authentik-api 2026.2.2 → 2026.5.0.rc1

data/lib/authentik/api/models/redirect_uri_type_enum.rb

@@ -0,0 +1,34 @@
+=begin
+This file is automatically generated by: https://openapi-generator.tech.
+Any manual changes will be lost when the OpenAPI scheme changes.
+
+=end
+
+require 'date'
+require 'time'
+
+module Authentik::Api
+  class RedirectURITypeEnum
+    AUTHORIZATION = "authorization".freeze
+    LOGOUT = "logout".freeze
+
+    def self.all_vars
+      @all_vars ||= [AUTHORIZATION, LOGOUT].freeze
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def self.build_from_hash(value)
+      new.build_from_hash(value)
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def build_from_hash(value)
+      return value if RedirectURITypeEnum.all_vars.include?(value)
+      raise "Invalid ENUM value #{value} for class #RedirectURITypeEnum"
+    end
+  end
+end

data/lib/authentik/api/models/related_rule.rb

@@ -0,0 +1,250 @@
+=begin
+This file is automatically generated by: https://openapi-generator.tech.
+Any manual changes will be lost when the OpenAPI scheme changes.
+
+=end
+
+require 'date'
+require 'time'
+
+module Authentik::Api
+  # Mixin to validate that a valid enterprise license exists before allowing to save the object
+  class RelatedRule < ApiModelBase
+    attr_accessor :id
+
+    attr_accessor :name
+
+    attr_accessor :reviewer_groups
+
+    attr_accessor :min_reviewers
+
+    attr_accessor :reviewers
+
+    # Attribute mapping from ruby-style variable name to JSON key.
+    def self.attribute_map
+      {
+        :'id' => :'id',
+        :'name' => :'name',
+        :'reviewer_groups' => :'reviewer_groups',
+        :'min_reviewers' => :'min_reviewers',
+        :'reviewers' => :'reviewers'
+      }
+    end
+
+    # Returns attribute mapping this model knows about
+    def self.acceptable_attribute_map
+      attribute_map
+    end
+
+    # Returns all the JSON keys this model knows about
+    def self.acceptable_attributes
+      acceptable_attribute_map.values
+    end
+
+    # Attribute type mapping.
+    def self.openapi_types
+      {
+        :'id' => :'String',
+        :'name' => :'String',
+        :'reviewer_groups' => :'Array<ReviewerGroup>',
+        :'min_reviewers' => :'Integer',
+        :'reviewers' => :'Array<ReviewerUser>'
+      }
+    end
+
+    # List of attributes with nullable: true
+    def self.openapi_nullable
+      Set.new([
+      ])
+    end
+
+    # Initializes the object
+    # @param [Hash] attributes Model attributes in the form of hash
+    def initialize(attributes = {})
+      if (!attributes.is_a?(Hash))
+        fail ArgumentError, "The input argument (attributes) must be a hash in `Authentik::Api::RelatedRule` initialize method"
+      end
+
+      # check to see if the attribute exists and convert string to symbol for hash key
+      acceptable_attribute_map = self.class.acceptable_attribute_map
+      attributes = attributes.each_with_object({}) { |(k, v), h|
+        if (!acceptable_attribute_map.key?(k.to_sym))
+          fail ArgumentError, "`#{k}` is not a valid attribute in `Authentik::Api::RelatedRule`. Please check the name to make sure it's valid. List of attributes: " + acceptable_attribute_map.keys.inspect
+        end
+        h[k.to_sym] = v
+      }
+
+      if attributes.key?(:'id')
+        self.id = attributes[:'id']
+      end
+
+      if attributes.key?(:'name')
+        self.name = attributes[:'name']
+      else
+        self.name = nil
+      end
+
+      if attributes.key?(:'reviewer_groups')
+        if (value = attributes[:'reviewer_groups']).is_a?(Array)
+          self.reviewer_groups = value
+        end
+      else
+        self.reviewer_groups = nil
+      end
+
+      if attributes.key?(:'min_reviewers')
+        self.min_reviewers = attributes[:'min_reviewers']
+      else
+        self.min_reviewers = nil
+      end
+
+      if attributes.key?(:'reviewers')
+        if (value = attributes[:'reviewers']).is_a?(Array)
+          self.reviewers = value
+        end
+      else
+        self.reviewers = nil
+      end
+    end
+
+    # Show invalid properties with the reasons. Usually used together with valid?
+    # @return Array for valid properties with the reasons
+    def list_invalid_properties
+      warn '[DEPRECATED] the `list_invalid_properties` method is obsolete'
+      invalid_properties = Array.new
+      if @name.nil?
+        invalid_properties.push('invalid value for "name", name cannot be nil.')
+      end
+
+      if @reviewer_groups.nil?
+        invalid_properties.push('invalid value for "reviewer_groups", reviewer_groups cannot be nil.')
+      end
+
+      if @min_reviewers.nil?
+        invalid_properties.push('invalid value for "min_reviewers", min_reviewers cannot be nil.')
+      end
+
+      if @reviewers.nil?
+        invalid_properties.push('invalid value for "reviewers", reviewers cannot be nil.')
+      end
+
+      invalid_properties
+    end
+
+    # Check to see if the all the properties in the model are valid
+    # @return true if the model is valid
+    def valid?
+      warn '[DEPRECATED] the `valid?` method is obsolete'
+      return false if @name.nil?
+      return false if @reviewer_groups.nil?
+      return false if @min_reviewers.nil?
+      return false if @reviewers.nil?
+      true
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] name Value to be assigned
+    def name=(name)
+      if name.nil?
+        fail ArgumentError, 'name cannot be nil'
+      end
+
+      @name = name
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] reviewer_groups Value to be assigned
+    def reviewer_groups=(reviewer_groups)
+      if reviewer_groups.nil?
+        fail ArgumentError, 'reviewer_groups cannot be nil'
+      end
+
+      @reviewer_groups = reviewer_groups
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] min_reviewers Value to be assigned
+    def min_reviewers=(min_reviewers)
+      if min_reviewers.nil?
+        fail ArgumentError, 'min_reviewers cannot be nil'
+      end
+
+      @min_reviewers = min_reviewers
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] reviewers Value to be assigned
+    def reviewers=(reviewers)
+      if reviewers.nil?
+        fail ArgumentError, 'reviewers cannot be nil'
+      end
+
+      @reviewers = reviewers
+    end
+
+    # Checks equality by comparing each attribute.
+    # @param [Object] Object to be compared
+    def ==(o)
+      return true if self.equal?(o)
+      self.class == o.class &&
+          id == o.id &&
+          name == o.name &&
+          reviewer_groups == o.reviewer_groups &&
+          min_reviewers == o.min_reviewers &&
+          reviewers == o.reviewers
+    end
+
+    # @see the `==` method
+    # @param [Object] Object to be compared
+    def eql?(o)
+      self == o
+    end
+
+    # Calculates hash code according to all attributes.
+    # @return [Integer] Hash code
+    def hash
+      [id, name, reviewer_groups, min_reviewers, reviewers].hash
+    end
+
+    # Builds the object from hash
+    # @param [Hash] attributes Model attributes in the form of hash
+    # @return [Object] Returns the model itself
+    def self.build_from_hash(attributes)
+      return nil unless attributes.is_a?(Hash)
+      attributes = attributes.transform_keys(&:to_sym)
+      transformed_hash = {}
+      openapi_types.each_pair do |key, type|
+        if attributes.key?(attribute_map[key]) && attributes[attribute_map[key]].nil?
+          transformed_hash["#{key}"] = nil
+        elsif type =~ /\AArray<(.*)>/i
+          # check to ensure the input is an array given that the attribute
+          # is documented as an array but the input is not
+          if attributes[attribute_map[key]].is_a?(Array)
+            transformed_hash["#{key}"] = attributes[attribute_map[key]].map { |v| _deserialize($1, v) }
+          end
+        elsif !attributes[attribute_map[key]].nil?
+          transformed_hash["#{key}"] = _deserialize(type, attributes[attribute_map[key]])
+        end
+      end
+      new(transformed_hash)
+    end
+
+    # Returns the object in the form of hash
+    # @return [Hash] Returns the object in the form of hash
+    def to_hash
+      hash = {}
+      self.class.attribute_map.each_pair do |attr, param|
+        value = self.send(attr)
+        if value.nil?
+          is_nullable = self.class.openapi_nullable.include?(attr)
+          next if !is_nullable || (is_nullable && !instance_variable_defined?(:"@#{attr}"))
+        end
+
+        hash[param] = _to_hash(value)
+      end
+      hash
+    end
+
+  end
+
+end

data/lib/authentik/api/models/saml_metadata.rb

@@ -71,8 +71,6 @@ module Authentik::Api
 
       if attributes.key?(:'download_url')
         self.download_url = attributes[:'download_url']
-      else
-        self.download_url = nil
       end
     end
 

data/lib/authentik/api/models/saml_provider.rb

@@ -57,8 +57,8 @@ module Authentik::Api
     # Value of the audience restriction field of the assertion. When left empty, no audience restriction will be added.
     attr_accessor :audience
 
-    # Also known as EntityID
-    attr_accessor :issuer
+    # Also known as EntityID. Providing a value overrides the default issuer generated by authentik.
+    attr_accessor :issuer_override
 
     # Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3).
     attr_accessor :assertion_valid_not_before
@@ -94,6 +94,8 @@ module Authentik::Api
 
     attr_accessor :sign_logout_request
 
+    attr_accessor :sign_logout_response
+
     # This determines how authentik sends the response back to the Service Provider.
     attr_accessor :sp_binding
 
@@ -111,6 +113,15 @@ module Authentik::Api
     # Get metadata download URL
     attr_accessor :url_download_metadata
 
+    # Get Issuer/EntityID URL
+    attr_accessor :url_issuer
+
+    # Get unified SAML endpoint URL (handles SSO and SLO)
+    attr_accessor :url_unified
+
+    # Get IdP-initiated SAML URL
+    attr_accessor :url_unified_init
+
     # Get SSO Post URL
     attr_accessor :url_sso_post
 
@@ -168,7 +179,7 @@ module Authentik::Api
         :'acs_url' => :'acs_url',
         :'sls_url' => :'sls_url',
         :'audience' => :'audience',
-        :'issuer' => :'issuer',
+        :'issuer_override' => :'issuer_override',
         :'assertion_valid_not_before' => :'assertion_valid_not_before',
         :'assertion_valid_not_on_or_after' => :'assertion_valid_not_on_or_after',
         :'session_valid_not_on_or_after' => :'session_valid_not_on_or_after',
@@ -182,12 +193,16 @@ module Authentik::Api
         :'sign_assertion' => :'sign_assertion',
         :'sign_response' => :'sign_response',
         :'sign_logout_request' => :'sign_logout_request',
+        :'sign_logout_response' => :'sign_logout_response',
         :'sp_binding' => :'sp_binding',
         :'sls_binding' => :'sls_binding',
         :'logout_method' => :'logout_method',
         :'default_relay_state' => :'default_relay_state',
         :'default_name_id_policy' => :'default_name_id_policy',
         :'url_download_metadata' => :'url_download_metadata',
+        :'url_issuer' => :'url_issuer',
+        :'url_unified' => :'url_unified',
+        :'url_unified_init' => :'url_unified_init',
         :'url_sso_post' => :'url_sso_post',
         :'url_sso_redirect' => :'url_sso_redirect',
         :'url_sso_init' => :'url_sso_init',
@@ -226,7 +241,7 @@ module Authentik::Api
         :'acs_url' => :'String',
         :'sls_url' => :'String',
         :'audience' => :'String',
-        :'issuer' => :'String',
+        :'issuer_override' => :'String',
         :'assertion_valid_not_before' => :'String',
         :'assertion_valid_not_on_or_after' => :'String',
         :'session_valid_not_on_or_after' => :'String',
@@ -240,12 +255,16 @@ module Authentik::Api
         :'sign_assertion' => :'Boolean',
         :'sign_response' => :'Boolean',
         :'sign_logout_request' => :'Boolean',
+        :'sign_logout_response' => :'Boolean',
         :'sp_binding' => :'SAMLBindingsEnum',
         :'sls_binding' => :'SAMLBindingsEnum',
         :'logout_method' => :'SAMLLogoutMethods',
         :'default_relay_state' => :'String',
         :'default_name_id_policy' => :'SAMLNameIDPolicyEnum',
         :'url_download_metadata' => :'String',
+        :'url_issuer' => :'String',
+        :'url_unified' => :'String',
+        :'url_unified_init' => :'String',
         :'url_sso_post' => :'String',
         :'url_sso_redirect' => :'String',
         :'url_sso_init' => :'String',
@@ -382,8 +401,8 @@ module Authentik::Api
         self.audience = attributes[:'audience']
       end
 
-      if attributes.key?(:'issuer')
-        self.issuer = attributes[:'issuer']
+      if attributes.key?(:'issuer_override')
+        self.issuer_override = attributes[:'issuer_override']
       end
 
       if attributes.key?(:'assertion_valid_not_before')
@@ -438,6 +457,10 @@ module Authentik::Api
         self.sign_logout_request = attributes[:'sign_logout_request']
       end
 
+      if attributes.key?(:'sign_logout_response')
+        self.sign_logout_response = attributes[:'sign_logout_response']
+      end
+
       if attributes.key?(:'sp_binding')
         self.sp_binding = attributes[:'sp_binding']
       end
@@ -464,6 +487,24 @@ module Authentik::Api
         self.url_download_metadata = nil
       end
 
+      if attributes.key?(:'url_issuer')
+        self.url_issuer = attributes[:'url_issuer']
+      else
+        self.url_issuer = nil
+      end
+
+      if attributes.key?(:'url_unified')
+        self.url_unified = attributes[:'url_unified']
+      else
+        self.url_unified = nil
+      end
+
+      if attributes.key?(:'url_unified_init')
+        self.url_unified_init = attributes[:'url_unified_init']
+      else
+        self.url_unified_init = nil
+      end
+
       if attributes.key?(:'url_sso_post')
         self.url_sso_post = attributes[:'url_sso_post']
       else
@@ -540,6 +581,18 @@ module Authentik::Api
         invalid_properties.push('invalid value for "url_download_metadata", url_download_metadata cannot be nil.')
       end
 
+      if @url_issuer.nil?
+        invalid_properties.push('invalid value for "url_issuer", url_issuer cannot be nil.')
+      end
+
+      if @url_unified.nil?
+        invalid_properties.push('invalid value for "url_unified", url_unified cannot be nil.')
+      end
+
+      if @url_unified_init.nil?
+        invalid_properties.push('invalid value for "url_unified_init", url_unified_init cannot be nil.')
+      end
+
       if @url_sso_post.nil?
         invalid_properties.push('invalid value for "url_sso_post", url_sso_post cannot be nil.')
       end
@@ -577,6 +630,9 @@ module Authentik::Api
       return false if @meta_model_name.nil?
       return false if @acs_url.nil?
       return false if @url_download_metadata.nil?
+      return false if @url_issuer.nil?
+      return false if @url_unified.nil?
+      return false if @url_unified_init.nil?
       return false if @url_sso_post.nil?
       return false if @url_sso_redirect.nil?
       return false if @url_sso_init.nil?
@@ -685,6 +741,36 @@ module Authentik::Api
       @url_download_metadata = url_download_metadata
     end
 
+    # Custom attribute writer method with validation
+    # @param [Object] url_issuer Value to be assigned
+    def url_issuer=(url_issuer)
+      if url_issuer.nil?
+        fail ArgumentError, 'url_issuer cannot be nil'
+      end
+
+      @url_issuer = url_issuer
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] url_unified Value to be assigned
+    def url_unified=(url_unified)
+      if url_unified.nil?
+        fail ArgumentError, 'url_unified cannot be nil'
+      end
+
+      @url_unified = url_unified
+    end
+
+    # Custom attribute writer method with validation
+    # @param [Object] url_unified_init Value to be assigned
+    def url_unified_init=(url_unified_init)
+      if url_unified_init.nil?
+        fail ArgumentError, 'url_unified_init cannot be nil'
+      end
+
+      @url_unified_init = url_unified_init
+    end
+
     # Custom attribute writer method with validation
     # @param [Object] url_sso_post Value to be assigned
     def url_sso_post=(url_sso_post)
@@ -757,7 +843,7 @@ module Authentik::Api
           acs_url == o.acs_url &&
           sls_url == o.sls_url &&
           audience == o.audience &&
-          issuer == o.issuer &&
+          issuer_override == o.issuer_override &&
           assertion_valid_not_before == o.assertion_valid_not_before &&
           assertion_valid_not_on_or_after == o.assertion_valid_not_on_or_after &&
           session_valid_not_on_or_after == o.session_valid_not_on_or_after &&
@@ -771,12 +857,16 @@ module Authentik::Api
           sign_assertion == o.sign_assertion &&
           sign_response == o.sign_response &&
           sign_logout_request == o.sign_logout_request &&
+          sign_logout_response == o.sign_logout_response &&
           sp_binding == o.sp_binding &&
           sls_binding == o.sls_binding &&
           logout_method == o.logout_method &&
           default_relay_state == o.default_relay_state &&
           default_name_id_policy == o.default_name_id_policy &&
           url_download_metadata == o.url_download_metadata &&
+          url_issuer == o.url_issuer &&
+          url_unified == o.url_unified &&
+          url_unified_init == o.url_unified_init &&
           url_sso_post == o.url_sso_post &&
           url_sso_redirect == o.url_sso_redirect &&
           url_sso_init == o.url_sso_init &&
@@ -793,7 +883,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [pk, name, authentication_flow, authorization_flow, invalidation_flow, property_mappings, component, assigned_application_slug, assigned_application_name, assigned_backchannel_application_slug, assigned_backchannel_application_name, verbose_name, verbose_name_plural, meta_model_name, acs_url, sls_url, audience, issuer, assertion_valid_not_before, assertion_valid_not_on_or_after, session_valid_not_on_or_after, name_id_mapping, authn_context_class_ref_mapping, digest_algorithm, signature_algorithm, signing_kp, verification_kp, encryption_kp, sign_assertion, sign_response, sign_logout_request, sp_binding, sls_binding, logout_method, default_relay_state, default_name_id_policy, url_download_metadata, url_sso_post, url_sso_redirect, url_sso_init, url_slo_post, url_slo_redirect].hash
+      [pk, name, authentication_flow, authorization_flow, invalidation_flow, property_mappings, component, assigned_application_slug, assigned_application_name, assigned_backchannel_application_slug, assigned_backchannel_application_name, verbose_name, verbose_name_plural, meta_model_name, acs_url, sls_url, audience, issuer_override, assertion_valid_not_before, assertion_valid_not_on_or_after, session_valid_not_on_or_after, name_id_mapping, authn_context_class_ref_mapping, digest_algorithm, signature_algorithm, signing_kp, verification_kp, encryption_kp, sign_assertion, sign_response, sign_logout_request, sign_logout_response, sp_binding, sls_binding, logout_method, default_relay_state, default_name_id_policy, url_download_metadata, url_issuer, url_unified, url_unified_init, url_sso_post, url_sso_redirect, url_sso_init, url_slo_post, url_slo_redirect].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/saml_provider_request.rb

@@ -31,8 +31,8 @@ module Authentik::Api
     # Value of the audience restriction field of the assertion. When left empty, no audience restriction will be added.
     attr_accessor :audience
 
-    # Also known as EntityID
-    attr_accessor :issuer
+    # Also known as EntityID. Providing a value overrides the default issuer generated by authentik.
+    attr_accessor :issuer_override
 
     # Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3).
     attr_accessor :assertion_valid_not_before
@@ -68,6 +68,8 @@ module Authentik::Api
 
     attr_accessor :sign_logout_request
 
+    attr_accessor :sign_logout_response
+
     # This determines how authentik sends the response back to the Service Provider.
     attr_accessor :sp_binding
 
@@ -115,7 +117,7 @@ module Authentik::Api
         :'acs_url' => :'acs_url',
         :'sls_url' => :'sls_url',
         :'audience' => :'audience',
-        :'issuer' => :'issuer',
+        :'issuer_override' => :'issuer_override',
         :'assertion_valid_not_before' => :'assertion_valid_not_before',
         :'assertion_valid_not_on_or_after' => :'assertion_valid_not_on_or_after',
         :'session_valid_not_on_or_after' => :'session_valid_not_on_or_after',
@@ -129,6 +131,7 @@ module Authentik::Api
         :'sign_assertion' => :'sign_assertion',
         :'sign_response' => :'sign_response',
         :'sign_logout_request' => :'sign_logout_request',
+        :'sign_logout_response' => :'sign_logout_response',
         :'sp_binding' => :'sp_binding',
         :'sls_binding' => :'sls_binding',
         :'logout_method' => :'logout_method',
@@ -158,7 +161,7 @@ module Authentik::Api
         :'acs_url' => :'String',
         :'sls_url' => :'String',
         :'audience' => :'String',
-        :'issuer' => :'String',
+        :'issuer_override' => :'String',
         :'assertion_valid_not_before' => :'String',
         :'assertion_valid_not_on_or_after' => :'String',
         :'session_valid_not_on_or_after' => :'String',
@@ -172,6 +175,7 @@ module Authentik::Api
         :'sign_assertion' => :'Boolean',
         :'sign_response' => :'Boolean',
         :'sign_logout_request' => :'Boolean',
+        :'sign_logout_response' => :'Boolean',
         :'sp_binding' => :'SAMLBindingsEnum',
         :'sls_binding' => :'SAMLBindingsEnum',
         :'logout_method' => :'SAMLLogoutMethods',
@@ -250,8 +254,8 @@ module Authentik::Api
         self.audience = attributes[:'audience']
       end
 
-      if attributes.key?(:'issuer')
-        self.issuer = attributes[:'issuer']
+      if attributes.key?(:'issuer_override')
+        self.issuer_override = attributes[:'issuer_override']
       end
 
       if attributes.key?(:'assertion_valid_not_before')
@@ -306,6 +310,10 @@ module Authentik::Api
         self.sign_logout_request = attributes[:'sign_logout_request']
       end
 
+      if attributes.key?(:'sign_logout_response')
+        self.sign_logout_response = attributes[:'sign_logout_response']
+      end
+
       if attributes.key?(:'sp_binding')
         self.sp_binding = attributes[:'sp_binding']
       end
@@ -356,10 +364,6 @@ module Authentik::Api
         invalid_properties.push('invalid value for "acs_url", the character length must be greater than or equal to 1.')
       end
 
-      if !@issuer.nil? && @issuer.to_s.length < 1
-        invalid_properties.push('invalid value for "issuer", the character length must be greater than or equal to 1.')
-      end
-
       if !@assertion_valid_not_before.nil? && @assertion_valid_not_before.to_s.length < 1
         invalid_properties.push('invalid value for "assertion_valid_not_before", the character length must be greater than or equal to 1.')
       end
@@ -385,7 +389,6 @@ module Authentik::Api
       return false if @invalidation_flow.nil?
       return false if @acs_url.nil?
       return false if @acs_url.to_s.length < 1
-      return false if !@issuer.nil? && @issuer.to_s.length < 1
       return false if !@assertion_valid_not_before.nil? && @assertion_valid_not_before.to_s.length < 1
       return false if !@assertion_valid_not_on_or_after.nil? && @assertion_valid_not_on_or_after.to_s.length < 1
       return false if !@session_valid_not_on_or_after.nil? && @session_valid_not_on_or_after.to_s.length < 1
@@ -440,20 +443,6 @@ module Authentik::Api
       @acs_url = acs_url
     end
 
-    # Custom attribute writer method with validation
-    # @param [Object] issuer Value to be assigned
-    def issuer=(issuer)
-      if issuer.nil?
-        fail ArgumentError, 'issuer cannot be nil'
-      end
-
-      if issuer.to_s.length < 1
-        fail ArgumentError, 'invalid value for "issuer", the character length must be greater than or equal to 1.'
-      end
-
-      @issuer = issuer
-    end
-
     # Custom attribute writer method with validation
     # @param [Object] assertion_valid_not_before Value to be assigned
     def assertion_valid_not_before=(assertion_valid_not_before)
@@ -509,7 +498,7 @@ module Authentik::Api
           acs_url == o.acs_url &&
           sls_url == o.sls_url &&
           audience == o.audience &&
-          issuer == o.issuer &&
+          issuer_override == o.issuer_override &&
           assertion_valid_not_before == o.assertion_valid_not_before &&
           assertion_valid_not_on_or_after == o.assertion_valid_not_on_or_after &&
           session_valid_not_on_or_after == o.session_valid_not_on_or_after &&
@@ -523,6 +512,7 @@ module Authentik::Api
           sign_assertion == o.sign_assertion &&
           sign_response == o.sign_response &&
           sign_logout_request == o.sign_logout_request &&
+          sign_logout_response == o.sign_logout_response &&
           sp_binding == o.sp_binding &&
           sls_binding == o.sls_binding &&
           logout_method == o.logout_method &&
@@ -539,7 +529,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [name, authentication_flow, authorization_flow, invalidation_flow, property_mappings, acs_url, sls_url, audience, issuer, assertion_valid_not_before, assertion_valid_not_on_or_after, session_valid_not_on_or_after, name_id_mapping, authn_context_class_ref_mapping, digest_algorithm, signature_algorithm, signing_kp, verification_kp, encryption_kp, sign_assertion, sign_response, sign_logout_request, sp_binding, sls_binding, logout_method, default_relay_state, default_name_id_policy].hash
+      [name, authentication_flow, authorization_flow, invalidation_flow, property_mappings, acs_url, sls_url, audience, issuer_override, assertion_valid_not_before, assertion_valid_not_on_or_after, session_valid_not_on_or_after, name_id_mapping, authn_context_class_ref_mapping, digest_algorithm, signature_algorithm, signing_kp, verification_kp, encryption_kp, sign_assertion, sign_response, sign_logout_request, sign_logout_response, sp_binding, sls_binding, logout_method, default_relay_state, default_name_id_policy].hash
     end
 
     # Builds the object from hash