO, BQ, BA, BW, BV, BR, IO, BN, BG, BF, BI, CV, KH, CM, CA, KY, CF, TD, CL, CN, CX, CC, CO, KM, CG, CK, CR, CI, HR, CU, CW, CY, CZ, CD, DK, DJ, DM, DO, EC, EG, SV, GQ, ER, EE, SZ, ET, FK, FO, FJ, FI, FR, GF, PF, TF, GA, GM, GE, DE, GH, GI, GR, GL, GD, GP, GU, GT, GG, GN, GW, GY, HT, HM, HN, HK, HU, IS, IN, ID, IR, IQ, IE, IM, IL, IT, JM, JP, JE, JO, KZ, KE, KI, KW, KG, LA, LV, LB, LS, LR, LY, LI, LT, LU, MO, MG, MW, MY, MV, ML, MT, MH, MQ, MR, MU, YT, MX, FM, MD, MC, MN, ME, MS, MA, MZ, MM, NA, NR, NP, NL, NC, NZ, NI, NE, NG, NU, NF, KP, MK, MP, NO, OM, PK, PW, PS, PA, PG, PY, PE, PH, PN, PL, PT, PR, QA, RE, RO, RU, RW, BL, SH, KN, LC, MF, PM, VC, WS, SM, ST, SA, SN, RS, SC, SL, SG, SX, SK, SI, SB, SO, ZA, GS, KR, SS, ES, LK, SD, SR, SJ, SE, CH, SY, TW, TJ, TZ, TH, TL, TG, TK, TO, TT, TN, TR, TM, TC, TV, UG, UA, AE, GB, UM, US, UY, UZ, VU, VA, VE, VN, VG, VI, WF, EH, YE, ZM, ZW].freeze
     end
 
     # Builds the enum from string

data/lib/authentik/api/models/current_brand.rb

@@ -40,6 +40,8 @@ module Authentik::Api
 
     attr_accessor :flow_device_code
 
+    attr_accessor :flow_lockdown
+
     attr_accessor :default_locale
 
     attr_accessor :flags
@@ -84,6 +86,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'flow_unenrollment',
         :'flow_user_settings' => :'flow_user_settings',
         :'flow_device_code' => :'flow_device_code',
+        :'flow_lockdown' => :'flow_lockdown',
         :'default_locale' => :'default_locale',
         :'flags' => :'flags'
       }
@@ -117,6 +120,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'String',
         :'flow_user_settings' => :'String',
         :'flow_device_code' => :'String',
+        :'flow_lockdown' => :'String',
         :'default_locale' => :'String',
         :'flags' => :'CurrentBrandFlags'
       }
@@ -226,6 +230,10 @@ module Authentik::Api
         self.flow_device_code = attributes[:'flow_device_code']
       end
 
+      if attributes.key?(:'flow_lockdown')
+        self.flow_lockdown = attributes[:'flow_lockdown']
+      end
+
       if attributes.key?(:'default_locale')
         self.default_locale = attributes[:'default_locale']
       else
@@ -409,6 +417,7 @@ module Authentik::Api
           flow_unenrollment == o.flow_unenrollment &&
           flow_user_settings == o.flow_user_settings &&
           flow_device_code == o.flow_device_code &&
+          flow_lockdown == o.flow_lockdown &&
           default_locale == o.default_locale &&
           flags == o.flags
     end
@@ -422,7 +431,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [matched_domain, branding_title, branding_logo, branding_logo_themed_urls, branding_favicon, branding_favicon_themed_urls, branding_custom_css, ui_footer_links, ui_theme, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, default_locale, flags].hash
+      [matched_domain, branding_title, branding_logo, branding_logo_themed_urls, branding_favicon, branding_favicon_themed_urls, branding_custom_css, ui_footer_links, ui_theme, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, flow_lockdown, default_locale, flags].hash
     end
 
     # Builds the object from hash