authentik-api 2026.2.3 → 2026.5.0.rc2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (206) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +3 -3
  3. data/README_API.md +66 -14
  4. data/lib/authentik/api/api/admin_api.rb +4 -12
  5. data/lib/authentik/api/api/core_api.rb +143 -18
  6. data/lib/authentik/api/api/crypto_api.rb +2 -6
  7. data/lib/authentik/api/api/endpoints_api.rb +1577 -656
  8. data/lib/authentik/api/api/events_api.rb +121 -38
  9. data/lib/authentik/api/api/flows_api.rb +8 -90
  10. data/lib/authentik/api/api/lifecycle_api.rb +22 -13
  11. data/lib/authentik/api/api/managed_api.rb +73 -0
  12. data/lib/authentik/api/api/policies_api.rb +5 -6
  13. data/lib/authentik/api/api/providers_api.rb +46 -108
  14. data/lib/authentik/api/api/rbac_api.rb +0 -5
  15. data/lib/authentik/api/api/schema_api.rb +4 -12
  16. data/lib/authentik/api/api/sources_api.rb +35 -96
  17. data/lib/authentik/api/api/ssf_api.rb +63 -6
  18. data/lib/authentik/api/api/stages_api.rb +581 -102
  19. data/lib/authentik/api/api/tasks_api.rb +5 -13
  20. data/lib/authentik/api/models/account_lockdown_stage.rb +372 -0
  21. data/lib/authentik/api/models/account_lockdown_stage_request.rb +219 -0
  22. data/lib/authentik/api/models/app_enum.rb +3 -2
  23. data/lib/authentik/api/models/apple_independent_secure_enclave.rb +246 -0
  24. data/lib/authentik/api/models/apple_independent_secure_enclave_request.rb +273 -0
  25. data/lib/authentik/api/models/application.rb +14 -4
  26. data/lib/authentik/api/models/application_request.rb +14 -4
  27. data/lib/authentik/api/models/authenticated_session_user_agent_device.rb +2 -30
  28. data/lib/authentik/api/models/authenticated_session_user_agent_os.rb +4 -60
  29. data/lib/authentik/api/models/authentication_enum.rb +2 -1
  30. data/lib/authentik/api/models/authenticator_validate_stage.rb +51 -4
  31. data/lib/authentik/api/models/authenticator_validate_stage_request.rb +51 -4
  32. data/lib/authentik/api/models/authenticator_web_authn_stage.rb +23 -2
  33. data/lib/authentik/api/models/authenticator_web_authn_stage_request.rb +23 -2
  34. data/lib/authentik/api/models/{flow_import_result.rb → blueprint_import_result.rb} +4 -4
  35. data/lib/authentik/api/models/brand.rb +11 -1
  36. data/lib/authentik/api/models/brand_request.rb +11 -1
  37. data/lib/authentik/api/models/certificate_key_pair.rb +1 -1
  38. data/lib/authentik/api/models/certificate_key_pair_key_type_enum.rb +37 -0
  39. data/lib/authentik/api/models/compatibility_mode_enum.rb +3 -1
  40. data/lib/authentik/api/models/{consent_stage_mode_enum.rb → consent_mode_enum.rb} +3 -3
  41. data/lib/authentik/api/models/consent_stage.rb +1 -1
  42. data/lib/authentik/api/models/consent_stage_request.rb +1 -1
  43. data/lib/authentik/api/models/country_code_enum.rb +3 -3
  44. data/lib/authentik/api/models/current_brand.rb +10 -1
  45. data/lib/authentik/api/models/current_brand_flags.rb +31 -27
  46. data/lib/authentik/api/models/delivery_method_enum.rb +3 -1
  47. data/lib/authentik/api/models/event_matcher_policy.rb +15 -5
  48. data/lib/authentik/api/models/event_matcher_policy_request.rb +30 -5
  49. data/lib/authentik/api/models/event_stats.rb +187 -0
  50. data/lib/authentik/api/models/event_volume.rb +1 -1
  51. data/lib/authentik/api/models/events_requested_enum.rb +7 -1
  52. data/lib/authentik/api/models/force_binding_enum.rb +34 -0
  53. data/lib/authentik/api/models/{resident_key_requirement_enum.rb → format_enum.rb} +6 -7
  54. data/lib/authentik/api/models/geo_ip_policy.rb +1 -1
  55. data/lib/authentik/api/models/{detailed_country_field.rb → geo_ip_policy_countries_obj_inner.rb} +22 -26
  56. data/lib/authentik/api/models/google_chrome_connector.rb +326 -0
  57. data/lib/authentik/api/models/google_chrome_connector_request.rb +214 -0
  58. data/lib/authentik/api/models/grant_types_enum.rb +39 -0
  59. data/lib/authentik/api/models/group_ldap_source_connection.rb +30 -4
  60. data/lib/authentik/api/models/iframe_logout_challenge.rb +1 -1
  61. data/lib/authentik/api/models/invitation_send_email_request.rb +213 -0
  62. data/lib/authentik/api/models/key_type_enum.rb +3 -3
  63. data/lib/authentik/api/models/lang_enum.rb +131 -0
  64. data/lib/authentik/api/models/lifecycle_iteration.rb +30 -86
  65. data/lib/authentik/api/models/logout_url.rb +209 -0
  66. data/lib/authentik/api/models/model_enum.rb +3 -1
  67. data/lib/authentik/api/models/native_logout_challenge.rb +68 -37
  68. data/lib/authentik/api/models/notification_transport.rb +13 -2
  69. data/lib/authentik/api/models/notification_transport_request.rb +13 -2
  70. data/lib/authentik/api/models/o_auth2_provider.rb +12 -1
  71. data/lib/authentik/api/models/o_auth2_provider_request.rb +12 -1
  72. data/lib/authentik/api/models/operating_system.rb +0 -17
  73. data/lib/authentik/api/models/operating_system_request.rb +2 -9
  74. data/lib/authentik/api/models/paginated_account_lockdown_stage_list.rb +214 -0
  75. data/lib/authentik/api/models/paginated_apple_independent_secure_enclave_list.rb +214 -0
  76. data/lib/authentik/api/models/paginated_extra_role_object_permission_list.rb +32 -4
  77. data/lib/authentik/api/models/paginated_google_chrome_connector_list.rb +214 -0
  78. data/lib/authentik/api/models/patched_account_lockdown_stage_request.rb +212 -0
  79. data/lib/authentik/api/models/patched_apple_independent_secure_enclave_request.rb +235 -0
  80. data/lib/authentik/api/models/patched_application_request.rb +14 -4
  81. data/lib/authentik/api/models/patched_authenticator_validate_stage_request.rb +51 -4
  82. data/lib/authentik/api/models/patched_authenticator_web_authn_stage_request.rb +23 -2
  83. data/lib/authentik/api/models/patched_brand_request.rb +11 -1
  84. data/lib/authentik/api/models/patched_consent_stage_request.rb +1 -1
  85. data/lib/authentik/api/models/patched_event_matcher_policy_request.rb +30 -5
  86. data/lib/authentik/api/models/patched_google_chrome_connector_request.rb +190 -0
  87. data/lib/authentik/api/models/patched_notification_transport_request.rb +13 -2
  88. data/lib/authentik/api/models/patched_o_auth2_provider_request.rb +12 -1
  89. data/lib/authentik/api/models/patched_saml_provider_request.rb +17 -27
  90. data/lib/authentik/api/models/patched_saml_source_request.rb +11 -1
  91. data/lib/authentik/api/models/patched_settings_request_flags.rb +31 -27
  92. data/lib/authentik/api/models/patched_ssf_provider_request.rb +13 -4
  93. data/lib/authentik/api/models/prompt_type_enum.rb +4 -1
  94. data/lib/authentik/api/models/redirect_uri.rb +13 -4
  95. data/lib/authentik/api/models/redirect_uri_request.rb +13 -4
  96. data/lib/authentik/api/models/redirect_uri_type_enum.rb +34 -0
  97. data/lib/authentik/api/models/related_rule.rb +250 -0
  98. data/lib/authentik/api/models/saml_provider.rb +98 -8
  99. data/lib/authentik/api/models/saml_provider_request.rb +17 -27
  100. data/lib/authentik/api/models/saml_source.rb +11 -1
  101. data/lib/authentik/api/models/saml_source_request.rb +11 -1
  102. data/lib/authentik/api/models/ssf_provider.rb +41 -4
  103. data/lib/authentik/api/models/ssf_provider_request.rb +13 -4
  104. data/lib/authentik/api/models/ssf_stream.rb +10 -1
  105. data/lib/authentik/api/models/ssf_stream_status_enum.rb +36 -0
  106. data/lib/authentik/api/models/task.rb +1 -1
  107. data/lib/authentik/api/models/{task_state_enum.rb → task_status_enum.rb} +3 -3
  108. data/lib/authentik/api/models/{notification_transport_mode_enum.rb → transport_mode_enum.rb} +3 -3
  109. data/lib/authentik/api/models/usage_enum.rb +33 -0
  110. data/lib/authentik/api/models/user_account_lockdown_request.rb +144 -0
  111. data/lib/authentik/api/models/user_ldap_source_connection.rb +30 -4
  112. data/lib/authentik/api/models/user_password_hash_set_request.rb +168 -0
  113. data/lib/authentik/api/models/vendor_enum.rb +2 -1
  114. data/lib/authentik/api/models/web_authn_hint_enum.rb +35 -0
  115. data/lib/authentik/api/version.rb +1 -1
  116. data/spec/api/admin_api_spec.rb +2 -2
  117. data/spec/api/core_api_spec.rb +27 -3
  118. data/spec/api/crypto_api_spec.rb +1 -1
  119. data/spec/api/endpoints_api_spec.rb +167 -0
  120. data/spec/api/events_api_spec.rb +33 -7
  121. data/spec/api/flows_api_spec.rb +4 -16
  122. data/spec/api/lifecycle_api_spec.rb +6 -3
  123. data/spec/api/managed_api_spec.rb +13 -0
  124. data/spec/api/policies_api_spec.rb +2 -1
  125. data/spec/api/providers_api_spec.rb +21 -19
  126. data/spec/api/schema_api_spec.rb +2 -2
  127. data/spec/api/sources_api_spec.rb +17 -16
  128. data/spec/api/ssf_api_spec.rb +12 -1
  129. data/spec/api/stages_api_spec.rb +117 -18
  130. data/spec/api/tasks_api_spec.rb +2 -2
  131. data/spec/models/account_lockdown_stage_request_spec.rb +60 -0
  132. data/spec/models/account_lockdown_stage_spec.rb +96 -0
  133. data/spec/models/apple_independent_secure_enclave_request_spec.rb +54 -0
  134. data/spec/models/apple_independent_secure_enclave_spec.rb +54 -0
  135. data/spec/models/application_request_spec.rb +6 -0
  136. data/spec/models/application_spec.rb +6 -0
  137. data/spec/models/authenticator_validate_stage_request_spec.rb +30 -0
  138. data/spec/models/authenticator_validate_stage_spec.rb +30 -0
  139. data/spec/models/authenticator_web_authn_stage_request_spec.rb +12 -0
  140. data/spec/models/authenticator_web_authn_stage_spec.rb +12 -0
  141. data/spec/models/{flow_import_result_spec.rb → blueprint_import_result_spec.rb} +6 -6
  142. data/spec/models/brand_request_spec.rb +6 -0
  143. data/spec/models/brand_spec.rb +6 -0
  144. data/spec/models/{notification_transport_mode_enum_spec.rb → certificate_key_pair_key_type_enum_spec.rb} +6 -6
  145. data/spec/models/{consent_stage_mode_enum_spec.rb → consent_mode_enum_spec.rb} +6 -6
  146. data/spec/models/current_brand_flags_spec.rb +2 -2
  147. data/spec/models/current_brand_spec.rb +6 -0
  148. data/spec/models/event_matcher_policy_request_spec.rb +6 -0
  149. data/spec/models/event_matcher_policy_spec.rb +6 -0
  150. data/spec/models/event_stats_spec.rb +36 -0
  151. data/spec/models/force_binding_enum_spec.rb +24 -0
  152. data/spec/models/format_enum_spec.rb +24 -0
  153. data/spec/models/{detailed_country_field_spec.rb → geo_ip_policy_countries_obj_inner_spec.rb} +6 -6
  154. data/spec/models/google_chrome_connector_request_spec.rb +48 -0
  155. data/spec/models/google_chrome_connector_spec.rb +78 -0
  156. data/spec/models/grant_types_enum_spec.rb +24 -0
  157. data/spec/models/group_ldap_source_connection_spec.rb +6 -0
  158. data/spec/models/invitation_send_email_request_spec.rb +48 -0
  159. data/spec/models/lang_enum_spec.rb +24 -0
  160. data/spec/models/lifecycle_iteration_spec.rb +2 -14
  161. data/spec/models/logout_url_spec.rb +60 -0
  162. data/spec/models/native_logout_challenge_spec.rb +13 -7
  163. data/spec/models/notification_transport_request_spec.rb +6 -0
  164. data/spec/models/notification_transport_spec.rb +6 -0
  165. data/spec/models/o_auth2_provider_request_spec.rb +6 -0
  166. data/spec/models/o_auth2_provider_spec.rb +6 -0
  167. data/spec/models/paginated_account_lockdown_stage_list_spec.rb +42 -0
  168. data/spec/models/paginated_apple_independent_secure_enclave_list_spec.rb +42 -0
  169. data/spec/models/paginated_extra_role_object_permission_list_spec.rb +6 -0
  170. data/spec/models/paginated_google_chrome_connector_list_spec.rb +42 -0
  171. data/spec/models/patched_account_lockdown_stage_request_spec.rb +60 -0
  172. data/spec/models/patched_apple_independent_secure_enclave_request_spec.rb +54 -0
  173. data/spec/models/patched_application_request_spec.rb +6 -0
  174. data/spec/models/patched_authenticator_validate_stage_request_spec.rb +30 -0
  175. data/spec/models/patched_authenticator_web_authn_stage_request_spec.rb +12 -0
  176. data/spec/models/patched_brand_request_spec.rb +6 -0
  177. data/spec/models/patched_event_matcher_policy_request_spec.rb +6 -0
  178. data/spec/models/patched_google_chrome_connector_request_spec.rb +48 -0
  179. data/spec/models/patched_notification_transport_request_spec.rb +6 -0
  180. data/spec/models/patched_o_auth2_provider_request_spec.rb +6 -0
  181. data/spec/models/patched_saml_provider_request_spec.rb +7 -1
  182. data/spec/models/patched_saml_source_request_spec.rb +6 -0
  183. data/spec/models/patched_settings_request_flags_spec.rb +2 -2
  184. data/spec/models/patched_ssf_provider_request_spec.rb +6 -0
  185. data/spec/models/redirect_uri_request_spec.rb +6 -0
  186. data/spec/models/redirect_uri_spec.rb +6 -0
  187. data/spec/models/redirect_uri_type_enum_spec.rb +24 -0
  188. data/spec/models/related_rule_spec.rb +54 -0
  189. data/spec/models/saml_provider_request_spec.rb +7 -1
  190. data/spec/models/saml_provider_spec.rb +25 -1
  191. data/spec/models/saml_source_request_spec.rb +6 -0
  192. data/spec/models/saml_source_spec.rb +6 -0
  193. data/spec/models/ssf_provider_request_spec.rb +6 -0
  194. data/spec/models/ssf_provider_spec.rb +12 -0
  195. data/spec/models/ssf_stream_spec.rb +6 -0
  196. data/spec/models/ssf_stream_status_enum_spec.rb +24 -0
  197. data/spec/models/{task_state_enum_spec.rb → task_status_enum_spec.rb} +6 -6
  198. data/spec/models/transport_mode_enum_spec.rb +24 -0
  199. data/spec/models/usage_enum_spec.rb +24 -0
  200. data/spec/models/user_account_lockdown_request_spec.rb +30 -0
  201. data/spec/models/user_ldap_source_connection_spec.rb +6 -0
  202. data/spec/models/user_password_hash_set_request_spec.rb +30 -0
  203. data/spec/models/web_authn_hint_enum_spec.rb +24 -0
  204. data/spec/zeitwerk_spec.rb +34 -0
  205. metadata +113 -32
  206. data/spec/models/resident_key_requirement_enum_spec.rb +0 -24
data/spec/models/user_account_lockdown_request_spec.rb ADDED
@@ -0,0 +1,30 @@
1
+ =begin
2
+ This file is automatically generated by: https://openapi-generator.tech.
3
+ Any manual changes will be lost when the OpenAPI scheme changes.
4
+
5
+ =end
6
+
7
+ require 'spec_helper'
8
+ require 'json'
9
+ require 'date'
10
+
11
+ # Unit tests for Authentik::Api::UserAccountLockdownRequest
12
+ # Automatically generated by openapi-generator (https://openapi-generator.tech)
13
+ # Please update as you see appropriate
14
+ describe Authentik::Api::UserAccountLockdownRequest do
15
+ #let(:instance) { Authentik::Api::UserAccountLockdownRequest.new }
16
+
17
+ describe 'test an instance of UserAccountLockdownRequest' do
18
+ it 'should create an instance of UserAccountLockdownRequest' do
19
+ # uncomment below to test the instance creation
20
+ #expect(instance).to be_instance_of(Authentik::Api::UserAccountLockdownRequest)
21
+ end
22
+ end
23
+
24
+ describe 'test attribute "user"' do
25
+ it 'should work' do
26
+ # assertion here. ref: https://rspec.info/features/3-12/rspec-expectations/built-in-matchers/
27
+ end
28
+ end
29
+
30
+ end
data/spec/models/user_ldap_source_connection_spec.rb CHANGED
@@ -63,4 +63,10 @@ describe Authentik::Api::UserLDAPSourceConnection do
63
63
  end
64
64
  end
65
65
 
66
+ describe 'test attribute "user_obj"' do
67
+ it 'should work' do
68
+ # assertion here. ref: https://rspec.info/features/3-12/rspec-expectations/built-in-matchers/
69
+ end
70
+ end
71
+
66
72
  end
data/spec/models/user_password_hash_set_request_spec.rb ADDED
@@ -0,0 +1,30 @@
1
+ =begin
2
+ This file is automatically generated by: https://openapi-generator.tech.
3
+ Any manual changes will be lost when the OpenAPI scheme changes.
4
+
5
+ =end
6
+
7
+ require 'spec_helper'
8
+ require 'json'
9
+ require 'date'
10
+
11
+ # Unit tests for Authentik::Api::UserPasswordHashSetRequest
12
+ # Automatically generated by openapi-generator (https://openapi-generator.tech)
13
+ # Please update as you see appropriate
14
+ describe Authentik::Api::UserPasswordHashSetRequest do
15
+ #let(:instance) { Authentik::Api::UserPasswordHashSetRequest.new }
16
+
17
+ describe 'test an instance of UserPasswordHashSetRequest' do
18
+ it 'should create an instance of UserPasswordHashSetRequest' do
19
+ # uncomment below to test the instance creation
20
+ #expect(instance).to be_instance_of(Authentik::Api::UserPasswordHashSetRequest)
21
+ end
22
+ end
23
+
24
+ describe 'test attribute "password"' do
25
+ it 'should work' do
26
+ # assertion here. ref: https://rspec.info/features/3-12/rspec-expectations/built-in-matchers/
27
+ end
28
+ end
29
+
30
+ end
data/spec/models/web_authn_hint_enum_spec.rb ADDED
@@ -0,0 +1,24 @@
1
+ =begin
2
+ This file is automatically generated by: https://openapi-generator.tech.
3
+ Any manual changes will be lost when the OpenAPI scheme changes.
4
+
5
+ =end
6
+
7
+ require 'spec_helper'
8
+ require 'json'
9
+ require 'date'
10
+
11
+ # Unit tests for Authentik::Api::WebAuthnHintEnum
12
+ # Automatically generated by openapi-generator (https://openapi-generator.tech)
13
+ # Please update as you see appropriate
14
+ describe Authentik::Api::WebAuthnHintEnum do
15
+ #let(:instance) { Authentik::Api::WebAuthnHintEnum.new }
16
+
17
+ describe 'test an instance of WebAuthnHintEnum' do
18
+ it 'should create an instance of WebAuthnHintEnum' do
19
+ # uncomment below to test the instance creation
20
+ #expect(instance).to be_instance_of(Authentik::Api::WebAuthnHintEnum)
21
+ end
22
+ end
23
+
24
+ end
data/spec/zeitwerk_spec.rb ADDED
@@ -0,0 +1,34 @@
1
+ =begin
2
+ This file is automatically copied into the gem’s spec path from the `.openapi-generator` directory. Modifications should be made in the latter directory.
3
+ =end
4
+ # frozen_string_literal: true
5
+
6
+ require "zeitwerk"
7
+ require "authentik/api/inflector"
8
+
9
+ RSpec.describe "Zeitwerk compliance" do
10
+ let(:project_root) { File.expand_path("../..", __FILE__) }
11
+ let(:default_inflector) { Zeitwerk::Inflector.new }
12
+ let(:inflection_pattern) { /(?=[A-Z]|\z)/ }
13
+ let(:generated_basenames) do
14
+ Dir[File.join(project_root, "lib/authentik/api/{api,models}/*.rb")].map do |path|
15
+ File.basename(path, ".rb")
16
+ end
17
+ end
18
+
19
+ it "eager loads without raising errors" do
20
+ # Regression test to catch added irregular inflections.
21
+ expect { Zeitwerk::Loader.eager_load_all }.not_to raise_error
22
+ end
23
+
24
+ it "does not keep unused irregular inflections" do
25
+ default_constants = generated_basenames.map { default_inflector.camelize(_1, nil) }
26
+ unused_keys = Authentik::Api::Inflector::IRREGULAR_INFLECTIONS.keys.reject do |key|
27
+ pattern = /#{Regexp.escape(key)}#{inflection_pattern}/
28
+ default_constants.any? { _1.match?(pattern) }
29
+ end
30
+
31
+ expect(unused_keys)
32
+ .to be_empty, "Unused irregular inflections: #{unused_keys.join(", ")}"
33
+ end
34
+ end