authentik-api 2026.2.3 → 2026.5.0.rc2

data/lib/authentik/api/models/authenticated_session_user_agent_os.rb

@@ -55,6 +55,10 @@ module Authentik::Api
     # List of attributes with nullable: true
     def self.openapi_nullable
       Set.new([
+        :'major',
+        :'minor',
+        :'patch',
+        :'patch_minor'
       ])
     end
 
@@ -114,22 +118,6 @@ module Authentik::Api
         invalid_properties.push('invalid value for "family", family cannot be nil.')
       end
 
-      if @major.nil?
-        invalid_properties.push('invalid value for "major", major cannot be nil.')
-      end
-
-      if @minor.nil?
-        invalid_properties.push('invalid value for "minor", minor cannot be nil.')
-      end
-
-      if @patch.nil?
-        invalid_properties.push('invalid value for "patch", patch cannot be nil.')
-      end
-
-      if @patch_minor.nil?
-        invalid_properties.push('invalid value for "patch_minor", patch_minor cannot be nil.')
-      end
-
       invalid_properties
     end
 
@@ -138,10 +126,6 @@ module Authentik::Api
     def valid?
       warn '[DEPRECATED] the `valid?` method is obsolete'
       return false if @family.nil?
-      return false if @major.nil?
-      return false if @minor.nil?
-      return false if @patch.nil?
-      return false if @patch_minor.nil?
       true
     end
 
@@ -155,46 +139,6 @@ module Authentik::Api
       @family = family
     end
 
-    # Custom attribute writer method with validation
-    # @param [Object] major Value to be assigned
-    def major=(major)
-      if major.nil?
-        fail ArgumentError, 'major cannot be nil'
-      end
-
-      @major = major
-    end
-
-    # Custom attribute writer method with validation
-    # @param [Object] minor Value to be assigned
-    def minor=(minor)
-      if minor.nil?
-        fail ArgumentError, 'minor cannot be nil'
-      end
-
-      @minor = minor
-    end
-
-    # Custom attribute writer method with validation
-    # @param [Object] patch Value to be assigned
-    def patch=(patch)
-      if patch.nil?
-        fail ArgumentError, 'patch cannot be nil'
-      end
-
-      @patch = patch
-    end
-
-    # Custom attribute writer method with validation
-    # @param [Object] patch_minor Value to be assigned
-    def patch_minor=(patch_minor)
-      if patch_minor.nil?
-        fail ArgumentError, 'patch_minor cannot be nil'
-      end
-
-      @patch_minor = patch_minor
-    end
-
     # Checks equality by comparing each attribute.
     # @param [Object] Object to be compared
     def ==(o)

data/lib/authentik/api/models/authentication_enum.rb

@@ -15,9 +15,10 @@ module Authentik::Api
     REQUIRE_SUPERUSER = "require_superuser".freeze
     REQUIRE_REDIRECT = "require_redirect".freeze
     REQUIRE_OUTPOST = "require_outpost".freeze
+    REQUIRE_TOKEN = "require_token".freeze
 
     def self.all_vars
-      @all_vars ||= [NONE, REQUIRE_AUTHENTICATED, REQUIRE_UNAUTHENTICATED, REQUIRE_SUPERUSER, REQUIRE_REDIRECT, REQUIRE_OUTPOST].freeze
+      @all_vars ||= [NONE, REQUIRE_AUTHENTICATED, REQUIRE_UNAUTHENTICATED, REQUIRE_SUPERUSER, REQUIRE_REDIRECT, REQUIRE_OUTPOST, REQUIRE_TOKEN].freeze
     end
 
     # Builds the enum from string

data/lib/authentik/api/models/authenticator_validate_stage.rb

@@ -42,10 +42,20 @@ module Authentik::Api
     # Enforce user verification for WebAuthn devices.
     attr_accessor :webauthn_user_verification
 
+    attr_accessor :webauthn_hints
+
     attr_accessor :webauthn_allowed_device_types
 
     attr_accessor :webauthn_allowed_device_types_obj
 
+    attr_accessor :email_otp_throttling_factor
+
+    attr_accessor :sms_otp_throttling_factor
+
+    attr_accessor :totp_otp_throttling_factor
+
+    attr_accessor :static_otp_throttling_factor
+
     class EnumAttributeValidator
       attr_reader :datatype
       attr_reader :allowable_values
@@ -83,8 +93,13 @@ module Authentik::Api
         :'configuration_stages' => :'configuration_stages',
         :'last_auth_threshold' => :'last_auth_threshold',
         :'webauthn_user_verification' => :'webauthn_user_verification',
+        :'webauthn_hints' => :'webauthn_hints',
         :'webauthn_allowed_device_types' => :'webauthn_allowed_device_types',
-        :'webauthn_allowed_device_types_obj' => :'webauthn_allowed_device_types_obj'
+        :'webauthn_allowed_device_types_obj' => :'webauthn_allowed_device_types_obj',
+        :'email_otp_throttling_factor' => :'email_otp_throttling_factor',
+        :'sms_otp_throttling_factor' => :'sms_otp_throttling_factor',
+        :'totp_otp_throttling_factor' => :'totp_otp_throttling_factor',
+        :'static_otp_throttling_factor' => :'static_otp_throttling_factor'
       }
     end
 
@@ -113,8 +128,13 @@ module Authentik::Api
         :'configuration_stages' => :'Array<String>',
         :'last_auth_threshold' => :'String',
         :'webauthn_user_verification' => :'UserVerificationEnum',
+        :'webauthn_hints' => :'Array<WebAuthnHintEnum>',
         :'webauthn_allowed_device_types' => :'Array<String>',
-        :'webauthn_allowed_device_types_obj' => :'Array<WebAuthnDeviceType>'
+        :'webauthn_allowed_device_types_obj' => :'Array<WebAuthnDeviceType>',
+        :'email_otp_throttling_factor' => :'Float',
+        :'sms_otp_throttling_factor' => :'Float',
+        :'totp_otp_throttling_factor' => :'Float',
+        :'static_otp_throttling_factor' => :'Float'
       }
     end
 
@@ -208,6 +228,12 @@ module Authentik::Api
         self.webauthn_user_verification = attributes[:'webauthn_user_verification']
       end
 
+      if attributes.key?(:'webauthn_hints')
+        if (value = attributes[:'webauthn_hints']).is_a?(Array)
+          self.webauthn_hints = value
+        end
+      end
+
       if attributes.key?(:'webauthn_allowed_device_types')
         if (value = attributes[:'webauthn_allowed_device_types']).is_a?(Array)
           self.webauthn_allowed_device_types = value
@@ -221,6 +247,22 @@ module Authentik::Api
       else
         self.webauthn_allowed_device_types_obj = nil
       end
+
+      if attributes.key?(:'email_otp_throttling_factor')
+        self.email_otp_throttling_factor = attributes[:'email_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'sms_otp_throttling_factor')
+        self.sms_otp_throttling_factor = attributes[:'sms_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'totp_otp_throttling_factor')
+        self.totp_otp_throttling_factor = attributes[:'totp_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'static_otp_throttling_factor')
+        self.static_otp_throttling_factor = attributes[:'static_otp_throttling_factor']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -375,8 +417,13 @@ module Authentik::Api
           configuration_stages == o.configuration_stages &&
           last_auth_threshold == o.last_auth_threshold &&
           webauthn_user_verification == o.webauthn_user_verification &&
+          webauthn_hints == o.webauthn_hints &&
           webauthn_allowed_device_types == o.webauthn_allowed_device_types &&
-          webauthn_allowed_device_types_obj == o.webauthn_allowed_device_types_obj
+          webauthn_allowed_device_types_obj == o.webauthn_allowed_device_types_obj &&
+          email_otp_throttling_factor == o.email_otp_throttling_factor &&
+          sms_otp_throttling_factor == o.sms_otp_throttling_factor &&
+          totp_otp_throttling_factor == o.totp_otp_throttling_factor &&
+          static_otp_throttling_factor == o.static_otp_throttling_factor
     end
 
     # @see the `==` method
@@ -388,7 +435,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_allowed_device_types, webauthn_allowed_device_types_obj].hash
+      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_hints, webauthn_allowed_device_types, webauthn_allowed_device_types_obj, email_otp_throttling_factor, sms_otp_throttling_factor, totp_otp_throttling_factor, static_otp_throttling_factor].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/authenticator_validate_stage_request.rb

@@ -26,8 +26,18 @@ module Authentik::Api
     # Enforce user verification for WebAuthn devices.
     attr_accessor :webauthn_user_verification
 
+    attr_accessor :webauthn_hints
+
     attr_accessor :webauthn_allowed_device_types
 
+    attr_accessor :email_otp_throttling_factor
+
+    attr_accessor :sms_otp_throttling_factor
+
+    attr_accessor :totp_otp_throttling_factor
+
+    attr_accessor :static_otp_throttling_factor
+
     class EnumAttributeValidator
       attr_reader :datatype
       attr_reader :allowable_values
@@ -59,7 +69,12 @@ module Authentik::Api
         :'configuration_stages' => :'configuration_stages',
         :'last_auth_threshold' => :'last_auth_threshold',
         :'webauthn_user_verification' => :'webauthn_user_verification',
-        :'webauthn_allowed_device_types' => :'webauthn_allowed_device_types'
+        :'webauthn_hints' => :'webauthn_hints',
+        :'webauthn_allowed_device_types' => :'webauthn_allowed_device_types',
+        :'email_otp_throttling_factor' => :'email_otp_throttling_factor',
+        :'sms_otp_throttling_factor' => :'sms_otp_throttling_factor',
+        :'totp_otp_throttling_factor' => :'totp_otp_throttling_factor',
+        :'static_otp_throttling_factor' => :'static_otp_throttling_factor'
       }
     end
 
@@ -82,7 +97,12 @@ module Authentik::Api
         :'configuration_stages' => :'Array<String>',
         :'last_auth_threshold' => :'String',
         :'webauthn_user_verification' => :'UserVerificationEnum',
-        :'webauthn_allowed_device_types' => :'Array<String>'
+        :'webauthn_hints' => :'Array<WebAuthnHintEnum>',
+        :'webauthn_allowed_device_types' => :'Array<String>',
+        :'email_otp_throttling_factor' => :'Float',
+        :'sms_otp_throttling_factor' => :'Float',
+        :'totp_otp_throttling_factor' => :'Float',
+        :'static_otp_throttling_factor' => :'Float'
       }
     end
 
@@ -138,11 +158,33 @@ module Authentik::Api
         self.webauthn_user_verification = attributes[:'webauthn_user_verification']
       end
 
+      if attributes.key?(:'webauthn_hints')
+        if (value = attributes[:'webauthn_hints']).is_a?(Array)
+          self.webauthn_hints = value
+        end
+      end
+
       if attributes.key?(:'webauthn_allowed_device_types')
         if (value = attributes[:'webauthn_allowed_device_types']).is_a?(Array)
           self.webauthn_allowed_device_types = value
         end
       end
+
+      if attributes.key?(:'email_otp_throttling_factor')
+        self.email_otp_throttling_factor = attributes[:'email_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'sms_otp_throttling_factor')
+        self.sms_otp_throttling_factor = attributes[:'sms_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'totp_otp_throttling_factor')
+        self.totp_otp_throttling_factor = attributes[:'totp_otp_throttling_factor']
+      end
+
+      if attributes.key?(:'static_otp_throttling_factor')
+        self.static_otp_throttling_factor = attributes[:'static_otp_throttling_factor']
+      end
     end
 
     # Show invalid properties with the reasons. Usually used together with valid?
@@ -214,7 +256,12 @@ module Authentik::Api
           configuration_stages == o.configuration_stages &&
           last_auth_threshold == o.last_auth_threshold &&
           webauthn_user_verification == o.webauthn_user_verification &&
-          webauthn_allowed_device_types == o.webauthn_allowed_device_types
+          webauthn_hints == o.webauthn_hints &&
+          webauthn_allowed_device_types == o.webauthn_allowed_device_types &&
+          email_otp_throttling_factor == o.email_otp_throttling_factor &&
+          sms_otp_throttling_factor == o.sms_otp_throttling_factor &&
+          totp_otp_throttling_factor == o.totp_otp_throttling_factor &&
+          static_otp_throttling_factor == o.static_otp_throttling_factor
     end
 
     # @see the `==` method
@@ -226,7 +273,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [name, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_allowed_device_types].hash
+      [name, not_configured_action, device_classes, configuration_stages, last_auth_threshold, webauthn_user_verification, webauthn_hints, webauthn_allowed_device_types, email_otp_throttling_factor, sms_otp_throttling_factor, totp_otp_throttling_factor, static_otp_throttling_factor].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/authenticator_web_authn_stage.rb

@@ -39,10 +39,15 @@ module Authentik::Api
 
     attr_accessor :resident_key_requirement
 
+    attr_accessor :hints
+
     attr_accessor :device_type_restrictions
 
     attr_accessor :device_type_restrictions_obj
 
+    # When enabled, a given device can only be registered once.
+    attr_accessor :prevent_duplicate_devices
+
     attr_accessor :max_attempts
 
     class EnumAttributeValidator
@@ -82,8 +87,10 @@ module Authentik::Api
         :'user_verification' => :'user_verification',
         :'authenticator_attachment' => :'authenticator_attachment',
         :'resident_key_requirement' => :'resident_key_requirement',
+        :'hints' => :'hints',
         :'device_type_restrictions' => :'device_type_restrictions',
         :'device_type_restrictions_obj' => :'device_type_restrictions_obj',
+        :'prevent_duplicate_devices' => :'prevent_duplicate_devices',
         :'max_attempts' => :'max_attempts'
       }
     end
@@ -112,9 +119,11 @@ module Authentik::Api
         :'friendly_name' => :'String',
         :'user_verification' => :'UserVerificationEnum',
         :'authenticator_attachment' => :'AuthenticatorAttachmentEnum',
-        :'resident_key_requirement' => :'ResidentKeyRequirementEnum',
+        :'resident_key_requirement' => :'UserVerificationEnum',
+        :'hints' => :'Array<WebAuthnHintEnum>',
         :'device_type_restrictions' => :'Array<String>',
         :'device_type_restrictions_obj' => :'Array<WebAuthnDeviceType>',
+        :'prevent_duplicate_devices' => :'Boolean',
         :'max_attempts' => :'Integer'
       }
     end
@@ -207,6 +216,12 @@ module Authentik::Api
         self.resident_key_requirement = attributes[:'resident_key_requirement']
       end
 
+      if attributes.key?(:'hints')
+        if (value = attributes[:'hints']).is_a?(Array)
+          self.hints = value
+        end
+      end
+
       if attributes.key?(:'device_type_restrictions')
         if (value = attributes[:'device_type_restrictions']).is_a?(Array)
           self.device_type_restrictions = value
@@ -221,6 +236,10 @@ module Authentik::Api
         self.device_type_restrictions_obj = nil
       end
 
+      if attributes.key?(:'prevent_duplicate_devices')
+        self.prevent_duplicate_devices = attributes[:'prevent_duplicate_devices']
+      end
+
       if attributes.key?(:'max_attempts')
         self.max_attempts = attributes[:'max_attempts']
       end
@@ -406,8 +425,10 @@ module Authentik::Api
           user_verification == o.user_verification &&
           authenticator_attachment == o.authenticator_attachment &&
           resident_key_requirement == o.resident_key_requirement &&
+          hints == o.hints &&
           device_type_restrictions == o.device_type_restrictions &&
           device_type_restrictions_obj == o.device_type_restrictions_obj &&
+          prevent_duplicate_devices == o.prevent_duplicate_devices &&
           max_attempts == o.max_attempts
     end
 
@@ -420,7 +441,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, device_type_restrictions, device_type_restrictions_obj, max_attempts].hash
+      [pk, name, component, verbose_name, verbose_name_plural, meta_model_name, flow_set, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, hints, device_type_restrictions, device_type_restrictions_obj, prevent_duplicate_devices, max_attempts].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/authenticator_web_authn_stage_request.rb

@@ -23,8 +23,13 @@ module Authentik::Api
 
     attr_accessor :resident_key_requirement
 
+    attr_accessor :hints
+
     attr_accessor :device_type_restrictions
 
+    # When enabled, a given device can only be registered once.
+    attr_accessor :prevent_duplicate_devices
+
     attr_accessor :max_attempts
 
     class EnumAttributeValidator
@@ -58,7 +63,9 @@ module Authentik::Api
         :'user_verification' => :'user_verification',
         :'authenticator_attachment' => :'authenticator_attachment',
         :'resident_key_requirement' => :'resident_key_requirement',
+        :'hints' => :'hints',
         :'device_type_restrictions' => :'device_type_restrictions',
+        :'prevent_duplicate_devices' => :'prevent_duplicate_devices',
         :'max_attempts' => :'max_attempts'
       }
     end
@@ -81,8 +88,10 @@ module Authentik::Api
         :'friendly_name' => :'String',
         :'user_verification' => :'UserVerificationEnum',
         :'authenticator_attachment' => :'AuthenticatorAttachmentEnum',
-        :'resident_key_requirement' => :'ResidentKeyRequirementEnum',
+        :'resident_key_requirement' => :'UserVerificationEnum',
+        :'hints' => :'Array<WebAuthnHintEnum>',
         :'device_type_restrictions' => :'Array<String>',
+        :'prevent_duplicate_devices' => :'Boolean',
         :'max_attempts' => :'Integer'
       }
     end
@@ -137,12 +146,22 @@ module Authentik::Api
         self.resident_key_requirement = attributes[:'resident_key_requirement']
       end
 
+      if attributes.key?(:'hints')
+        if (value = attributes[:'hints']).is_a?(Array)
+          self.hints = value
+        end
+      end
+
       if attributes.key?(:'device_type_restrictions')
         if (value = attributes[:'device_type_restrictions']).is_a?(Array)
           self.device_type_restrictions = value
         end
       end
 
+      if attributes.key?(:'prevent_duplicate_devices')
+        self.prevent_duplicate_devices = attributes[:'prevent_duplicate_devices']
+      end
+
       if attributes.key?(:'max_attempts')
         self.max_attempts = attributes[:'max_attempts']
       end
@@ -226,7 +245,9 @@ module Authentik::Api
           user_verification == o.user_verification &&
           authenticator_attachment == o.authenticator_attachment &&
           resident_key_requirement == o.resident_key_requirement &&
+          hints == o.hints &&
           device_type_restrictions == o.device_type_restrictions &&
+          prevent_duplicate_devices == o.prevent_duplicate_devices &&
           max_attempts == o.max_attempts
     end
 
@@ -239,7 +260,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [name, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, device_type_restrictions, max_attempts].hash
+      [name, configure_flow, friendly_name, user_verification, authenticator_attachment, resident_key_requirement, hints, device_type_restrictions, prevent_duplicate_devices, max_attempts].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/{flow_import_result.rb → blueprint_import_result.rb}

@@ -8,8 +8,8 @@ require 'date'
 require 'time'
 
 module Authentik::Api
-  # Logs of an attempted flow import
-  class FlowImportResult < ApiModelBase
+  # Logs of an attempted blueprint import
+  class BlueprintImportResult < ApiModelBase
     attr_accessor :logs
 
     attr_accessor :success
@@ -50,14 +50,14 @@ module Authentik::Api
     # @param [Hash] attributes Model attributes in the form of hash
     def initialize(attributes = {})
       if (!attributes.is_a?(Hash))
-        fail ArgumentError, "The input argument (attributes) must be a hash in `Authentik::Api::FlowImportResult` initialize method"
+        fail ArgumentError, "The input argument (attributes) must be a hash in `Authentik::Api::BlueprintImportResult` initialize method"
       end
 
       # check to see if the attribute exists and convert string to symbol for hash key
       acceptable_attribute_map = self.class.acceptable_attribute_map
       attributes = attributes.each_with_object({}) { |(k, v), h|
         if (!acceptable_attribute_map.key?(k.to_sym))
-          fail ArgumentError, "`#{k}` is not a valid attribute in `Authentik::Api::FlowImportResult`. Please check the name to make sure it's valid. List of attributes: " + acceptable_attribute_map.keys.inspect
+          fail ArgumentError, "`#{k}` is not a valid attribute in `Authentik::Api::BlueprintImportResult`. Please check the name to make sure it's valid. List of attributes: " + acceptable_attribute_map.keys.inspect
         end
         h[k.to_sym] = v
       }

data/lib/authentik/api/models/brand.rb

@@ -39,6 +39,8 @@ module Authentik::Api
 
     attr_accessor :flow_device_code
 
+    attr_accessor :flow_lockdown
+
     # When set, external users will be redirected to this application after authenticating.
     attr_accessor :default_application
 
@@ -67,6 +69,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'flow_unenrollment',
         :'flow_user_settings' => :'flow_user_settings',
         :'flow_device_code' => :'flow_device_code',
+        :'flow_lockdown' => :'flow_lockdown',
         :'default_application' => :'default_application',
         :'web_certificate' => :'web_certificate',
         :'client_certificates' => :'client_certificates',
@@ -101,6 +104,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'String',
         :'flow_user_settings' => :'String',
         :'flow_device_code' => :'String',
+        :'flow_lockdown' => :'String',
         :'default_application' => :'String',
         :'web_certificate' => :'String',
         :'client_certificates' => :'Array<String>',
@@ -117,6 +121,7 @@ module Authentik::Api
         :'flow_unenrollment',
         :'flow_user_settings',
         :'flow_device_code',
+        :'flow_lockdown',
         :'default_application',
         :'web_certificate',
       ])
@@ -198,6 +203,10 @@ module Authentik::Api
         self.flow_device_code = attributes[:'flow_device_code']
       end
 
+      if attributes.key?(:'flow_lockdown')
+        self.flow_lockdown = attributes[:'flow_lockdown']
+      end
+
       if attributes.key?(:'default_application')
         self.default_application = attributes[:'default_application']
       end
@@ -283,6 +292,7 @@ module Authentik::Api
           flow_unenrollment == o.flow_unenrollment &&
           flow_user_settings == o.flow_user_settings &&
           flow_device_code == o.flow_device_code &&
+          flow_lockdown == o.flow_lockdown &&
           default_application == o.default_application &&
           web_certificate == o.web_certificate &&
           client_certificates == o.client_certificates &&
@@ -298,7 +308,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [brand_uuid, domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, default_application, web_certificate, client_certificates, attributes].hash
+      [brand_uuid, domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, flow_lockdown, default_application, web_certificate, client_certificates, attributes].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/brand_request.rb

@@ -37,6 +37,8 @@ module Authentik::Api
 
     attr_accessor :flow_device_code
 
+    attr_accessor :flow_lockdown
+
     # When set, external users will be redirected to this application after authenticating.
     attr_accessor :default_application
 
@@ -64,6 +66,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'flow_unenrollment',
         :'flow_user_settings' => :'flow_user_settings',
         :'flow_device_code' => :'flow_device_code',
+        :'flow_lockdown' => :'flow_lockdown',
         :'default_application' => :'default_application',
         :'web_certificate' => :'web_certificate',
         :'client_certificates' => :'client_certificates',
@@ -97,6 +100,7 @@ module Authentik::Api
         :'flow_unenrollment' => :'String',
         :'flow_user_settings' => :'String',
         :'flow_device_code' => :'String',
+        :'flow_lockdown' => :'String',
         :'default_application' => :'String',
         :'web_certificate' => :'String',
         :'client_certificates' => :'Array<String>',
@@ -113,6 +117,7 @@ module Authentik::Api
         :'flow_unenrollment',
         :'flow_user_settings',
         :'flow_device_code',
+        :'flow_lockdown',
         :'default_application',
         :'web_certificate',
       ])
@@ -188,6 +193,10 @@ module Authentik::Api
         self.flow_device_code = attributes[:'flow_device_code']
       end
 
+      if attributes.key?(:'flow_lockdown')
+        self.flow_lockdown = attributes[:'flow_lockdown']
+      end
+
       if attributes.key?(:'default_application')
         self.default_application = attributes[:'default_application']
       end
@@ -342,6 +351,7 @@ module Authentik::Api
           flow_unenrollment == o.flow_unenrollment &&
           flow_user_settings == o.flow_user_settings &&
           flow_device_code == o.flow_device_code &&
+          flow_lockdown == o.flow_lockdown &&
           default_application == o.default_application &&
           web_certificate == o.web_certificate &&
           client_certificates == o.client_certificates &&
@@ -357,7 +367,7 @@ module Authentik::Api
     # Calculates hash code according to all attributes.
     # @return [Integer] Hash code
     def hash
-      [domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, default_application, web_certificate, client_certificates, attributes].hash
+      [domain, default, branding_title, branding_logo, branding_favicon, branding_custom_css, branding_default_flow_background, flow_authentication, flow_invalidation, flow_recovery, flow_unenrollment, flow_user_settings, flow_device_code, flow_lockdown, default_application, web_certificate, client_certificates, attributes].hash
     end
 
     # Builds the object from hash

data/lib/authentik/api/models/certificate_key_pair.rb

@@ -100,7 +100,7 @@ module Authentik::Api
         :'cert_expiry' => :'Time',
         :'cert_subject' => :'String',
         :'private_key_available' => :'Boolean',
-        :'key_type' => :'KeyTypeEnum',
+        :'key_type' => :'CertificateKeyPairKeyTypeEnum',
         :'certificate_download_url' => :'String',
         :'private_key_download_url' => :'String',
         :'managed' => :'String'

data/lib/authentik/api/models/certificate_key_pair_key_type_enum.rb

@@ -0,0 +1,37 @@
+=begin
+This file is automatically generated by: https://openapi-generator.tech.
+Any manual changes will be lost when the OpenAPI scheme changes.
+
+=end
+
+require 'date'
+require 'time'
+
+module Authentik::Api
+  class CertificateKeyPairKeyTypeEnum
+    RSA = "rsa".freeze
+    EC = "ec".freeze
+    DSA = "dsa".freeze
+    ED25519 = "ed25519".freeze
+    ED448 = "ed448".freeze
+
+    def self.all_vars
+      @all_vars ||= [RSA, EC, DSA, ED25519, ED448].freeze
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def self.build_from_hash(value)
+      new.build_from_hash(value)
+    end
+
+    # Builds the enum from string
+    # @param [String] The enum value in the form of the string
+    # @return [String] The enum value
+    def build_from_hash(value)
+      return value if CertificateKeyPairKeyTypeEnum.all_vars.include?(value)
+      raise "Invalid ENUM value #{value} for class #CertificateKeyPairKeyTypeEnum"
+    end
+  end
+end